Pomalé zapínání pc, 5x svchost

Zpráva

VydraMan · #1 Příspěvek od **VydraMan** » 11 srp 2011 10:47

Prosím o kontrolu logu.
Důvody : PC se mi pomalu zapíná, mám v Správce úloh 5x položku svchost.

Log :

Logfile of random's system information tool 1.09 (written by random/random)
Run by Nemám co dělat at 2011-08-11 11:42:50
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 166 GB (69%) free of 238 GB
Total RAM: 2046 MB (72% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:44:30, on 11.8.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\IObit\Advanced SystemCare 4\ASCService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PifSvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\IObit\Advanced SystemCare 4\ASCTray.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Documents and Settings\Nemám co dělat\Local Settings\Data aplikací\Google\Update\1.3.21.65\GoogleCrashHandler.exe
C:\Program Files\IObit\Advanced SystemCare 4\Asc.exe
C:\Program Files\Axesstel\Axesstel Manager\AxessManager.exe
C:\WINDOWS\system32\svchost.exe
C:\Documents and Settings\Nemám co dělat\Dokumenty\Downloads\RSIT.exe
C:\Program Files\trend micro\Nemám co dělat.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - (no file)
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - (no file)
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [VirtualCloneDrive] "C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
O4 - HKLM\..\Run: [USBToolTip] C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [NVIDIA nTune] "C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe" clear
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Advanced SystemCare 4] C:\Program Files\IObit\Advanced SystemCare 4\ASCTray.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [NeroHomeFirstStart] C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [NeroHomeFirstStart] C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - S-1-5-18 Startup: PowerReg Scheduler.exe (User 'SYSTEM')
O4 - .DEFAULT Startup: PowerReg Scheduler.exe (User 'Default user')
O4 - Startup: PowerReg Scheduler.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 0997542093
O17 - HKLM\System\CCS\Services\Tcpip\..\{36179F1C-30E7-4272-9349-E88DE3C6305F}: NameServer = 160.218.167.5 194.228.211.33
O17 - HKLM\System\CS1\Services\Tcpip\..\{36179F1C-30E7-4272-9349-E88DE3C6305F}: NameServer = 160.218.167.5 194.228.211.33
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - Unknown owner - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (file missing)
O23 - Service: Advanced SystemCare Service (AdvancedSystemCareService) - IObit - C:\Program Files\IObit\Advanced SystemCare 4\ASCService.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PifSvc.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: nTune Service (nTuneService) - NVIDIA - C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Plánovač automatické aktualizace LiveUpdate - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe

--
End of file - 9768 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\ASC4_AutoSweep.job
C:\WINDOWS\tasks\ASC4_AutoUpdate.job
C:\WINDOWS\tasks\AWC AutoSweep.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3615762775-2647865256-2770328900-1007Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3615762775-2647865256-2770328900-1007UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
Yahoo! Companion BHO

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll [2003-11-04 54248]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-05-16 1164680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-07-26 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-07-26 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-10-25 16855552]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2008-05-02 13529088]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2008-05-02 86016]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-09 153136]
"CloneCDTray"=C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe [2005-05-19 57344]
"VirtualCloneDrive"=C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2005-04-12 45056]
"USBToolTip"=C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe [2007-02-20 199752]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2009-11-16 2054360]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Malwarebytes' Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2011-07-06 449584]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"NVIDIA nTune"=C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe [2007-07-20 81920]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-03-12 153136]
"Advanced SystemCare 4"=C:\Program Files\IObit\Advanced SystemCare 4\ASCTray.exe [2011-05-28 412560]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Shockwave Updater"= []

C:\Documents and Settings\Nemám co dělat\Nabídka Start\Programy\Po spuštění
PowerReg Scheduler.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveSearch"=1
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft Games\Zoo Tycoon 2\zt.exe"="C:\Program Files\Microsoft Games\Zoo Tycoon 2\zt.exe:*:Enabled:Zoo Tycoon 2 Executable"
"C:\Program Files\Warthog\Rally Championship Xtreme\Rally.exe"="C:\Program Files\Warthog\Rally Championship Xtreme\Rally.exe:*:Enabled:Rally"
"C:\WINDOWS\system32\dplaysvr.exe"="C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper"
"C:\Program Files\Pinnacle\Studio 14\Programs\RM.exe"="C:\Program Files\Pinnacle\Studio 14\Programs\RM.exe:*:Enabled:Render Manager"
"C:\Program Files\Pinnacle\Studio 14\Programs\Studio.exe"="C:\Program Files\Pinnacle\Studio 14\Programs\Studio.exe:*:Enabled:Studio"
"C:\Program Files\Pinnacle\Studio 14\Programs\umi.exe"="C:\Program Files\Pinnacle\Studio 14\Programs\umi.exe:*:Enabled:umi"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe"="C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM)"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Google\Google Earth\client\googleearth.exe"="C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth"
"C:\Program Files\Google\Google Earth\plugin\geplugin.exe"="C:\Program Files\Google\Google Earth\plugin\geplugin.exe:*:Enabled:Google Earth"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=i263_32.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.VP60"=C:\WINDOWS\system32\vp6vfw.dll
"vidc.VP61"=C:\WINDOWS\system32\vp6vfw.dll
"msacm.g723"=g723.acm
"vidc.I263"=I263_32.drv
"vidc.mjpg"=pvmjpg30.dll

