Hotovo:
ComboFix 14-01-08.03 - Dominik CZ 11.01.2014 22:28:10.4.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2038.1370 [GMT 1:00]
Spuštěný z: c:\documents and settings\Dominik CZ\Dokumenty\Downloads\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Dominik CZ\Plocha\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: avast! Antivirus *Disabled* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\greatsuaVeer
c:\program files\greatsuaVeer\HmK8Sp.dat
c:\program files\greatsuaVeer\HmK8Sp.tlb
c:\program files\greatsuaVeer\HmK8Sp.x64.dll
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-12-11 do 2014-01-11 )))))))))))))))))))))))))))))))
.
.
2014-01-11 17:42 . 2014-01-11 17:42 -------- d-----w- c:\windows\ERUNT
2014-01-11 16:51 . 2014-01-11 16:51 -------- d-----w- c:\documents and settings\Dominik CZ\Data aplikací\Malwarebytes
2014-01-11 16:50 . 2014-01-11 16:50 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2014-01-11 16:50 . 2014-01-11 16:50 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2014-01-11 16:50 . 2013-04-04 13:50 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-01-11 15:25 . 2014-01-11 15:25 -------- d-----w- c:\windows\system32\config\systemprofile\Data aplikací\Application Updater
2014-01-11 15:06 . 2011-06-21 10:24 32768 ----a-w- c:\windows\system32\drivers\sp_rsdrv2.sys
2014-01-11 13:00 . 2014-01-11 13:00 -------- d-----w- c:\windows\system32\winrm
2014-01-08 18:36 . 2014-01-08 18:36 -------- d-----w- c:\documents and settings\All Users\Nabdka Start
2014-01-08 18:36 . 2014-01-08 18:36 -------- d-----w- c:\program files\Common Files\Steam
2014-01-08 18:36 . 2014-01-11 15:32 -------- d-----w- c:\program files\Steam
2014-01-07 13:47 . 2014-01-07 13:47 -------- d-----w- c:\documents and settings\All Users\Data aplikací\regid.1986-12.com.adobe
2014-01-07 13:43 . 2014-01-07 13:46 -------- d-----w- C:\PhotoshopPortable
2014-01-07 10:13 . 2014-01-07 10:13 -------- d-----w- c:\documents and settings\Dominik CZ\.android
2014-01-07 10:13 . 2014-01-07 10:13 -------- d-----w- c:\documents and settings\Dominik CZ\Local Settings\Data aplikací\cache
2014-01-07 10:12 . 2014-01-07 10:23 -------- d-----w- c:\documents and settings\Dominik CZ\Local Settings\Data aplikací\genienext
2014-01-07 10:12 . 2014-01-07 10:30 -------- d-----w- c:\documents and settings\Dominik CZ\Local Settings\Data aplikací\Mobogenie
2014-01-07 10:12 . 2014-01-11 17:31 -------- d-----w- c:\program files\AmiExt
2014-01-04 15:28 . 2014-01-08 19:46 -------- d-----w- c:\documents and settings\All Users\Data aplikací\greatsuaVeer
2014-01-04 15:27 . 2014-01-04 15:28 -------- d-----w- c:\documents and settings\All Users\Data aplikací\67dabb73536b8b2b
2014-01-04 15:27 . 2014-01-04 15:27 -------- d-----w- c:\documents and settings\Dominik CZ\Local Settings\Data aplikací\Torch
2014-01-04 15:27 . 2014-01-04 15:27 -------- d-----w- c:\documents and settings\SUPPORT_388945a0
2014-01-04 15:27 . 2014-01-04 15:27 -------- d-----w- c:\documents and settings\HelpAssistant
2014-01-04 15:27 . 2014-01-04 15:27 -------- d-----w- c:\documents and settings\Guest
2014-01-04 15:27 . 2014-01-04 15:27 -------- d-----w- c:\documents and settings\ASPNET
2014-01-04 15:27 . 2014-01-04 15:27 -------- d-----w- c:\documents and settings\Administrator
2014-01-04 15:26 . 2014-01-04 15:26 -------- d-----w- c:\documents and settings\All Users\Data aplikací\InstallMate
2014-01-02 22:32 . 2003-09-03 01:28 724992 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iKernel.dll
2014-01-02 22:32 . 2003-09-03 01:27 69715 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\ctor.dll
2014-01-02 22:32 . 2003-09-03 01:26 266240 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iscript.dll
2014-01-02 22:32 . 2003-09-03 01:26 192512 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iuser.dll
2014-01-02 22:32 . 2003-09-03 01:25 5632 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\DotNetInstaller.exe
2014-01-02 22:32 . 2014-01-02 22:32 184452 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iGdi.dll
2014-01-02 22:32 . 2014-01-02 22:32 311428 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\Setup.dll
2014-01-02 15:46 . 2014-01-02 15:46 -------- d-----w- c:\windows\system32\log
2014-01-02 15:46 . 2014-01-11 17:33 -------- d-----w- c:\documents and settings\All Users\Data aplikací\WPM
2013-12-30 13:35 . 2013-12-30 13:35 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Battle.net
2013-12-30 13:33 . 2013-12-30 19:26 -------- d-----w- c:\program files\Common Files\Blizzard Entertainment
2013-12-30 13:32 . 2013-12-30 13:38 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Blizzard Entertainment
2013-12-30 01:27 . 2013-12-30 01:27 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Blizzard
2013-12-28 12:42 . 2013-12-28 12:42 -------- d-----w- c:\windows\system32\wbem\Repository
2013-12-26 15:05 . 2013-12-26 15:05 -------- d-----w- c:\documents and settings\Dominik CZ\Local Settings\Data aplikací\Razer
2013-12-26 15:04 . 2013-12-26 15:04 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Razer
2013-12-17 09:26 . 2013-12-17 09:26 -------- d-----w- c:\documents and settings\Dominik CZ\Data aplikací\Riot Games
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-01-08 20:02 . 2013-05-30 13:12 239656 ----a-w- c:\windows\system32\drivers\b57xp32.sys
2013-12-11 15:31 . 2013-05-30 14:40 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-12-11 15:31 . 2013-05-30 14:40 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-12-10 13:29 . 2013-12-10 13:30 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-12-10 13:29 . 2013-12-10 13:30 145408 ----a-w- c:\windows\system32\javacpl.cpl
2013-11-13 03:00 . 2012-02-29 16:08 150528 ----a-w- c:\windows\system32\imagehlp.dll
2013-11-07 05:38 . 2012-05-22 17:12 591360 ----a-w- c:\windows\system32\rpcrt4.dll
2013-11-06 01:36 . 2008-05-05 05:25 7168 ----a-w- c:\windows\system32\xpsp4res.dll
2013-10-30 02:51 . 2012-05-22 17:16 1879040 ----a-w- c:\windows\system32\win32k.sys
2013-10-29 07:45 . 2012-05-22 17:17 920064 ----a-w- c:\windows\system32\wininet.dll
2013-10-29 07:45 . 2012-05-22 17:17 1469440 ------w- c:\windows\system32\inetcpl.cpl
2013-10-29 07:45 . 2012-05-22 17:17 18944 ----a-w- c:\windows\system32\corpol.dll
2013-10-29 07:45 . 2012-05-22 17:16 43520 ------w- c:\windows\system32\licmgr10.dll
2013-10-29 00:45 . 2012-05-22 17:17 385024 ------w- c:\windows\system32\html.iec
2013-10-23 23:45 . 2008-04-14 08:51 172032 ----a-w- c:\windows\system32\scrrun.dll
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[-] 2012-08-28 . 1E603EA2A3FDBAE9E5B88A8CB3C03124 . 1571840 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-05-09 08:58 121968 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-05-09 4858968]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Advanced SystemCare 7"="c:\program files\IObit\Advanced SystemCare 7\ASCTray.exe" [2013-12-09 2285344]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]
@="Service"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Winamp\\winamp.exe"=
"c:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Documents and Settings\\Dominik CZ\\Data aplikací\\uTorrent\\uTorrent.exe"=
"c:\\Documents and Settings\\All Users\\Data aplikací\\Battle.net\\Agent\\Agent.1040\\Agent.exe"=
"c:\\Documents and Settings\\All Users\\Data aplikací\\Battle.net\\Agent\\Agent.2380\\Agent.exe"=
"c:\\Program Files\\Steam\\SteamApps\\common\\Half-Life\\hl.exe"=
"c:\\Program Files\\Steam\\Steam.exe"=
"c:\\Program Files\\Valve\\hl.exe"=
"c:\\Program Files\\PANDORA.TV\\PanService\\PanProcess.exe"=
"c:\\Program Files\\PANDORA.TV\\PanService\\PandoraService.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5985:TCP"= 5985:TCP:*:Disabled:Vzdálená správa systému Windows
.
R0 aswRvrt;aswRvrt;c:\windows\system32\drivers\aswRvrt.sys [30.5.2013 16:52 49376]
R0 aswVmm;aswVmm;c:\windows\system32\drivers\aswVmm.sys [30.5.2013 16:52 175176]
R0 BtHidBus;Bluetooth HID Bus Service;c:\windows\system32\drivers\BtHidBus.sys [24.9.2009 4:40 19592]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [30.5.2013 16:52 770344]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [30.5.2013 16:52 369584]
R2 AdvancedSystemCareService7;Advanced SystemCare Service 7;c:\program files\IObit\Advanced SystemCare 7\ASCService.exe [8.1.2014 20:52 881440]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [30.5.2013 16:52 29816]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [30.5.2013 16:52 66336]
R2 IMFservice;IMF Service;c:\program files\IObit\IObit Malware Fighter\IMFsrv.exe [6.12.2013 21:32 341824]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [11.1.2014 17:50 701512]
R2 PanService;PandoraService;c:\program files\PANDORA.TV\PanService\PandoraService.exe [31.5.2013 22:00 625304]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [11.1.2014 17:50 22856]
S2 LiveUpdateSvc;LiveUpdate;c:\program files\IObit\LiveUpdate\LiveUpdate.exe [8.1.2014 20:52 2151200]
S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [5.9.2013 9:34 171680]
S3 BTMCOM;Bluetooth Serial Port;c:\windows\system32\Drivers\btmcom.sys --> c:\windows\system32\Drivers\btmcom.sys [?]
S3 BTMUSB;Motorola Bluetooth Radio Service;c:\windows\system32\Drivers\btmusb.sys --> c:\windows\system32\Drivers\btmusb.sys [?]
S3 btnetBUs;Bluetooth PAN Bus Service;c:\windows\system32\drivers\btnetBus.sys [24.9.2009 12:38 22528]
S3 IvtBtBUs;IVT Bluetooth Bus Service;c:\windows\system32\drivers\IvtBtBus.sys [17.6.2009 13:01 25480]
S3 NETwLx32; Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows XP 32 Bit;c:\windows\system32\drivers\NETwLx32.sys [30.5.2013 14:30 6609920]
S3 RegFilter;RegFilter;c:\program files\IObit\IObit Malware Fighter\Drivers\wxp_x86\RegFilter.sys [6.12.2013 21:32 31776]
S3 UrlFilter;UrlFilter;c:\program files\IObit\IObit Malware Fighter\Drivers\wxp_x86\UrlFilter.sys [6.12.2013 21:32 17360]
S4 FileMonitor;FileMonitor;c:\program files\IObit\IObit Malware Fighter\Drivers\wxp_x86\FileMonitor.sys [6.12.2013 21:32 247968]
.
Obsah adresáře 'Naplánované úlohy'
.
2014-01-11 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-05-30 15:31]
.
2014-01-11 c:\windows\Tasks\ASC7_PerformanceMonitor.job
- c:\program files\IObit\Advanced SystemCare 7\Monitor.exe [2014-01-08 15:10]
.
2014-01-11 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2013-05-30 08:58]
.
2014-01-11 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-06-09 18:37]
.
2014-01-11 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-06-09 18:37]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uInternet Settings,ProxyServer = 67.153.80.178:17194
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Převést cíl vazby do Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Převést do Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: Připojit cíl vazby k existujícímu PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Připojit k existujícímu PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
TCP: DhcpNameServer = 213.46.172.36 213.46.172.37
FF - ProfilePath - c:\documents and settings\Dominik CZ\Data aplikací\Mozilla\Firefox\Profiles\nixi07xl.default\
FF - ExtSQL: 2013-12-12 18:17; ext@bettersurfplus.com; c:\program files\BetterSurf\BetterSurfPlus\ff
FF - ExtSQL: 2013-12-16 22:26; adsremoval@adsremoval.net; c:\documents and settings\Dominik CZ\Data aplikacĂÂ\Mozilla\Firefox\Profiles\nixi07xl.default\extensions\adsremoval@adsremoval.net
FF - ExtSQL: 2014-01-07 11:12; ext@flash-Enhancer.com; c:\program files\AmiExt\flashEnhancer\ff
FF - ExtSQL: 2014-01-07 12:22; {D394D188-BAC7-4e03-8FAF-389A4D7EC6F4}; c:\documents and settings\Dominik CZ\Data aplikacĂÂ\Mozilla\Firefox\Profiles\nixi07xl.default\extensions\{D394D188-BAC7-4e03-8FAF-389A4D7EC6F4}.xpi
FF - ExtSQL: 2014-01-11 17:25; ascsurfingprotection@iobit.com; c:\documents and settings\Dominik CZ\Data aplikacĂ\Mozilla\Firefox\Profiles\nixi07xl.default\extensions\ascsurfingprotection@iobit.com
FF - ExtSQL: !HIDDEN! 2014-01-10 18:17; ext@VideoPlayerV3beta382.net; c:\program files\VideoPlayerV3\VideoPlayerV3beta382\ff
FF - ExtSQL: !HIDDEN! 2014-01-11 16:25; savingsslider@mybrowserbar.com; c:\documents and settings\Dominik CZ\Data aplikacĂ\Mozilla\Firefox\Profiles\nixi07xl.default\extensions\savingsslider@mybrowserbar.com
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-BoG V5 - c:\program files\Size\BoG V\Uninstall.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2014-01-11 22:35
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'explorer.exe'(1384)
c:\windows\system32\webcheck.dll
c:\windows\system32\wpdshserviceobj.dll
c:\windows\system32\portabledevicetypes.dll
c:\windows\system32\portabledeviceapi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\windows\System32\SCardSvr.exe
c:\program files\Java\jre7\bin\jqs.exe
c:\program files\O2Micro Flash Memory Card Driver\o2flash.exe
c:\program files\SigmaTel\C-Major Audio\DellXPM_5515v131\WDM\StacSV.exe
c:\program files\PANDORA.TV\PanService\PanProcess.exe
c:\windows\system32\wbem\wmiapsrv.exe
.
**************************************************************************
.
Celkový čas: 2014-01-11 22:43:17 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-01-11 21:43
ComboFix2.txt 2014-01-11 20:23
ComboFix3.txt 2014-01-11 19:16
.
Před spuštěním: Volných bajtů: 21 729 579 008
Po spuštění: Volných bajtů: 21 673 156 608
.
- - End Of File - - 25BD59BAD460F73E2A9E8A30B0B3ECAB
413FC2A0C716421B3158746D63736515
Prosím o kontrolu logu Vyřešeno
-
Damned
- Tvůrce článků
-
Master Level 9
- Příspěvky: 8353
- Registrován: prosinec 06
- Bydliště: Rokycany
- Pohlaví:
- Stav:
Offline
- Kontakt:
Re: Prosím o kontrolu logu
Odinstaluj ComboFix. ComboFix se odinstaluje takto:
Vypni antivir a pokud máš i Antispyware ( nutné ) .
Start -> Spustit (nebo klávesy Win+R) a zadej do řádku: Combofix[mezera]/uninstall
********************************************************************************************************************************************************************************
Stáhni si OTL na Plochu.
Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Výstup klikni na Minimální výstup, zaškrtni Pro všechny uživatele.Pod Běžné registry změň na Vše, Specifické registry na Vše. Zatrhni Kontrola na havěť LOP a Kontrola na havěť Purity. Stáří souborů změň na 14 dnů. Všechny ostatní nastavení ponech jak jsou. Klikni na Prohledat. Sken může trvat dlouho, až skončí otevřou se dva logy:
OTL.Txt
Extras.Txt
Jsou uloženy ve stejném místě jako OTL. Oba logy sem prosím zkopíruj.
Vypni antivir a pokud máš i Antispyware ( nutné ) .
Start -> Spustit (nebo klávesy Win+R) a zadej do řádku: Combofix[mezera]/uninstall
********************************************************************************************************************************************************************************
Stáhni si OTL na Plochu.
Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Výstup klikni na Minimální výstup, zaškrtni Pro všechny uživatele.Pod Běžné registry změň na Vše, Specifické registry na Vše. Zatrhni Kontrola na havěť LOP a Kontrola na havěť Purity. Stáří souborů změň na 14 dnů. Všechny ostatní nastavení ponech jak jsou. Klikni na Prohledat. Sken může trvat dlouho, až skončí otevřou se dva logy:
OTL.Txt
Extras.Txt
Jsou uloženy ve stejném místě jako OTL. Oba logy sem prosím zkopíruj.
Nic není nemožné, proto tam, kde jsme s rozumem v koncích, neváháme použít kladivo.
Chceš-li vědět, co je nového, podívej se do starých knih.
Damnedovy češtiny - překlady programů pro údržbu PC
HiJackThis 2+návod FCleaner+čeština Wise Registry Cleaner
Chceš-li vědět, co je nového, podívej se do starých knih.
Damnedovy češtiny - překlady programů pro údržbu PC
HiJackThis 2+návod FCleaner+čeština Wise Registry Cleaner
Re: Prosím o kontrolu logu
OTL.Txt:
OTL logfile created on: 11.1.2014 23:03:17 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Dominik CZ\Dokumenty\Downloads
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1,99 Gb Total Physical Memory | 1,32 Gb Available Physical Memory | 66,41% Memory free
3,84 Gb Paging File | 3,30 Gb Available in Paging File | 85,88% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 48,83 Gb Total Space | 20,53 Gb Free Space | 42,04% Space Free | Partition Type: NTFS
Drive E: | 249,26 Gb Total Space | 238,60 Gb Free Space | 95,72% Space Free | Partition Type: NTFS
Computer Name: DOMINIK | User Name: Dominik CZ | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 14 Days
========== Processes (SafeList) ==========
PRC - C:\Documents and Settings\Dominik CZ\Dokumenty\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation)
PRC - C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe (IObit)
PRC - C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
PRC - C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe (IObit)
PRC - C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
PRC - C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
PRC - C:\Program Files\PANDORA.TV\PanService\PanProcess.exe (PandoraTV)
PRC - C:\Program Files\PANDORA.TV\PanService\PandoraService.exe (Pandora.TV)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\SigmaTel\C-Major Audio\DellXPM_5515v131\WDM\stacsv.exe (SigmaTel, Inc.)
PRC - C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe (O2Micro International)
========== Modules (No Company Name) ==========
MOD - C:\Program Files\AVAST Software\Avast\defs\14011101\algo.dll ()
MOD - C:\Program Files\IObit\Advanced SystemCare 7\sqlite3.dll ()
MOD - C:\Program Files\PANDORA.TV\PanService\avformat-53.dll ()
MOD - C:\Program Files\PANDORA.TV\PanService\avcodec-53.dll ()
MOD - C:\Program Files\PANDORA.TV\PanService\libupnp.dll ()
MOD - C:\Program Files\PANDORA.TV\PanService\avutil-51.dll ()
MOD - C:\Program Files\WinRAR\rarlng.dll ()
MOD - C:\Program Files\WinRAR\RarExt.dll ()
========== Services (SafeList) ==========
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (JavaQuickStarterService) -- C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation)
SRV - (AdvancedSystemCareService7) -- C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe (IObit)
SRV - (LiveUpdateSvc) -- C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe (IObit)
SRV - (MozillaMaintenance) -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (IMFservice) -- C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe (IObit)
SRV - (SkypeUpdate) -- C:\Program Files\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (FLEXnet Licensing Service) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.)
SRV - (avast! Antivirus) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
SRV - (Steam Client Service) -- C:\Program Files\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (PanService) -- C:\Program Files\PANDORA.TV\PanService\PandoraService.exe (Pandora.TV)
SRV - (ServiceLayer) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (Nokia.)
SRV - (STacSV) -- C:\Program Files\SigmaTel\C-Major Audio\DellXPM_5515v131\WDM\stacsv.exe (SigmaTel, Inc.)
SRV - (o2flash) -- C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe (O2Micro International)
========== Driver Services (SafeList) ==========
DRV - (WDICA) -- File not found
DRV - (VcommMgr) -- System32\Drivers\VcommMgr.sys File not found
DRV - (VComm) -- system32\DRIVERS\VComm.sys File not found
DRV - (PDRFRAME) -- File not found
DRV - (PDRELI) -- File not found
DRV - (PDFRAME) -- File not found
DRV - (PDCOMP) -- File not found
DRV - (PCIDump) -- File not found
DRV - (lbrtfdc) -- File not found
DRV - (i2omgmt) -- File not found
DRV - (Changer) -- File not found
DRV - (catchme) -- C:\ComboFix\catchme.sys File not found
DRV - (BTMUSB) -- System32\Drivers\btmusb.sys File not found
DRV - (BTMCOM) -- System32\Drivers\btmcom.sys File not found
DRV - (Btcsrusb) -- System32\Drivers\btcusb.sys File not found
DRV - (BT) -- system32\DRIVERS\btnetdrv.sys File not found
DRV - (b57w2k) -- C:\WINDOWS\system32\drivers\b57xp32.sys (Broadcom Corporation)
DRV - (RegFilter) -- C:\Program Files\IObit\IObit Malware Fighter\Drivers\wxp_x86\RegFilter.sys (IObit.com)
DRV - (UrlFilter) -- C:\Program Files\IObit\IObit Malware Fighter\Drivers\wxp_x86\UrlFilter.sys (IObit.com)
DRV - (aswSP) -- C:\WINDOWS\System32\drivers\aswSP.sys (AVAST Software)
DRV - (aswVmm) -- C:\WINDOWS\System32\drivers\aswVmm.sys ()
DRV - (aswSnx) -- C:\WINDOWS\System32\drivers\aswSnx.sys (AVAST Software)
DRV - (aswTdi) -- C:\WINDOWS\System32\drivers\aswTdi.sys (AVAST Software)
DRV - (aswRvrt) -- C:\WINDOWS\System32\drivers\aswRvrt.sys ()
DRV - (aswMonFlt) -- C:\WINDOWS\system32\drivers\aswMonFlt.sys (AVAST Software)
DRV - (AswRdr) -- C:\WINDOWS\System32\drivers\aswRdr.sys (AVAST Software)
DRV - (aswFsBlk) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys (AVAST Software)
DRV - (FileMonitor) -- C:\Program Files\IObit\IObit Malware Fighter\Drivers\wxp_x86\FileMonitor.sys (IObit)
DRV - (NETwLx32) -- C:\WINDOWS\system32\drivers\NETwLx32.sys (Intel Corporation)
DRV - (btnetBUs) -- C:\WINDOWS\system32\drivers\btnetBus.sys ()
DRV - (BtHidBus) -- C:\WINDOWS\system32\drivers\BtHidBus.sys (IVT Corporation.)
DRV - (IvtBtBUs) -- C:\WINDOWS\system32\drivers\IvtBtBus.sys (IVT Corporation.)
DRV - (hamachi) -- C:\WINDOWS\system32\drivers\hamachi.sys (LogMeIn, Inc.)
DRV - (guardian2) -- C:\WINDOWS\system32\drivers\oz776.sys (O2Micro)
DRV - (pccsmcfd) -- C:\WINDOWS\system32\drivers\pccsmcfd.sys (Nokia)
DRV - (STHDA) -- C:\WINDOWS\system32\drivers\sthda.sys (SigmaTel, Inc.)
========== Standard Registry (All) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\..\SearchScopes\{0C867DDD-8955-433D-9F9F-53C73DAF272B}: "URL" = http://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=QuickSearch_16194
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://search.delta-homes.com/web/?type ... D406813&q={searchTerms}
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\..\SearchScopes\{442CFEE7-C5FF-4F2F-8557-92B842C2D9C5}: "URL" = http://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_16194
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\..\SearchScopes\{49641E38-BC74-4315-97CC-E7EBF4528587}: "URL" = http://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_16194
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\..\SearchScopes\{7629C070-D942-42BA-8C07-177EEBA23703}: "URL" = http://www.mapy.cz/?query={searchTerms}&sourceid=QuickSearch_16194
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\..\SearchScopes\{810E2636-AFC1-4C4F-91AE-E0C8CF758858}: "URL" = http://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_16194
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\..\SearchScopes\{B1B05722-031D-4ACC-AC37-2DEA0530AF0D}: "URL" = http://search.yahoo.com/search?fr=chr-g ... =198484&p={searchTerms}
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\..\SearchScopes\{BF7486A1-ACD3-4D65-AB23-939DE9A5C5EC}: "URL" = http://www.firmy.cz/?q={searchTerms}&sourceid=QuickSearch_16194
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\..\SearchScopes\{DBAFA911-D85B-4A01-B447-51F833AE5138}: "URL" = http://www.novinky.cz/hledej?w={searchTerms}&sourceid=QuickSearch_16194
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\..\SearchScopes\{E0FB68FD-4B8E-4D25-8846-3790787B706D}: "URL" = http://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_16194
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = 67.153.80.178:17194
========== FireFox ==========
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@Webzen.com/NPBrowserExt: C:\Program Files\WEBZEN\BrowserExtension\NPWZCmnCtrl.dll (WEBZEN)
FF - HKCU\Software\MozillaPlugins\@lightspark.github.com/Lightspark;version=1: C:\Program Files\Lightspark 0.5.3-git\nplightsparkplugin.dll File not found
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2013.05.30 16:51:44 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2013.07.08 22:37:04 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\xz123@ya456.com: C:\Program Files\BetterSurf\ff
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\12x3q@3244516.com: C:\Program Files\Better-Surf\ff
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\ext@bettersurfplus.com: C:\Program Files\BetterSurf\BetterSurfPlus\ff
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\ext@WebexpEnhancedV1alpha259.net: C:\Program Files\WebexpEnhancedV1\WebexpEnhancedV1alpha259\ff
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\ext@flash-Enhancer.com: C:\Program Files\AmiExt\flashEnhancer\ff
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\ext@VideoPlayerV3beta382.net: C:\Program Files\VideoPlayerV3\VideoPlayerV3beta382\ff [2014.01.11 14:02:00 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 25.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 25.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013.08.20 18:46:52 | 000,000,000 | ---D | M]
[2013.05.30 15:44:20 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Dominik CZ\Data aplikací\Mozilla\Extensions
[2014.01.11 18:47:06 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Dominik CZ\Data aplikací\Mozilla\Firefox\Profiles\nixi07xl.default\extensions
[2014.01.11 16:25:58 | 000,000,000 | ---D | M] (Start Page) -- C:\Documents and Settings\Dominik CZ\Data aplikací\Mozilla\Firefox\Profiles\nixi07xl.default\extensions\{58d2a791-6199-482f-a9aa-9b725ec61362}
[2013.09.14 19:26:59 | 000,000,000 | ---D | M] (Seznam lištiÄŤka) -- C:\Documents and Settings\Dominik CZ\Data aplikací\Mozilla\Firefox\Profiles\nixi07xl.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2013.12.16 21:14:29 | 000,000,000 | ---D | M] (Ads Removal) -- C:\Documents and Settings\Dominik CZ\Data aplikací\Mozilla\Firefox\Profiles\nixi07xl.default\extensions\adsremoval@adsremoval.net
[2014.01.11 16:25:20 | 000,000,000 | ---D | M] (Advanced SystemCare Surfing Protection) -- C:\Documents and Settings\Dominik CZ\Data aplikací\Mozilla\Firefox\Profiles\nixi07xl.default\extensions\ascsurfingprotection@iobit.com
[2014.01.07 11:22:37 | 000,013,570 | ---- | M] () (No name found) -- C:\Documents and Settings\Dominik CZ\Data aplikací\Mozilla\Firefox\Profiles\nixi07xl.default\extensions\{D394D188-BAC7-4e03-8FAF-389A4D7EC6F4}.xpi
[2013.11.10 15:24:08 | 000,000,168 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Data aplikací\Mozilla\Firefox\Profiles\nixi07xl.default\searchplugins\icqplugin.gif
[2013.11.10 15:24:08 | 000,000,618 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Data aplikací\Mozilla\Firefox\Profiles\nixi07xl.default\searchplugins\icqplugin.src
[2014.01.10 23:27:00 | 000,001,056 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Data aplikací\Mozilla\Firefox\Profiles\nixi07xl.default\searchplugins\icqplugin.xml
[2014.01.11 16:25:33 | 000,000,905 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Data aplikací\Mozilla\Firefox\Profiles\nixi07xl.default\searchplugins\yahoo_ff.xml
[2013.12.10 14:30:27 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2013.12.10 14:30:27 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2006.10.26 19:12:16 | 000,016,192 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL
[2008.06.11 21:45:28 | 000,103,792 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\mozilla firefox\plugins\nppdf32.dll
[2012.06.20 17:14:20 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll
========== Chrome ==========
CHR - default_search_provider: Yahoo (Enabled)
CHR - default_search_provider: search_url = http://search.yahoo.com/search?fr=chr-g ... =198484&p={searchTerms}
CHR - default_search_provider: suggest_url = http://ff.search.yahoo.com/gossip?outpu ... n&command={searchTerms},
CHR - Extension: Dokumenty Google = C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Disk Google = C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Vyhled00E1v00E1n00ED Google = C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Shopping Suggestion = C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ejbpjlaagejfakeobljhgplbgklgemll\1.0.0_0\
CHR - Extension: Advanced SystemCare Surfing Protection = C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0\
CHR - Extension: Pen011B017Eenka Google = C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0\
CHR - Extension: Video Player = C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ondgidlbdjiekphnjfcnojdngfakeepm\1.1_0\
CHR - Extension: Gmail = C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
O1 HOSTS File: ([2014.01.11 22:34:52 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\..\Toolbar\ShellBrowser: (&Adresa) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O3 - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Common Files\Java\Java Update\jusched.exe (Oracle Corporation)
O4 - HKU\.DEFAULT..\Run: [Advanced SystemCare 7] C:\Program Files\IObit\Advanced SystemCare 7\ASCTray.exe (IObit)
O4 - HKU\S-1-5-18..\Run: [Advanced SystemCare 7] C:\Program Files\IObit\Advanced SystemCare 7\ASCTray.exe (IObit)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableLockWorkstation = 0
O7 - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: disableregistrytools = 0
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Převést cíl vazby do Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Převést do Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Připojit cíl vazby k existujícímu PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Připojit k existujícímu PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\WINDOWS\system32\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.46.172.36 213.46.172.37
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E2163A14-B7C9-4E40-A57D-8E48FAD1C8CD}: DhcpNameServer = 213.46.172.36 213.46.172.37
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\WINDOWS\system32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\wia {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/webviewhtml {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (logonui.exe) - C:\WINDOWS\System32\logonui.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\WINDOWS\System32\sysdm.cpl (Microsoft Corporation)
O20 - Winlogon\Notify\crypt32chain: DllName - (crypt32.dll) - C:\WINDOWS\System32\crypt32.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cryptnet: DllName - (cryptnet.dll) - C:\WINDOWS\System32\cryptnet.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cscdll: DllName - (cscdll.dll) - C:\WINDOWS\System32\cscdll.dll (Microsoft Corporation)
O20 - Winlogon\Notify\dimsntfy: DllName - (%SystemRoot%\System32\dimsntfy.dll) - C:\WINDOWS\system32\dimsntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O20 - Winlogon\Notify\ScCertProp: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\sclgntfy: DllName - (sclgntfy.dll) - C:\WINDOWS\System32\sclgntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\SensLogn: DllName - (WlNotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\Schedule: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\termsrv: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\WgaLogon: DllName - (WgaLogon.dll) - C:\WINDOWS\System32\WgaLogon.dll (Microsoft Corporation)
O20 - Winlogon\Notify\wlballoon: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll (Microsoft Corporation)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {438755C2-A8BA-11D1-B96B-00A0C90312E1} - Browseui preloader - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Proces mezipaměti kategorií součástí - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O24 - Desktop Components:0 () - http://sfgame.funsite.cz/cz-s4-signature-Fredderico.png
O24 - Desktop Components:1 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msapsspc.dll) - C:\WINDOWS\System32\msapsspc.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (schannel.dll) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (digest.dll) - C:\WINDOWS\System32\digest.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msnsspc.dll) - C:\WINDOWS\System32\msnsspc.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\WINDOWS\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\WINDOWS\System32\wdigest.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2013.05.30 13:49:15 | 000,000,000 | -H-- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
========== Files/Folders - Created Within 14 Days ==========
[2014.01.11 22:59:22 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2014.01.11 22:52:06 | 000,000,000 | --SD | C] -- C:\ComboFix
[2014.01.11 22:33:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2014.01.11 19:18:29 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2014.01.11 19:16:53 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2014.01.11 19:16:53 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2014.01.11 19:16:53 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2014.01.11 19:16:53 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2014.01.11 19:16:42 | 000,000,000 | ---D | C] -- C:\Qoobox
[2014.01.11 19:16:40 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Dominik CZ\Nabídka Start\Programy\Nástroje pro správu
[2014.01.11 19:16:40 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Dominik CZ\Dokumenty\Filmy
[2014.01.11 19:16:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\erdnt
[2014.01.11 18:42:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERUNT
[2014.01.11 17:51:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dominik CZ\Data aplikací\Malwarebytes
[2014.01.11 17:50:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2014.01.11 14:00:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\winrm
[2014.01.11 14:00:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\IObit Uninstaller
[2014.01.11 14:00:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\ProductData
[2014.01.11 14:00:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Advanced SystemCare 7
[2014.01.11 14:00:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
[2014.01.10 18:17:24 | 000,000,000 | ---D | C] -- C:\Program Files\VideoPlayerV3
[2014.01.09 11:14:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\WindowsPowerShell
[2014.01.09 11:14:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\GroupPolicy
