Pomalá rychlost počítače - kouše se zvuk, nevyužívá celé RAM Vyřešeno

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

Zamčeno
LuckkyLuke
nováček
Příspěvky: 44
Registrován: srpen 10
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Pomalá rychlost počítače - kouše se zvuk, nevyužívá celé

Příspěvekod LuckkyLuke » 05 srp 2010 09:38

Počítač se o něco zlepšil, používám deamon.

Oprava: Spustil jsem program na náhradní díly a je to to samý. Maximálně jen trochu lepší.
Nahoru
Reklama
Top
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43296
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Pomalá rychlost počítače - kouše se zvuk, nevyužívá celé

Příspěvekod jaro3 » 05 srp 2010 14:56

Memtest:
http://www.stahuj.centrum.cz/utility_a_ ... i/memtest/

Do políčka vlož největší velikost Tvé jednotlivé paměti RAM (256,512 nebo 1024,2048) dej Start , nech nejméně 2h běžet , pokud bude po 2h stále 0 errors , jsou v pořádku.

+
otevři Tento počítač- pravým na disk-vlastnosti-záložka nástroje-kontrola chyb-zkontrolovat-v okně zatrhni obě políčka-klikni na spustit- tam to napíše , že kontrola bude provedena po příštím spuštění...
Restartuj PC, kontrola s opravou někdy trvá i několik hodin...

+
Stáhni si OTL
na plochu. Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Výstup klikni na minimální výstup.Pod Běžné registry změň na Vše. Zatrhni Kontrola na havěť “LOP“ a Kontrola na havěť “ Purity“ . Klikni na Prohledat. Všechny ostatní nastavení ponech jak jsou. Sken může trvat dlouho, až skončí otevřou se dva logy:
OTL.Txt
Extras.Txt
Jsou uloženy ve stejném místě jako OTL. Oba logy sem prosím zkopíruj.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
LuckkyLuke
nováček
Příspěvky: 44
Registrován: srpen 10
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Pomalá rychlost počítače - kouše se zvuk, nevyužívá celé

Příspěvekod LuckkyLuke » 06 srp 2010 08:48

OTL logfile created on: 6.8.2010 8:37:28 - Run 1
OTL by OldTimer - Version 3.2.9.1 Folder = C:\Documents and Settings\Sulcar\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 54,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 73,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 153,38 Gb Total Space | 50,20 Gb Free Space | 32,73% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: KANCELAR
Current User Name: Sulcar
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Processes (SafeList) ==========

PRC - C:\Documents and Settings\Sulcar\Plocha\OTL.exe (OldTimer Tools)
PRC - C:\Documents and Settings\Sulcar\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe (Google Inc.)
PRC - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe (ESET)
PRC - C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
PRC - C:\TECDOC_CD\3_2010\db\tbmux32.exe (Transaction Software, D 81829 Munich)
PRC - C:\Program Files\eTECH\OrganiserDBServer.exe (Acresso)
PRC - C:\Program Files\eTECH\jre\bin\java.exe (Sun Microsystems, Inc.)
PRC - C:\Program Files\Common Files\Autodata Limited Shared\Service\ADCDLicSvc.exe (Autodata Limited)
PRC - C:\WINDOWS\system32\Crypserv.exe (CrypKey (Canada) Ltd.)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Snap-on Business Solutions\Global EPC\GM\Transbase\tbkern32.exe (Transaction Software, D 81829 Munich)
PRC - C:\Program Files\Snap-on Business Solutions\Global EPC\GM\Transbase\tbmux32.exe (Transaction Software, D 81829 Munich)
PRC - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe (TOSHIBA CORPORATION.)
PRC - C:\Program Files\Snap-on Business Solutions\Global EPC\GM\Tomcat\bin\tomcat6.exe (Apache Software Foundation)
PRC - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHSP.exe (TOSHIBA CORPORATION.)
PRC - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe (TOSHIBA CORPORATION.)
PRC - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe (TOSHIBA CORPORATION)
PRC - C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe (Hewlett-Packard)
PRC - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe (TOSHIBA CORPORATION.)


========== Modules (SafeList) ==========

MOD - C:\Documents and Settings\Sulcar\Plocha\OTL.exe (OldTimer Tools)
MOD - C:\WINDOWS\system32\msscript.ocx (Microsoft Corporation)


========== Win32 Services (SafeList) ==========

SRV - (EhttpSrv) -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe (ESET)
SRV - (ekrn) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe (ESET)
SRV - (Transbase TECDOC CD 3_2010 Service) -- C:\TECDOC_CD\3_2010\db\tbmux32.exe (Transaction Software, D 81829 Munich)
SRV - (WorkshopDBService) -- C:\Program Files\eTECH\OrganiserDBServer.exe (Acresso)
SRV - (Autodata Limited License Service) -- C:\Program Files\Common Files\Autodata Limited Shared\Service\ADCDLicSvc.exe (Autodata Limited)
SRV - (Crypkey License) -- C:\WINDOWS\System32\Crypserv.exe (CrypKey (Canada) Ltd.)
SRV - (SBS_GM_TRANSBASE) -- C:\Program Files\Snap-on Business Solutions\Global EPC\GM\Transbase\tbmux32.exe (Transaction Software, D 81829 Munich)
SRV - (SBS_GM_TOMCAT6) -- C:\Program Files\Snap-on Business Solutions\Global EPC\GM\Tomcat\bin\tomcat6.exe (Apache Software Foundation)
SRV - (TOSHIBA Bluetooth Service) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe (TOSHIBA CORPORATION)


========== Driver Services (SafeList) ==========

DRV - (catchme) -- C:\ComboFix\catchme.sys File not found
DRV - (epfwtdir) -- C:\WINDOWS\system32\drivers\epfwtdir.sys (ESET)
DRV - (eamon) -- C:\WINDOWS\system32\drivers\eamon.sys (ESET)
DRV - (yukonwxp) -- C:\WINDOWS\system32\drivers\yk51x86.sys (Marvell)
DRV - (ehdrv) -- C:\WINDOWS\system32\drivers\ehdrv.sys (ESET)
DRV - (sptd) -- C:\WINDOWS\System32\Drivers\sptd.sys ()
DRV - (LgBttPort) -- C:\WINDOWS\system32\drivers\lgbtport.sys (LG Electronics Inc.)
DRV - (LGVMODEM) -- C:\WINDOWS\system32\drivers\lgvmodem.sys (LG Electronics Inc.)
DRV - (lgbusenum) -- C:\WINDOWS\system32\drivers\lgbtbus.sys (LG Electronics Inc.)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.)
DRV - (NSHE) -- C:\WINDOWS\system32\drivers\NSHE.SYS (T0r0 & Tecar Forum 2009)
DRV - (USBModem) -- C:\WINDOWS\system32\drivers\lgusbmodem.sys (LG Electronics Inc.)
DRV - (UsbDiag) -- C:\WINDOWS\system32\drivers\lgusbdiag.sys (LG Electronics Inc.)
DRV - (usbbus) -- C:\WINDOWS\system32\drivers\lgusbbus.sys (LG Electronics Inc.)
DRV - (NetworkX) -- C:\WINDOWS\system32\ckldrv.sys ()
DRV - (Ambfilt) -- C:\WINDOWS\system32\drivers\Ambfilt.sys (Creative)
DRV - (hlemu) -- C:\WINDOWS\System32\drivers\hlemu.SYS (T0r0)
DRV - (HDAudBus) -- C:\WINDOWS\system32\drivers\hdaudbus.sys (Windows (R) Server 2003 DDK provider)
DRV - (ialm) -- C:\WINDOWS\system32\drivers\igxpmp32.sys (Intel Corporation)
DRV - (tosrfusb) -- C:\WINDOWS\system32\drivers\tosrfusb.sys (TOSHIBA CORPORATION)
DRV - (tosrfbd) -- C:\WINDOWS\system32\drivers\tosrfbd.sys (TOSHIBA CORPORATION)
DRV - (Axtmvprt) -- C:\WINDOWS\system32\drivers\axtmvprt.sys (Axesstel)
DRV - (Axtmvmdm) -- C:\WINDOWS\system32\drivers\axtmvmdm.sys (Axesstel)
DRV - (Axtmvflt) -- C:\WINDOWS\system32\drivers\axtmvflt.sys (Axesstel)
DRV - (Tosrfhid) -- C:\WINDOWS\system32\drivers\Tosrfhid.sys (TOSHIBA Corporation.)
DRV - (TosRfSnd) -- C:\WINDOWS\system32\drivers\TosRfSnd.sys (TOSHIBA Corporation)
DRV - (Hardlock) -- C:\WINDOWS\system32\drivers\hardlock.sys (Aladdin Knowledge Systems Ltd.)
DRV - (tosrfbnp) -- C:\WINDOWS\system32\drivers\tosrfbnp.sys (TOSHIBA Corporation)
DRV - (tosporte) -- C:\WINDOWS\system32\drivers\tosporte.sys (TOSHIBA Corporation)
DRV - (Monfilt) -- C:\WINDOWS\system32\drivers\Monfilt.sys (Creative Technology Ltd.)
DRV - (Tosrfcom) -- C:\WINDOWS\system32\drivers\tosrfcom.sys (TOSHIBA Corporation)
DRV - (tosrfnds) -- C:\WINDOWS\system32\drivers\tosrfnds.sys (TOSHIBA Corporation.)
DRV - (WINIO) -- C:\Programme\Bosch\ESItronic\KTS500\WinIo.sys ()


========== Standard Registry (All) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}:6.0.17
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.1.3
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.8