======List of files/folders created in the last 1 month======

2011-08-11 11:36:41 ----D---- C:\rsit
2011-08-11 11:36:41 ----D---- C:\Program Files\trend micro
2011-08-11 11:26:51 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2011-08-11 11:26:47 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-08-11 11:26:47 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2011-08-10 09:31:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2536276-v2$
2011-08-10 09:31:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2570222$
2011-08-10 09:27:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2562937$
2011-08-10 09:27:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2566454$
2011-08-10 09:27:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2567680$
2011-07-28 17:08:05 ----D---- C:\Documents and Settings\Nemám co dělat\Data aplikací\Malwarebytes
2011-07-28 17:07:57 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2011-07-27 11:02:40 ----D---- C:\WINDOWS\system32\Adobe
2011-07-26 11:42:59 ----D---- C:\WINDOWS\Sun
2011-07-26 11:42:19 ----D---- C:\Documents and Settings\All Users\Data aplikací\Sun
2011-07-26 11:42:18 ----D---- C:\Program Files\Common Files\Java
2011-07-26 11:42:11 ----A---- C:\WINDOWS\system32\javaws.exe
2011-07-26 11:42:11 ----A---- C:\WINDOWS\system32\javaw.exe
2011-07-26 11:42:11 ----A---- C:\WINDOWS\system32\java.exe
2011-07-26 11:42:11 ----A---- C:\WINDOWS\system32\deployJava1.dll
2011-07-26 11:41:58 ----D---- C:\Program Files\Java
2011-07-26 11:39:57 ----D---- C:\Documents and Settings\Nemám co dělat\Data aplikací\Sun
2011-07-22 21:23:57 ----D---- C:\Documents and Settings\Nemám co dělat\Data aplikací\Google
2011-07-22 21:20:39 ----D---- C:\Program Files\Google
2011-07-22 20:59:29 ----D---- C:\Documents and Settings\Nemám co dělat\Data aplikací\Skype
2011-07-22 20:59:08 ----RD---- C:\Program Files\Skype
2011-07-22 20:59:03 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2011-07-22 20:04:08 ----RA---- C:\Program Files\MSP_Uninstall.exe
2011-07-22 20:04:08 ----RA---- C:\Program Files\axesstel.dll
2011-07-19 09:30:33 ----D---- C:\Program Files\Microsoft Bootvis
2011-07-18 19:34:41 ----D---- C:\WINDOWS\pss
2011-07-18 19:27:47 ----HDC---- C:\WINDOWS\$NtUninstallKB954154_WM11$
2011-07-18 19:27:43 ----HDC---- C:\WINDOWS\$NtUninstallKB929399$
2011-07-18 19:27:29 ----HDC---- C:\WINDOWS\$NtUninstallKB939683$
2011-07-18 18:55:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2507938$
2011-07-18 18:55:51 ----HDC---- C:\WINDOWS\$NtUninstallKB2555917$
2011-07-18 18:55:44 ----HDC---- C:\WINDOWS\$NtUninstallKB2541763$
2011-07-18 18:54:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2544521$
2011-07-18 18:53:54 ----HDC---- C:\WINDOWS\$NtUninstallKB2530548$
2011-07-18 18:53:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2503665$
2011-07-18 18:53:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2476490$
2011-07-18 18:53:37 ----HDC---- C:\WINDOWS\$NtUninstallKB2536276$
2011-07-18 18:53:31 ----HDC---- C:\WINDOWS\$NtUninstallKB2535512$
2011-07-18 18:53:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2544893$
2011-07-18 18:53:20 ----HDC---- C:\WINDOWS\$NtUninstallKB2524375$
2011-07-18 18:53:13 ----HDC---- C:\WINDOWS\$NtUninstallKB2492386$
2011-07-18 18:53:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2509553$
2011-07-18 18:53:01 ----HDC---- C:\WINDOWS\$NtUninstallKB2412687$
2011-07-18 18:52:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2510581$
2011-07-18 18:51:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2507618$
2011-07-18 18:51:01 ----HDC---- C:\WINDOWS\$NtUninstallKB2508272$
2011-07-18 18:50:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2506212$
2011-07-18 18:50:51 ----HDC---- C:\WINDOWS\$NtUninstallKB2508429$
2011-07-18 18:50:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2485663$
2011-07-18 18:50:41 ----HDC---- C:\WINDOWS\$NtUninstallKB2481109$
2011-07-18 18:50:36 ----HDC---- C:\WINDOWS\$NtUninstallKB2479943$
2011-07-18 18:50:30 ----HDC---- C:\WINDOWS\$NtUninstallKB971029$
2011-07-18 18:50:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2393802$
2011-07-18 18:50:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2478960$
2011-07-18 18:50:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2483185$
2011-07-18 18:50:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2478971$
2011-07-18 18:49:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2419632$
2011-07-18 18:49:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2440591$
2011-07-18 18:49:48 ----HDC---- C:\WINDOWS\$NtUninstallKB2443685$
2011-07-18 18:49:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2443105$
2011-07-18 18:49:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2423089$
2011-07-18 18:49:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2079403$
2011-07-18 18:47:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2360937$
2011-07-18 18:47:33 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2011-07-18 18:47:27 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2011-07-18 18:47:21 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2011-07-18 18:47:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$
2011-07-18 18:47:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2011-07-18 18:47:06 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2011-07-18 18:47:01 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$
2011-07-18 18:46:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2347290$
2011-07-18 18:46:51 ----HDC---- C:\WINDOWS\$NtUninstallKB981322$
2011-07-18 18:46:45 ----HDC---- C:\WINDOWS\$NtUninstallKB980436$
2011-07-18 18:46:39 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$
2011-07-18 18:46:33 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$
2011-07-18 18:46:29 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$
2011-07-18 18:46:10 ----D---- C:\WINDOWS\system32\WindowsPowerShell
2011-07-18 18:46:09 ----D---- C:\WINDOWS\system32\winrm
2011-07-18 18:46:09 ----D---- C:\WINDOWS\system32\GroupPolicy
2011-07-18 18:46:06 ----HDC---- C:\WINDOWS\$968930Uinstall_KB968930$
2011-07-18 18:46:05 ----D---- C:\WINDOWS\$NtUninstallKB968930$
2011-07-18 18:43:54 ----HDC---- C:\WINDOWS\$NtUninstallKB971513$
2011-07-18 18:43:50 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2011-07-18 18:43:44 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2011-07-18 18:43:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2467659$
2011-07-18 18:43:01 ----D---- C:\WINDOWS\ie8updates
2011-07-18 18:42:47 ----D---- C:\WINDOWS\WBEM
2011-07-18 18:41:57 ----HDC---- C:\WINDOWS\ie8
2011-07-18 18:29:30 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2011-07-18 18:29:25 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2011-07-18 18:29:11 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2011-07-18 18:28:37 ----N---- C:\WINDOWS\system32\spmsg.dll
2011-07-18 18:28:36 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$
2011-07-18 18:28:24 ----D---- C:\Program Files\Windows Media Connect 2
2011-07-18 18:28:15 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
2011-07-18 18:27:45 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2011-07-18 18:27:25 ----D---- C:\WINDOWS\system32\drivers\UMDF
2011-07-18 18:27:22 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$
2011-07-18 18:26:09 ----D---- C:\WINDOWS\system32\URTTEMP
2011-07-18 17:01:24 ----D---- C:\WINDOWS\Prefetch
2011-07-18 16:53:26 ----HDC---- C:\WINDOWS\$NtUninsta

#2 Příspěvek od **vyosek** » 11 srp 2011 12:33

Zdravim a pekny den preji

Vidim nainstalovany MBAM, delal jste jim sken

Log neni cely, zkuste jej jeste jednou vygenerovat - pokud je moc dlouhy, tak jej rozdelte do vice prispevku

VydraMan · #3 Příspěvek od **VydraMan** » 11 srp 2011 12:37

MBAM - sken jsem dnes dělal, PC čisté. Pri aktualizaci mi píše že je aktuální ale databáze je stará víc jak 35 dní.
Log : hned to bude!

VydraMan · #4 Příspěvek od **VydraMan** » 11 srp 2011 12:40

Logfile of random's system information tool 1.09 (written by random/random)
Run by Nemám co dělat at 2011-08-11 13:38:34
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 166 GB (69%) free of 238 GB
Total RAM: 2046 MB (71% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:40:19, on 11.8.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\IObit\Advanced SystemCare 4\ASCService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PifSvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\IObit\Advanced SystemCare 4\ASCTray.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Documents and Settings\Nemám co dělat\Local Settings\Data aplikací\Google\Update\1.3.21.65\GoogleCrashHandler.exe
C:\Program Files\IObit\Advanced SystemCare 4\Asc.exe
C:\Program Files\Axesstel\Axesstel Manager\AxessManager.exe
C:\WINDOWS\system32\svchost.exe
C:\Documents and Settings\Nemám co dělat\Plocha\RSIT.exe
C:\Program Files\trend micro\Nemám co dělat.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - (no file)
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - (no file)
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [VirtualCloneDrive] "C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
O4 - HKLM\..\Run: [USBToolTip] C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [NVIDIA nTune] "C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe" clear
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Advanced SystemCare 4] C:\Program Files\IObit\Advanced SystemCare 4\ASCTray.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [NeroHomeFirstStart] C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [NeroHomeFirstStart] C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - S-1-5-18 Startup: PowerReg Scheduler.exe (User 'SYSTEM')
O4 - .DEFAULT Startup: PowerReg Scheduler.exe (User 'Default user')
O4 - Startup: PowerReg Scheduler.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 0997542093
O17 - HKLM\System\CCS\Services\Tcpip\..\{36179F1C-30E7-4272-9349-E88DE3C6305F}: NameServer = 160.218.167.5 194.228.211.33
O17 - HKLM\System\CS1\Services\Tcpip\..\{36179F1C-30E7-4272-9349-E88DE3C6305F}: NameServer = 160.218.167.5 194.228.211.33
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - Unknown owner - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (file missing)
O23 - Service: Advanced SystemCare Service (AdvancedSystemCareService) - IObit - C:\Program Files\IObit\Advanced SystemCare 4\ASCService.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PifSvc.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: nTune Service (nTuneService) - NVIDIA - C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Plánovač automatické aktualizace LiveUpdate - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe

--
End of file - 9755 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\ASC4_AutoSweep.job
C:\WINDOWS\tasks\ASC4_AutoUpdate.job
C:\WINDOWS\tasks\AWC AutoSweep.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3615762775-2647865256-2770328900-1007Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3615762775-2647865256-2770328900-1007UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
Yahoo! Companion BHO

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll [2003-11-04 54248]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-05-16 1164680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-07-26 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-07-26 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-10-25 16855552]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2008-05-02 13529088]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2008-05-02 86016]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-09 153136]
"CloneCDTray"=C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe [2005-05-19 57344]
"VirtualCloneDrive"=C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2005-04-12 45056]
"USBToolTip"=C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe [2007-02-20 199752]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2009-11-16 2054360]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Malwarebytes' Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2011-07-06 449584]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"NVIDIA nTune"=C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe [2007-07-20 81920]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-03-12 153136]
"Advanced SystemCare 4"=C:\Program Files\IObit\Advanced SystemCare 4\ASCTray.exe [2011-05-28 412560]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Shockwave Updater"= []