[2014.01.09 11:14:08 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$968930Uinstall_KB968930$
[2014.01.09 11:13:03 | 000,024,384 | ---- | C] (IObit) -- C:\WINDOWS\System32\RegistryDefragBootTime.exe
[2014.01.09 10:32:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Data aplikací\IObit
[2014.01.08 21:23:30 | 000,000,000 | ---D | C] -- C:\Program Files\Valve
[2014.01.08 20:53:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dominik CZ\Data aplikací\Apple Computer
[2014.01.08 19:36:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabdka Start
[2014.01.08 19:36:42 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Steam
[2014.01.08 19:36:40 | 000,000,000 | ---D | C] -- C:\Program Files\Steam
[2014.01.08 19:36:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Steam
[2014.01.07 14:47:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\regid.1986-12.com.adobe
[2014.01.07 11:13:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dominik CZ\.android
[2014.01.07 11:13:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\cache
[2014.01.07 11:12:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\genienext
[2014.01.07 11:12:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Mobogenie
[2014.01.04 16:28:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\greatsuaVeer
[2014.01.04 16:27:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\67dabb73536b8b2b
[2014.01.04 16:27:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Torch
[2014.01.04 16:26:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\InstallMate
[2014.01.02 16:46:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\log
[2014.01.02 16:46:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\WPM
[2013.12.30 14:35:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Battle.net
[2013.12.30 14:33:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Blizzard Entertainment
[2013.12.30 14:32:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Blizzard Entertainment
[2013.12.30 02:27:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Blizzard
[2013.12.30 00:48:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 14 Days ==========
[2014.01.11 23:04:31 | 000,000,948 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2014.01.11 22:56:05 | 000,000,364 | -H-- | M] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
[2014.01.11 22:56:01 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2014.01.11 22:55:39 | 000,000,278 | ---- | M] () -- C:\WINDOWS\tasks\ASC7_PerformanceMonitor.job
[2014.01.11 22:55:26 | 000,000,944 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2014.01.11 22:55:11 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2014.01.11 22:34:52 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2014.01.11 21:31:00 | 000,000,914 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2014.01.11 19:18:40 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2014.01.10 21:52:00 | 000,002,283 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Skype.lnk
[2014.01.10 20:28:46 | 000,346,332 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Plocha\photo.htm
[2014.01.09 11:22:04 | 000,556,592 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2014.01.09 11:22:04 | 000,549,528 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2014.01.09 11:22:04 | 000,120,950 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2014.01.09 11:22:04 | 000,103,148 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2014.01.08 21:28:28 | 000,001,609 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Plocha\Counter Strike 1.6 Non Steam.lnk
[2014.01.08 21:02:59 | 000,239,656 | ---- | M] (Broadcom Corporation) -- C:\WINDOWS\System32\drivers\b57xp32.sys
[2014.01.08 21:02:59 | 000,239,656 | ---- | M] (Broadcom Corporation) -- C:\WINDOWS\System32\dllcache\b57xp32.sys
[2014.01.08 21:01:09 | 000,001,837 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
[2014.01.08 21:01:09 | 000,000,748 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Mozilla Firefox.lnk
[2014.01.08 19:49:01 | 000,000,212 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Plocha\Counter-Strike.url
[2014.01.08 19:36:43 | 000,000,664 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Steam.lnk
[2014.01.07 18:25:14 | 000,147,316 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Plocha\856612_1408034339435100_1323389124_o.jpg
[2014.01.07 18:24:18 | 000,016,384 | -H-- | M] () -- C:\Documents and Settings\Dominik CZ\Plocha\photothumb.db
[2014.01.07 15:04:26 | 000,000,132 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Data aplikací\Adobe BMP Format CS5 Prefs
[2014.01.06 21:21:26 | 000,048,953 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Plocha\1608645_687718364602196_60233334_n.jpg
[2014.01.05 19:41:13 | 000,004,051 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Plocha\a.cfg
[2014.01.04 22:09:58 | 000,000,297 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Plocha\k.cfg
[2014.01.04 12:06:59 | 000,005,120 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2014.01.04 10:41:37 | 000,069,277 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Plocha\1482093_685024911519221_1723648544_n.jpg
[2014.01.02 22:02:17 | 000,002,369 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Plocha\1.cfg
[2014.01.01 16:09:49 | 000,002,025 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Plocha\cb6203642ad86360.zip
[2013.12.30 02:40:36 | 000,271,784 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2014.01.11 19:18:40 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2014.01.11 19:18:31 | 000,261,312 | RHS- | C] () -- C:\cmldr
[2014.01.11 19:16:53 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2014.01.11 19:16:53 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2014.01.11 19:16:53 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2014.01.11 19:16:53 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2014.01.11 19:16:53 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2014.01.11 16:06:31 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\drivers\sp_rsdrv2.sys
[2014.01.10 20:28:45 | 000,346,332 | ---- | C] () -- C:\Documents and Settings\Dominik CZ\Plocha\photo.htm
[2014.01.09 11:03:59 | 000,000,278 | ---- | C] () -- C:\WINDOWS\tasks\ASC7_PerformanceMonitor.job
[2014.01.08 21:28:28 | 000,001,609 | ---- | C] () -- C:\Documents and Settings\Dominik CZ\Plocha\Counter Strike 1.6 Non Steam.lnk
[2014.01.08 19:49:01 | 000,000,212 | ---- | C] () -- C:\Documents and Settings\Dominik CZ\Plocha\Counter-Strike.url
[2014.01.08 19:36:43 | 000,000,664 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Steam.lnk
[2014.01.07 18:22:33 | 000,147,316 | ---- | C] () -- C:\Documents and Settings\Dominik CZ\Plocha\856612_1408034339435100_1323389124_o.jpg
[2014.01.07 15:04:26 | 000,000,132 | ---- | C] () -- C:\Documents and Settings\Dominik CZ\Data aplikací\Adobe BMP Format CS5 Prefs
[2014.01.06 21:21:26 | 000,048,953 | ---- | C] () -- C:\Documents and Settings\Dominik CZ\Plocha\1608645_687718364602196_60233334_n.jpg
[2014.01.04 12:06:57 | 000,005,120 | ---- | C] () -- C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2014.01.04 10:41:37 | 000,069,277 | ---- | C] () -- C:\Documents and Settings\Dominik CZ\Plocha\1482093_685024911519221_1723648544_n.jpg
[2014.01.02 22:04:10 | 000,000,297 | ---- | C] () -- C:\Documents and Settings\Dominik CZ\Plocha\k.cfg
[2014.01.02 22:02:17 | 000,002,369 | ---- | C] () -- C:\Documents and Settings\Dominik CZ\Plocha\1.cfg
[2014.01.02 18:49:52 | 000,004,051 | ---- | C] () -- C:\Documents and Settings\Dominik CZ\Plocha\a.cfg
[2014.01.01 16:09:46 | 000,002,025 | ---- | C] () -- C:\Documents and Settings\Dominik CZ\Plocha\cb6203642ad86360.zip
[2013.10.15 19:31:58 | 000,143,360 | ---- | C] () -- C:\Documents and Settings\Dominik CZ\Data aplikací\chrtmp
[2013.09.15 15:33:57 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2013.07.01 21:51:33 | 000,001,169 | ---- | C] () -- C:\WINDOWS\FOE2.ini
[2013.06.28 10:08:20 | 000,000,175 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswVmm.sys.sum
[2013.06.26 19:37:12 | 000,000,175 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswSP.sys.sum
[2013.06.26 19:37:12 | 000,000,175 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswSnx.sys.sum
[2013.05.30 16:52:04 | 000,175,176 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswVmm.sys
[2013.05.30 16:52:03 | 000,049,376 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswRvrt.sys
[2013.05.30 15:47:22 | 000,650,752 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2013.05.30 15:47:22 | 000,243,200 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2013.05.30 15:47:22 | 000,216,064 | ---- | C] ( ) -- C:\WINDOWS\System32\lagarith.dll
[2013.05.30 15:47:21 | 000,178,688 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2013.05.30 15:47:18 | 000,112,640 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2013.05.30 15:34:34 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2013.05.30 15:32:37 | 000,271,784 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2013.05.30 15:00:38 | 001,498,560 | ---- | C] () -- C:\WINDOWS\System32\igkrng400.bin
[2013.05.30 14:29:29 | 000,000,206 | ---- | C] () -- C:\WINDOWS\hbcikrnl.ini
[2013.05.30 13:53:05 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2013.05.30 13:50:38 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2013.05.30 13:45:01 | 000,021,812 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
========== ZeroAccess Check ==========
[2013.06.06 15:25:23 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2012.05.22 18:15:52 | 001,510,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2012.05.22 18:10:20 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2008.04.14 09:52:06 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ==========
[2013.10.01 16:45:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\4shared Desktop
[2014.01.04 16:28:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\67dabb73536b8b2b
[2013.05.30 15:51:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ACD Systems
[2013.05.30 16:40:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ashampoo
[2013.05.30 16:51:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
[2013.05.30 20:42:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Babylon
[2013.12.30 14:35:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Battle.net
[2013.08.20 19:01:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Caphyon
[2013.08.26 19:38:05 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\Common Files
[2013.06.06 15:23:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Electronic Arts
[2014.01.11 18:31:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\eSafe
[2014.01.08 20:46:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\greatsuaVeer
[2013.11.10 15:24:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ICQ
[2013.07.12 17:54:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Installations
[2014.01.04 16:26:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\InstallMate
[2014.01.11 14:00:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\IObit
[2013.12.07 13:40:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\LogMeIn
[2014.01.11 03:27:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PMB Files
[2014.01.11 14:00:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ProductData
[2013.12.26 16:04:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Razer
[2014.01.07 14:47:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\regid.1986-12.com.adobe
[2013.05.30 20:47:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2013.08.26 19:40:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TuneUp Software
[2013.08.09 16:07:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\WEBZEN
[2014.01.11 18:31:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Wincert
[2014.01.11 18:33:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\WPM
[2014.01.11 14:00:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
[2013.08.26 19:38:06 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Data aplikací\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
[2013.05.30 17:38:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\ACD Systems
[2013.05.30 16:46:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\Ashampoo
[2013.08.12 21:11:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\DownLite
[2013.05.30 20:44:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\EurekaLog
[2013.05.30 14:23:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\GHISLER
[2014.01.11 14:00:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\IObit
[2013.06.13 14:39:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\LolClient
[2013.06.06 15:54:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\Need for Speed World
[2013.06.08 19:16:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\PhotoScape
[2013.12.17 10:26:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\Riot Games
[2014.01.11 14:20:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\Seznam.cz
[2014.01.01 23:58:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\TS3Client
[2013.08.26 19:39:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\TuneUp Software
[2013.06.02 01:10:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\Unity
[2013.05.30 20:42:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\URSoft
[2014.01.11 14:00:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\uTorrent
[2013.05.30 20:35:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\Wargaming.net
[2013.11.10 15:24:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\{DCD48218-E972-4d0c-9E5F-43462BC13E3B}
[2014.01.09 10:32:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Data aplikací\IObit
========== Purity Check ==========
========== Alternate Data Streams ==========
@Alternate Data Stream - 178 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:1CE11B51
< End of report >
OTL logfile created on: 11.1.2014 23:03:17 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Dominik CZ\Dokumenty\Downloads
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1,99 Gb Total Physical Memory | 1,32 Gb Available Physical Memory | 66,41% Memory free
3,84 Gb Paging File | 3,30 Gb Available in Paging File | 85,88% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 48,83 Gb Total Space | 20,53 Gb Free Space | 42,04% Space Free | Partition Type: NTFS
Drive E: | 249,26 Gb Total Space | 238,60 Gb Free Space | 95,72% Space Free | Partition Type: NTFS
Computer Name: DOMINIK | User Name: Dominik CZ | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 14 Days
========== Processes (SafeList) ==========
PRC - C:\Documents and Settings\Dominik CZ\Dokumenty\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation)
PRC - C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe (IObit)
PRC - C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
PRC - C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe (IObit)
PRC - C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
PRC - C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
PRC - C:\Program Files\PANDORA.TV\PanService\PanProcess.exe (PandoraTV)
PRC - C:\Program Files\PANDORA.TV\PanService\PandoraService.exe (Pandora.TV)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\SigmaTel\C-Major Audio\DellXPM_5515v131\WDM\stacsv.exe (SigmaTel, Inc.)
PRC - C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe (O2Micro International)
========== Modules (No Company Name) ==========
MOD - C:\Program Files\AVAST Software\Avast\defs\14011101\algo.dll ()
MOD - C:\Program Files\IObit\Advanced SystemCare 7\sqlite3.dll ()
MOD - C:\Program Files\PANDORA.TV\PanService\avformat-53.dll ()
MOD - C:\Program Files\PANDORA.TV\PanService\avcodec-53.dll ()
MOD - C:\Program Files\PANDORA.TV\PanService\libupnp.dll ()
MOD - C:\Program Files\PANDORA.TV\PanService\avutil-51.dll ()
MOD - C:\Program Files\WinRAR\rarlng.dll ()
MOD - C:\Program Files\WinRAR\RarExt.dll ()
========== Services (SafeList) ==========
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (JavaQuickStarterService) -- C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation)
SRV - (AdvancedSystemCareService7) -- C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe (IObit)
SRV - (LiveUpdateSvc) -- C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe (IObit)
SRV - (MozillaMaintenance) -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (IMFservice) -- C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe (IObit)
SRV - (SkypeUpdate) -- C:\Program Files\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (FLEXnet Licensing Service) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.)
SRV - (avast! Antivirus) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
SRV - (Steam Client Service) -- C:\Program Files\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (PanService) -- C:\Program Files\PANDORA.TV\PanService\PandoraService.exe (Pandora.TV)
SRV - (ServiceLayer) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (Nokia.)
SRV - (STacSV) -- C:\Program Files\SigmaTel\C-Major Audio\DellXPM_5515v131\WDM\stacsv.exe (SigmaTel, Inc.)
SRV - (o2flash) -- C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe (O2Micro International)
========== Driver Services (SafeList) ==========
DRV - (WDICA) -- File not found
DRV - (VcommMgr) -- System32\Drivers\VcommMgr.sys File not found
DRV - (VComm) -- system32\DRIVERS\VComm.sys File not found
DRV - (PDRFRAME) -- File not found
DRV - (PDRELI) -- File not found
DRV - (PDFRAME) -- File not found
DRV - (PDCOMP) -- File not found
DRV - (PCIDump) -- File not found
DRV - (lbrtfdc) -- File not found
DRV - (i2omgmt) -- File not found
DRV - (Changer) -- File not found
DRV - (catchme) -- C:\ComboFix\catchme.sys File not found
DRV - (BTMUSB) -- System32\Drivers\btmusb.sys File not found
DRV - (BTMCOM) -- System32\Drivers\btmcom.sys File not found
DRV - (Btcsrusb) -- System32\Drivers\btcusb.sys File not found
DRV - (BT) -- system32\DRIVERS\btnetdrv.sys File not found
DRV - (b57w2k) -- C:\WINDOWS\system32\drivers\b57xp32.sys (Broadcom Corporation)
DRV - (RegFilter) -- C:\Program Files\IObit\IObit Malware Fighter\Drivers\wxp_x86\RegFilter.sys (IObit.com)
DRV - (UrlFilter) -- C:\Program Files\IObit\IObit Malware Fighter\Drivers\wxp_x86\UrlFilter.sys (IObit.com)
DRV - (aswSP) -- C:\WINDOWS\System32\drivers\aswSP.sys (AVAST Software)
DRV - (aswVmm) -- C:\WINDOWS\System32\drivers\aswVmm.sys ()
DRV - (aswSnx) -- C:\WINDOWS\System32\drivers\aswSnx.sys (AVAST Software)
DRV - (aswTdi) -- C:\WINDOWS\System32\drivers\aswTdi.sys (AVAST Software)
DRV - (aswRvrt) -- C:\WINDOWS\System32\drivers\aswRvrt.sys ()
DRV - (aswMonFlt) -- C:\WINDOWS\system32\drivers\aswMonFlt.sys (AVAST Software)
DRV - (AswRdr) -- C:\WINDOWS\System32\drivers\aswRdr.sys (AVAST Software)
DRV - (aswFsBlk) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys (AVAST Software)
DRV - (FileMonitor) -- C:\Program Files\IObit\IObit Malware Fighter\Drivers\wxp_x86\FileMonitor.sys (IObit)
DRV - (NETwLx32) -- C:\WINDOWS\system32\drivers\NETwLx32.sys (Intel Corporation)
DRV - (btnetBUs) -- C:\WINDOWS\system32\drivers\btnetBus.sys ()
DRV - (BtHidBus) -- C:\WINDOWS\system32\drivers\BtHidBus.sys (IVT Corporation.)