FF - HKLM\software\mozilla\Firefox\extensions\\jqs@sun.com: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2010.04.12 12:58:22 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.08.02 09:14:55 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.08.02 09:14:54 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2010.08.03 13:15:53 | 000,000,000 | ---D | M]

[2010.04.12 11:44:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulcar\Data aplikací\Mozilla\Extensions
[2010.04.12 11:44:36 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Sulcar\Data aplikací\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2010.07.28 10:39:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulcar\Data aplikací\Mozilla\Firefox\Profiles\0cohzxm4.default\extensions
[2010.04.16 10:07:59 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\Sulcar\Data aplikací\Mozilla\Firefox\Profiles\0cohzxm4.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010.07.28 10:39:50 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010.07.29 22:29:40 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2010.04.12 12:58:29 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
[2010.04.13 08:29:57 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
[2010.04.26 08:50:30 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010.07.29 22:29:39 | 000,023,512 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browserdirprovider.dll
[2010.07.29 22:29:40 | 000,138,712 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\brwsrcmp.dll
[2010.04.12 17:29:19 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010.07.29 22:29:47 | 000,064,984 | ---- | M] (mozilla.org) -- C:\Program Files\Mozilla Firefox\plugins\npnul32.dll
[2007.03.22 19:23:30 | 000,017,248 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\plugins\NPOFFICE.DLL
[2010.06.19 21:34:11 | 000,103,864 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll
[2010.08.02 09:14:54 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
[2010.08.02 09:14:54 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
[2010.08.02 09:14:54 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
[2010.08.02 09:14:54 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
[2010.08.02 09:14:54 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
[2010.08.02 09:14:54 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
[2010.08.02 09:14:54 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
[2010.04.01 18:51:34 | 000,002,371 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\google.xml
[2010.04.01 18:51:34 | 000,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2010.04.01 18:51:34 | 000,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2010.04.01 18:51:34 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010.04.01 18:51:34 | 000,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2010.04.01 18:51:34 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: ([2010.08.04 16:12:24 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - No CLSID value found.
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKCU\..\Toolbar\ShellBrowser: (&Adresa) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O3 - HKCU\..\Toolbar\WebBrowser: (&Adresa) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O3 - HKCU\..\Toolbar\WebBrowser: (&Odkazy) - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe (Intel Corporation)
O4 - HKLM..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe (Intel Corporation)
O4 - HKLM..\Run: [OrderReminder] C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe (Hewlett-Packard)
O4 - HKLM..\Run: [pdfFactory Pro Dispatcher v3] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fppdis3a.exe (FinePrint Software, LLC)
O4 - HKLM..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe (Intel Corporation)
O4 - HKLM..\Run: [RTHDCPL] C:\WINDOWS\RTHDCPL.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKCU..\Run: [Google Update] C:\Documents and Settings\Sulcar\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe (Google Inc.)
O4 - HKCU..\Run: [Skype] C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Bluetooth Manager.lnk = C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe (TOSHIBA CORPORATION.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Program Files\ICQ7.1\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Program Files\ICQ7.1\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\network diagnostic\xpnetdiag.exe (Microsoft Corporation)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\WINDOWS\system32\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft.com/fwlink/?linkid=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/sh ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\WINDOWS\system32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\sysimage {76E67A63-06E9-11D2-A840-006008059382} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\wia {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll (Microsoft Corporation)
O18 - Protocol\Filter\Class Install Handler {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\lzdhtml {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/webviewhtml {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (logonui.exe) - C:\WINDOWS\System32\logonui.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\WINDOWS\System32\sysdm.cpl (Microsoft Corporation)
O20 - Winlogon\Notify\crypt32chain: DllName - crypt32.dll - C:\WINDOWS\System32\crypt32.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cryptnet: DllName - cryptnet.dll - C:\WINDOWS\System32\cryptnet.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cscdll: DllName - cscdll.dll - C:\WINDOWS\System32\cscdll.dll (Microsoft Corporation)
O20 - Winlogon\Notify\dimsntfy: DllName - %SystemRoot%\System32\dimsntfy.dll - C:\WINDOWS\system32\dimsntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O20 - Winlogon\Notify\ScCertProp: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\sclgntfy: DllName - sclgntfy.dll - C:\WINDOWS\System32\sclgntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\SensLogn: DllName - WlNotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\Schedule: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\termsrv: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\WgaLogon: DllName - WgaLogon.dll - C:\WINDOWS\System32\WgaLogon.dll ()
O20 - Winlogon\Notify\wlballoon: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {438755C2-A8BA-11D1-B96B-00A0C90312E1} - Browseui preloader - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Proces mezipaměti kategorií součástí - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Sulcar\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Sulcar\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msapsspc.dll) - C:\WINDOWS\System32\msapsspc.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (schannel.dll) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (digest.dll) - C:\WINDOWS\System32\digest.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msnsspc.dll) - C:\WINDOWS\System32\msnsspc.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\WINDOWS\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\WINDOWS\System32\wdigest.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010.07.20 15:11:25 | 000,000,000 | ---D | M] - C:\Autoradia -- [ NTFS ]
O32 - AutoRun File - [2010.04.19 08:20:09 | 000,000,000 | ---D | M] - C:\AUTOSERVIS -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010.08.06 08:36:25 | 000,574,976 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Sulcar\Plocha\OTL.exe
[2010.08.04 08:51:10 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010.08.04 08:16:43 | 000,000,000 | ---D | C] -- C:\Program Files\Recuva
[2010.08.03 16:09:57 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Sulcar\Recent
[2010.08.03 15:30:24 | 000,000,000 | ---D | C] -- C:\Program Files\TrendMicro
[2010.08.03 13:15:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2010.08.03 08:35:44 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2010.08.03 08:31:35 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2010.08.03 08:31:34 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2010.08.03 08:31:34 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2010.08.03 08:31:33 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2010.08.03 08:31:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010.08.03 08:08:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulcar\Data aplikací\Malwarebytes
[2010.08.03 08:08:30 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010.08.03 08:08:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2010.08.03 08:08:28 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010.08.03 08:08:28 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010.08.03 07:57:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\NtmsData
[2010.08.02 09:26:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulcar\Data aplikací\Apple Computer
[2010.08.02 09:12:49 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2010.08.02 09:12:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Apple Computer
[2010.08.02 09:11:00 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2010.08.02 09:10:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulcar\Local Settings\Data aplikací\Apple
[2010.08.02 09:10:37 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2010.08.02 09:10:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Apple
[2010.08.02 09:10:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulcar\Local Settings\Data aplikací\Apple Computer
[2010.07.27 17:48:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulcar\Dokumenty\Bluetooth
[2010.07.27 17:45:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulcar\Local Settings\Data aplikací\Toshiba
[2010.07.27 17:40:17 | 000,113,920 | ---- | C] (TOSHIBA CORPORATION) -- C:\WINDOWS\System32\drivers\tosrfbd.sys
[2010.07.27 17:40:17 | 000,041,856 | ---- | C] (TOSHIBA CORPORATION) -- C:\WINDOWS\System32\drivers\tosrfusb.sys
[2010.07.27 17:40:16 | 000,073,728 | ---- | C] (TOSHIBA Corporation.) -- C:\WINDOWS\System32\drivers\Tosrfhid.sys
[2010.07.27 17:40:16 | 000,036,480 | ---- | C] (TOSHIBA Corporation) -- C:\WINDOWS\System32\drivers\tosrfbnp.sys
[2010.07.27 17:40:15 | 000,064,896 | ---- | C] (TOSHIBA Corporation) -- C:\WINDOWS\System32\drivers\tosrfcom.sys
[2010.07.27 17:40:15 | 000,053,376 | ---- | C] (TOSHIBA Corporation) -- C:\WINDOWS\System32\drivers\TosRfSnd.sys
[2010.07.27 17:40:15 | 000,018,612 | ---- | C] (TOSHIBA Corporation.) -- C:\WINDOWS\System32\drivers\tosrfnds.sys
[2010.07.27 17:40:06 | 000,041,600 | ---- | C] (TOSHIBA Corporation) -- C:\WINDOWS\System32\drivers\tosporte.sys
[2010.07.27 17:39:21 | 000,000,000 | ---D | C] -- C:\Program Files\Toshiba
[2010.07.14 06:00:28 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe
[2010.07.13 08:27:54 | 000,258,048 | ---- | C] (LG Electronics Inc.) -- C:\Documents and Settings\Sulcar\Dokumenty\esn.dll
[2010.07.13 08:27:54 | 000,180,224 | ---- | C] (LG Electronics) -- C:\Documents and Settings\Sulcar\Dokumenty\AuthDll.dll
[2010.07.13 08:27:54 | 000,090,112 | ---- | C] (LG Electronics) -- C:\Documents and Settings\Sulcar\Dokumenty\LGMobileDL.dll
[2010.07.12 13:00:59 | 000,000,000 | ---D | C] -- C:\Program Files\Radio Decoder
[2010.07.08 15:16:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulcar\Dokumenty\TECDOC_CD
[2010.07.08 08:43:24 | 000,000,000 | ---D | C] -- C:\TECDOC_CD
[2010.07.08 08:39:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\TECDOC_CD
[2010.07.08 08:39:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\OfflineCatalog