C:\Documents and Settings\Nemám co dělat\Nabídka Start\Programy\Po spuštění
PowerReg Scheduler.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveSearch"=1
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft Games\Zoo Tycoon 2\zt.exe"="C:\Program Files\Microsoft Games\Zoo Tycoon 2\zt.exe:*:Enabled:Zoo Tycoon 2 Executable"
"C:\Program Files\Warthog\Rally Championship Xtreme\Rally.exe"="C:\Program Files\Warthog\Rally Championship Xtreme\Rally.exe:*:Enabled:Rally"
"C:\WINDOWS\system32\dplaysvr.exe"="C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper"
"C:\Program Files\Pinnacle\Studio 14\Programs\RM.exe"="C:\Program Files\Pinnacle\Studio 14\Programs\RM.exe:*:Enabled:Render Manager"
"C:\Program Files\Pinnacle\Studio 14\Programs\Studio.exe"="C:\Program Files\Pinnacle\Studio 14\Programs\Studio.exe:*:Enabled:Studio"
"C:\Program Files\Pinnacle\Studio 14\Programs\umi.exe"="C:\Program Files\Pinnacle\Studio 14\Programs\umi.exe:*:Enabled:umi"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe"="C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM)"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Google\Google Earth\client\googleearth.exe"="C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth"
"C:\Program Files\Google\Google Earth\plugin\geplugin.exe"="C:\Program Files\Google\Google Earth\plugin\geplugin.exe:*:Enabled:Google Earth"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=i263_32.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.VP60"=C:\WINDOWS\system32\vp6vfw.dll
"vidc.VP61"=C:\WINDOWS\system32\vp6vfw.dll
"msacm.g723"=g723.acm
"vidc.I263"=I263_32.drv
"vidc.mjpg"=pvmjpg30.dll