DRV - (IvtBtBUs) -- C:\WINDOWS\system32\drivers\IvtBtBus.sys (IVT Corporation.)
DRV - (hamachi) -- C:\WINDOWS\system32\drivers\hamachi.sys (LogMeIn, Inc.)
DRV - (guardian2) -- C:\WINDOWS\system32\drivers\oz776.sys (O2Micro)
DRV - (pccsmcfd) -- C:\WINDOWS\system32\drivers\pccsmcfd.sys (Nokia)
DRV - (STHDA) -- C:\WINDOWS\system32\drivers\sthda.sys (SigmaTel, Inc.)
========== Standard Registry (All) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\..\SearchScopes\{0C867DDD-8955-433D-9F9F-53C73DAF272B}: "URL" = http://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=QuickSearch_16194
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://search.delta-homes.com/web/?type ... D406813&q={searchTerms}
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\..\SearchScopes\{442CFEE7-C5FF-4F2F-8557-92B842C2D9C5}: "URL" = http://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_16194
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\..\SearchScopes\{49641E38-BC74-4315-97CC-E7EBF4528587}: "URL" = http://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_16194
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\..\SearchScopes\{7629C070-D942-42BA-8C07-177EEBA23703}: "URL" = http://www.mapy.cz/?query={searchTerms}&sourceid=QuickSearch_16194
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\..\SearchScopes\{810E2636-AFC1-4C4F-91AE-E0C8CF758858}: "URL" = http://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_16194
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\..\SearchScopes\{B1B05722-031D-4ACC-AC37-2DEA0530AF0D}: "URL" = http://search.yahoo.com/search?fr=chr-g ... =198484&p={searchTerms}
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\..\SearchScopes\{BF7486A1-ACD3-4D65-AB23-939DE9A5C5EC}: "URL" = http://www.firmy.cz/?q={searchTerms}&sourceid=QuickSearch_16194
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\..\SearchScopes\{DBAFA911-D85B-4A01-B447-51F833AE5138}: "URL" = http://www.novinky.cz/hledej?w={searchTerms}&sourceid=QuickSearch_16194
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\..\SearchScopes\{E0FB68FD-4B8E-4D25-8846-3790787B706D}: "URL" = http://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_16194
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = 67.153.80.178:17194
========== FireFox ==========
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@Webzen.com/NPBrowserExt: C:\Program Files\WEBZEN\BrowserExtension\NPWZCmnCtrl.dll (WEBZEN)
FF - HKCU\Software\MozillaPlugins\@lightspark.github.com/Lightspark;version=1: C:\Program Files\Lightspark 0.5.3-git\nplightsparkplugin.dll File not found
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2013.05.30 16:51:44 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2013.07.08 22:37:04 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\xz123@ya456.com: C:\Program Files\BetterSurf\ff
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\12x3q@3244516.com: C:\Program Files\Better-Surf\ff
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\ext@bettersurfplus.com: C:\Program Files\BetterSurf\BetterSurfPlus\ff
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\ext@WebexpEnhancedV1alpha259.net: C:\Program Files\WebexpEnhancedV1\WebexpEnhancedV1alpha259\ff
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\ext@flash-Enhancer.com: C:\Program Files\AmiExt\flashEnhancer\ff
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\ext@VideoPlayerV3beta382.net: C:\Program Files\VideoPlayerV3\VideoPlayerV3beta382\ff [2014.01.11 14:02:00 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 25.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 25.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013.08.20 18:46:52 | 000,000,000 | ---D | M]
[2013.05.30 15:44:20 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Dominik CZ\Data aplikací\Mozilla\Extensions
[2014.01.11 18:47:06 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Dominik CZ\Data aplikací\Mozilla\Firefox\Profiles\nixi07xl.default\extensions
[2014.01.11 16:25:58 | 000,000,000 | ---D | M] (Start Page) -- C:\Documents and Settings\Dominik CZ\Data aplikací\Mozilla\Firefox\Profiles\nixi07xl.default\extensions\{58d2a791-6199-482f-a9aa-9b725ec61362}
[2013.09.14 19:26:59 | 000,000,000 | ---D | M] (Seznam lištiÄŤka) -- C:\Documents and Settings\Dominik CZ\Data aplikací\Mozilla\Firefox\Profiles\nixi07xl.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2013.12.16 21:14:29 | 000,000,000 | ---D | M] (Ads Removal) -- C:\Documents and Settings\Dominik CZ\Data aplikací\Mozilla\Firefox\Profiles\nixi07xl.default\extensions\adsremoval@adsremoval.net
[2014.01.11 16:25:20 | 000,000,000 | ---D | M] (Advanced SystemCare Surfing Protection) -- C:\Documents and Settings\Dominik CZ\Data aplikací\Mozilla\Firefox\Profiles\nixi07xl.default\extensions\ascsurfingprotection@iobit.com
[2014.01.07 11:22:37 | 000,013,570 | ---- | M] () (No name found) -- C:\Documents and Settings\Dominik CZ\Data aplikací\Mozilla\Firefox\Profiles\nixi07xl.default\extensions\{D394D188-BAC7-4e03-8FAF-389A4D7EC6F4}.xpi
[2013.11.10 15:24:08 | 000,000,168 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Data aplikací\Mozilla\Firefox\Profiles\nixi07xl.default\searchplugins\icqplugin.gif
[2013.11.10 15:24:08 | 000,000,618 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Data aplikací\Mozilla\Firefox\Profiles\nixi07xl.default\searchplugins\icqplugin.src
[2014.01.10 23:27:00 | 000,001,056 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Data aplikací\Mozilla\Firefox\Profiles\nixi07xl.default\searchplugins\icqplugin.xml
[2014.01.11 16:25:33 | 000,000,905 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Data aplikací\Mozilla\Firefox\Profiles\nixi07xl.default\searchplugins\yahoo_ff.xml
[2013.12.10 14:30:27 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2013.12.10 14:30:27 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2006.10.26 19:12:16 | 000,016,192 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL
[2008.06.11 21:45:28 | 000,103,792 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\mozilla firefox\plugins\nppdf32.dll
[2012.06.20 17:14:20 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll
========== Chrome ==========
CHR - default_search_provider: Yahoo (Enabled)
CHR - default_search_provider: search_url = http://search.yahoo.com/search?fr=chr-g ... =198484&p={searchTerms}
CHR - default_search_provider: suggest_url = http://ff.search.yahoo.com/gossip?outpu ... n&command={searchTerms},
CHR - Extension: Dokumenty Google = C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Disk Google = C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Vyhled00E1v00E1n00ED Google = C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Shopping Suggestion = C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ejbpjlaagejfakeobljhgplbgklgemll\1.0.0_0\
CHR - Extension: Advanced SystemCare Surfing Protection = C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0\
CHR - Extension: Pen011B017Eenka Google = C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0\
CHR - Extension: Video Player = C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ondgidlbdjiekphnjfcnojdngfakeepm\1.1_0\
CHR - Extension: Gmail = C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
O1 HOSTS File: ([2014.01.11 22:34:52 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\..\Toolbar\ShellBrowser: (&Adresa) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O3 - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Common Files\Java\Java Update\jusched.exe (Oracle Corporation)
O4 - HKU\.DEFAULT..\Run: [Advanced SystemCare 7] C:\Program Files\IObit\Advanced SystemCare 7\ASCTray.exe (IObit)
O4 - HKU\S-1-5-18..\Run: [Advanced SystemCare 7] C:\Program Files\IObit\Advanced SystemCare 7\ASCTray.exe (IObit)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableLockWorkstation = 0
O7 - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: disableregistrytools = 0
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Převést cíl vazby do Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Převést do Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Připojit cíl vazby k existujícímu PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Připojit k existujícímu PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\WINDOWS\system32\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.46.172.36 213.46.172.37
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E2163A14-B7C9-4E40-A57D-8E48FAD1C8CD}: DhcpNameServer = 213.46.172.36 213.46.172.37
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\WINDOWS\system32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\wia {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/webviewhtml {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (logonui.exe) - C:\WINDOWS\System32\logonui.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\WINDOWS\System32\sysdm.cpl (Microsoft Corporation)
O20 - Winlogon\Notify\crypt32chain: DllName - (crypt32.dll) - C:\WINDOWS\System32\crypt32.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cryptnet: DllName - (cryptnet.dll) - C:\WINDOWS\System32\cryptnet.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cscdll: DllName - (cscdll.dll) - C:\WINDOWS\System32\cscdll.dll (Microsoft Corporation)
O20 - Winlogon\Notify\dimsntfy: DllName - (%SystemRoot%\System32\dimsntfy.dll) - C:\WINDOWS\system32\dimsntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O20 - Winlogon\Notify\ScCertProp: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\sclgntfy: DllName - (sclgntfy.dll) - C:\WINDOWS\System32\sclgntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\SensLogn: DllName - (WlNotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\Schedule: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\termsrv: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\WgaLogon: DllName - (WgaLogon.dll) - C:\WINDOWS\System32\WgaLogon.dll (Microsoft Corporation)
O20 - Winlogon\Notify\wlballoon: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll (Microsoft Corporation)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {438755C2-A8BA-11D1-B96B-00A0C90312E1} - Browseui preloader - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Proces mezipaměti kategorií součástí - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O24 - Desktop Components:0 () - http://sfgame.funsite.cz/cz-s4-signature-Fredderico.png
O24 - Desktop Components:1 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msapsspc.dll) - C:\WINDOWS\System32\msapsspc.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (schannel.dll) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (digest.dll) - C:\WINDOWS\System32\digest.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msnsspc.dll) - C:\WINDOWS\System32\msnsspc.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\WINDOWS\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\WINDOWS\System32\wdigest.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2013.05.30 13:49:15 | 000,000,000 | -H-- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
========== Files/Folders - Created Within 14 Days ==========
[2014.01.11 22:59:22 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2014.01.11 22:52:06 | 000,000,000 | --SD | C] -- C:\ComboFix
[2014.01.11 22:33:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2014.01.11 19:18:29 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2014.01.11 19:16:53 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2014.01.11 19:16:53 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2014.01.11 19:16:53 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2014.01.11 19:16:53 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2014.01.11 19:16:42 | 000,000,000 | ---D | C] -- C:\Qoobox
[2014.01.11 19:16:40 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Dominik CZ\Nabídka Start\Programy\Nástroje pro správu
[2014.01.11 19:16:40 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Dominik CZ\Dokumenty\Filmy
[2014.01.11 19:16:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\erdnt
[2014.01.11 18:42:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERUNT
[2014.01.11 17:51:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dominik CZ\Data aplikací\Malwarebytes
[2014.01.11 17:50:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2014.01.11 14:00:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\winrm
[2014.01.11 14:00:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\IObit Uninstaller
[2014.01.11 14:00:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\ProductData
[2014.01.11 14:00:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Advanced SystemCare 7
[2014.01.11 14:00:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
[2014.01.10 18:17:24 | 000,000,000 | ---D | C] -- C:\Program Files\VideoPlayerV3
[2014.01.09 11:14:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\WindowsPowerShell
[2014.01.09 11:14:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\GroupPolicy
[2014.01.09 11:14:08 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$968930Uinstall_KB968930$
[2014.01.09 11:13:03 | 000,024,384 | ---- | C] (IObit) -- C:\WINDOWS\System32\RegistryDefragBootTime.exe
[2014.01.09 10:32:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Data aplikací\IObit
[2014.01.08 21:23:30 | 000,000,000 | ---D | C] -- C:\Program Files\Valve
[2014.01.08 20:53:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dominik CZ\Data aplikací\Apple Computer
[2014.01.08 19:36:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabdka Start
[2014.01.08 19:36:42 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Steam
[2014.01.08 19:36:40 | 000,000,000 | ---D | C] -- C:\Program Files\Steam
[2014.01.08 19:36:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Steam
[2014.01.07 14:47:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\regid.1986-12.com.adobe
[2014.01.07 11:13:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dominik CZ\.android
[2014.01.07 11:13:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\cache
[2014.01.07 11:12:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\genienext
[2014.01.07 11:12:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Mobogenie
[2014.01.04 16:28:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\greatsuaVeer
[2014.01.04 16:27:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\67dabb73536b8b2b
[2014.01.04 16:27:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Torch
[2014.01.04 16:26:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\InstallMate
[2014.01.02 16:46:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\log
[2014.01.02 16:46:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\WPM
[2013.12.30 14:35:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Battle.net
[2013.12.30 14:33:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Blizzard Entertainment
[2013.12.30 14:32:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Blizzard Entertainment
[2013.12.30 02:27:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Blizzard
[2013.12.30 00:48:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 14 Days ==========
[2014.01.11 23:04:31 | 000,000,948 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2014.01.11 22:56:05 | 000,000,364 | -H-- | M] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
[2014.01.11 22:56:01 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2014.01.11 22:55:39 | 000,000,278 | ---- | M] () -- C:\WINDOWS\tasks\ASC7_PerformanceMonitor.job
[2014.01.11 22:55:26 | 000,000,944 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2014.01.11 22:55:11 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2014.01.11 22:34:52 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2014.01.11 21:31:00 | 000,000,914 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2014.01.11 19:18:40 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2014.01.10 21:52:00 | 000,002,283 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Skype.lnk
[2014.01.10 20:28:46 | 000,346,332 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Plocha\photo.htm
[2014.01.09 11:22:04 | 000,556,592 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2014.01.09 11:22:04 | 000,549,528 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2014.01.09 11:22:04 | 000,120,950 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2014.01.09 11:22:04 | 000,103,148 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2014.01.08 21:28:28 | 000,001,609 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Plocha\Counter Strike 1.6 Non Steam.lnk
[2014.01.08 21:02:59 | 000,239,656 | ---- | M] (Broadcom Corporation) -- C:\WINDOWS\System32\drivers\b57xp32.sys
[2014.01.08 21:02:59 | 000,239,656 | ---- | M] (Broadcom Corporation) -- C:\WINDOWS\System32\dllcache\b57xp32.sys
[2014.01.08 21:01:09 | 000,001,837 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
[2014.01.08 21:01:09 | 000,000,748 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Mozilla Firefox.lnk
[2014.01.08 19:49:01 | 000,000,212 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Plocha\Counter-Strike.url
[2014.01.08 19:36:43 | 000,000,664 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Steam.lnk
[2014.01.07 18:25:14 | 000,147,316 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Plocha\856612_1408034339435100_1323389124_o.jpg
[2014.01.07 18:24:18 | 000,016,384 | -H-- | M] () -- C:\Documents and Settings\Dominik CZ\Plocha\photothumb.db
[2014.01.07 15:04:26 | 000,000,132 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Data aplikací\Adobe BMP Format CS5 Prefs
[2014.01.06 21:21:26 | 000,048,953 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Plocha\1608645_687718364602196_60233334_n.jpg
[2014.01.05 19:41:13 | 000,004,051 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Plocha\a.cfg
[2014.01.04 22:09:58 | 000,000,297 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Plocha\k.cfg
[2014.01.04 12:06:59 | 000,005,120 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2014.01.04 10:41:37 | 000,069,277 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Plocha\1482093_685024911519221_1723648544_n.jpg
[2014.01.02 22:02:17 | 000,002,369 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Plocha\1.cfg
[2014.01.01 16:09:49 | 000,002,025 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Plocha\cb6203642ad86360.zip