========== Files - Modified Within 30 Days ==========

[2010.08.06 08:30:02 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.08.06 08:29:47 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.08.05 19:35:39 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Sulcar\ntuser.ini
[2010.08.05 19:35:38 | 003,670,016 | -H-- | M] () -- C:\Documents and Settings\Sulcar\NTUSER.DAT
[2010.08.05 18:30:23 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Sulcar\Plocha\OTL.exe
[2010.08.05 17:58:19 | 000,000,902 | ---- | M] () -- C:\WINDOWS\win.ini
[2010.08.04 16:13:00 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010.08.04 16:12:24 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2010.08.04 15:42:42 | 000,015,448 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\Aleš_x.TIF
[2010.08.04 12:51:10 | 000,729,959 | ---- | M] () -- C:\Documents and Settings\Sulcar\Plocha\a4_skoda_octaviatour_autoradio_symphonycd_navod_k_obsluze.pdf
[2010.08.04 12:49:48 | 000,003,360 | ---- | M] () -- C:\WINDOWS\System32\esnecil.ind
[2010.08.04 12:49:48 | 000,000,004 | ---- | M] () -- C:\WINDOWS\vx86036.dat
[2010.08.04 09:49:37 | 000,174,671 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\Výpis z účtu 6_2.jpg
[2010.08.04 08:50:38 | 003,749,631 | R--- | M] () -- C:\Documents and Settings\Sulcar\Plocha\ComboFix.exe
[2010.08.04 08:16:45 | 000,001,512 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Recuva.lnk
[2010.08.03 16:29:26 | 000,250,071 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\VTP4.jpg
[2010.08.03 16:28:45 | 000,295,835 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\VTP3.jpg
[2010.08.03 16:28:00 | 000,284,257 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\VTP2.jpg
[2010.08.03 16:27:06 | 000,251,132 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\VTP1.jpg
[2010.08.03 16:24:27 | 000,469,191 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\Výpis z účtu 6_3.jpg
[2010.08.03 16:16:59 | 000,948,702 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\Výpis z účtu 6.jpg
[2010.08.03 15:33:04 | 000,002,941 | ---- | M] () -- C:\Documents and Settings\Sulcar\Plocha\LOG-PC.zip
[2010.08.03 15:30:45 | 000,002,437 | ---- | M] () -- C:\Documents and Settings\Sulcar\Plocha\HiJackThis.lnk
[2010.08.03 12:31:03 | 000,018,950 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\VR6_Aleš.TIF
[2010.08.03 08:35:54 | 000,000,281 | RHS- | M] () -- C:\boot.ini
[2010.08.03 08:08:33 | 000,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2010.08.03 07:41:45 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.08.02 13:38:28 | 001,102,397 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\Výpis živnostenský rejstřík Lukáš.jpg
[2010.08.02 09:35:30 | 000,016,122 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\Polo_Aleš.TIF
[2010.08.02 09:04:18 | 009,332,864 | ---- | M] () -- C:\Documents and Settings\Sulcar\Plocha\Zabranjeno Pusenje - Pit Bull (BALKAN TUNES.mp3
[2010.08.02 08:53:00 | 002,899,277 | ---- | M] () -- C:\Documents and Settings\Sulcar\Plocha\Video 1.3gp
[2010.08.02 08:52:18 | 005,519,652 | ---- | M] () -- C:\Documents and Settings\Sulcar\Plocha\Video 10.3gp
[2010.08.02 08:50:53 | 015,086,806 | ---- | M] () -- C:\Documents and Settings\Sulcar\Plocha\Video 2.3gp
[2010.08.02 08:47:23 | 058,705,204 | ---- | M] () -- C:\Documents and Settings\Sulcar\Plocha\Video 3.3gp
[2010.08.02 08:45:35 | 001,117,693 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\Hlášení pojistné události.jpg
[2010.08.02 08:44:39 | 000,226,497 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\Martin Trefný_1.jpg
[2010.08.02 08:43:43 | 000,247,000 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\Martin Trefný.jpg
[2010.08.02 08:33:04 | 018,122,086 | ---- | M] () -- C:\Documents and Settings\Sulcar\Plocha\Video 4.3gp
[2010.08.02 08:29:10 | 019,934,777 | ---- | M] () -- C:\Documents and Settings\Sulcar\Plocha\Video 5.3gp
[2010.08.02 08:24:40 | 101,003,181 | ---- | M] () -- C:\Documents and Settings\Sulcar\Plocha\Video 6.3gp
[2010.08.02 08:00:12 | 005,837,842 | ---- | M] () -- C:\Documents and Settings\Sulcar\Plocha\Video 7.3gp
[2010.08.02 07:58:31 | 002,484,657 | ---- | M] () -- C:\Documents and Settings\Sulcar\Plocha\Video 8.3gp
[2010.08.02 07:57:59 | 018,260,123 | ---- | M] () -- C:\Documents and Settings\Sulcar\Plocha\Video 9.3gp
[2010.07.29 11:32:25 | 000,010,136 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\Rozpočet Renault Kangoo.xlsx
[2010.07.28 16:38:40 | 000,015,362 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\Aleš_xxxxx.TIF
[2010.07.27 20:08:16 | 000,000,000 | ---- | M] () -- C:\WINDOWS\tosOBEX.INI
[2010.07.27 18:21:59 | 000,003,039 | ---- | M] () -- C:\WINDOWS\RbSystem.ini
[2010.07.27 18:11:50 | 000,002,266 | ---- | M] () -- C:\Documents and Settings\Sulcar\Plocha\Google Chrome.lnk
[2010.07.27 17:45:23 | 000,000,715 | ---- | M] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Bluetooth Manager.lnk
[2010.07.27 08:30:31 | 008,466,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shell32.dll
[2010.07.26 19:39:38 | 000,397,312 | ---- | M] () -- C:\WINDOWS\esi_kl01.dat
[2010.07.26 13:20:41 | 000,015,986 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\Leon_3.TIF
[2010.07.23 13:45:27 | 000,010,677 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\Corpo.xlsx
[2010.07.23 12:14:17 | 000,151,756 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\Spojka klima Opel.pdf
[2010.07.22 18:24:28 | 000,016,116 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\Golf_IV_JAN.TIF
[2010.07.22 13:07:21 | 000,030,650 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\Faktura 2010000066.pdf
[2010.07.21 18:39:36 | 000,084,608 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\Faktura 2010000066.TIF
[2010.07.21 14:40:42 | 000,022,997 | ---- | M] () -- C:\Documents and Settings\Sulcar\Plocha\Podnikatelský záměr.docx
[2010.07.21 09:58:51 | 000,015,946 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\Aleš_2.TIF
[2010.07.21 07:39:43 | 000,056,329 | ---- | M] () -- C:\Documents and Settings\Sulcar\Plocha\DSC02069.JPG
[2010.07.20 19:44:13 | 000,015,548 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\Leon_Aleš.TIF
[2010.07.20 16:00:17 | 000,029,684 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\Faktura 2010000065.TIF
[2010.07.20 07:11:24 | 000,047,946 | ---- | M] () -- C:\Documents and Settings\Sulcar\Plocha\DSC02068(2).JPG
[2010.07.20 07:10:46 | 000,047,946 | ---- | M] () -- C:\Documents and Settings\Sulcar\Plocha\DSC02068.JPG
[2010.07.19 14:57:25 | 000,028,206 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\Provozovna.docx
[2010.07.19 14:45:14 | 000,010,617 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\Pracovní doba.docx
[2010.07.16 12:32:43 | 000,010,663 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\JSME NA OBĚDĚ.docx
[2010.07.14 14:38:57 | 000,017,548 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\Octavia.TIF
[2010.07.13 10:27:15 | 000,031,019 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\Faktura 2010000064.pdf
[2010.07.13 08:33:53 | 005,708,491 | ---- | M] () -- C:\Documents and Settings\Sulcar\Plocha\Motor RS Fabia.zip
[2010.07.12 17:29:34 | 002,828,820 | ---- | M] () -- C:\Documents and Settings\Sulcar\Plocha\01.pdf
[2010.07.12 17:29:06 | 007,253,443 | ---- | M] () -- C:\Documents and Settings\Sulcar\Plocha\avia15-30.pdf
[2010.07.12 17:28:26 | 023,070,167 | ---- | M] () -- C:\Documents and Settings\Sulcar\Plocha\Avia data.pdf
[2010.07.12 14:53:12 | 000,000,140 | ---- | M] () -- C:\WINDOWS\parport.ini
[2010.07.12 11:00:40 | 000,556,552 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\Dobropis Berner.jpg
[2010.07.12 08:25:55 | 000,016,704 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\A6Q.TIF
[2010.07.09 13:16:04 | 000,015,928 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\R32_Ales_3.TIF
[2010.07.09 11:33:26 | 000,030,430 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\Interval Passat.pdf
[2010.07.09 11:03:58 | 000,015,120 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\R32_Ales_2.TIF
[2010.07.08 15:22:14 | 000,015,722 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\Felicie.TIF
[2010.07.08 15:15:33 | 000,004,096 | ---- | M] () -- C:\Documents and Settings\All Users\Dokumenty\0000121C.LCS
[2010.07.08 15:13:48 | 000,001,530 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\TECDOC CD 3.2010.lnk
[2010.07.07 20:08:23 | 000,000,120 | RH-- | M] () -- C:\WINDOWS\ssystda.dat
[2010.07.07 13:41:20 | 000,015,414 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\Seat.TIF
[2010.07.07 11:17:28 | 000,015,558 | ---- | M] () -- C:\Documents and Settings\Sulcar\Dokumenty\R32_Ales.TIF