======List of files/folders created in the last 1 month======

2011-08-11 11:36:41 ----D---- C:\rsit
2011-08-11 11:36:41 ----D---- C:\Program Files\trend micro
2011-08-11 11:26:51 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2011-08-11 11:26:47 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-08-11 11:26:47 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2011-08-10 09:31:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2536276-v2$
2011-08-10 09:31:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2570222$
2011-08-10 09:27:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2562937$
2011-08-10 09:27:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2566454$
2011-08-10 09:27:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2567680$
2011-07-28 17:08:05 ----D---- C:\Documents and Settings\Nemám co dělat\Data aplikací\Malwarebytes
2011-07-28 17:07:57 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2011-07-27 11:02:40 ----D---- C:\WINDOWS\system32\Adobe
2011-07-26 11:42:59 ----D---- C:\WINDOWS\Sun
2011-07-26 11:42:19 ----D---- C:\Documents and Settings\All Users\Data aplikací\Sun
2011-07-26 11:42:18 ----D---- C:\Program Files\Common Files\Java
2011-07-26 11:42:11 ----A---- C:\WINDOWS\system32\javaws.exe
2011-07-26 11:42:11 ----A---- C:\WINDOWS\system32\javaw.exe
2011-07-26 11:42:11 ----A---- C:\WINDOWS\system32\java.exe
2011-07-26 11:42:11 ----A---- C:\WINDOWS\system32\deployJava1.dll
2011-07-26 11:41:58 ----D---- C:\Program Files\Java
2011-07-26 11:39:57 ----D---- C:\Documents and Settings\Nemám co dělat\Data aplikací\Sun
2011-07-22 21:23:57 ----D---- C:\Documents and Settings\Nemám co dělat\Data aplikací\Google
2011-07-22 21:20:39 ----D---- C:\Program Files\Google
2011-07-22 20:59:29 ----D---- C:\Documents and Settings\Nemám co dělat\Data aplikací\Skype
2011-07-22 20:59:08 ----RD---- C:\Program Files\Skype
2011-07-22 20:59:03 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2011-07-22 20:04:08 ----RA---- C:\Program Files\MSP_Uninstall.exe
2011-07-22 20:04:08 ----RA---- C:\Program Files\axesstel.dll
2011-07-19 09:30:33 ----D---- C:\Program Files\Microsoft Bootvis
2011-07-18 19:34:41 ----D---- C:\WINDOWS\pss
2011-07-18 19:27:47 ----HDC---- C:\WINDOWS\$NtUninstallKB954154_WM11$
2011-07-18 19:27:43 ----HDC---- C:\WINDOWS\$NtUninstallKB929399$
2011-07-18 19:27:29 ----HDC---- C:\WINDOWS\$NtUninstallKB939683$
2011-07-18 18:55:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2507938$
2011-07-18 18:55:51 ----HDC---- C:\WINDOWS\$NtUninstallKB2555917$
2011-07-18 18:55:44 ----HDC---- C:\WINDOWS\$NtUninstallKB2541763$
2011-07-18 18:54:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2544521$
2011-07-18 18:53:54 ----HDC---- C:\WINDOWS\$NtUninstallKB2530548$
2011-07-18 18:53:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2503665$
2011-07-18 18:53:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2476490$
2011-07-18 18:53:37 ----HDC---- C:\WINDOWS\$NtUninstallKB2536276$
2011-07-18 18:53:31 ----HDC---- C:\WINDOWS\$NtUninstallKB2535512$
2011-07-18 18:53:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2544893$
2011-07-18 18:53:20 ----HDC---- C:\WINDOWS\$NtUninstallKB2524375$
2011-07-18 18:53:13 ----HDC---- C:\WINDOWS\$NtUninstallKB2492386$
2011-07-18 18:53:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2509553$
2011-07-18 18:53:01 ----HDC---- C:\WINDOWS\$NtUninstallKB2412687$
2011-07-18 18:52:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2510581$
2011-07-18 18:51:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2507618$
2011-07-18 18:51:01 ----HDC---- C:\WINDOWS\$NtUninstallKB2508272$
2011-07-18 18:50:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2506212$
2011-07-18 18:50:51 ----HDC---- C:\WINDOWS\$NtUninstallKB2508429$
2011-07-18 18:50:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2485663$
2011-07-18 18:50:41 ----HDC---- C:\WINDOWS\$NtUninstallKB2481109$
2011-07-18 18:50:36 ----HDC---- C:\WINDOWS\$NtUninstallKB2479943$
2011-07-18 18:50:30 ----HDC---- C:\WINDOWS\$NtUninstallKB971029$
2011-07-18 18:50:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2393802$
2011-07-18 18:50:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2478960$
2011-07-18 18:50:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2483185$
2011-07-18 18:50:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2478971$
2011-07-18 18:49:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2419632$
2011-07-18 18:49:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2440591$
2011-07-18 18:49:48 ----HDC---- C:\WINDOWS\$NtUninstallKB2443685$
2011-07-18 18:49:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2443105$
2011-07-18 18:49:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2423089$
2011-07-18 18:49:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2079403$
2011-07-18 18:47:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2360937$
2011-07-18 18:47:33 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2011-07-18 18:47:27 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2011-07-18 18:47:21 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2011-07-18 18:47:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$
2011-07-18 18:47:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2011-07-18 18:47:06 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2011-07-18 18:47:01 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$
2011-07-18 18:46:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2347290$
2011-07-18 18:46:51 ----HDC---- C:\WINDOWS\$NtUninstallKB981322$
2011-07-18 18:46:45 ----HDC---- C:\WINDOWS\$NtUninstallKB980436$
2011-07-18 18:46:39 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$
2011-07-18 18:46:33 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$
2011-07-18 18:46:29 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$
2011-07-18 18:46:10 ----D---- C:\WINDOWS\system32\WindowsPowerShell
2011-07-18 18:46:09 ----D---- C:\WINDOWS\system32\winrm
2011-07-18 18:46:09 ----D---- C:\WINDOWS\system32\GroupPolicy
2011-07-18 18:46:06 ----HDC---- C:\WINDOWS\$968930Uinstall_KB968930$
2011-07-18 18:46:05 ----D---- C:\WINDOWS\$NtUninstallKB968930$
2011-07-18 18:43:54 ----HDC---- C:\WINDOWS\$NtUninstallKB971513$
2011-07-18 18:43:50 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2011-07-18 18:43:44 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2011-07-18 18:43:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2467659$
2011-07-18 18:43:01 ----D---- C:\WINDOWS\ie8updates
2011-07-18 18:42:47 ----D---- C:\WINDOWS\WBEM
2011-07-18 18:41:57 ----HDC---- C:\WINDOWS\ie8
2011-07-18 18:29:30 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2011-07-18 18:29:25 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2011-07-18 18:29:11 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2011-07-18 18:28:37 ----N---- C:\WINDOWS\system32\spmsg.dll
2011-07-18 18:28:36 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$
2011-07-18 18:28:24 ----D---- C:\Program Files\Windows Media Connect 2
2011-07-18 18:28:15 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
2011-07-18 18:27:45 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2011-07-18 18:27:25 ----D---- C:\WINDOWS\system32\drivers\UMDF
2011-07-18 18:27:22 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$
2011-07-18 18:26:09 ----D---- C:\WINDOWS\system32\URTTEMP
2011-07-18 17:01:24 ----D---- C:\WINDOWS\Prefetch
2011-07-18 16:53:26 ----HDC---- C:\WINDOWS\$NtUninstallKB982381$
2011-07-18 16:53:21 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$
2011-07-18 16:53:16 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$
2011-07-18 16:53:09 ----HDC---- C:\WINDOWS\$NtUninstallKB979683$
2011-07-18 16:53:04 ----HDC---- C:\WINDOWS\$NtUninstallKB979559$
2011-07-18 16:52:59 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2011-07-18 16:52:55 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2011-07-18 16:52:49 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2011-07-18 16:52:44 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2011-07-18 16:52:39 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2011-07-18 16:52:34 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2011-07-18 16:52:29 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2011-07-18 16:52:24 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2011-07-18 16:52:18 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2011-07-18 16:52:14 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2011-07-18 16:52:09 ----HDC---- C:\WINDOWS\$NtUninstallKB975561$
2011-07-18 16:52:03 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2011-07-18 16:51:58 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2011-07-18 16:51:54 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2011-07-18 16:51:49 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2011-07-18 16:51:44 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2011-07-18 16:51:39 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2011-07-18 16:51:34 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2011-07-18 16:51:29 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2011-07-18 16:51:23 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2011-07-18 16:51:18 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2011-07-18 16:51:14 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2011-07-18 16:51:09 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2011-07-18 16:51:05 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2011-07-18 16:51:00 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$
2011-07-18 16:50:55 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2011-07-18 16:50:49 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2011-07-18 16:50:43 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2011-07-18 16:50:38 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2011-07-18 16:50:33 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2011-07-18 16:50:24 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2011-07-18 16:50:19 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2011-07-18 16:50:14 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2011-07-18 16:50:10 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2011-07-18 16:50:04 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2011-07-18 16:50:00 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2011-07-18 16:49:55 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2011-07-18 16:49:50 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2011-07-18 16:49:45 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2011-07-18 16:49:38 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2011-07-18 16:49:32 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2011-07-18 16:49:27 ----HDC---- C:\WINDOWS\$NtUninstallKB973687_1$