[2013.12.30 02:40:36 | 000,271,784 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2014.01.11 19:18:40 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2014.01.11 19:18:31 | 000,261,312 | RHS- | C] () -- C:\cmldr
[2014.01.11 19:16:53 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2014.01.11 19:16:53 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2014.01.11 19:16:53 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2014.01.11 19:16:53 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2014.01.11 19:16:53 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2014.01.11 16:06:31 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\drivers\sp_rsdrv2.sys
[2014.01.10 20:28:45 | 000,346,332 | ---- | C] () -- C:\Documents and Settings\Dominik CZ\Plocha\photo.htm
[2014.01.09 11:03:59 | 000,000,278 | ---- | C] () -- C:\WINDOWS\tasks\ASC7_PerformanceMonitor.job
[2014.01.08 21:28:28 | 000,001,609 | ---- | C] () -- C:\Documents and Settings\Dominik CZ\Plocha\Counter Strike 1.6 Non Steam.lnk
[2014.01.08 19:49:01 | 000,000,212 | ---- | C] () -- C:\Documents and Settings\Dominik CZ\Plocha\Counter-Strike.url
[2014.01.08 19:36:43 | 000,000,664 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Steam.lnk
[2014.01.07 18:22:33 | 000,147,316 | ---- | C] () -- C:\Documents and Settings\Dominik CZ\Plocha\856612_1408034339435100_1323389124_o.jpg
[2014.01.07 15:04:26 | 000,000,132 | ---- | C] () -- C:\Documents and Settings\Dominik CZ\Data aplikací\Adobe BMP Format CS5 Prefs
[2014.01.06 21:21:26 | 000,048,953 | ---- | C] () -- C:\Documents and Settings\Dominik CZ\Plocha\1608645_687718364602196_60233334_n.jpg
[2014.01.04 12:06:57 | 000,005,120 | ---- | C] () -- C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2014.01.04 10:41:37 | 000,069,277 | ---- | C] () -- C:\Documents and Settings\Dominik CZ\Plocha\1482093_685024911519221_1723648544_n.jpg
[2014.01.02 22:04:10 | 000,000,297 | ---- | C] () -- C:\Documents and Settings\Dominik CZ\Plocha\k.cfg
[2014.01.02 22:02:17 | 000,002,369 | ---- | C] () -- C:\Documents and Settings\Dominik CZ\Plocha\1.cfg
[2014.01.02 18:49:52 | 000,004,051 | ---- | C] () -- C:\Documents and Settings\Dominik CZ\Plocha\a.cfg
[2014.01.01 16:09:46 | 000,002,025 | ---- | C] () -- C:\Documents and Settings\Dominik CZ\Plocha\cb6203642ad86360.zip
[2013.10.15 19:31:58 | 000,143,360 | ---- | C] () -- C:\Documents and Settings\Dominik CZ\Data aplikací\chrtmp
[2013.09.15 15:33:57 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2013.07.01 21:51:33 | 000,001,169 | ---- | C] () -- C:\WINDOWS\FOE2.ini
[2013.06.28 10:08:20 | 000,000,175 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswVmm.sys.sum
[2013.06.26 19:37:12 | 000,000,175 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswSP.sys.sum
[2013.06.26 19:37:12 | 000,000,175 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswSnx.sys.sum
[2013.05.30 16:52:04 | 000,175,176 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswVmm.sys
[2013.05.30 16:52:03 | 000,049,376 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswRvrt.sys
[2013.05.30 15:47:22 | 000,650,752 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2013.05.30 15:47:22 | 000,243,200 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2013.05.30 15:47:22 | 000,216,064 | ---- | C] ( ) -- C:\WINDOWS\System32\lagarith.dll
[2013.05.30 15:47:21 | 000,178,688 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2013.05.30 15:47:18 | 000,112,640 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2013.05.30 15:34:34 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2013.05.30 15:32:37 | 000,271,784 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2013.05.30 15:00:38 | 001,498,560 | ---- | C] () -- C:\WINDOWS\System32\igkrng400.bin
[2013.05.30 14:29:29 | 000,000,206 | ---- | C] () -- C:\WINDOWS\hbcikrnl.ini
[2013.05.30 13:53:05 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2013.05.30 13:50:38 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2013.05.30 13:45:01 | 000,021,812 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
========== ZeroAccess Check ==========
[2013.06.06 15:25:23 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2012.05.22 18:15:52 | 001,510,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2012.05.22 18:10:20 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2008.04.14 09:52:06 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ==========
[2013.10.01 16:45:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\4shared Desktop
[2014.01.04 16:28:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\67dabb73536b8b2b
[2013.05.30 15:51:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ACD Systems
[2013.05.30 16:40:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ashampoo
[2013.05.30 16:51:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
[2013.05.30 20:42:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Babylon
[2013.12.30 14:35:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Battle.net
[2013.08.20 19:01:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Caphyon
[2013.08.26 19:38:05 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\Common Files
[2013.06.06 15:23:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Electronic Arts
[2014.01.11 18:31:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\eSafe
[2014.01.08 20:46:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\greatsuaVeer
[2013.11.10 15:24:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ICQ
[2013.07.12 17:54:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Installations
[2014.01.04 16:26:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\InstallMate
[2014.01.11 14:00:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\IObit
[2013.12.07 13:40:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\LogMeIn
[2014.01.11 03:27:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PMB Files
[2014.01.11 14:00:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ProductData
[2013.12.26 16:04:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Razer
[2014.01.07 14:47:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\regid.1986-12.com.adobe
[2013.05.30 20:47:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2013.08.26 19:40:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TuneUp Software
[2013.08.09 16:07:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\WEBZEN
[2014.01.11 18:31:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Wincert
[2014.01.11 18:33:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\WPM
[2014.01.11 14:00:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
[2013.08.26 19:38:06 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Data aplikací\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
[2013.05.30 17:38:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\ACD Systems
[2013.05.30 16:46:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\Ashampoo
[2013.08.12 21:11:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\DownLite
[2013.05.30 20:44:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\EurekaLog
[2013.05.30 14:23:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\GHISLER
[2014.01.11 14:00:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\IObit
[2013.06.13 14:39:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\LolClient
[2013.06.06 15:54:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\Need for Speed World
[2013.06.08 19:16:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\PhotoScape
[2013.12.17 10:26:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\Riot Games
[2014.01.11 14:20:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\Seznam.cz
[2014.01.01 23:58:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\TS3Client
[2013.08.26 19:39:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\TuneUp Software
[2013.06.02 01:10:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\Unity
[2013.05.30 20:42:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\URSoft
[2014.01.11 14:00:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\uTorrent
[2013.05.30 20:35:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dominik CZ\Data aplikací\Wargaming.net
[2013.11.10 15:24:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\{DCD48218-E972-4d0c-9E5F-43462BC13E3B}
[2014.01.09 10:32:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Data aplikací\IObit
========== Purity Check ==========
========== Alternate Data Streams ==========
@Alternate Data Stream - 178 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:1CE11B51
< End of report >
Re: Prosím o kontrolu logu
Extras.Txt:
OTL Extras logfile created on: 11.1.2014 23:03:17 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Dominik CZ\Dokumenty\Downloads
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1,99 Gb Total Physical Memory | 1,32 Gb Available Physical Memory | 66,41% Memory free
3,84 Gb Paging File | 3,30 Gb Available in Paging File | 85,88% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 48,83 Gb Total Space | 20,53 Gb Free Space | 42,04% Space Free | Partition Type: NTFS
Drive E: | 249,26 Gb Total Space | 238,60 Gb Free Space | 95,72% Space Free | Partition Type: NTFS
Computer Name: DOMINIK | User Name: Dominik CZ | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 14 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
[HKEY_USERS\S-1-5-21-1078081533-1450960922-1417001333-1003\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [ACDSee Pro 3.Manage] -- "C:\Program Files\ACD Systems\ACDSee Pro\3.0\ACDSeeQVPro3.exe" "%1" (ACD Systems International Inc.)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
"5985:TCP" = 5985:TCP:*:Disabled:Vzdálená správa systému Windows
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Program Files\Winamp\winamp.exe" = C:\Program Files\Winamp\winamp.exe:*:Enabled:Winamp -- (Nullsoft, Inc.)
"C:\Program Files\Pando Networks\Media Booster\PMB.exe" = C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()
"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)
"C:\Documents and Settings\Dominik CZ\Data aplikací\uTorrent\uTorrent.exe" = C:\Documents and Settings\Dominik CZ\Data aplikací\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent Inc.)
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.1040\Agent.exe" = C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.1040\Agent.exe:*:Enabled:Battle.net Update Agent -- (Blizzard Entertainment)
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.2380\Agent.exe" = C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.2380\Agent.exe:*:Enabled:Battle.net Update Agent -- (Blizzard Entertainment)
"C:\Program Files\Steam\SteamApps\common\Half-Life\hl.exe" = C:\Program Files\Steam\SteamApps\common\Half-Life\hl.exe:*:Enabled:Counter-Strike -- (Valve)
"C:\Program Files\Steam\Steam.exe" = C:\Program Files\Steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation)
"C:\Program Files\Valve\hl.exe" = C:\Program Files\Valve\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
"C:\Program Files\PANDORA.TV\PanService\PanProcess.exe" = C:\Program Files\PANDORA.TV\PanService\PanProcess.exe:*:Enabled:PanProcess -- (PandoraTV)
"C:\Program Files\PANDORA.TV\PanService\PandoraService.exe" = C:\Program Files\PANDORA.TV\PanService\PandoraService.exe:*:Enabled:PandoraService -- (Pandora.TV)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0642A70A-F852-4939-8228-27ED4E3B0892}" = IObit Apps Toolbar v8.6
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{13B792AA-C078-43A4-8A3A-8B12D629940D}" = Counter-Strike 1.6
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1B280FAF-AE10-4E31-A41A-DB3917D651DC}" = ACDSee Pro 3
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83217045FF}" = Java 7 Update 45
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{372B31CF-77FB-4E29-860C-A0EA2985AB7F}" = O2Micro Flash Memory Card Reader Driver (x86)
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.11
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{83258E90-1F76-4E13-9F60-A0F8ED41E76F}" = PC Connectivity Solution
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{92606477-9366-4D3B-8AE3-6BE4B29727AB}" = League of Legends
"{95723791-2C44-454B-9220-C65D47D70E9C}" = WEBZEN Browser Extension
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{99AA7E28-EE0F-4CB2-8C5B-3DD8FF42DD29}" = OZ776 SCR Driver V1.1.4.204
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9ABFB92D-93DA-49EE-8ABF-F8195DE45CA9}" = Counter-Strike 1.6
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A2DE62D8-EF1B-36CB-B461-B1E221ED8608}" = Microsoft .NET Framework 4 Extended CSY Language Pack
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}" = SigmaTel Audio
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-1029-4770-7760-000000000004}" = Adobe Acrobat 9 Pro - Czech, Hungarian, Polish, Slovak
"{AC76BA86-1029-4770-7760-000000000004}{AC76BA86-1029-4770-7760-000000000004}" = Adobe Acrobat 9 Pro - Czech, Hungarian, Polish, Slovak
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C3F19A5F-35A8-4FDB-A6ED-0F4CE398DA48}" = Nokia Connectivity Cable Driver
"{C99C0593-3B48-41D9-B42F-6E035B320449}" = Broadcom Management Programs
"{CA41BB14-E67B-1653-C57B-5CA99418A866}" = greatsuaVeer
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D3B3B9B2-FE73-44CB-8C0A-F737D92F991B}" = Broadcom Gigabit Integrated Controller
"4F6D5E84-5826-4394-9F40-3A9A19165651_is1" = Pandora Service
"504244733D18C8F63FF584AEB290E3904E791693" = Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"7-Zip" = 7-Zip 9.20
"ACDSee Pro 3 Build 475" = ACDSee Pro 3 Build 475 - odinstalovat češtinu
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Advanced SystemCare 7_is1" = Advanced SystemCare 7
"Ashampoo Burning Studio 11_is1" = Ashampoo Burning Studio 11 v.11.0.2
"avast" = avast! Free Antivirus
"Better Surf Plus" = Better Surf Plus
"Čeština pro YourUninstaller 7.5.2012.12" = Čeština pro YourUninstaller 7.5.2012.12
"DProtect" = DProtect
"ENTERPRISE" = Microsoft Office Enterprise 2007
"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
"flash-Enhancer" = flash-Enhancer
"Google Chrome" = Google Chrome
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"hosts" = hosts
"ie8" = Windows Internet Explorer 8
"InstallShield_{99AA7E28-EE0F-4CB2-8C5B-3DD8FF42DD29}" = OZ776 SCR Driver V1.1.4.204
"IObit Malware Fighter_is1" = IObit Malware Fighter
"IObit Surfing Protection_is1" = Surfing Protection
"IObitUninstall" = IObit Uninstaller
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 9.9.0
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended CSY Language Pack" = Microsoft .NET Framework 4 Extended CSY Language Pack
"Mozilla Firefox 25.0.1 (x86 en-US)" = Mozilla Firefox 25.0.1 (x86 en-US)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"PSPad editor_is1" = PSPad editor
"ST6UNST #1" = NFS Underground 2 Mega Trainer
"Steam App 10" = Counter-Strike
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"Totalcmd" = Total Commander (Remove or Repair)
"uTorrent" = µTorrent
"Video Player" = Video Player
"Winamp" = Winamp
"WinRAR archiver" = WinRAR archiver
"YU2010_is1" = Your Uninstaller! 7
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-1078081533-1450960922-1417001333-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"SeznamInstall" = Seznam Software
"UnityWebPlayer" = Unity Web Player
"uTorrent" = µTorrent
"Winamp Detect" = Winamp Detector Plug-in
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 18.12.2013 16:09:35 | Computer Name = DOMINIK | Source = .NET Runtime 2.0 Error Reporting | ID = 5000
Description = EventType clr20r3, P1 fivestories.exe, P2 1.0.0.0, P3 525e5eec, P4
fivechner, P5 1.0.0.0, P6 525e5eec, P7 f, P8 c6, P9 system.invalidoperationexception,
P10 NIL.
Error - 18.12.2013 16:10:47 | Computer Name = DOMINIK | Source = .NET Runtime 2.0 Error Reporting | ID = 5000
Description = EventType clr20r3, P1 fivestories.exe, P2 1.0.0.0, P3 525e5eec, P4
fivechner, P5 1.0.0.0, P6 525e5eec, P7 f, P8 c6, P9 system.invalidoperationexception,
P10 NIL.
Error - 19.12.2013 12:22:09 | Computer Name = DOMINIK | Source = Application Error | ID = 1000
Description = Chybující aplikace league of legends.exe, verze 3.15.0.255, chybující
modul league of legends.exe, verze 3.15.0.255, adresa chyby 0x0042c6b0.
Error - 22.12.2013 11:58:15 | Computer Name = DOMINIK | Source = Application Error | ID = 1000
Description = Chybující aplikace league of legends.exe, verze 3.15.0.255, chybující
modul league of legends.exe, verze 3.15.0.255, adresa chyby 0x0042c6b0.
Error - 22.12.2013 15:24:59 | Computer Name = DOMINIK | Source = crypt32 | ID = 131080
Description = Načtení automatické aktualizace pořadového čísla kořenového seznamu
jiného výrobce z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>
se nezdařilo. Chyba: Daná operace se vrátila, protože vypršel časový limit.
Error - 23.12.2013 18:25:55 | Computer Name = DOMINIK | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace ts3client_win32.exe, verze 3.0.11.0, zablokovaný
modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 24.12.2013 20:18:13 | Computer Name = DOMINIK | Source = Application Error | ID = 1000
Description = Chybující aplikace league of legends.exe, verze 3.15.0.255, chybující
modul league of legends.exe, verze 3.15.0.255, adresa chyby 0x0042c6b0.
Error - 26.12.2013 6:32:14 | Computer Name = DOMINIK | Source = Application Error | ID = 1000
Description = Chybující aplikace league of legends.exe, verze 3.15.0.255, chybující
modul league of legends.exe, verze 3.15.0.255, adresa chyby 0x0042c6b0.
Error - 26.12.2013 12:09:16 | Computer Name = DOMINIK | Source = PandoraService.exe | ID = 0
Description =
Error - 26.12.2013 16:06:43 | Computer Name = DOMINIK | Source = Application Error | ID = 1000
Description = Chybující aplikace tclient.exe, verze 3.0.0.1, chybující modul , verze
0.0.0.0, adresa chyby 0x00000000.
[ System Events ]
Error - 11.1.2014 17:28:08 | Computer Name = DOMINIK | Source = Service Control Manager | ID = 7034
Description = Služba Smart Card byla neočekávaně ukončena. Tento stav nastal již
1krát.
Error - 11.1.2014 17:28:08 | Computer Name = DOMINIK | Source = Service Control Manager | ID = 7034
Description = Služba Adaptér výkonu služby WMI byla neočekávaně ukončena. Tento
stav nastal již 1krát.