========== Files Created - No Company Name ==========

[2010.08.04 15:42:42 | 000,015,448 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\Aleš_x.TIF
[2010.08.04 12:51:10 | 000,729,959 | ---- | C] () -- C:\Documents and Settings\Sulcar\Plocha\a4_skoda_octaviatour_autoradio_symphonycd_navod_k_obsluze.pdf
[2010.08.04 08:50:00 | 003,749,631 | R--- | C] () -- C:\Documents and Settings\Sulcar\Plocha\ComboFix.exe
[2010.08.04 08:16:45 | 000,001,512 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Recuva.lnk
[2010.08.03 16:29:25 | 000,250,071 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\VTP4.jpg
[2010.08.03 16:28:43 | 000,295,835 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\VTP3.jpg
[2010.08.03 16:27:58 | 000,284,257 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\VTP2.jpg
[2010.08.03 16:26:59 | 000,251,132 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\VTP1.jpg
[2010.08.03 16:24:25 | 000,469,191 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\Výpis z účtu 6_3.jpg
[2010.08.03 16:17:22 | 000,174,671 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\Výpis z účtu 6_2.jpg
[2010.08.03 16:15:27 | 000,948,702 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\Výpis z účtu 6.jpg
[2010.08.03 15:33:04 | 000,002,941 | ---- | C] () -- C:\Documents and Settings\Sulcar\Plocha\LOG-PC.zip
[2010.08.03 15:30:25 | 000,002,437 | ---- | C] () -- C:\Documents and Settings\Sulcar\Plocha\HiJackThis.lnk
[2010.08.03 11:57:50 | 000,018,950 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\VR6_Aleš.TIF
[2010.08.03 08:35:54 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2010.08.03 08:35:49 | 000,261,312 | ---- | C] () -- C:\cmldr
[2010.08.03 08:31:35 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2010.08.03 08:31:35 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2010.08.03 08:31:34 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2010.08.03 08:31:34 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2010.08.03 08:31:34 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2010.08.03 08:08:33 | 000,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2010.08.02 13:38:27 | 001,102,397 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\Výpis živnostenský rejstřík Lukáš.jpg
[2010.08.02 09:35:30 | 000,016,122 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\Polo_Aleš.TIF
[2010.08.02 09:01:59 | 009,332,864 | ---- | C] () -- C:\Documents and Settings\Sulcar\Plocha\Zabranjeno Pusenje - Pit Bull (BALKAN TUNES.mp3
[2010.08.02 08:52:18 | 002,899,277 | ---- | C] () -- C:\Documents and Settings\Sulcar\Plocha\Video 1.3gp
[2010.08.02 08:50:53 | 005,519,652 | ---- | C] () -- C:\Documents and Settings\Sulcar\Plocha\Video 10.3gp
[2010.08.02 08:47:23 | 015,086,806 | ---- | C] () -- C:\Documents and Settings\Sulcar\Plocha\Video 2.3gp
[2010.08.02 08:45:32 | 001,117,693 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\Hlášení pojistné události.jpg
[2010.08.02 08:44:38 | 000,226,497 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\Martin Trefný_1.jpg
[2010.08.02 08:43:42 | 000,247,000 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\Martin Trefný.jpg
[2010.08.02 08:33:04 | 058,705,204 | ---- | C] () -- C:\Documents and Settings\Sulcar\Plocha\Video 3.3gp
[2010.08.02 08:29:10 | 018,122,086 | ---- | C] () -- C:\Documents and Settings\Sulcar\Plocha\Video 4.3gp
[2010.08.02 08:24:40 | 019,934,777 | ---- | C] () -- C:\Documents and Settings\Sulcar\Plocha\Video 5.3gp
[2010.08.02 08:00:12 | 101,003,181 | ---- | C] () -- C:\Documents and Settings\Sulcar\Plocha\Video 6.3gp
[2010.08.02 07:58:31 | 005,837,842 | ---- | C] () -- C:\Documents and Settings\Sulcar\Plocha\Video 7.3gp
[2010.08.02 07:57:59 | 002,484,657 | ---- | C] () -- C:\Documents and Settings\Sulcar\Plocha\Video 8.3gp
[2010.08.02 07:53:24 | 018,260,123 | ---- | C] () -- C:\Documents and Settings\Sulcar\Plocha\Video 9.3gp
[2010.07.29 10:27:14 | 000,010,136 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\Rozpočet Renault Kangoo.xlsx
[2010.07.28 16:38:39 | 000,015,362 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\Aleš_xxxxx.TIF
[2010.07.27 20:08:16 | 000,000,000 | ---- | C] () -- C:\WINDOWS\tosOBEX.INI
[2010.07.27 17:41:44 | 000,000,715 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Bluetooth Manager.lnk
[2010.07.26 13:20:41 | 000,015,986 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\Leon_3.TIF
[2010.07.23 13:45:26 | 000,010,677 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\Corpo.xlsx
[2010.07.23 12:14:15 | 000,151,756 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\Spojka klima Opel.pdf
[2010.07.22 18:24:28 | 000,016,116 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\Golf_IV_JAN.TIF
[2010.07.21 18:41:29 | 000,030,650 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\Faktura 2010000066.pdf
[2010.07.21 18:39:35 | 000,084,608 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\Faktura 2010000066.TIF
[2010.07.21 14:08:12 | 000,022,997 | ---- | C] () -- C:\Documents and Settings\Sulcar\Plocha\Podnikatelský záměr.docx
[2010.07.21 09:58:50 | 000,015,946 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\Aleš_2.TIF
[2010.07.21 07:39:42 | 000,056,329 | ---- | C] () -- C:\Documents and Settings\Sulcar\Plocha\DSC02069.JPG
[2010.07.20 19:44:13 | 000,015,548 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\Leon_Aleš.TIF
[2010.07.20 16:00:17 | 000,029,684 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\Faktura 2010000065.TIF
[2010.07.20 07:11:23 | 000,047,946 | ---- | C] () -- C:\Documents and Settings\Sulcar\Plocha\DSC02068(2).JPG
[2010.07.20 07:10:44 | 000,047,946 | ---- | C] () -- C:\Documents and Settings\Sulcar\Plocha\DSC02068.JPG
[2010.07.19 14:40:37 | 000,028,206 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\Provozovna.docx
[2010.07.14 14:38:57 | 000,017,548 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\Octavia.TIF
[2010.07.13 10:27:15 | 000,031,019 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\Faktura 2010000064.pdf
[2010.07.13 08:31:25 | 005,708,491 | ---- | C] () -- C:\Documents and Settings\Sulcar\Plocha\Motor RS Fabia.zip
[2010.07.13 08:27:54 | 000,221,291 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\Imei_dll.dll
[2010.07.13 08:27:54 | 000,040,960 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\Sublock.dll
[2010.07.12 17:29:34 | 002,828,820 | ---- | C] () -- C:\Documents and Settings\Sulcar\Plocha\01.pdf
[2010.07.12 17:29:06 | 007,253,443 | ---- | C] () -- C:\Documents and Settings\Sulcar\Plocha\avia15-30.pdf
[2010.07.12 17:28:22 | 023,070,167 | ---- | C] () -- C:\Documents and Settings\Sulcar\Plocha\Avia data.pdf
[2010.07.12 14:53:12 | 000,000,140 | ---- | C] () -- C:\WINDOWS\parport.ini
[2010.07.12 11:00:38 | 000,556,552 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\Dobropis Berner.jpg
[2010.07.12 08:25:55 | 000,016,704 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\A6Q.TIF
[2010.07.09 13:16:04 | 000,015,928 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\R32_Ales_3.TIF
[2010.07.09 11:33:26 | 000,030,430 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\Interval Passat.pdf
[2010.07.09 11:03:58 | 000,015,120 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\R32_Ales_2.TIF
[2010.07.08 15:22:13 | 000,015,722 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\Felicie.TIF
[2010.07.08 15:14:33 | 000,004,096 | ---- | C] () -- C:\Documents and Settings\All Users\Dokumenty\0000121C.LCS
[2010.07.08 15:13:48 | 000,001,530 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\TECDOC CD 3.2010.lnk
[2010.07.08 08:41:01 | 002,700,358 | ---- | C] () -- C:\Documents and Settings\All Users\UninstallOfflineCatalogue.log
[2010.07.08 08:41:01 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\OfflineCatalogue_2_2010_TECDOC_CD.log
[2010.07.08 08:39:09 | 004,094,934 | ---- | C] () -- C:\Documents and Settings\All Users\OfflineCatalogue_3_2010_TECDOC_CD.log
[2010.07.07 13:41:20 | 000,015,414 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\Seat.TIF
[2010.07.07 11:17:27 | 000,015,558 | ---- | C] () -- C:\Documents and Settings\Sulcar\Dokumenty\R32_Ales.TIF
[2010.05.17 18:55:27 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\CommonDL.dll
[2010.05.17 18:55:27 | 000,002,395 | ---- | C] () -- C:\WINDOWS\System32\lgAxconfig.ini
[2010.05.12 20:05:08 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Irremote.ini
[2010.04.22 15:55:09 | 000,221,291 | ---- | C] () -- C:\WINDOWS\Imei_dll.dll
[2010.04.22 15:55:09 | 000,040,960 | ---- | C] () -- C:\WINDOWS\Sublock.dll
[2010.04.13 14:55:33 | 000,000,155 | ---- | C] () -- C:\WINDOWS\Crypkey.ini
[2010.04.13 14:55:29 | 000,021,638 | ---- | C] () -- C:\WINDOWS\System32\Ckldrv.sys
[2010.04.13 14:55:29 | 000,018,432 | ---- | C] () -- C:\WINDOWS\Setup_ck.dll
[2010.04.13 08:41:56 | 000,106,496 | ---- | C] () -- C:\WINDOWS\System32\VSHP1018.DLL
[2010.04.12 13:57:05 | 000,003,039 | ---- | C] () -- C:\WINDOWS\RbSystem.ini
[2010.04.12 13:55:59 | 000,012,800 | ---- | C] () -- C:\WINDOWS\System32\PWUtility.dll
[2010.04.12 13:55:59 | 000,007,168 | ---- | C] () -- C:\WINDOWS\System32\dtctrace.dll
[2010.04.12 13:55:58 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\xcd73532.dll
[2010.04.12 13:55:42 | 000,655,360 | ---- | C] () -- C:\WINDOWS\System32\dslang32.dll
[2010.04.12 13:55:42 | 000,327,680 | ---- | C] () -- C:\WINDOWS\System32\ldf251.dll
[2010.04.12 13:50:04 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010.04.12 13:19:04 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\fppent3a.dll
[2010.04.12 09:42:47 | 000,000,518 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2010.04.12 01:29:15 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4926.dll
[2010.01.30 09:06:31 | 000,000,226 | ---- | C] () -- C:\WINDOWS\lexstat.ini
[2010.01.30 09:06:08 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\lxbkvs.dll
[2010.01.30 09:06:05 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\LXBKLCNP.DLL
[2010.01.30 09:05:36 | 000,000,266 | ---- | C] () -- C:\WINDOWS\System32\lxbkcoin.ini
[2009.09.07 00:00:02 | 001,481,728 | ---- | C] () -- C:\WINDOWS\System32\LegitCheckControl.dll
[2009.09.07 00:00:02 | 000,190,976 | ---- | C] () -- C:\WINDOWS\System32\WgaLogon.dll
[2009.08.12 11:58:56 | 000,235,520 | ---- | C] () -- C:\WINDOWS\System32\libjcc.dll
[2006.12.05 13:05:06 | 000,114,688 | ---- | C] () -- C:\WINDOWS\System32\TosBtAcc.dll
[2005.07.22 21:30:20 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\TosCommAPI.dll