2011-07-18 16:49:22 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2011-07-18 16:49:17 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2011-07-18 16:49:12 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2011-07-18 16:49:06 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2011-07-18 16:49:01 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2011-07-18 16:48:56 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2011-07-18 16:48:51 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2011-07-18 16:48:47 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2011-07-18 16:48:42 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2011-07-18 16:48:37 ----HDC---- C:\WINDOWS\$NtUninstallKB932716-v2$
2011-07-18 16:48:31 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2011-07-18 16:48:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2011-07-18 16:46:36 ----D---- C:\WINDOWS\system32\cs-cz
2011-07-18 16:46:35 ----D---- C:\WINDOWS\system32\cs
2011-07-18 16:46:35 ----D---- C:\WINDOWS\system32\bits
2011-07-18 16:46:35 ----D---- C:\WINDOWS\l2schemas
2011-07-18 16:43:52 ----D---- C:\WINDOWS\network diagnostic
2011-07-18 16:36:41 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2011-07-18 16:31:23 ----D---- C:\WINDOWS\EHome
2011-07-18 16:26:03 ----N---- C:\WINDOWS\system32\drivers\watv10nt.sys
2011-07-18 16:26:03 ----N---- C:\WINDOWS\system32\drivers\watv06nt.sys
2011-07-18 16:26:03 ----N---- C:\WINDOWS\system32\drivers\wadv11nt.sys
2011-07-18 16:26:03 ----N---- C:\WINDOWS\system32\drivers\wadv09nt.sys
2011-07-18 16:26:02 ----N---- C:\WINDOWS\system32\drivers\wadv08nt.sys
2011-07-18 16:26:02 ----N---- C:\WINDOWS\system32\drivers\wadv07nt.sys
2011-07-18 16:26:00 ----N---- C:\WINDOWS\system32\drivers\slwdmsup.sys
2011-07-18 16:26:00 ----N---- C:\WINDOWS\system32\drivers\slnthal.sys
2011-07-18 16:26:00 ----N---- C:\WINDOWS\system32\drivers\slntamr.sys
2011-07-18 16:26:00 ----N---- C:\WINDOWS\system32\drivers\slnt7554.sys
2011-07-18 16:26:00 ----N---- C:\WINDOWS\system32\drivers\s3gnbm.sys
2011-07-18 16:25:59 ----N---- C:\WINDOWS\system32\drivers\recagent.sys
2011-07-18 16:25:58 ----N---- C:\WINDOWS\system32\drivers\ntmtlfax.sys
2011-07-18 16:25:58 ----N---- C:\WINDOWS\system32\drivers\mtxparhm.sys
2011-07-18 16:25:58 ----N---- C:\WINDOWS\system32\drivers\mtlstrm.sys
2011-07-18 16:25:58 ----N---- C:\WINDOWS\system32\drivers\mtlmnt5.sys
2011-07-18 16:25:57 ----N---- C:\WINDOWS\system32\drivers\mdmxsdk.sys
2011-07-18 16:25:57 ----N---- C:\WINDOWS\system32\drivers\hsfdpsp2.sys
2011-07-18 16:25:57 ----N---- C:\WINDOWS\system32\drivers\hsfcxts2.sys
2011-07-18 16:25:57 ----N---- C:\WINDOWS\system32\drivers\hsfbs2s2.sys
2011-07-18 16:25:36 ----N---- C:\WINDOWS\system32\drivers\atinxsxx.sys
2011-07-18 16:25:35 ----N---- C:\WINDOWS\system32\drivers\atinxbxx.sys
2011-07-18 16:25:35 ----N---- C:\WINDOWS\system32\drivers\atintuxx.sys
2011-07-18 16:25:35 ----N---- C:\WINDOWS\system32\drivers\atinttxx.sys
2011-07-18 16:25:35 ----N---- C:\WINDOWS\system32\drivers\atinsnxx.sys
2011-07-18 16:25:35 ----N---- C:\WINDOWS\system32\drivers\atinrvxx.sys
2011-07-18 16:25:35 ----N---- C:\WINDOWS\system32\drivers\atinraxx.sys
2011-07-18 16:25:35 ----N---- C:\WINDOWS\system32\drivers\atinpdxx.sys
2011-07-18 16:25:35 ----N---- C:\WINDOWS\system32\drivers\atinmdxx.sys
2011-07-18 16:25:35 ----N---- C:\WINDOWS\system32\drivers\atinbtxx.sys
2011-07-18 16:25:35 ----N---- C:\WINDOWS\system32\drivers\ati2mtag.sys
2011-07-18 16:25:35 ----N---- C:\WINDOWS\system32\drivers\ati2mtaa.sys
2011-07-18 16:25:35 ----N---- C:\WINDOWS\system32\drivers\ati1xsxx.sys
2011-07-18 16:25:35 ----N---- C:\WINDOWS\system32\drivers\ati1xbxx.sys
2011-07-18 16:25:35 ----N---- C:\WINDOWS\system32\drivers\ati1tuxx.sys
2011-07-18 16:25:35 ----N---- C:\WINDOWS\system32\drivers\ati1ttxx.sys
2011-07-18 16:25:35 ----N---- C:\WINDOWS\system32\drivers\ati1snxx.sys
2011-07-18 16:25:35 ----N---- C:\WINDOWS\system32\drivers\ati1rvxx.sys
2011-07-18 16:25:35 ----N---- C:\WINDOWS\system32\drivers\ati1raxx.sys
2011-07-18 16:25:35 ----N---- C:\WINDOWS\system32\drivers\ati1pdxx.sys
2011-07-18 16:25:35 ----N---- C:\WINDOWS\system32\drivers\ati1mdxx.sys
2011-07-18 16:25:35 ----N---- C:\WINDOWS\system32\drivers\ati1btxx.sys
2011-07-18 16:01:56 ----D---- C:\Documents and Settings\All Users\Data aplikací\Windows Genuine Advantage
2011-07-18 15:51:24 ----HDC---- C:\WINDOWS\$NtUninstallKB980218_0$
2011-07-18 15:51:20 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2_0$
2011-07-18 15:51:15 ----HDC---- C:\WINDOWS\$NtUninstallKB952954_0$
2011-07-18 15:51:09 ----HDC---- C:\WINDOWS\$NtUninstallKB959426_0$
2011-07-18 15:51:03 ----HDC---- C:\WINDOWS\$NtUninstallKB946648_0$
2011-07-18 15:50:59 ----HDC---- C:\WINDOWS\$NtUninstallKB956803_0$
2011-07-18 15:50:54 ----HDC---- C:\WINDOWS\$NtUninstallKB960859_0$
2011-07-18 15:49:08 ----HDC---- C:\WINDOWS\$NtUninstallKB971468_0$
2011-07-18 15:49:01 ----HDC---- C:\WINDOWS\$NtUninstallKB979683_0$
2011-07-18 15:48:56 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2011-07-18 15:48:52 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2011-07-18 15:48:49 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$
2011-07-18 15:48:39 ----HDC---- C:\WINDOWS\$NtUninstallKB980232_0$
2011-07-18 15:48:34 ----HDC---- C:\WINDOWS\$NtUninstallKB981350$
2011-07-18 15:48:29 ----HDC---- C:\WINDOWS\$NtUninstallKB955759_0$
2011-07-18 15:48:24 ----HDC---- C:\WINDOWS\$NtUninstallKB974318_0$
2011-07-18 15:48:19 ----HDC---- C:\WINDOWS\$NtUninstallKB969059_0$
2011-07-18 15:48:13 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593_0$
2011-07-18 15:48:08 ----HDC---- C:\WINDOWS\$NtUninstallKB950974_0$
2011-07-18 15:48:04 ----HDC---- C:\WINDOWS\$NtUninstallKB978037_0$
2011-07-18 15:47:59 ----HDC---- C:\WINDOWS\$NtUninstallKB975713_0$
2011-07-18 15:47:55 ----HDC---- C:\WINDOWS\$NtUninstallKB971657_0$
2011-07-18 15:47:50 ----HDC---- C:\WINDOWS\$NtUninstallKB978338_0$
2011-07-18 15:47:42 ----HDC---- C:\WINDOWS\$NtUninstallKB961118_0$
2011-07-18 15:47:38 ----HDC---- C:\WINDOWS\$NtUninstallKB960225_0$
2011-07-18 15:47:32 ----HDC---- C:\WINDOWS\$NtUninstallKB972270_0$
2011-07-18 15:47:27 ----HDC---- C:\WINDOWS\$NtUninstallKB974112_0$
2011-07-18 15:47:21 ----HDC---- C:\WINDOWS\$NtUninstallKB975467_1$
2011-07-18 15:47:16 ----HDC---- C:\WINDOWS\$NtUninstallKB968389_1$
2011-07-18 15:47:04 ----HDC---- C:\WINDOWS\$NtUninstallKB956572_0$
2011-07-18 15:46:56 ----HDC---- C:\WINDOWS\$NtUninstallKB956844_0$
2011-07-18 15:46:51 ----HDC---- C:\WINDOWS\$NtUninstallKB961501_0$
2011-07-18 15:44:53 ----HDC---- C:\WINDOWS\$NtUninstallKB975561_0$
2011-07-18 15:44:40 ----HDC---- C:\WINDOWS\$NtUninstallKB925720$
2011-07-18 15:44:36 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2011-07-18 15:44:32 ----HDC---- C:\WINDOWS\$NtUninstallKB973869_0$
2011-07-18 15:44:28 ----HDC---- C:\WINDOWS\$NtUninstallKB975025_0$
2011-07-18 15:44:24 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9L$
2011-07-18 15:44:18 ----HDC---- C:\WINDOWS\$NtUninstallKB952004_0$
2011-07-18 15:44:13 ----HDC---- C:\WINDOWS\$NtUninstallKB974571_0$
2011-07-18 15:44:08 ----HDC---- C:\WINDOWS\$NtUninstallKB975560_0$
2011-07-18 15:44:03 ----HDC---- C:\WINDOWS\$NtUninstallKB973507_0$
2011-07-18 15:43:59 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2011-07-18 15:43:45 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2011-07-18 15:43:40 ----HDC---- C:\WINDOWS\$NtUninstallKB973687_0$
2011-07-18 15:43:36 ----HDC---- C:\WINDOWS\$NtUninstallKB950762_0$
2011-07-18 15:43:32 ----HDC---- C:\WINDOWS\$NtUninstallKB981793$
2011-07-18 15:43:28 ----HDC---- C:\WINDOWS\$NtUninstallKB978601_0$
2011-07-18 15:43:24 ----HDC---- C:\WINDOWS\$NtUninstallKB979559_0$
2011-07-18 15:43:19 ----HDC---- C:\WINDOWS\$NtUninstallKB952287_0$
2011-07-18 15:43:14 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2011-07-18 15:43:07 ----HDC---- C:\WINDOWS\$NtUninstallKB967715_0$
2011-07-18 15:43:02 ----HDC---- C:\WINDOWS\$NtUninstallKB974392_0$
2011-07-18 15:42:55 ----HDC---- C:\WINDOWS\$NtUninstallKB977914_0$
2011-07-18 15:42:45 ----HDC---- C:\WINDOWS\$NtUninstallKB951748_0$
2011-07-18 15:42:40 ----HDC---- C:\WINDOWS\$NtUninstallKB971961$
2011-07-18 15:42:35 ----HDC---- C:\WINDOWS\$NtUninstallKB978542_0$
2011-07-18 15:42:29 ----HDC---- C:\WINDOWS\$NtUninstallKB970238_0$
2011-07-18 15:42:25 ----HDC---- C:\WINDOWS\$NtUninstallKB979309_0$
2011-07-18 15:42:21 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2011-07-18 15:42:18 ----HDC---- C:\WINDOWS\$NtUninstallKB979482_0$
2011-07-18 15:42:13 ----HDC---- C:\WINDOWS\$NtUninstallKB978706_0$
2011-07-18 15:42:08 ----D---- C:\WINDOWS\ServicePackFiles
2011-07-18 15:42:06 ----HDC---- C:\WINDOWS\$NtUninstallKB958470$
2011-07-18 15:42:02 ----HDC---- C:\WINDOWS\$NtUninstallKB960803_0$
2011-07-18 15:41:57 ----HDC---- C:\WINDOWS\$NtUninstallKB973815_0$
2011-07-18 15:41:53 ----HDC---- C:\WINDOWS\$NtUninstallKB975562_0$
2011-07-18 15:39:56 ----HDC---- C:\WINDOWS\$NtUninstallKB958644_0$
2011-07-18 15:39:51 ----HDC---- C:\WINDOWS\$NtUninstallKB955069_0$
2011-07-18 15:39:45 ----HDC---- C:\WINDOWS\$NtUninstallKB979402_WM9L$
2011-07-18 15:38:06 ----HDC---- C:\WINDOWS\$NtUninstallKB956802_0$
2011-07-18 15:37:54 ----HDC---- C:\WINDOWS\$NtUninstallKB982381_0$
2011-07-18 15:37:47 ----D---- C:\Program Files\MSXML 4.0
2011-07-18 15:37:40 ----HDC---- C:\WINDOWS\$NtUninstallKB944338-v2$
2011-07-18 15:37:35 ----HDC---- C:\WINDOWS\$NtUninstallKB923561_0$
2011-07-18 15:37:31 ----HDC---- C:\WINDOWS\$NtUninstallKB975467_0$
2011-07-18 15:37:24 ----HDC---- C:\WINDOWS\$NtUninstallKB968389_0$
2011-07-18 15:02:58 ----N---- C:\WINDOWS\system32\drivers\bthport.sys
2011-07-18 14:34:45 ----N---- C:\WINDOWS\system32\browserchoice.exe
2011-07-18 13:29:40 ----D---- C:\Documents and Settings\Nemám co dělat\Data aplikací\ESET
2011-07-18 13:28:40 ----D---- C:\Program Files\ESET
2011-07-18 13:28:40 ----D---- C:\Documents and Settings\All Users\Data aplikací\ESET
2011-07-18 12:58:51 ----A---- C:\WINDOWS\ModemLog_AnyDATA CDMA USB Modem (PID 6502).txt
2011-07-18 12:57:51 ----A---- C:\WINDOWS\ModemLog_AnyDATA WCDMA USB Modem (PID 6202).txt
2011-07-18 12:54:26 ----D---- C:\WINDOWS\TEMPDIR
2011-07-18 12:53:02 ----D---- C:\Program Files\DIFX
2011-07-18 12:52:48 ----D---- C:\Program Files\AnyData