Error - 11.1.2014 17:28:08 | Computer Name = DOMINIK | Source = Service Control Manager | ID = 7034
Description = Služba Služba brány aplikačního rozhraní byla neočekávaně ukončena.
Tento stav nastal již 1krát.
Error - 11.1.2014 17:28:08 | Computer Name = DOMINIK | Source = Service Control Manager | ID = 7034
Description = Služba SigmaTel Audio Service byla neočekávaně ukončena. Tento stav
nastal již 1krát.
Error - 11.1.2014 17:28:08 | Computer Name = DOMINIK | Source = Service Control Manager | ID = 7034
Description = Služba IMF Service byla neočekávaně ukončena. Tento stav nastal již
1krát.
Error - 11.1.2014 17:28:08 | Computer Name = DOMINIK | Source = Service Control Manager | ID = 7034
Description = Služba Java Quick Starter byla neočekávaně ukončena. Tento stav nastal
již 1krát.
Error - 11.1.2014 17:28:08 | Computer Name = DOMINIK | Source = Service Control Manager | ID = 7034
Description = Služba PandoraService byla neočekávaně ukončena. Tento stav nastal
již 1krát.
Error - 11.1.2014 17:28:08 | Computer Name = DOMINIK | Source = Service Control Manager | ID = 7034
Description = Služba Advanced SystemCare Service 7 byla neočekávaně ukončena. Tento
stav nastal již 1krát.
Error - 11.1.2014 17:35:54 | Computer Name = DOMINIK | Source = Service Control Manager | ID = 7034
Description = Služba LiveUpdate byla neočekávaně ukončena. Tento stav nastal již
1krát.
Error - 11.1.2014 17:57:10 | Computer Name = DOMINIK | Source = Service Control Manager | ID = 7034
Description = Služba LiveUpdate byla neočekávaně ukončena. Tento stav nastal již
1krát.
< End of report >
OTL Extras logfile created on: 11.1.2014 23:03:17 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Dominik CZ\Dokumenty\Downloads
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1,99 Gb Total Physical Memory | 1,32 Gb Available Physical Memory | 66,41% Memory free
3,84 Gb Paging File | 3,30 Gb Available in Paging File | 85,88% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 48,83 Gb Total Space | 20,53 Gb Free Space | 42,04% Space Free | Partition Type: NTFS
Drive E: | 249,26 Gb Total Space | 238,60 Gb Free Space | 95,72% Space Free | Partition Type: NTFS
Computer Name: DOMINIK | User Name: Dominik CZ | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 14 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
[HKEY_USERS\S-1-5-21-1078081533-1450960922-1417001333-1003\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [ACDSee Pro 3.Manage] -- "C:\Program Files\ACD Systems\ACDSee Pro\3.0\ACDSeeQVPro3.exe" "%1" (ACD Systems International Inc.)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
"5985:TCP" = 5985:TCP:*:Disabled:Vzdálená správa systému Windows
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Program Files\Winamp\winamp.exe" = C:\Program Files\Winamp\winamp.exe:*:Enabled:Winamp -- (Nullsoft, Inc.)
"C:\Program Files\Pando Networks\Media Booster\PMB.exe" = C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()
"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)
"C:\Documents and Settings\Dominik CZ\Data aplikací\uTorrent\uTorrent.exe" = C:\Documents and Settings\Dominik CZ\Data aplikací\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent Inc.)
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.1040\Agent.exe" = C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.1040\Agent.exe:*:Enabled:Battle.net Update Agent -- (Blizzard Entertainment)
"C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.2380\Agent.exe" = C:\Documents and Settings\All Users\Data aplikací\Battle.net\Agent\Agent.2380\Agent.exe:*:Enabled:Battle.net Update Agent -- (Blizzard Entertainment)
"C:\Program Files\Steam\SteamApps\common\Half-Life\hl.exe" = C:\Program Files\Steam\SteamApps\common\Half-Life\hl.exe:*:Enabled:Counter-Strike -- (Valve)
"C:\Program Files\Steam\Steam.exe" = C:\Program Files\Steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation)
"C:\Program Files\Valve\hl.exe" = C:\Program Files\Valve\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
"C:\Program Files\PANDORA.TV\PanService\PanProcess.exe" = C:\Program Files\PANDORA.TV\PanService\PanProcess.exe:*:Enabled:PanProcess -- (PandoraTV)
"C:\Program Files\PANDORA.TV\PanService\PandoraService.exe" = C:\Program Files\PANDORA.TV\PanService\PandoraService.exe:*:Enabled:PandoraService -- (Pandora.TV)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0642A70A-F852-4939-8228-27ED4E3B0892}" = IObit Apps Toolbar v8.6
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{13B792AA-C078-43A4-8A3A-8B12D629940D}" = Counter-Strike 1.6
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1B280FAF-AE10-4E31-A41A-DB3917D651DC}" = ACDSee Pro 3
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83217045FF}" = Java 7 Update 45
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{372B31CF-77FB-4E29-860C-A0EA2985AB7F}" = O2Micro Flash Memory Card Reader Driver (x86)
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.11
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{83258E90-1F76-4E13-9F60-A0F8ED41E76F}" = PC Connectivity Solution
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{92606477-9366-4D3B-8AE3-6BE4B29727AB}" = League of Legends
"{95723791-2C44-454B-9220-C65D47D70E9C}" = WEBZEN Browser Extension
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{99AA7E28-EE0F-4CB2-8C5B-3DD8FF42DD29}" = OZ776 SCR Driver V1.1.4.204
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9ABFB92D-93DA-49EE-8ABF-F8195DE45CA9}" = Counter-Strike 1.6
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A2DE62D8-EF1B-36CB-B461-B1E221ED8608}" = Microsoft .NET Framework 4 Extended CSY Language Pack
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}" = SigmaTel Audio
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-1029-4770-7760-000000000004}" = Adobe Acrobat 9 Pro - Czech, Hungarian, Polish, Slovak
"{AC76BA86-1029-4770-7760-000000000004}{AC76BA86-1029-4770-7760-000000000004}" = Adobe Acrobat 9 Pro - Czech, Hungarian, Polish, Slovak
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C3F19A5F-35A8-4FDB-A6ED-0F4CE398DA48}" = Nokia Connectivity Cable Driver
"{C99C0593-3B48-41D9-B42F-6E035B320449}" = Broadcom Management Programs
"{CA41BB14-E67B-1653-C57B-5CA99418A866}" = greatsuaVeer
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D3B3B9B2-FE73-44CB-8C0A-F737D92F991B}" = Broadcom Gigabit Integrated Controller
"4F6D5E84-5826-4394-9F40-3A9A19165651_is1" = Pandora Service
"504244733D18C8F63FF584AEB290E3904E791693" = Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"7-Zip" = 7-Zip 9.20
"ACDSee Pro 3 Build 475" = ACDSee Pro 3 Build 475 - odinstalovat češtinu
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Advanced SystemCare 7_is1" = Advanced SystemCare 7
"Ashampoo Burning Studio 11_is1" = Ashampoo Burning Studio 11 v.11.0.2
"avast" = avast! Free Antivirus
"Better Surf Plus" = Better Surf Plus
"Čeština pro YourUninstaller 7.5.2012.12" = Čeština pro YourUninstaller 7.5.2012.12
"DProtect" = DProtect
"ENTERPRISE" = Microsoft Office Enterprise 2007
"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
"flash-Enhancer" = flash-Enhancer
"Google Chrome" = Google Chrome
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"hosts" = hosts
"ie8" = Windows Internet Explorer 8
"InstallShield_{99AA7E28-EE0F-4CB2-8C5B-3DD8FF42DD29}" = OZ776 SCR Driver V1.1.4.204
"IObit Malware Fighter_is1" = IObit Malware Fighter
"IObit Surfing Protection_is1" = Surfing Protection
"IObitUninstall" = IObit Uninstaller
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 9.9.0
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended CSY Language Pack" = Microsoft .NET Framework 4 Extended CSY Language Pack
"Mozilla Firefox 25.0.1 (x86 en-US)" = Mozilla Firefox 25.0.1 (x86 en-US)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"PSPad editor_is1" = PSPad editor
"ST6UNST #1" = NFS Underground 2 Mega Trainer
"Steam App 10" = Counter-Strike
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"Totalcmd" = Total Commander (Remove or Repair)
"uTorrent" = µTorrent
"Video Player" = Video Player
"Winamp" = Winamp
"WinRAR archiver" = WinRAR archiver
"YU2010_is1" = Your Uninstaller! 7
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-1078081533-1450960922-1417001333-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"SeznamInstall" = Seznam Software
"UnityWebPlayer" = Unity Web Player
"uTorrent" = µTorrent
"Winamp Detect" = Winamp Detector Plug-in
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 18.12.2013 16:09:35 | Computer Name = DOMINIK | Source = .NET Runtime 2.0 Error Reporting | ID = 5000
Description = EventType clr20r3, P1 fivestories.exe, P2 1.0.0.0, P3 525e5eec, P4
fivechner, P5 1.0.0.0, P6 525e5eec, P7 f, P8 c6, P9 system.invalidoperationexception,
P10 NIL.
Error - 18.12.2013 16:10:47 | Computer Name = DOMINIK | Source = .NET Runtime 2.0 Error Reporting | ID = 5000
Description = EventType clr20r3, P1 fivestories.exe, P2 1.0.0.0, P3 525e5eec, P4
fivechner, P5 1.0.0.0, P6 525e5eec, P7 f, P8 c6, P9 system.invalidoperationexception,
P10 NIL.
Error - 19.12.2013 12:22:09 | Computer Name = DOMINIK | Source = Application Error | ID = 1000
Description = Chybující aplikace league of legends.exe, verze 3.15.0.255, chybující
modul league of legends.exe, verze 3.15.0.255, adresa chyby 0x0042c6b0.
Error - 22.12.2013 11:58:15 | Computer Name = DOMINIK | Source = Application Error | ID = 1000
Description = Chybující aplikace league of legends.exe, verze 3.15.0.255, chybující
modul league of legends.exe, verze 3.15.0.255, adresa chyby 0x0042c6b0.
Error - 22.12.2013 15:24:59 | Computer Name = DOMINIK | Source = crypt32 | ID = 131080
Description = Načtení automatické aktualizace pořadového čísla kořenového seznamu
jiného výrobce z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>
se nezdařilo. Chyba: Daná operace se vrátila, protože vypršel časový limit.
Error - 23.12.2013 18:25:55 | Computer Name = DOMINIK | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace ts3client_win32.exe, verze 3.0.11.0, zablokovaný
modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.
Error - 24.12.2013 20:18:13 | Computer Name = DOMINIK | Source = Application Error | ID = 1000
Description = Chybující aplikace league of legends.exe, verze 3.15.0.255, chybující
modul league of legends.exe, verze 3.15.0.255, adresa chyby 0x0042c6b0.
Error - 26.12.2013 6:32:14 | Computer Name = DOMINIK | Source = Application Error | ID = 1000
Description = Chybující aplikace league of legends.exe, verze 3.15.0.255, chybující
modul league of legends.exe, verze 3.15.0.255, adresa chyby 0x0042c6b0.
Error - 26.12.2013 12:09:16 | Computer Name = DOMINIK | Source = PandoraService.exe | ID = 0
Description =
Error - 26.12.2013 16:06:43 | Computer Name = DOMINIK | Source = Application Error | ID = 1000
Description = Chybující aplikace tclient.exe, verze 3.0.0.1, chybující modul , verze
0.0.0.0, adresa chyby 0x00000000.
[ System Events ]
Error - 11.1.2014 17:28:08 | Computer Name = DOMINIK | Source = Service Control Manager | ID = 7034
Description = Služba Smart Card byla neočekávaně ukončena. Tento stav nastal již
1krát.
Error - 11.1.2014 17:28:08 | Computer Name = DOMINIK | Source = Service Control Manager | ID = 7034
Description = Služba Adaptér výkonu služby WMI byla neočekávaně ukončena. Tento
stav nastal již 1krát.
Error - 11.1.2014 17:28:08 | Computer Name = DOMINIK | Source = Service Control Manager | ID = 7034
Description = Služba Služba brány aplikačního rozhraní byla neočekávaně ukončena.
Tento stav nastal již 1krát.
Error - 11.1.2014 17:28:08 | Computer Name = DOMINIK | Source = Service Control Manager | ID = 7034
Description = Služba SigmaTel Audio Service byla neočekávaně ukončena. Tento stav
nastal již 1krát.
Error - 11.1.2014 17:28:08 | Computer Name = DOMINIK | Source = Service Control Manager | ID = 7034
Description = Služba IMF Service byla neočekávaně ukončena. Tento stav nastal již
1krát.
Error - 11.1.2014 17:28:08 | Computer Name = DOMINIK | Source = Service Control Manager | ID = 7034
Description = Služba Java Quick Starter byla neočekávaně ukončena. Tento stav nastal
již 1krát.
Error - 11.1.2014 17:28:08 | Computer Name = DOMINIK | Source = Service Control Manager | ID = 7034
Description = Služba PandoraService byla neočekávaně ukončena. Tento stav nastal
již 1krát.
Error - 11.1.2014 17:28:08 | Computer Name = DOMINIK | Source = Service Control Manager | ID = 7034
Description = Služba Advanced SystemCare Service 7 byla neočekávaně ukončena. Tento
stav nastal již 1krát.
Error - 11.1.2014 17:35:54 | Computer Name = DOMINIK | Source = Service Control Manager | ID = 7034
Description = Služba LiveUpdate byla neočekávaně ukončena. Tento stav nastal již
1krát.
Error - 11.1.2014 17:57:10 | Computer Name = DOMINIK | Source = Service Control Manager | ID = 7034
Description = Služba LiveUpdate byla neočekávaně ukončena. Tento stav nastal již
1krát.
< End of report >
-
Damned
- Tvůrce článků
-
Master Level 9
- Příspěvky: 8353
- Registrován: prosinec 06
- Bydliště: Rokycany
- Pohlaví:
- Stav:
Offline
- Kontakt:
Re: Prosím o kontrolu logu
Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/Opravy do okénka vlož následující text, zobrazený zeleně:
Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.
Pod Vlastní skenování/Opravy do okénka vlož následující text, zobrazený zeleně:
Kód: Vybrat vše
:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (LiveUpdateSvc) -- C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe (IObit)
SRV - (LiveUpdateSvc) -- C:\Program Files\Skype\Updater\Updater.exe (Skype Technologies)
DRV - (VcommMgr) -- System32\Drivers\VcommMgr.sys File not found
DRV - (VComm) -- system32\DRIVERS\VComm.sys File not found
DRV - (catchme) -- C:\ComboFix\catchme.sys File not found
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://search.delta-homes.com/web/?type ... D406813&q={searchTerms}
IE - HKU\S-1-5-21-1078081533-1450960922-1417001333-1003\..\SearchScopes\{B1B05722-031D-4ACC-AC37-2DEA0530AF0D}: "URL" = http://search.yahoo.com/search?fr=chr-g ... =198484&p={searchTerms}
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@lightspark.github.com/Lightspark;version=1: C:\Program Files\Lightspark 0.5.3-git\nplightsparkplugin.dll File not found
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\xz123@ya456.com: C:\Program Files\BetterSurf\ff
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\12x3q@3244516.com: C:\Program Files\Better-Surf\ff
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\ext@bettersurfplus.com: C:\Program Files\BetterSurf\BetterSurfPlus\ff
[2013.11.10 15:24:08 | 000,000,168 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Data aplikací\Mozilla\Firefox\Profiles\nixi07xl.default\searchplugins\icqplugin.gif
[2013.11.10 15:24:08 | 000,000,618 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Data aplikací\Mozilla\Firefox\Profiles\nixi07xl.default\searchplugins\icqplugin.src
[2014.01.10 23:27:00 | 000,001,056 | ---- | M] () -- C:\Documents and Settings\Dominik CZ\Data aplikací\Mozilla\Firefox\Profiles\nixi07xl.default\searchplugins\icqplugin.xml
CHR - Extension: Shopping Suggestion = C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ejbpjlaagejfakeobljhgplbgklgemll\1.0.0_0\
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No CLSID value found.