========== LOP Check ==========

[2010.01.30 09:08:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\BVRP Software
[2010.04.12 13:49:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2010.08.03 13:15:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2010.05.17 18:55:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\LGMOBILEAX
[2010.07.08 08:43:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\OfflineCatalog
[2010.08.06 08:32:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\organiser
[2010.07.08 08:43:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TECDOC_CD
[2010.04.13 15:24:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\WorkshopData
[2010.04.16 10:01:23 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Data aplikací\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[2010.04.12 13:53:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulcar\Data aplikací\DAEMON Tools Lite
[2010.06.03 18:57:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulcar\Data aplikací\FileZilla
[2010.04.29 10:28:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulcar\Data aplikací\GHISLER
[2010.08.03 11:36:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulcar\Data aplikací\ICQ
[2010.04.15 08:45:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulcar\Data aplikací\LG Electronics
[2010.06.09 09:59:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulcar\Data aplikací\ntr
[2010.04.16 11:45:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulcar\Data aplikací\ProtectDisc
[2010.06.03 10:42:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulcar\Data aplikací\Zoner
[2010.04.15 08:45:01 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\Sulcar\Data aplikací\{D94BA408-F110-488B-A65E-3AE7945F79E6}

========== Purity Check ==========


< End of report >
Nahoru
LuckkyLuke
nováček
Příspěvky: 44
Registrován: srpen 10
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Pomalá rychlost počítače - kouše se zvuk, nevyužívá celé

Příspěvekod LuckkyLuke » 06 srp 2010 08:49

OTL Extras logfile created on: 6.8.2010 8:37:28 - Run 1
OTL by OldTimer - Version 3.2.9.1 Folder = C:\Documents and Settings\Sulcar\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 54,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 73,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 153,38 Gb Total Space | 50,20 Gb Free Space | 32,73% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: KANCELAR
Current User Name: Sulcar
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Program Files\ICQ7.1\ICQ.exe" = C:\Program Files\ICQ7.1\ICQ.exe:*:Enabled:ICQ7.1 -- (ICQ, LLC.)
"C:\Program Files\ICQ7.1\aolload.exe" = C:\Program Files\ICQ7.1\aolload.exe:*:Enabled:aolload.exe -- (AOL LLC)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\ICQ7.1\ICQ.exe" = C:\Program Files\ICQ7.1\ICQ.exe:*:Enabled:ICQ7.1 -- (ICQ, LLC.)
"C:\Program Files\ICQ7.1\aolload.exe" = C:\Program Files\ICQ7.1\aolload.exe:*:Enabled:aolload.exe -- (AOL LLC)
"C:\Program Files\Skype\Plugin Manager\skypePM.exe" = C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager -- (Skype Technologies)
"C:\WINDOWS\system32\LEXPPS.EXE" = C:\WINDOWS\system32\LEXPPS.EXE:*:Enabled:LEXPPS.EXE -- (Lexmark International, Inc.)
"C:\totalcmd\TOTALCMD.EXE" = C:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit -- (Ghisler Software GmbH)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\WINDOWS\system32\sessmgr.exe" = C:\WINDOWS\system32\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0761C9A8-8F3A-4216-B4A7-B7AFBF24A24A}" = HiJackThis
"{1F4CB3FA-D899-4270-9E3A-3A409DCE99DD}" = Opel Vauxhall EPC Database
"{26A24AE4-039D-4CA4-87B4-2F83216013FF}" = Java(TM) 6 Update 20
"{28BE306E-5DA6-4F9C-BDB0-DBA3C8C6FFFD}" = QuickTime
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3E9324D4-F434-4158-B011-AC3752533590}" = Windows Genuine Advantage Validation v1.9.40.0 Cracked V4
"{4681B3AA-98AB-4F2C-B865-41F7A821E656}" = GM Global Infrastructure
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{553255F3-78FD-40F1-A6F8-6882140265FE}" = Apple Application Support
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{65F342DE-ECF3-4FC9-B11D-3D980BFA8A47}" = TECDOC CD
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{71BFC818-0CED-42D6-9C87-5142918957EE}" = ICQ7.1
"{78022242-A02A-429B-97CF-E712A48D42CC}" = Opel Vauxhall EPC
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90170405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office FrontPage 2003
"{ABD7DBE3-E344-4BCA-B8AD-4360494DD1D9}" = LG MC USB U330 driver
"{AC76BA86-7AD7-1029-7B44-A93000000001}" = Adobe Reader 9.3.3 - Czech
"{AC7EE5F1-0DE4-4256-8E43-92B73C8E6019}" = LG Bluetooth Drivers
"{B75C664F-070C-4E38-918C-DC98F877F837}" = ESET NOD32 Antivirus
"{BD65CAC7-6D63-4D56-BED0-B610281256DF}" = CorelDRAW Graphics Suite 12 Setup Files
"{C950420B-4182-49EA-850A-A6A2ABF06C6B}" = Marvell Miniport Driver
"{CDD6E518-FF45-486C-9F11-0BD23E9B79EF}" = GM Global Local Database
"{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}" = Bluetooth Stack for Windows by Toshiba
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{D1696920-9794-4BBC-8A30-7A88763DE5A2}" = ABBYY FineReader 5.0 Sprint
"{D94BA408-F110-488B-A65E-3AE7945F79E6}_is1" = Odinstalovat LG PC Suite III
"{E1640DA5-89B4-4F52-B15D-5DA3D14F29D4}" = LG USB Modem Drivers
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F45298E5-0083-426F-A668-1A2C5F04B8A0}" = FaxTools
"{FDC8065B-80DE-4466-B90B-2581F6D77DFF}" = Image Plugin
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe SVG Viewer" = Adobe SVG Viewer 3.0
"aff0ead39a69005ddd5efa3485372b57" = Dialogys
"Bosch Viewer" = Bosch Viewer
"CCleaner" = CCleaner
"Diagnostika elektronických systémů_is1" = Diagnostika elektronických systémů SD-SW-Setup:2010/1_1_14 KTS5
"ENTERPRISE" = Microsoft Office Enterprise 2007
"ESI[tronic]" = ESI[tronic]
"eTECH" = eTECH
"ETKA 7.2 Final" = ETKA 7.2 Final
"GoQ - NetRadio_is1" = GoQ - NetRadio
"Hardlock Device Drivers" = Hardlock Device Drivers
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"HP OrderReminder" = HP OrderReminder
"HP-LaserJet 1018" = LaserJet 1018
"InstallShield_{65F342DE-ECF3-4FC9-B11D-3D980BFA8A47}" = TECDOC CD 3.2010
"Lexmark X1100 Series" = Lexmark X1100 Series
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microcat for Ford Europe_is1" = Microcat for Ford Europe 03.2009
"Mozilla Firefox (3.6.8)" = Mozilla Firefox (3.6.8)
"PET7 PORSCHE 11/2009_is1" = PET7 PORSCHE
"Recuva" = Recuva
"Tecar Forum ETKA v2" = Tecar Forum ETKA v2
"Windows Genuine Advantage Validation v1.9.40.0 Cracked V4" = Windows Genuine Advantage Validation v1.9.40.0 Cracked V4
"Windows Media Format Runtime" = Windows Media Format Runtime
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR
"Zkušební hodnoty ESI" = Zkušební hodnoty ESI

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 20.7.2010 8:32:48 | Computer Name = KANCELAR | Source = Application Error | ID = 1000
Description = Chybující aplikace democlient.exe, verze 0.0.0.0, chybující modul
democlient.exe, verze 0.0.0.0, adresa chyby 0x00003ad2.

Error - 22.7.2010 23:52:17 | Computer Name = KANCELAR | Source = SBS_GM_TRANSBASE | ID = 4097
Description =

Error - 23.7.2010 5:34:33 | Computer Name = KANCELAR | Source = Application Error | ID = 1000
Description = Chybující aplikace acrord32.exe, verze 9.3.3.177, chybující modul
acrord32.dll, verze 9.3.3.177, adresa chyby 0x001181f5.