======List of files/folders modified in the last 1 month======

2011-08-11 13:38:35 ----D---- C:\WINDOWS\Temp
2011-08-11 12:28:14 ----A---- C:\WINDOWS\ModemLog_Axesstel USB Modem.txt
2011-08-11 11:40:39 ----D---- C:\Program Files
2011-08-11 11:26:51 ----D---- C:\WINDOWS\system32\drivers
2011-08-11 10:33:11 ----D---- C:\WINDOWS
2011-08-11 10:30:01 ----D---- C:\WINDOWS\system32
2011-08-11 10:30:01 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-08-10 20:44:08 ----D---- C:\Documents and Settings\Nemám co dělat\Data aplikací\Macromedia
2011-08-10 20:43:58 ----D---- C:\WINDOWS\system32\Macromed
2011-08-10 11:48:40 ----RSD---- C:\WINDOWS\assembly
2011-08-10 11:46:04 ----D---- C:\WINDOWS\Microsoft.NET
2011-08-10 11:40:35 ----D---- C:\Program Files\Internet Explorer
2011-08-10 09:31:59 ----HD---- C:\WINDOWS\inf
2011-08-10 09:31:58 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-08-10 09:31:54 ----HD---- C:\WINDOWS\$hf_mig$
2011-08-10 09:31:47 ----SHD---- C:\WINDOWS\Installer
2011-08-10 09:31:19 ----D---- C:\WINDOWS\WinSxS
2011-08-10 09:27:57 ----D---- C:\WINDOWS\Debug
2011-08-10 09:27:50 ----AC---- C:\WINDOWS\system32\MRT.exe
2011-08-10 09:24:41 ----D---- C:\WINDOWS\system32\CatRoot2
2011-07-29 23:17:23 ----D---- C:\WINDOWS\Help
2011-07-29 12:04:59 ----D---- C:\Program Files\Common Files
2011-07-29 12:04:58 ----D---- C:\Program Files\Adobe
2011-07-28 18:02:44 ----D---- C:\WINDOWS\twain_32
2011-07-28 13:03:05 ----D---- C:\Documents and Settings\Nemám co dělat\Data aplikací\Adobe
2011-07-28 13:03:05 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2011-07-25 17:08:54 ----A---- C:\WINDOWS\system32\mshtml.dll
2011-07-24 20:31:03 ----D---- C:\Program Files\TopCD
2011-07-22 21:20:47 ----SD---- C:\WINDOWS\Tasks
2011-07-19 12:05:03 ----DC---- C:\WINDOWS\system32\DRVSTORE
2011-07-18 19:52:26 ----D---- C:\WINDOWS\system32\CatRoot
2011-07-18 19:29:03 ----D---- C:\WINDOWS\Registration
2011-07-18 19:04:47 ----D---- C:\WINDOWS\AppPatch
2011-07-18 19:00:40 ----D---- C:\WINDOWS\security
2011-07-18 18:49:41 ----D---- C:\Program Files\Outlook Express
2011-07-18 18:46:41 ----D---- C:\Program Files\Movie Maker
2011-07-18 18:46:14 ----D---- C:\WINDOWS\system32\config
2011-07-18 18:46:09 ----D---- C:\WINDOWS\system32\wbem
2011-07-18 18:42:40 ----D---- C:\WINDOWS\Media
2011-07-18 18:28:34 ----D---- C:\Program Files\Windows Media Player
2011-07-18 18:28:31 ----A---- C:\WINDOWS\win.ini
2011-07-18 18:27:25 ----D---- C:\WINDOWS\system32\LogFiles
2011-07-18 17:13:00 ----D---- C:\WINDOWS\SoftwareDistribution
2011-07-18 17:01:08 ----D---- C:\WINDOWS\system32\Setup
2011-07-18 17:01:08 ----D---- C:\Program Files\Common Files\System
2011-07-18 17:01:07 ----RSD---- C:\WINDOWS\Fonts
2011-07-18 16:48:43 ----D---- C:\Program Files\Messenger
2011-07-18 16:46:41 ----D---- C:\WINDOWS\ime
2011-07-18 16:46:36 ----D---- C:\WINDOWS\system32\usmt
2011-07-18 16:46:35 ----D---- C:\WINDOWS\PeerNet
2011-07-18 16:45:19 ----D---- C:\WINDOWS\system32\Restore
2011-07-18 16:45:18 ----D---- C:\WINDOWS\system32\npp
2011-07-18 16:45:18 ----D---- C:\WINDOWS\msagent
2011-07-18 16:45:17 ----D---- C:\WINDOWS\srchasst
2011-07-18 16:45:16 ----D---- C:\WINDOWS\system32\Com
2011-07-18 16:45:16 ----D---- C:\Program Files\NetMeeting
2011-07-18 16:45:12 ----D---- C:\Program Files\Windows NT
2011-07-18 16:44:57 ----D---- C:\WINDOWS\system32\oobe
2011-07-18 16:44:56 ----D---- C:\WINDOWS\system
2011-07-18 15:59:09 ----SD---- C:\WINDOWS\Downloaded Program Files
2011-07-18 13:04:54 ----SD---- C:\Documents and Settings\Nemám co dělat\Data aplikací\Microsoft
2011-07-16 20:16:15 ----A---- C:\WINDOWS\NeroDigital.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 a347bus;a347bus; C:\WINDOWS\system32\DRIVERS\a347bus.sys [2004-04-30 160640]
R0 a347scsi;a347scsi; C:\WINDOWS\System32\Drivers\a347scsi.sys [2004-04-30 5248]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI Texas Instruments; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R0 prohlp02;StarForce Protection Helper Driver v2; C:\WINDOWS\System32\drivers\prohlp02.sys [2004-08-09 114016]
R0 prosync1;StarForce Protection Synchronization Driver v1; C:\WINDOWS\System32\drivers\prosync1.sys [2004-07-19 7040]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINDOWS\System32\drivers\sfdrv01.sys [2005-03-03 48640]
R0 sfhlp01;StarForce Protection Helper Driver; C:\WINDOWS\System32\drivers\sfhlp01.sys [2003-12-01 4832]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\System32\drivers\sfhlp02.sys [2005-02-23 6656]
R0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); C:\WINDOWS\System32\drivers\sfsync02.sys [2004-12-03 20544]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2008-12-25 717296]
R0 VClone;VClone; C:\WINDOWS\system32\DRIVERS\VClone.sys [2004-12-13 22656]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2009-11-16 108792]
R1 epfwtdi;epfwtdi; C:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2009-11-16 55768]
R1 prodrv06;StarForce Protection Environment Driver v6; C:\WINDOWS\System32\drivers\prodrv06.sys [2004-08-09 53920]
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-11-16 116520]
R2 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2005-04-21 10624]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2009-11-16 135048]
R3 Axtmvflt;Axesstel USB Filter Service; C:\WINDOWS\system32\DRIVERS\Axtmvflt.sys [2007-03-22 3456]
R3 Axtmvmdm;Axesstel USB Modem; C:\WINDOWS\system32\DRIVERS\Axtmvmdm.sys [2007-03-26 40064]
R3 Axtmvprt;Axesstel Diagnostic Port; C:\WINDOWS\System32\Drivers\Axtmvprt.sys [2007-03-26 38784]
R3 ElbyCDFL;ElbyCDFL; C:\WINDOWS\System32\Drivers\ElbyCDFL.sys [2005-05-03 27392]
R3 ElbyDelay;ElbyDelay; C:\WINDOWS\System32\Drivers\ElbyDelay.sys [2005-04-12 4608]
R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2009-06-19 33096]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-11-01 4620288]
R3 MarvinBus;Pinnacle Marvin Bus; C:\WINDOWS\system32\DRIVERS\MarvinBus.sys [2005-09-23 171520]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2008-05-02 6554496]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2007-06-28 45824]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2007-06-28 20480]
R3 NVR0Dev;NVR0Dev; \??\C:\WINDOWS\nvoclock.sys []
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 adusbser;AnyDATA USB Device for Legacy Serial Communication; C:\WINDOWS\system32\DRIVERS\adusbser.sys []
S3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
S3 ENTECH;ENTECH; \??\C:\WINDOWS\system32\DRIVERS\ENTECH.sys []
S3 h643331;h643331; C:\WINDOWS\system32\drivers\h643331.sys []
S3 hid3331;hid3331; C:\WINDOWS\system32\drivers\hid3331.sys [2008-05-19 41336]
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
S3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2009-01-01 47360]
S3 SymIM;Symantec Network Security Intermediate Filter Service; C:\WINDOWS\system32\DRIVERS\SymIM.sys []
S3 SymIMMP;SymIMMP; C:\WINDOWS\system32\DRIVERS\SymIM.sys []
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdvancedSystemCareService;Advanced SystemCare Service; C:\Program Files\IObit\Advanced SystemCare 4\ASCService.exe [2011-05-28 353168]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2009-11-16 735960]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-07-26 153376]
R2 LiveUpdate Notice Service;LiveUpdate Notice Service; C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PifSvc.exe [2007-03-12 517768]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 nTuneService;nTune Service; C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe [2007-07-20 131072]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2008-05-02 159812]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2011-04-17 66872]
R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-07-22 136176]
S2 Plánovač automatické aktualizace LiveUpdate;Plánovač automatické aktualizace LiveUpdate; C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe []
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe []
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2009-11-16 20680]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-02-07 654848]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-07-22 136176]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

#5 Příspěvek od **vyosek** » 11 srp 2011 13:20

Aktualizujte databazi MBAMu na nejnovejsi a udelejte sken znovu

VydraMan · #6 Příspěvek od **VydraMan** » 11 srp 2011 13:23

Pří každém spuštění napíše že databáze je stará 35 dní. Dám aktualizovat a mám nejnovější databázi. Spustím znovu a zase píše že je zastaralá.