@Alternate Data Stream - 178 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:1CE11B51
:Services
AdobeFlashPlayerUpdateSvc
LiveUpdateSvc
LiveUpdateSvc
:Files
C:\Documents and Settings\All Users\Data aplikací\WPM
C:\ComboFix
C:\WINDOWS\SWREG.exe
C:\WINDOWS\SWSC.exe
C:\WINDOWS\SWXCACLS.exe
C:\WINDOWS\NIRCMD.exe
C:\WINDOWS\PEV.exe
C:\WINDOWS\MBR.exe
C:\WINDOWS\sed.exe
C:\WINDOWS\grep.exe
C:\WINDOWS\zip.exe
C:\WINDOWS\System32\emptyregdb.dat
C:\Documents and Settings\All Users\Data aplikací\Babylon
C:\Documents and Settings\All Users\Data aplikací\greatsuaVeer
C:\Documents and Settings\All Users\Data aplikací\InstallMate
C:\Qoobox
C:\WINDOWS\System32\d3d9caps.dat
C:\WINDOWS\$968930Uinstall_KB968930$
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\genienext
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Mobogenie
C:\Documents and Settings\All Users\Data aplikací\greatsuaVeer
C:\Documents and Settings\All Users\Data aplikací\67dabb73536b8b2b
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Torch
C:\Documents and Settings\All Users\Data aplikací\InstallMate
C:\WINDOWS\System32\log
C:\Program Files\BetterSurf
C:\Program Files\Google\Update
C:\WINDOWS\*.tmp
C:\WINDOWS\System32\*.tmp
C:\WINDOWS\system32\*.tmp.dll
C:\WINDOWS\tasks\SA.DAT
C:\WINDOWS\system32\SET*.tmp
C:\Recycler
C:\$RECYCLE.BIN
C:\RECYCLER
C:\Windows\tasks\*.job
:Reg
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0642A70A-F852-4939-8228-27ED4E3B0892}" =-
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" =-
"Better Surf Plus" =-
:Commands
[purity]
[emptytemp]
[emptyflash]
[start explorer]
[Reboot]Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.
Nic není nemožné, proto tam, kde jsme s rozumem v koncích, neváháme použít kladivo.
Chceš-li vědět, co je nového, podívej se do starých knih.
Damnedovy češtiny - překlady programů pro údržbu PC
HiJackThis 2+návod FCleaner+čeština Wise Registry Cleaner
Chceš-li vědět, co je nového, podívej se do starých knih.
Damnedovy češtiny - překlady programů pro údržbu PC
HiJackThis 2+návod FCleaner+čeština Wise Registry Cleaner
Re: Prosím o kontrolu logu
Hotovo :
All processes killed
========== OTL ==========
No active process named explorer.exe was found!
Service AdobeFlashPlayerUpdateSvc stopped successfully!
Service AdobeFlashPlayerUpdateSvc deleted successfully!
C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe moved successfully.
Service LiveUpdateSvc stopped successfully!
Service LiveUpdateSvc deleted successfully!
C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe moved successfully.
Error: No service named LiveUpdateSvc was found to stop!
Service\Driver key LiveUpdateSvc not found.
C:\Program Files\Skype\Updater\Updater.exe moved successfully.
Service VcommMgr stopped successfully!
Service VcommMgr deleted successfully!
File System32\Drivers\VcommMgr.sys File not found not found.
Service VComm stopped successfully!
Service VComm deleted successfully!
File system32\DRIVERS\VComm.sys File not found not found.
Service catchme stopped successfully!
Service catchme deleted successfully!
File C:\ComboFix\catchme.sys File not found not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-1078081533-1450960922-1417001333-1003\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86}\ not found.
Registry key HKEY_USERS\S-1-5-21-1078081533-1450960922-1417001333-1003\Software\Microsoft\Internet Explorer\SearchScopes\{B1B05722-031D-4ACC-AC37-2DEA0530AF0D}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B1B05722-031D-4ACC-AC37-2DEA0530AF0D}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@tools.google.com/Google Update;version=3\ deleted successfully.
C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@tools.google.com/Google Update;version=9\ deleted successfully.
File C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll not found.
Registry key HKEY_CURRENT_USER\Software\MozillaPlugins\@lightspark.github.com/Lightspark;version=1\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\xz123@ya456.com deleted successfully.
File C:\Program Files\BetterSurf\ff not found.
Registry value HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\12x3q@3244516.com deleted successfully.
File C:\Program Files\Better-Surf\ff not found.
Registry value HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\ext@bettersurfplus.com deleted successfully.
File C:\Program Files\BetterSurf\BetterSurfPlus\ff not found.
C:\Documents and Settings\Dominik CZ\Data aplikací\Mozilla\Firefox\Profiles\nixi07xl.default\searchplugins\icqplugin.gif moved successfully.
C:\Documents and Settings\Dominik CZ\Data aplikací\Mozilla\Firefox\Profiles\nixi07xl.default\searchplugins\icqplugin.src moved successfully.
C:\Documents and Settings\Dominik CZ\Data aplikací\Mozilla\Firefox\Profiles\nixi07xl.default\searchplugins\icqplugin.xml moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ejbpjlaagejfakeobljhgplbgklgemll\1.0.0_0 folder moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{AEB6717E-7E19-11d0-97EE-00C04FD91972} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AEB6717E-7E19-11d0-97EE-00C04FD91972}\ not found.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:1CE11B51 deleted successfully.
========== SERVICES/DRIVERS ==========
Error: No service named AdobeFlashPlayerUpdateSvc was found to stop!
Service\Driver key AdobeFlashPlayerUpdateSvc not found.
Error: No service named LiveUpdateSvc was found to stop!
Service\Driver key LiveUpdateSvc not found.
Error: No service named LiveUpdateSvc was found to stop!
Service\Driver key LiveUpdateSvc not found.
========== FILES ==========
C:\Documents and Settings\All Users\Data aplikací\WPM\update folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\WPM folder moved successfully.
C:\ComboFix\N_ folder moved successfully.
C:\ComboFix folder moved successfully.
C:\WINDOWS\SWREG.exe moved successfully.
C:\WINDOWS\SWSC.exe moved successfully.
C:\WINDOWS\SWXCACLS.exe moved successfully.
C:\WINDOWS\NIRCMD.exe moved successfully.
C:\WINDOWS\PEV.exe moved successfully.
C:\WINDOWS\MBR.exe moved successfully.
C:\WINDOWS\sed.exe moved successfully.
C:\WINDOWS\grep.exe moved successfully.
C:\WINDOWS\zip.exe moved successfully.
C:\WINDOWS\System32\emptyregdb.dat moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Babylon folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\greatsuaVeer folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\InstallMate\3DDEE433\cfg folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\InstallMate\3DDEE433 folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\InstallMate folder moved successfully.
C:\Qoobox\TestC folder moved successfully.
C:\Qoobox\Test folder moved successfully.
C:\Qoobox\Quarantine\Registry_backups folder moved successfully.
C:\Qoobox\Quarantine\C\WINDOWS\system32 folder moved successfully.
C:\Qoobox\Quarantine\C\WINDOWS folder moved successfully.
C:\Qoobox\Quarantine\C\Program Files\Shopping Suggestion folder moved successfully.
C:\Qoobox\Quarantine\C\Program Files\IObit Apps Toolbar\Res\Lang folder moved successfully.
C:\Qoobox\Quarantine\C\Program Files\IObit Apps Toolbar\Res folder moved successfully.
C:\Qoobox\Quarantine\C\Program Files\IObit Apps Toolbar\IE\8.6 folder moved successfully.
C:\Qoobox\Quarantine\C\Program Files\IObit Apps Toolbar\IE folder moved successfully.
C:\Qoobox\Quarantine\C\Program Files\IObit Apps Toolbar\FF\components folder moved successfully.
C:\Qoobox\Quarantine\C\Program Files\IObit Apps Toolbar\FF\chrome folder moved successfully.
C:\Qoobox\Quarantine\C\Program Files\IObit Apps Toolbar\FF folder moved successfully.
C:\Qoobox\Quarantine\C\Program Files\IObit Apps Toolbar folder moved successfully.
C:\Qoobox\Quarantine\C\Program Files\greatsuaVeer folder moved successfully.
C:\Qoobox\Quarantine\C\Program Files folder moved successfully.
C:\Qoobox\Quarantine\C folder moved successfully.
C:\Qoobox\Quarantine folder moved successfully.
C:\Qoobox\LastRun folder moved successfully.
C:\Qoobox\BackEnv folder moved successfully.
C:\Qoobox folder moved successfully.
C:\WINDOWS\System32\d3d9caps.dat moved successfully.
C:\WINDOWS\$968930Uinstall_KB968930$\spuninst folder moved successfully.
C:\WINDOWS\$968930Uinstall_KB968930$ folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\genienext folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Mobogenie\Version\OldVersion folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Mobogenie\Version\NewVersion folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Mobogenie\Version\CacheVersion folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Mobogenie\Version folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Mobogenie\driver folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Mobogenie\Download\Video folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Mobogenie\Download\Picture folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Mobogenie\Download\Music folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Mobogenie\Download\Apk folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Mobogenie\Download folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Mobogenie\device folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Mobogenie\Data folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Mobogenie\backup folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Mobogenie folder moved successfully.
File\Folder C:\Documents and Settings\All Users\Data aplikací\greatsuaVeer not found.
C:\Documents and Settings\All Users\Data aplikací\67dabb73536b8b2b folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\bikijgggffaondpoajcfbeamhgkbiami\2.7 folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\bikijgggffaondpoajcfbeamhgkbiami folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Torch\User Data\Default\Extensions folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Torch\User Data\Default folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Torch\User Data folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Torch folder moved successfully.
File\Folder C:\Documents and Settings\All Users\Data aplikací\InstallMate not found.
C:\WINDOWS\System32\log folder moved successfully.
File\Folder C:\Program Files\BetterSurf not found.
C:\Program Files\Google\Update\Install folder moved successfully.
C:\Program Files\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96} folder moved successfully.
C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\31.0.1650.63 folder moved successfully.
C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D} folder moved successfully.
C:\Program Files\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.22.3 folder moved successfully.
C:\Program Files\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D} folder moved successfully.
C:\Program Files\Google\Update\Download folder moved successfully.
C:\Program Files\Google\Update\1.3.22.3 folder moved successfully.
C:\Program Files\Google\Update folder moved successfully.
File\Folder C:\WINDOWS\*.tmp not found.
C:\WINDOWS\System32\CONFIG.TMP moved successfully.
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
C:\WINDOWS\tasks\SA.DAT moved successfully.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
C:\RECYCLER\S-1-5-21-1078081533-1450960922-1417001333-1003 folder moved successfully.
C:\RECYCLER folder moved successfully.
File\Folder C:\$RECYCLE.BIN not found.
File\Folder C:\RECYCLER not found.
C:\Windows\tasks\Adobe Flash Player Updater.job moved successfully.
C:\Windows\tasks\ASC7_PerformanceMonitor.job moved successfully.
C:\Windows\tasks\avast! Emergency Update.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\\{0642A70A-F852-4939-8228-27ED4E3B0892} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0642A70A-F852-4939-8228-27ED4E3B0892}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\\Better Surf Plus not found.
========== COMMANDS ==========
[EMPTYTEMP]
User: Administrator
User: All Users
User: ASPNET
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: Dominik CZ
->Temp folder emptied: 1381 bytes
->Temporary Internet Files folder emptied: 947302 bytes
->FireFox cache emptied: 3630813 bytes
->Google Chrome cache emptied: 16477678 bytes
->Flash cache emptied: 17076991 bytes
User: Guest
User: HelpAssistant
User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 163974 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: SUPPORT_388945a0
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 483 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 37,00 mb
[EMPTYFLASH]
User: Administrator
User: All Users
User: ASPNET
User: Default User
User: Dominik CZ
->Flash cache emptied: 0 bytes
User: Guest
User: HelpAssistant
User: LocalService
User: NetworkService
User: SUPPORT_388945a0
Total Flash Files Cleaned = 0,00 mb
OTL by OldTimer - Version 3.2.69.0 log created on 01112014_234544
Files\Folders moved on Reboot...
File move failed. C:\WINDOWS\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
All processes killed
========== OTL ==========
No active process named explorer.exe was found!
Service AdobeFlashPlayerUpdateSvc stopped successfully!
Service AdobeFlashPlayerUpdateSvc deleted successfully!
C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe moved successfully.
Service LiveUpdateSvc stopped successfully!
Service LiveUpdateSvc deleted successfully!
C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe moved successfully.
Error: No service named LiveUpdateSvc was found to stop!
Service\Driver key LiveUpdateSvc not found.
C:\Program Files\Skype\Updater\Updater.exe moved successfully.
Service VcommMgr stopped successfully!
Service VcommMgr deleted successfully!
File System32\Drivers\VcommMgr.sys File not found not found.
Service VComm stopped successfully!
Service VComm deleted successfully!
File system32\DRIVERS\VComm.sys File not found not found.
Service catchme stopped successfully!
Service catchme deleted successfully!
File C:\ComboFix\catchme.sys File not found not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-1078081533-1450960922-1417001333-1003\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86}\ not found.
Registry key HKEY_USERS\S-1-5-21-1078081533-1450960922-1417001333-1003\Software\Microsoft\Internet Explorer\SearchScopes\{B1B05722-031D-4ACC-AC37-2DEA0530AF0D}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B1B05722-031D-4ACC-AC37-2DEA0530AF0D}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@tools.google.com/Google Update;version=3\ deleted successfully.
C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@tools.google.com/Google Update;version=9\ deleted successfully.
File C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll not found.
Registry key HKEY_CURRENT_USER\Software\MozillaPlugins\@lightspark.github.com/Lightspark;version=1\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\xz123@ya456.com deleted successfully.
File C:\Program Files\BetterSurf\ff not found.
Registry value HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\12x3q@3244516.com deleted successfully.
File C:\Program Files\Better-Surf\ff not found.
Registry value HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\ext@bettersurfplus.com deleted successfully.
File C:\Program Files\BetterSurf\BetterSurfPlus\ff not found.
C:\Documents and Settings\Dominik CZ\Data aplikací\Mozilla\Firefox\Profiles\nixi07xl.default\searchplugins\icqplugin.gif moved successfully.
C:\Documents and Settings\Dominik CZ\Data aplikací\Mozilla\Firefox\Profiles\nixi07xl.default\searchplugins\icqplugin.src moved successfully.
C:\Documents and Settings\Dominik CZ\Data aplikací\Mozilla\Firefox\Profiles\nixi07xl.default\searchplugins\icqplugin.xml moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ejbpjlaagejfakeobljhgplbgklgemll\1.0.0_0 folder moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{AEB6717E-7E19-11d0-97EE-00C04FD91972} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AEB6717E-7E19-11d0-97EE-00C04FD91972}\ not found.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:1CE11B51 deleted successfully.
========== SERVICES/DRIVERS ==========
Error: No service named AdobeFlashPlayerUpdateSvc was found to stop!
Service\Driver key AdobeFlashPlayerUpdateSvc not found.
Error: No service named LiveUpdateSvc was found to stop!
Service\Driver key LiveUpdateSvc not found.
Error: No service named LiveUpdateSvc was found to stop!
Service\Driver key LiveUpdateSvc not found.
========== FILES ==========
C:\Documents and Settings\All Users\Data aplikací\WPM\update folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\WPM folder moved successfully.
C:\ComboFix\N_ folder moved successfully.
C:\ComboFix folder moved successfully.
C:\WINDOWS\SWREG.exe moved successfully.
C:\WINDOWS\SWSC.exe moved successfully.
C:\WINDOWS\SWXCACLS.exe moved successfully.
C:\WINDOWS\NIRCMD.exe moved successfully.
C:\WINDOWS\PEV.exe moved successfully.
C:\WINDOWS\MBR.exe moved successfully.
C:\WINDOWS\sed.exe moved successfully.
C:\WINDOWS\grep.exe moved successfully.
C:\WINDOWS\zip.exe moved successfully.
C:\WINDOWS\System32\emptyregdb.dat moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Babylon folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\greatsuaVeer folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\InstallMate\3DDEE433\cfg folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\InstallMate\3DDEE433 folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\InstallMate folder moved successfully.
C:\Qoobox\TestC folder moved successfully.
C:\Qoobox\Test folder moved successfully.
C:\Qoobox\Quarantine\Registry_backups folder moved successfully.
C:\Qoobox\Quarantine\C\WINDOWS\system32 folder moved successfully.
C:\Qoobox\Quarantine\C\WINDOWS folder moved successfully.
C:\Qoobox\Quarantine\C\Program Files\Shopping Suggestion folder moved successfully.
C:\Qoobox\Quarantine\C\Program Files\IObit Apps Toolbar\Res\Lang folder moved successfully.
C:\Qoobox\Quarantine\C\Program Files\IObit Apps Toolbar\Res folder moved successfully.
C:\Qoobox\Quarantine\C\Program Files\IObit Apps Toolbar\IE\8.6 folder moved successfully.
C:\Qoobox\Quarantine\C\Program Files\IObit Apps Toolbar\IE folder moved successfully.
C:\Qoobox\Quarantine\C\Program Files\IObit Apps Toolbar\FF\components folder moved successfully.