Error - 2.8.2010 1:44:00 | Computer Name = KANCELAR | Source = SBS_GM_TRANSBASE | ID = 4097
Description =

Error - 3.8.2010 1:46:24 | Computer Name = KANCELAR | Source = SBS_GM_TRANSBASE | ID = 4097
Description =

Error - 3.8.2010 2:28:35 | Computer Name = KANCELAR | Source = crypt32 | ID = 131083
Description = Extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou
aktualizaci v: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
se nezdařilo. Chyba: Při ověření se systémovými hodinami nebo časovým razítkem
podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.


Error - 3.8.2010 2:28:35 | Computer Name = KANCELAR | Source = crypt32 | ID = 131083
Description = Extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou
aktualizaci v: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
se nezdařilo. Chyba: Při ověření se systémovými hodinami nebo časovým razítkem
podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.


Error - 4.8.2010 2:14:02 | Computer Name = KANCELAR | Source = SBS_GM_TRANSBASE | ID = 4097
Description =

Error - 5.8.2010 3:07:47 | Computer Name = KANCELAR | Source = SBS_GM_TRANSBASE | ID = 4097
Description =

Error - 5.8.2010 3:07:55 | Computer Name = KANCELAR | Source = SBS_GM_TRANSBASE | ID = 4097
Description =

[ System Events ]
Error - 4.8.2010 10:00:37 | Computer Name = KANCELAR | Source = Service Control Manager | ID = 7034
Description = Služba Java Quick Starter byla neočekávaně ukončena. Tento stav nastal
již 1krát.

Error - 4.8.2010 10:00:37 | Computer Name = KANCELAR | Source = Service Control Manager | ID = 7034
Description = Služba LexBce Server byla neočekávaně ukončena. Tento stav nastal
již 1krát.

Error - 4.8.2010 10:12:13 | Computer Name = KANCELAR | Source = Service Control Manager | ID = 7023
Description = Služba HID Input Service byla ukončena s následující chybou: %%126

Error - 4.8.2010 10:12:13 | Computer Name = KANCELAR | Source = Service Control Manager | ID = 7000
Description = Služba Guardant Emulator Driver neuspěla při spuštění v důsledku následující
chyby: %%1450

Error - 4.8.2010 12:55:00 | Computer Name = KANCELAR | Source = Service Control Manager | ID = 7023
Description = Služba HID Input Service byla ukončena s následující chybou: %%126

Error - 4.8.2010 12:55:00 | Computer Name = KANCELAR | Source = Service Control Manager | ID = 7000
Description = Služba Guardant Emulator Driver neuspěla při spuštění v důsledku následující
chyby: %%1450

Error - 5.8.2010 3:06:15 | Computer Name = KANCELAR | Source = Service Control Manager | ID = 7023
Description = Služba HID Input Service byla ukončena s následující chybou: %%126

Error - 5.8.2010 3:06:15 | Computer Name = KANCELAR | Source = Service Control Manager | ID = 7000
Description = Služba Guardant Emulator Driver neuspěla při spuštění v důsledku následující
chyby: %%1450

Error - 6.8.2010 2:31:25 | Computer Name = KANCELAR | Source = Service Control Manager | ID = 7023
Description = Služba HID Input Service byla ukončena s následující chybou: %%126

Error - 6.8.2010 2:31:25 | Computer Name = KANCELAR | Source = Service Control Manager | ID = 7000
Description = Služba Guardant Emulator Driver neuspěla při spuštění v důsledku následující
chyby: %%1450


< End of report >
Nahoru
LuckkyLuke
nováček
Příspěvky: 44
Registrován: srpen 10
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Pomalá rychlost počítače - kouše se zvuk, nevyužívá celé

Příspěvekod LuckkyLuke » 06 srp 2010 08:51

RAM byly v pohodě. žádné chyby.

Kontrola chyb na Hard disku, běžel celou noc a ráno ještě nebyl dokončen. ak to zkusím ještě jednou přes noc.

Výše posílám ten OTL (první) a Extras (druhý)
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43296
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Pomalá rychlost počítače - kouše se zvuk, nevyužívá celé

Příspěvekod jaro3 » 06 srp 2010 19:58

"Windows Genuine Advantage Validation v1.9.40.0 Cracked V4" = Windows Genuine Advantage Validation v1.9.40.0 Cracked V4 to je naposledy!!!!! Jestli ještě jednou u Tebe toto uvidím , tak se odvirovávat nebude!!!!

Tento program znáš:
C:\Documents and Settings\Sulcar\Data aplikací\ntr ??

Ta kontrola na chyby , pokud tak dlouho trvá se asi snaží něco opravit, ano zkus ještě jednou přes noc.

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

vyčisti systém CCleanerem

a použij i T-Cleaner
smaže vše po Combu,MWAVu atd.-stáhneš>spustíš

**********************************************************************************************************************************
Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
DRV - (catchme) -- C:\ComboFix\catchme.sys File not found
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
O2 - BHO: (no name) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - No CLSID value found.
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/sh ... wflash.cab (Shockwave Flash Object)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\msdaipp - No CLSID value found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found

:Files
C:\WINDOWS\System32\*.tmp
C:\WINDOWS\*.tmp
C:\WINDOWS\system32\*.tmp.dll
C:\WINDOWS\system32\SET*.tmp
c:\windows\Tasks\*.job
C:\*.tmp
C:\WINDOWS\tasks\SA.DAT

:Reg
:Commands
[purity]
[emptytemp]
[EMPTYFLASH]
[start explorer]
[Reboot]


Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.

V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému

Toto otestuj na Virustotal
C:\WINDOWS\system32\ckldrv.sys
C:\Programme\Bosch\ESItronic\KTS500\WinIo.sys
C:\WINDOWS\Crypkey.ini
C:\WINDOWS\System32\PWUtility.dll
C:\WINDOWS\RbSystem.ini
C:\WINDOWS\System32\VSHP1018.DLL
C:\WINDOWS\System32\dslang32.dll
C:\WINDOWS\System32\ldf251.dll
C:\WINDOWS\System32\fppent3a.dll
C:\WINDOWS\System32\igfxCoIn_v4926.dll

Pokud už byl soubor testován-klikni na otestovat znovu.
Až skončí test všech antivirů, vlož sem pak odkazy na stránky s výsledky.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
LuckkyLuke
nováček
Příspěvky: 44
Registrován: srpen 10
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Pomalá rychlost počítače - kouše se zvuk, nevyužívá celé

Příspěvekod LuckkyLuke » 07 srp 2010 12:07

C:\Documents and Settings\Sulcar\Data aplikací\ntr ?? - nevím co to je!

Windows Genuine Advantage Validation v1.9.40.0 Cracked V4 - půjde pryč, kdy ho mám odinstalovat.

Ze včerejška na dnešek proběhla kontrola PC a v pohodě, ráno už byl pc normálně nastartovanej.

Jdu udělat ty věci co jsi psal...
Nahoru
LuckkyLuke
nováček
Příspěvky: 44
Registrován: srpen 10
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Pomalá rychlost počítače - kouše se zvuk, nevyužívá celé

Příspěvekod LuckkyLuke » 07 srp 2010 18:04

All processes killed
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
Error: No service named catchme was found to stop!
Service\Driver key catchme not found.
File C:\ComboFix\catchme.sys File not found not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\CustomizeSearch| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Local Page| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Page| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\ deleted successfully.
Starting removal of ActiveX control {8AD9C840-044E-11D1-B3E9-00805F499D93}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {D27CDB6E-AE6D-11CF-96B8-444553540000}
C:\WINDOWS\Downloaded Program Files\swflash.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{D27CDB6E-AE6D-11CF-96B8-444553540000}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D27CDB6E-AE6D-11CF-96B8-444553540000}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{D27CDB6E-AE6D-11CF-96B8-444553540000}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D27CDB6E-AE6D-11CF-96B8-444553540000}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ipp\ deleted successfully.
File Protocol\Handler\ipp - No CLSID value found not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msdaipp\ deleted successfully.
File Protocol\Handler\msdaipp - No CLSID value found not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session manager\\BootExecute:autocheck autochk * deleted successfully.
========== FILES ==========
File\Folder C:\WINDOWS\System32\*.tmp not found.
File\Folder C:\WINDOWS\*.tmp not found.
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
File\Folder c:\windows\Tasks\*.job not found.
File\Folder C:\*.tmp not found.
C:\WINDOWS\tasks\SA.DAT moved successfully.
========== REGISTRY ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Sulcar
->Temp folder emptied: 33171 bytes
->Temporary Internet Files folder emptied: 1535865 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 14637576 bytes
->Google Chrome cache emptied: 108767335 bytes
->Flash cache emptied: 736 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 8405015 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 127,00 mb


[EMPTYFLASH]

User: All Users

User: Default User

User: LocalService

User: NetworkService

User: Sulcar
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb


OTL by OldTimer - Version 3.2.9.1 log created on 08072010_175234

Files\Folders moved on Reboot...
File move failed. C:\WINDOWS\temp\hlktmp scheduled to be moved on reboot.