#7 Příspěvek od **vyosek** » 11 srp 2011 13:25

Vice spustenych procesu svchost neni skodlivym jevem. Tento soubor muze byt spuste jednou ale i treba 12x, je to soubor, ktery obstarava sputeni urcitych sluzeb, takze je spusten vzdy, kdyz jej nektera ze sluzeb potrebuje

Stahnete OTL (viz muj podpis) a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
Zaskrtnete okenko Pro vsechny uzivatele
Zaskrtnete okenko Kontrola na havet "LOP"
Zaskrtnete okenko Kontrola na havet "Purity"
Stari souboru zmente z 30 dnu na 7 dnu
Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c

type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5

Kliknete na tlacitko Prohledat
Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte

VydraMan · #8 Příspěvek od **VydraMan** » 11 srp 2011 13:43

OTL :

OTL logfile created on: 11.8.2011 14:32:46 - Run 1
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Documents and Settings\Nemám co dělat\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,37 Gb Available Physical Memory | 68,38% Memory free
3,85 Gb Paging File | 3,33 Gb Available in Paging File | 86,52% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 232,88 Gb Total Space | 161,73 Gb Free Space | 69,45% Space Free | Partition Type: NTFS

Computer Name: ROUDNO | User Name: Nemám co dělat | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2011.08.11 14:30:17 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Nemám co dělat\Plocha\OTL.exe
PRC - [2011.08.08 14:15:11 | 000,140,952 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Nemám co dělat\Local Settings\Data aplikací\Google\Update\1.3.21.65\GoogleCrashHandler.exe
PRC - [2011.08.06 04:21:27 | 001,017,912 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Nemám co dělat\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2011.05.28 14:46:56 | 003,380,624 | ---- | M] (IObit) -- C:\Program Files\IObit\Advanced SystemCare 4\ASC.exe
PRC - [2011.05.28 14:46:56 | 000,412,560 | ---- | M] (IObit) -- C:\Program Files\IObit\Advanced SystemCare 4\ASCTray.exe
PRC - [2011.05.28 14:46:56 | 000,353,168 | ---- | M] (IObit) -- C:\Program Files\IObit\Advanced SystemCare 4\ASCService.exe
PRC - [2009.11.16 09:04:30 | 000,735,960 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe
PRC - [2009.11.16 09:03:32 | 002,054,360 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\egui.exe
PRC - [2008.06.19 07:14:02 | 006,692,864 | ---- | M] (Axesstel,Inc.) -- C:\Program Files\Axesstel\Axesstel Manager\AxessManager.exe
PRC - [2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007.07.20 16:46:40 | 000,131,072 | ---- | M] (NVIDIA) -- C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe
PRC - [2007.03.12 13:49:46 | 001,209,904 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
PRC - [2007.03.12 13:49:26 | 000,153,136 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
PRC - [2007.03.12 11:22:00 | 000,517,768 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
PRC - [2007.02.20 12:07:40 | 000,199,752 | ---- | M] (Pinnacle Systems GmbH) -- C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe

========== Modules (SafeList) ==========

MOD - [2011.08.11 14:30:17 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Nemám co dělat\Plocha\OTL.exe
MOD - [2010.08.23 18:12:33 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2008.04.14 05:21:45 | 000,586,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mlang.dll

========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- -- (Plánovač automatické aktualizace LiveUpdate)
SRV - File not found [Disabled | Stopped] -- -- (HidServ)
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - File not found [On_Demand | Stopped] -- -- (ACDaemon)
SRV - [2011.05.28 14:46:56 | 000,353,168 | ---- | M] (IObit) [Auto | Running] -- C:\Program Files\IObit\Advanced SystemCare 4\ASCService.exe -- (AdvancedSystemCareService)
SRV - [2010.02.07 10:48:03 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009.11.16 09:12:54 | 000,020,680 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe -- (EhttpSrv)
SRV - [2009.11.16 09:04:30 | 000,735,960 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe -- (ekrn)
SRV - [2007.07.20 16:46:40 | 000,131,072 | ---- | M] (NVIDIA) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe -- (nTuneService)
SRV - [2007.03.12 11:22:00 | 000,517,768 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PifSvc.exe -- (LiveUpdate Notice Service)

========== Driver Services (SafeList) ==========

DRV - [2009.11.16 09:06:48 | 000,055,768 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdi.sys -- (epfwtdi)
DRV - [2009.11.16 09:06:44 | 000,135,048 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\epfw.sys -- (epfw)
DRV - [2009.11.16 09:03:36 | 000,108,792 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2009.11.16 08:56:12 | 000,116,520 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2009.06.19 08:10:40 | 000,033,096 | ---- | M] (ESET) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\epfwndis.sys -- (Epfwndis)
DRV - [2008.12.25 13:34:19 | 000,717,296 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2008.05.19 16:15:10 | 000,041,336 | ---- | M] ( ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Hid3331.sys -- (hid3331)
DRV - [2008.04.13 20:40:30 | 000,096,512 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\atapi.sys -- (atapi)
DRV - [2007.11.01 15:38:56 | 004,620,288 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2007.07.20 16:47:36 | 000,006,912 | ---- | M] (NVidia Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\nvoclock.sys -- (NVR0Dev)
DRV - [2007.06.28 13:46:42 | 000,020,480 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2007.06.28 13:46:40 | 000,045,824 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2007.03.26 15:25:50 | 000,038,784 | R--- | M] (Axesstel) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Axtmvprt.sys -- (Axtmvprt)
DRV - [2007.03.26 15:25:30 | 000,040,064 | R--- | M] (Axesstel) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Axtmvmdm.sys -- (Axtmvmdm)
DRV - [2007.03.22 17:36:38 | 000,003,456 | R--- | M] (Axesstel) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Axtmvflt.sys -- (Axtmvflt)
DRV - [2005.09.23 23:18:32 | 000,171,520 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\MarvinBus.sys -- (MarvinBus)
DRV - [2005.05.03 17:34:02 | 000,027,392 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ElbyCDFL.sys -- (ElbyCDFL)
DRV - [2005.04.12 10:41:20 | 000,004,608 | ---- | M] (Elaborate Bytes AG) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ElbyDelay.sys -- (ElbyDelay)
DRV - [2005.03.03 19:53:57 | 000,048,640 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
DRV - [2005.02.23 17:59:54 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2004.12.03 12:20:41 | 000,020,544 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfsync02.sys -- (sfsync02) StarForce Protection Synchronization Driver (version 2.x)
DRV - [2004.08.09 13:33:26 | 000,114,016 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\prohlp02.sys -- (prohlp02)
DRV - [2004.08.09 13:29:28 | 000,053,920 | ---- | M] (Protection Technology) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\prodrv06.sys -- (prodrv06)
DRV - [2004.07.19 16:49:54 | 000,007,040 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\prosync1.sys -- (prosync1)
DRV - [2004.04.30 09:37:02 | 000,160,640 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\a347bus.sys -- (a347bus)
DRV - [2004.04.30 09:33:00 | 000,005,248 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\a347scsi.sys -- (a347scsi)
DRV - [2003.12.01 17:20:52 | 000,004,832 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp01.sys -- (sfhlp01)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-3615762775-2647865256-2770328900-1007\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKU\S-1-5-21-3615762775-2647865256-2770328900-1007\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Nemám co dělat\Local Settings\Data aplikací\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Nemám co dělat\Local Settings\Data aplikací\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2011.07.18 13:28:42 | 000,000,000 | ---D | M]