C:\Qoobox\Quarantine\C\Program Files\IObit Apps Toolbar\FF\chrome folder moved successfully.
C:\Qoobox\Quarantine\C\Program Files\IObit Apps Toolbar\FF folder moved successfully.
C:\Qoobox\Quarantine\C\Program Files\IObit Apps Toolbar folder moved successfully.
C:\Qoobox\Quarantine\C\Program Files\greatsuaVeer folder moved successfully.
C:\Qoobox\Quarantine\C\Program Files folder moved successfully.
C:\Qoobox\Quarantine\C folder moved successfully.
C:\Qoobox\Quarantine folder moved successfully.
C:\Qoobox\LastRun folder moved successfully.
C:\Qoobox\BackEnv folder moved successfully.
C:\Qoobox folder moved successfully.
C:\WINDOWS\System32\d3d9caps.dat moved successfully.
C:\WINDOWS\$968930Uinstall_KB968930$\spuninst folder moved successfully.
C:\WINDOWS\$968930Uinstall_KB968930$ folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\genienext folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Mobogenie\Version\OldVersion folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Mobogenie\Version\NewVersion folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Mobogenie\Version\CacheVersion folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Mobogenie\Version folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Mobogenie\driver folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Mobogenie\Download\Video folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Mobogenie\Download\Picture folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Mobogenie\Download\Music folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Mobogenie\Download\Apk folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Mobogenie\Download folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Mobogenie\device folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Mobogenie\Data folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Mobogenie\backup folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Mobogenie folder moved successfully.
File\Folder C:\Documents and Settings\All Users\Data aplikací\greatsuaVeer not found.
C:\Documents and Settings\All Users\Data aplikací\67dabb73536b8b2b folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\bikijgggffaondpoajcfbeamhgkbiami\2.7 folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\bikijgggffaondpoajcfbeamhgkbiami folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Torch\User Data\Default\Extensions folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Torch\User Data\Default folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Torch\User Data folder moved successfully.
C:\Documents and Settings\Dominik CZ\Local Settings\Data aplikací\Torch folder moved successfully.
File\Folder C:\Documents and Settings\All Users\Data aplikací\InstallMate not found.
C:\WINDOWS\System32\log folder moved successfully.
File\Folder C:\Program Files\BetterSurf not found.
C:\Program Files\Google\Update\Install folder moved successfully.
C:\Program Files\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96} folder moved successfully.
C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\31.0.1650.63 folder moved successfully.
C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D} folder moved successfully.
C:\Program Files\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.22.3 folder moved successfully.
C:\Program Files\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D} folder moved successfully.
C:\Program Files\Google\Update\Download folder moved successfully.
C:\Program Files\Google\Update\1.3.22.3 folder moved successfully.
C:\Program Files\Google\Update folder moved successfully.
File\Folder C:\WINDOWS\*.tmp not found.
C:\WINDOWS\System32\CONFIG.TMP moved successfully.
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
C:\WINDOWS\tasks\SA.DAT moved successfully.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
C:\RECYCLER\S-1-5-21-1078081533-1450960922-1417001333-1003 folder moved successfully.
C:\RECYCLER folder moved successfully.
File\Folder C:\$RECYCLE.BIN not found.
File\Folder C:\RECYCLER not found.
C:\Windows\tasks\Adobe Flash Player Updater.job moved successfully.
C:\Windows\tasks\ASC7_PerformanceMonitor.job moved successfully.
C:\Windows\tasks\avast! Emergency Update.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\\{0642A70A-F852-4939-8228-27ED4E3B0892} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0642A70A-F852-4939-8228-27ED4E3B0892}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\\Better Surf Plus not found.
========== COMMANDS ==========
[EMPTYTEMP]
User: Administrator
User: All Users
User: ASPNET
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: Dominik CZ
->Temp folder emptied: 1381 bytes
->Temporary Internet Files folder emptied: 947302 bytes
->FireFox cache emptied: 3630813 bytes
->Google Chrome cache emptied: 16477678 bytes
->Flash cache emptied: 17076991 bytes
User: Guest
User: HelpAssistant
User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 163974 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: SUPPORT_388945a0
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 483 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 37,00 mb
[EMPTYFLASH]
User: Administrator
User: All Users
User: ASPNET
User: Default User
User: Dominik CZ
->Flash cache emptied: 0 bytes
User: Guest
User: HelpAssistant
User: LocalService
User: NetworkService
User: SUPPORT_388945a0
Total Flash Files Cleaned = 0,00 mb
OTL by OldTimer - Version 3.2.69.0 log created on 01112014_234544
Files\Folders moved on Reboot...
File move failed. C:\WINDOWS\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
-
Damned
- Tvůrce článků
-
Master Level 9
- Příspěvky: 8353
- Registrován: prosinec 06
- Bydliště: Rokycany
- Pohlaví:
- Stav:
Offline
- Kontakt:
Re: Prosím o kontrolu logu
Stáhni si DelFix a uloži si ho na Plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce).
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci
Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce).
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci
Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt
Nic není nemožné, proto tam, kde jsme s rozumem v koncích, neváháme použít kladivo.
Chceš-li vědět, co je nového, podívej se do starých knih.
Damnedovy češtiny - překlady programů pro údržbu PC
HiJackThis 2+návod FCleaner+čeština Wise Registry Cleaner
Chceš-li vědět, co je nového, podívej se do starých knih.
Damnedovy češtiny - překlady programů pro údržbu PC
HiJackThis 2+návod FCleaner+čeština Wise Registry Cleaner
Re: Prosím o kontrolu logu
Hotovo :
# DelFix v10.6 - Logfile created 11/01/2014 at 23:58:05
# Updated 11/11/2013 by Xplode
# Username : Dominik CZ - DOMINIK
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
~ Removing disinfection tools ...
Deleted : C:\_OTL
Deleted : C:\ComboFix.txt
Deleted : C:\Documents and Settings\Dominik CZ\Dokumenty\Downloads\Extras.Txt
Deleted : C:\Documents and Settings\Dominik CZ\Dokumenty\Downloads\OTL.Txt
Deleted : C:\Documents and Settings\Dominik CZ\Dokumenty\Downloads\OTL.exe
Deleted : HKCU\console_combofixbackup
Deleted : HKLM\SOFTWARE\OldTimer Tools
Deleted : HKLM\SOFTWARE\Swearware
Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\combofix.exe
Deleted : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart
Deleted : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys
Deleted : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart
Deleted : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys
~ Cleaning system restore ...
Deleted : RP #116 [Removed 4S4Vendeta | 01/11/2014 18:12:08]
Deleted : RP #117 [??????? Counter-Strike 1.6 | 01/11/2014 18:12:08]
Deleted : RP #118 [Removed Microsoft Office Enterprise 2007 | 01/11/2014 18:12:09]
Deleted : RP #119 [Software Distribution Service 3.0 | 01/11/2014 18:12:09]
Deleted : RP #120 [Software Distribution Service 3.0 | 01/11/2014 18:12:09]
Deleted : RP #121 [Kontrolní bod systému | 01/11/2014 18:12:09]
Deleted : RP #122 [??????????? Counter-Strike 1.6 | 01/11/2014 18:12:09]
Deleted : RP #123 [Kontrolní bod systému | 01/11/2014 18:12:09]
Deleted : RP #124 [Kontrolní bod systému | 01/11/2014 18:12:09]
Deleted : RP #125 [Kontrolní bod systému | 01/11/2014 18:12:09]
Deleted : RP #126 [Removed Steam | 01/11/2014 18:12:10]
Deleted : RP #127 [Installed Steam | 01/11/2014 18:12:10]
Deleted : RP #128 [Driver Booster : Broadcom NetXtreme 57xx Gigabit Controller | 01/11/2014 18:12:10]
Deleted : RP #129 [??????????? Counter-Strike 1.6 | 01/11/2014 18:12:10]
Deleted : RP #130 [Nainstalováno %1 %2. | 01/11/2014 18:12:10]
Deleted : RP #131 [Nainstalováno %1 %2. | 01/11/2014 18:12:11]
Deleted : RP #132 [Nainstalováno Windows XP KB2492386. | 01/11/2014 18:12:11]
Deleted : RP #133 [Nainstalováno Windows XP KB2632503. | 01/11/2014 18:12:11]
Deleted : RP #134 [Nainstalováno Windows XP KB2808679. | 01/11/2014 18:12:11]
Deleted : RP #135 [Kontrolní bod systému | 01/11/2014 18:12:11]
Deleted : RP #136 [Operace obnovení | 01/11/2014 18:12:11]
Deleted : RP #137 [Spyware Terminator 2012 (11.1.2014 16:19:22) | 01/11/2014 18:12:12]
Deleted : RP #138 [End of disinfection | 01/11/2014 18:12:18]
New restore point created !
########## - EOF - ##########
# DelFix v10.6 - Logfile created 11/01/2014 at 23:58:05
# Updated 11/11/2013 by Xplode
# Username : Dominik CZ - DOMINIK
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
~ Removing disinfection tools ...
Deleted : C:\_OTL
Deleted : C:\ComboFix.txt
Deleted : C:\Documents and Settings\Dominik CZ\Dokumenty\Downloads\Extras.Txt
Deleted : C:\Documents and Settings\Dominik CZ\Dokumenty\Downloads\OTL.Txt
Deleted : C:\Documents and Settings\Dominik CZ\Dokumenty\Downloads\OTL.exe
Deleted : HKCU\console_combofixbackup
Deleted : HKLM\SOFTWARE\OldTimer Tools
Deleted : HKLM\SOFTWARE\Swearware
Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\combofix.exe
Deleted : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart
Deleted : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys
Deleted : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart
Deleted : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys
~ Cleaning system restore ...
Deleted : RP #116 [Removed 4S4Vendeta | 01/11/2014 18:12:08]
Deleted : RP #117 [??????? Counter-Strike 1.6 | 01/11/2014 18:12:08]
Deleted : RP #118 [Removed Microsoft Office Enterprise 2007 | 01/11/2014 18:12:09]
Deleted : RP #119 [Software Distribution Service 3.0 | 01/11/2014 18:12:09]
Deleted : RP #120 [Software Distribution Service 3.0 | 01/11/2014 18:12:09]
Deleted : RP #121 [Kontrolní bod systému | 01/11/2014 18:12:09]
Deleted : RP #122 [??????????? Counter-Strike 1.6 | 01/11/2014 18:12:09]
Deleted : RP #123 [Kontrolní bod systému | 01/11/2014 18:12:09]
Deleted : RP #124 [Kontrolní bod systému | 01/11/2014 18:12:09]
Deleted : RP #125 [Kontrolní bod systému | 01/11/2014 18:12:09]
Deleted : RP #126 [Removed Steam | 01/11/2014 18:12:10]
Deleted : RP #127 [Installed Steam | 01/11/2014 18:12:10]
Deleted : RP #128 [Driver Booster : Broadcom NetXtreme 57xx Gigabit Controller | 01/11/2014 18:12:10]
Deleted : RP #129 [??????????? Counter-Strike 1.6 | 01/11/2014 18:12:10]
Deleted : RP #130 [Nainstalováno %1 %2. | 01/11/2014 18:12:10]
Deleted : RP #131 [Nainstalováno %1 %2. | 01/11/2014 18:12:11]
Deleted : RP #132 [Nainstalováno Windows XP KB2492386. | 01/11/2014 18:12:11]
Deleted : RP #133 [Nainstalováno Windows XP KB2632503. | 01/11/2014 18:12:11]
Deleted : RP #134 [Nainstalováno Windows XP KB2808679. | 01/11/2014 18:12:11]
Deleted : RP #135 [Kontrolní bod systému | 01/11/2014 18:12:11]
Deleted : RP #136 [Operace obnovení | 01/11/2014 18:12:11]
Deleted : RP #137 [Spyware Terminator 2012 (11.1.2014 16:19:22) | 01/11/2014 18:12:12]
Deleted : RP #138 [End of disinfection | 01/11/2014 18:12:18]
New restore point created !
########## - EOF - ##########
-
Damned
- Tvůrce článků
-
Master Level 9
- Příspěvky: 8353
- Registrován: prosinec 06
- Bydliště: Rokycany
- Pohlaví:
- Stav:
Offline
- Kontakt:
Re: Prosím o kontrolu logu
Smaž soubor C:\DelFix.txt. Jak je na tom PC, hry a net?
Nic není nemožné, proto tam, kde jsme s rozumem v koncích, neváháme použít kladivo.
Chceš-li vědět, co je nového, podívej se do starých knih.
Damnedovy češtiny - překlady programů pro údržbu PC
HiJackThis 2+návod FCleaner+čeština Wise Registry Cleaner
Chceš-li vědět, co je nového, podívej se do starých knih.
Damnedovy češtiny - překlady programů pro údržbu PC
HiJackThis 2+návod FCleaner+čeština Wise Registry Cleaner
Re: Prosím o kontrolu logu
PC je rychlejší,ale ping stále přetrvává :/
-
Damned
- Tvůrce článků
-
Master Level 9
- Příspěvky: 8353
- Registrován: prosinec 06
- Bydliště: Rokycany
- Pohlaví:
- Stav:
Offline
- Kontakt:
Re: Prosím o kontrolu logu
Při jaké hře? Vlož sem ještě nový log z HijackThis
Nic není nemožné, proto tam, kde jsme s rozumem v koncích, neváháme použít kladivo.
Chceš-li vědět, co je nového, podívej se do starých knih.
Damnedovy češtiny - překlady programů pro údržbu PC
HiJackThis 2+návod FCleaner+čeština Wise Registry Cleaner
Chceš-li vědět, co je nového, podívej se do starých knih.
Damnedovy češtiny - překlady programů pro údržbu PC
HiJackThis 2+návod FCleaner+čeština Wise Registry Cleaner
Re: Prosím o kontrolu logu
Hra Counter Strike.
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 0:41:28, on 12.1.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe
C:\Program Files\PANDORA.TV\PanService\PandoraService.exe
C:\Program Files\SigmaTel\C-Major Audio\DellXPM_5515v131\WDM\StacSV.exe
C:\Program Files\PANDORA.TV\PanService\PanProcess.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Dominik CZ\Dokumenty\Downloads\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 67.153.80.178:17194
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKUS\S-1-5-18\..\Run: [Advanced SystemCare 7] "C:\Program Files\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Advanced SystemCare 7] "C:\Program Files\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Převést cíl vazby do Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Převést do Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Připojit cíl vazby k existujícímu PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Připojit k existujícímu PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Advanced SystemCare Service 7 (AdvancedSystemCareService7) - IObit - C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: O2Micro Flash Memory Card Service (o2flash) - O2Micro International - C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe
O23 - Service: PandoraService (PanService) - Pandora.TV - C:\Program Files\PANDORA.TV\PanService\PandoraService.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Unknown owner - C:\Program Files\Skype\Updater\Updater.exe (file missing)
O23 - Service: SigmaTel Audio Service (STacSV) - SigmaTel, Inc. - C:\Program Files\SigmaTel\C-Major Audio\DellXPM_5515v131\WDM\StacSV.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O24 - Desktop Component 0: (no name) - http://sfgame.funsite.cz/cz-s4-signature-Fredderico.png
--
End of file - 6412 bytes
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 0:41:28, on 12.1.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe
C:\Program Files\PANDORA.TV\PanService\PandoraService.exe
C:\Program Files\SigmaTel\C-Major Audio\DellXPM_5515v131\WDM\StacSV.exe
C:\Program Files\PANDORA.TV\PanService\PanProcess.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Dominik CZ\Dokumenty\Downloads\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 67.153.80.178:17194
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKUS\S-1-5-18\..\Run: [Advanced SystemCare 7] "C:\Program Files\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Advanced SystemCare 7] "C:\Program Files\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Převést cíl vazby do Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Převést do Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Připojit cíl vazby k existujícímu PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Připojit k existujícímu PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Advanced SystemCare Service 7 (AdvancedSystemCareService7) - IObit - C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: O2Micro Flash Memory Card Service (o2flash) - O2Micro International - C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe
O23 - Service: PandoraService (PanService) - Pandora.TV - C:\Program Files\PANDORA.TV\PanService\PandoraService.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Unknown owner - C:\Program Files\Skype\Updater\Updater.exe (file missing)
O23 - Service: SigmaTel Audio Service (STacSV) - SigmaTel, Inc. - C:\Program Files\SigmaTel\C-Major Audio\DellXPM_5515v131\WDM\StacSV.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O24 - Desktop Component 0: (no name) - http://sfgame.funsite.cz/cz-s4-signature-Fredderico.png
--
End of file - 6412 bytes
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 89 hostů