Registry entries deleted on Reboot...
Nahoru
LuckkyLuke
nováček
Příspěvky: 44
Registrován: srpen 10
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Pomalá rychlost počítače - kouše se zvuk, nevyužívá celé

Příspěvekod LuckkyLuke » 07 srp 2010 18:07

Soubor ckldrv.sys přijatý 2010.08.07 16:05:13 (UTC)
Současný stav: Dokončeno
Výsledek: 0/42 (0%)
Formátované
Vytisknout výsledky
Antivirus Verze Poslední aktualizace Výsledek
AhnLab-V3 2010.08.07.00 2010.08.06 -
AntiVir 8.2.4.34 2010.08.06 -
Antiy-AVL 2.0.3.7 2010.08.06 -
Authentium 5.2.0.5 2010.08.07 -
Avast 4.8.1351.0 2010.08.07 -
Avast5 5.0.332.0 2010.08.07 -
AVG 9.0.0.851 2010.08.07 -
BitDefender 7.2 2010.08.07 -
CAT-QuickHeal 11.00 2010.08.07 -
ClamAV 0.96.0.3-git 2010.08.07 -
Comodo 5672 2010.08.07 -
DrWeb 5.0.2.03300 2010.08.07 -
Emsisoft 5.0.0.36 2010.08.07 -
eSafe 7.0.17.0 2010.08.05 -
eTrust-Vet 36.1.7773 2010.08.07 -
F-Prot 4.6.1.107 2010.08.07 -
F-Secure 9.0.15370.0 2010.08.07 -
Fortinet 4.1.143.0 2010.08.07 -
GData 21 2010.08.07 -
Ikarus T3.1.1.84.0 2010.08.07 -
Jiangmin 13.0.900 2010.08.07 -
Kaspersky 7.0.0.125 2010.08.07 -
McAfee 5.400.0.1158 2010.08.07 -
McAfee-GW-Edition 2010.1 2010.08.06 -
Microsoft 1.6004 2010.08.07 -
NOD32 5348 2010.08.06 -
Norman 6.05.11 2010.08.07 -
nProtect 2010-08-07.01 2010.08.07 -
Panda 10.0.2.7 2010.08.07 -
PCTools 7.0.3.5 2010.08.07 -
Prevx 3.0 2010.08.07 -
Rising 22.59.05.04 2010.08.07 -
Sophos 4.56.0 2010.08.07 -
Sunbelt 6698 2010.08.07 -
SUPERAntiSpyware 4.40.0.1006 2010.08.07 -
Symantec 20101.1.1.7 2010.08.07 -
TheHacker 6.5.2.1.336 2010.08.07 -
TrendMicro 9.120.0.1004 2010.08.07 -
TrendMicro-HouseCall 9.120.0.1004 2010.08.07 -
VBA32 3.12.12.8 2010.08.04 -
ViRobot 2010.7.29.3961 2010.08.07 -
VirusBuster 5.0.27.0 2010.08.07 -
Rozšiřující informace
File size: 21638 bytes
MD5...: ce1e29d12057c2d685b2ed8dfdf6bae5
SHA1..: 0286e9ed541e18b61c2df4add8a456997fc9ec46
SHA256: eadea627605e8e502ef23655c3a3680335b40ec61ec52f4045ad7cbd0a8ae8b6
ssdeep: 192:mt7EXEYxuk0UcIkHPnllkshzb/cyK+7OQlKAN7c/Z1fhkTLYn6e541ES/bTa
deox:MJk0IE5xdK+TlNN7ofh7n6e+1/bGesh
PEiD..: -
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x4b20
timedatestamp.....: 0x48af1e34 (Fri Aug 22 20:14:44 2008)
machinetype.......: 0x14c (I386)

( 5 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x480 0x3164 0x3180 6.54 32624ac671e02867d7740ba84e8610c6
.rdata 0x3600 0x14c 0x180 4.37 da1afed1a2cadc4e73e0c90a42744aaf
.data 0x3780 0x1130 0x1180 0.07 b7d4fdf394a30ab1f768abc2597f6e12
INIT 0x4900 0x79e 0x800 5.79 5f116f8163728fd498a152d40002b56f
.reloc 0x5100 0x332 0x380 5.75 1d3162731d57bf761ced65ffac26540e

( 1 imports )
> ntoskrnl.exe: IoDeleteDevice, IoDeleteSymbolicLink, RtlInitUnicodeString, ObfDereferenceObject, KeWaitForSingleObject, KeReleaseSemaphore, KeQuerySystemTime, ZwClose, ZwWriteFile, ZwCreateFile, RtlFreeAnsiString, RtlUnicodeStringToAnsiString, RtlIntegerToUnicodeString, KeDelayExecutionThread, IofCompleteRequest, memcpy, ZwQueryInformationFile, RtlQueryRegistryValues, ZwReadFile, memset, RtlWriteRegistryValue, ZwSetInformationFile, ExAllocatePool, ExFreePoolWithTag, _stricmp, strchr, RtlTimeToTimeFields, ExSystemTimeToLocalTime, KeSetPriorityThread, KeGetCurrentThread, ObReferenceObjectByHandle, PsCreateSystemThread, KeInitializeSemaphore, ExAllocatePoolWithQuota, IoCreateSymbolicLink, IoCreateDevice, KeTickCount, KeBugCheckEx, RtlUnwind

( 0 exports )
RDS...: NSRL Reference Data Set
-
pdfid.: -
trid..: Clipper DOS Executable (33.4%)
Generic Win/DOS Executable (33.2%)
DOS Executable Generic (33.1%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.1%)
Symantec Reputation Network: Suspicious.Insight http://www.symantec.com/security_respon ... 23-0550-99
sigcheck:
publisher....: n/a
copyright....: n/a
product......: n/a
description..: n/a
original name: n/a
internal name: n/a
file version.: n/a
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
Nahoru
LuckkyLuke
nováček
Příspěvky: 44
Registrován: srpen 10
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Pomalá rychlost počítače - kouše se zvuk, nevyužívá celé

Příspěvekod LuckkyLuke » 07 srp 2010 18:09

Soubor WinIo.sys přijatý 2010.08.07 16:07:48 (UTC)
Současný stav: Dokončeno
Výsledek: 2/42 (4.77%)
Formátované
Vytisknout výsledky
Antivirus Verze Poslední aktualizace Výsledek
AhnLab-V3 2010.08.07.00 2010.08.06 -
AntiVir 8.2.4.34 2010.08.06 -
Antiy-AVL 2.0.3.7 2010.08.06 -
Authentium 5.2.0.5 2010.08.07 -
Avast 4.8.1351.0 2010.08.07 -
Avast5 5.0.332.0 2010.08.07 -
AVG 9.0.0.851 2010.08.07 -
BitDefender 7.2 2010.08.07 -
CAT-QuickHeal 11.00 2010.08.07 -
ClamAV 0.96.0.3-git 2010.08.07 -
Comodo 5672 2010.08.07 -
DrWeb 5.0.2.03300 2010.08.07 -
Emsisoft 5.0.0.36 2010.08.07 -
eSafe 7.0.17.0 2010.08.05 Win32.Hacktool.Rootk
eTrust-Vet 36.1.7773 2010.08.07 -
F-Prot 4.6.1.107 2010.08.07 -
F-Secure 9.0.15370.0 2010.08.07 -
Fortinet 4.1.143.0 2010.08.07 -
GData 21 2010.08.07 -
Ikarus T3.1.1.84.0 2010.08.07 -
Jiangmin 13.0.900 2010.08.07 -
Kaspersky 7.0.0.125 2010.08.07 -
McAfee 5.400.0.1158 2010.08.07 -
McAfee-GW-Edition 2010.1 2010.08.06 Heuristic.BehavesLike.Win32.Rootkit.H
Microsoft 1.6004 2010.08.07 -
NOD32 5348 2010.08.06 -
Norman 6.05.11 2010.08.07 -
nProtect 2010-08-07.01 2010.08.07 -
Panda 10.0.2.7 2010.08.07 -
PCTools 7.0.3.5 2010.08.07 -
Prevx 3.0 2010.08.07 -
Rising 22.59.05.04 2010.08.07 -
Sophos 4.56.0 2010.08.07 -
Sunbelt 6698 2010.08.07 -
SUPERAntiSpyware 4.40.0.1006 2010.08.07 -
Symantec 20101.1.1.7 2010.08.07 -
TheHacker 6.5.2.1.336 2010.08.07 -
TrendMicro 9.120.0.1004 2010.08.07 -
TrendMicro-HouseCall 9.120.0.1004 2010.08.07 -
VBA32 3.12.12.8 2010.08.04 -
ViRobot 2010.7.29.3961 2010.08.07 -
VirusBuster 5.0.27.0 2010.08.07 -
Rozšiřující informace
File size: 4944 bytes
MD5...: 7e5a7cf19504af7ddaf4fa36261940d1
SHA1..: baac4c3ce5a46a73dbfbe98c8d89489d04e488a7
SHA256: e665441a0968e7ee6eb246c4b984ff7449d7905890e55e07f251464d60191a6d
ssdeep: 96:VsXktSPyUFouQWu5GQt3RnP3tzCEKsomeL28L1:2XuHIC7tPeL
PEiD..: -
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x344
timedatestamp.....: 0x3c7ff0bb (Fri Mar 01 21:20:59 2002)
machinetype.......: 0x14c (I386)

( 4 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x260 0x4da 0x4e0 5.76 603fac2a3ae327f6ff2c0367917bdb70
.data 0x740 0x4 0x20 0.00 70bc8f4b72a86921468bf8e8441dce51
INIT 0x760 0x218 0x220 4.95 a31ab86c0e91b671c71d868b70d1e524
.reloc 0x980 0x6c 0x80 3.44 e5b2291987c1a2cb1614a41fe21dfb8b

( 2 imports )
> ntoskrnl.exe: RtlInitUnicodeString, IoCreateDevice, MmAllocateNonCachedMemory, MmFreeNonCachedMemory, Ke386SetIoAccessMap, IoCreateSymbolicLink, IofCompleteRequest, Ke386IoSetAccessProcess, IoDeleteSymbolicLink, ZwClose, ZwMapViewOfSection, ObReferenceObjectByHandle, ZwOpenSection, ZwUnmapViewOfSection, IoDeleteDevice, IoGetCurrentProcess
> HAL.dll: HalTranslateBusAddress

( 0 exports )
RDS...: NSRL Reference Data Set
-
pdfid.: -
trid..: Win32 Executable Generic (68.0%)
Generic Win/DOS Executable (15.9%)
DOS Executable Generic (15.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
sigcheck:
publisher....: n/a
copyright....: n/a
product......: n/a
description..: n/a
original name: n/a
internal name: n/a
file version.: n/a
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
Nahoru
LuckkyLuke
nováček
Příspěvky: 44
Registrován: srpen 10
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Pomalá rychlost počítače - kouše se zvuk, nevyužívá celé

Příspěvekod LuckkyLuke » 07 srp 2010 18:10

Soubor Crypkey.ini přijatý 2010.08.07 16:09:30 (UTC)
Současný stav: Dokončeno
Výsledek: 0/42 (0%)
Formátované
Vytisknout výsledky
Antivirus Verze Poslední aktualizace Výsledek
AhnLab-V3 2010.08.07.00 2010.08.06 -
AntiVir 8.2.4.34 2010.08.06 -
Antiy-AVL 2.0.3.7 2010.08.06 -
Authentium 5.2.0.5 2010.08.07 -
Avast 4.8.1351.0 2010.08.07 -
Avast5 5.0.332.0 2010.08.07 -
AVG 9.0.0.851 2010.08.07 -
BitDefender 7.2 2010.08.07 -
CAT-QuickHeal 11.00 2010.08.07 -
ClamAV 0.96.0.3-git 2010.08.07 -
Comodo 5672 2010.08.07 -
DrWeb 5.0.2.03300 2010.08.07 -
Emsisoft 5.0.0.36 2010.08.07 -
eSafe 7.0.17.0 2010.08.05 -
eTrust-Vet 36.1.7773 2010.08.07 -
F-Prot 4.6.1.107 2010.08.07 -
F-Secure 9.0.15370.0 2010.08.07 -
Fortinet 4.1.143.0 2010.08.07 -
GData 21 2010.08.07 -
Ikarus T3.1.1.84.0 2010.08.07 -
Jiangmin 13.0.900 2010.08.07 -
Kaspersky 7.0.0.125 2010.08.07 -
McAfee 5.400.0.1158 2010.08.07 -
McAfee-GW-Edition 2010.1 2010.08.06 -
Microsoft 1.6004 2010.08.07 -
NOD32 5348 2010.08.06 -
Norman 6.05.11 2010.08.07 -
nProtect 2010-08-07.01 2010.08.07 -
Panda 10.0.2.7 2010.08.07 -
PCTools 7.0.3.5 2010.08.07 -
Prevx 3.0 2010.08.07 -
Rising 22.59.05.04 2010.08.07 -
Sophos 4.56.0 2010.08.07 -
Sunbelt 6698 2010.08.07 -
SUPERAntiSpyware 4.40.0.1006 2010.08.07 -
Symantec 20101.1.1.7 2010.08.07 -
TheHacker 6.5.2.1.336 2010.08.07 -
TrendMicro 9.120.0.1004 2010.08.07 -
TrendMicro-HouseCall 9.120.0.1004 2010.08.07 -
VBA32 3.12.12.8 2010.08.04 -
ViRobot 2010.7.29.3961 2010.08.07 -
VirusBuster 5.0.27.0 2010.08.07 -
Rozšiřující informace
File size: 155 bytes
MD5...: 270c2acc373e52de5087989990d0d453
SHA1..: cb93bc63081be8dd580b7be0445565ac38ee75c8
SHA256: ce1fef1b5a9fde42fe9c22f3600f8ec28e12679d20e58bde39325a786182362f
ssdeep: 3:74XQHElH1MARm5IDSRVECVSRQCv82lH1MARm5IDSRVECVSRQCvn:7gEARm5IDS
RuCwRl82EARm5IDSRuCwRl
PEiD..: -
PEInfo: -
RDS...: NSRL Reference Data Set
-
trid..: Generic INI configuration (100.0%)
pdfid.: -
sigcheck:
publisher....: n/a
copyright....: n/a
product......: n/a
description..: n/a
original name: n/a
internal name: n/a
file version.: n/a
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
Nahoru
LuckkyLuke
nováček
Příspěvky: 44
Registrován: srpen 10
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Pomalá rychlost počítače - kouše se zvuk, nevyužívá celé

Příspěvekod LuckkyLuke » 07 srp 2010 18:12

Soubor PWUtility.dll přijatý 2010.08.07 16:11:07 (UTC)
Současný stav: Dokončeno
Výsledek: 0/42 (0%)
Formátované
Vytisknout výsledky
Antivirus Verze Poslední aktualizace Výsledek
AhnLab-V3 2010.08.07.00 2010.08.06 -
AntiVir 8.2.4.34 2010.08.06 -
Antiy-AVL 2.0.3.7 2010.08.06 -
Authentium 5.2.0.5 2010.08.07 -
Avast 4.8.1351.0 2010.08.07 -
Avast5 5.0.332.0 2010.08.07 -
AVG 9.0.0.851 2010.08.07 -
BitDefender 7.2 2010.08.07 -
CAT-QuickHeal 11.00 2010.08.07 -
ClamAV 0.96.0.3-git 2010.08.07 -
Comodo 5672 2010.08.07 -
DrWeb 5.0.2.03300 2010.08.07 -
Emsisoft 5.0.0.36 2010.08.07 -
eSafe 7.0.17.0 2010.08.05 -
eTrust-Vet 36.1.7773 2010.08.07 -
F-Prot 4.6.1.107 2010.08.07 -
F-Secure 9.0.15370.0 2010.08.07 -
Fortinet 4.1.143.0 2010.08.07 -
GData 21 2010.08.07 -
Ikarus T3.1.1.84.0 2010.08.07 -
Jiangmin 13.0.900 2010.08.07 -
Kaspersky 7.0.0.125 2010.08.07 -
McAfee 5.400.0.1158 2010.08.07 -
McAfee-GW-Edition 2010.1 2010.08.06 -
Microsoft 1.6004 2010.08.07 -
NOD32 5348 2010.08.06 -
Norman 6.05.11 2010.08.07 -
nProtect 2010-08-07.01 2010.08.07 -
Panda 10.0.2.7 2010.08.07 -
PCTools 7.0.3.5 2010.08.07 -
Prevx 3.0 2010.08.07 -
Rising 22.59.05.04 2010.08.07 -
Sophos 4.56.0 2010.08.07 -
Sunbelt 6698 2010.08.07 -
SUPERAntiSpyware 4.40.0.1006 2010.08.07 -
Symantec 20101.1.1.7 2010.08.07 -
TheHacker 6.5.2.1.336 2010.08.07 -
TrendMicro 9.120.0.1004 2010.08.07 -
TrendMicro-HouseCall 9.120.0.1004 2010.08.07 -
VBA32 3.12.12.8 2010.08.04 -
ViRobot 2010.7.29.3961 2010.08.07 -
VirusBuster 5.0.27.0 2010.08.07 -
Rozšiřující informace
File size: 12800 bytes
MD5...: 37f210e36d2449ed2ccdfe56f465fe6f
SHA1..: 51c7560361424098ccadfc728853208d422cfd32
SHA256: d85029564fc351f6947370e73004e0c0bf638cc85539556a682a50ab37a8d27b
ssdeep: 192:flJDDkZlsAmACe4WRZHcmCPB+fB0dQyV5Awq5RwJCZi8w:flYjL4vmBEQyci
JCkT
PEiD..: -
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x125d
timedatestamp.....: 0x361cc501 (Thu Oct 08 13:58:25 1998)
machinetype.......: 0x14c (I386)

( 7 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0xd58 0xe00 6.10 acf6c410247b4c03e3594643c59eabeb
.rdata 0x2000 0x306 0x400 3.76 68a3dd8d764d2f9a6223b06d4ecad705
.data 0x3000 0xc0 0x200 0.39 868c039736865fd2c1b0ba572857f74e
.idata 0x4000 0x34a 0x400 3.81 e0378ac5604148c8204492afd28bca76
.CRT 0x5000 0x4 0x200 0.06 98d327d1ca4a35050443fe71ae1c2589
.rsrc 0x6000 0xe04 0x1000 3.82 9153511bc08afa761b7de0c323a3ac0b
.reloc 0x7000 0x3be 0x400 3.33 25419f06fdc022700e7ef271058446c6

( 3 imports )
> KERNEL32.dll: GlobalLock, DeleteCriticalSection, InitializeCriticalSection, DisableThreadLibraryCalls, HeapFree, HeapCreate, HeapAlloc, GlobalUnlock, InterlockedIncrement, InterlockedDecrement, DebugBreak, EnterCriticalSection, LeaveCriticalSection, lstrlenA, MultiByteToWideChar
> USER32.dll: IsWindow
> comdlg32.dll: PrintDlgA

( 4 exports )
DllCanUnloadNow, DllGetClassObject, DllRegisterServer, DllUnregisterServer
RDS...: NSRL Reference Data Set
-
pdfid.: -
trid..: DirectShow filter (46.7%)
Windows OCX File (28.6%)
Win64 Executable Generic (19.8%)
Win32 Executable Generic (1.9%)
Win32 Dynamic Link Library (generic) (1.7%)
sigcheck:
publisher....:
copyright....: Copyright 1997
product......: PWUtility Module
description..: PWUtility Module
original name: PWUTILITY.DLL
internal name: PWUTILITY
file version.: 1, 0, 0, 1
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
Nahoru
Zamčeno

Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 12 hostů