O1 HOSTS File: ([2004.08.18 14:00:00 | 000,000,737 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Yahoo! Companion BHO) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - Reg Error: Value error. File not found
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - No CLSID value found.
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O3 - HKLM\..\Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.
O3 - HKU\S-1-5-21-3615762775-2647865256-2770328900-1007\..\Toolbar\WebBrowser: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [CloneCDTray] C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe (SlySoft, Inc.)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [USBToolTip] C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe (Pinnacle Systems GmbH)
O4 - HKU\S-1-5-21-3615762775-2647865256-2770328900-1007..\Run: [Advanced SystemCare 4] C:\Program Files\IObit\Advanced SystemCare 4\ASCTray.exe (IObit)
O4 - HKU\S-1-5-21-3615762775-2647865256-2770328900-1007..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKU\S-1-5-21-3615762775-2647865256-2770328900-1007..\Run: [NVIDIA nTune] C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe (NVIDIA)
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [NeroHomeFirstStart] C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe (Nero AG)
O4 - HKU\S-1-5-20..\RunOnce: [NeroHomeFirstStart] C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe (Nero AG)
O4 - HKU\S-1-5-21-3615762775-2647865256-2770328900-1007..\RunOnce: [Shockwave Updater] File not found
O4 - Startup: C:\Documents and Settings\Nemám co dělat\Nabídka Start\Programy\Po spuštění\PowerReg Scheduler.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-3615762775-2647865256-2770328900-1007\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-3615762775-2647865256-2770328900-1007\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupda ... 0997542093 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007.11.09 16:49:48 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{003e4c38-b12c-11e0-a4bf-001d7dc3215b}\Shell - "" = AutoRun
O33 - MountPoints2\{003e4c38-b12c-11e0-a4bf-001d7dc3215b}\Shell\AutoRun\command - "" = E:\Launcher.exe
O33 - MountPoints2\{003e4c3b-b12c-11e0-a4bf-001d7dc3215b}\Shell - "" = AutoRun
O33 - MountPoints2\{003e4c3b-b12c-11e0-a4bf-001d7dc3215b}\Shell\AutoRun\command - "" = E:\Launcher.exe
O33 - MountPoints2\{f3b2eac8-b48c-11e0-a4e4-001d7dc3215b}\Shell - "" = AutoRun
O33 - MountPoints2\{f3b2eac8-b48c-11e0-a4e4-001d7dc3215b}\Shell\AutoRun\command - "" = E:\Axesstel_Setup.exe
O33 - MountPoints2\E\Shell - "" = AutoRun
O33 - MountPoints2\E\Shell\AutoRun\command - "" = E:\Axesstel_Setup.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - File not found
NetSvcs: HidServ - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

Drivers32: msacm.g723 - g723.acm File not found
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.I263 - C:\WINDOWS\System32\i263_32.drv (Intel Corporation)
Drivers32: vidc.I420 - C:\WINDOWS\System32\i263_32.drv (Intel Corporation)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.mjpg - pvmjpg30.dll File not found
Drivers32: vidc.VP60 - C:\WINDOWS\system32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\WINDOWS\system32\vp6vfw.dll (On2.com)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 7 Days ==========

[2011.08.11 14:32:39 | 000,000,000 | ---D | C] -- C:\_OTL
[2011.08.11 14:27:34 | 000,579,584 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Nemám co dělat\Plocha\OTL.exe
[2011.08.11 11:36:41 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011.08.11 11:36:41 | 000,000,000 | ---D | C] -- C:\rsit
[2011.08.11 11:26:51 | 000,041,272 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2011.08.11 11:26:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Malwarebytes' Anti-Malware
[2011.08.11 11:26:47 | 000,022,712 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011.08.11 11:26:47 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011.08.10 09:26:29 | 000,139,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys
[2011.08.10 09:25:03 | 000,010,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndistapi.sys
[2011.07.22 20:04:08 | 000,090,112 | R--- | C] (Axesstel) -- C:\Program Files\axesstel.dll
[2009.12.25 13:11:10 | 000,041,336 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\Hid3331.sys
[2009.01.01 21:32:42 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Nemám co dělat\Data aplikací\pcouffin.sys
[2008.06.20 16:22:38 | 000,160,640 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\a347bus.sys
[2008.06.20 16:22:38 | 000,005,248 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\a347scsi.sys
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 7 Days ==========

[2011.08.11 14:33:16 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2011.08.11 14:30:17 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Nemám co dělat\Plocha\OTL.exe
[2011.08.11 14:30:00 | 000,000,956 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011.08.11 14:20:01 | 000,001,062 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3615762775-2647865256-2770328900-1007UA.job
[2011.08.11 14:20:01 | 000,001,010 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3615762775-2647865256-2770328900-1007Core.job
[2011.08.11 11:36:34 | 000,781,383 | ---- | M] () -- C:\Documents and Settings\Nemám co dělat\Plocha\RSIT.exe
[2011.08.11 11:26:51 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2011.08.11 10:30:01 | 000,444,016 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011.08.11 10:30:01 | 000,440,738 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2011.08.11 10:30:01 | 000,084,058 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2011.08.11 10:30:01 | 000,072,274 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011.08.11 10:27:14 | 000,182,038 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2011.08.11 10:26:12 | 000,000,308 | ---- | M] () -- C:\WINDOWS\tasks\ASC4_AutoSweep.job
[2011.08.11 10:26:04 | 000,000,952 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011.08.11 10:26:04 | 000,000,394 | ---- | M] () -- C:\WINDOWS\tasks\AWC AutoSweep.job
[2011.08.11 10:25:56 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011.08.10 20:52:17 | 000,001,131 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Google Earth.lnk
[2011.08.10 17:00:02 | 000,000,310 | ---- | M] () -- C:\WINDOWS\tasks\ASC4_AutoUpdate.job
[2011.08.10 09:22:30 | 000,001,374 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011.08.09 17:21:32 | 000,002,324 | ---- | M] () -- C:\Documents and Settings\Nemám co dělat\Plocha\Google Chrome.lnk
[2011.08.09 10:25:51 | 000,002,283 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Skype.lnk
[2011.08.08 19:52:23 | 000,019,968 | ---- | M] () -- C:\Documents and Settings\Nemám co dělat\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011.08.11 14:33:16 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2011.08.11 11:32:23 | 000,781,383 | ---- | C] () -- C:\Documents and Settings\Nemám co dělat\Plocha\RSIT.exe
[2011.08.11 11:26:51 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2011.07.22 20:04:08 | 000,212,992 | R--- | C] () -- C:\Program Files\MSP_Uninstall.exe
[2011.07.18 19:28:58 | 000,000,134 | ---- | C] () -- C:\Documents and Settings\Nemám co dělat\Local Settings\Data aplikací\fusioncache.dat
[2010.04.16 16:43:09 | 000,022,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2010.04.16 16:43:08 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\Nemám co dělat\Data aplikací\PnkBstrK.sys
[2010.04.16 16:42:52 | 000,103,736 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2010.04.16 16:42:51 | 000,066,872 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2010.04.16 16:42:50 | 000,000,319 | ---- | C] () -- C:\WINDOWS\game.ini
[2009.09.12 10:08:37 | 000,000,000 | ---- | C] () -- C:\WINDOWS\PROTOCOL.INI
[2009.01.01 21:32:42 | 000,087,608 | ---- | C] () -- C:\Documents and Settings\Nemám co dělat\Data aplikací\inst.exe
[2009.01.01 21:32:42 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\Nemám co dělat\Data aplikací\pcouffin.cat
[2009.01.01 21:32:42 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\Nemám co dělat\Data aplikací\pcouffin.inf
[2008.07.21 19:42:47 | 000,026,112 | ---- | C] () -- C:\WINDOWS\LgUninst.exe
[2008.07.21 12:47:53 | 000,000,522 | ---- | C] () -- C:\WINDOWS\eReg.dat
[2008.07.17 20:47:22 | 000,000,518 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2008.07.07 13:44:51 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
[2008.07.07 13:14:32 | 000,001,231 | ---- | C] () -- C:\WINDOWS\disney.ini
[2008.06.28 08:41:44 | 000,019,968 | ---- | C] () -- C:\Documents and Settings\Nemám co dělat\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008.06.26 17:35:23 | 000,000,228 | ---- | C] () -- C:\WINDOWS\PowerReg.dat
[2008.06.26 17:17:07 | 000,000,101 | ---- | C] () -- C:\WINDOWS\VSWizard.ini
[2008.06.20 23:56:41 | 000,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2008.06.20 22:55:58 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2008.06.18 14:37:30 | 000,003,972 | ---- | C] () -- C:\WINDOWS\System32\drivers\PciBus.sys
[2008.05.02 22:46:00 | 001,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2008.05.02 22:46:00 | 001,630,208 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe
[2008.05.02 22:46:00 | 001,486,848 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2008.05.02 22:46:00 | 001,339,392 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe
[2008.05.02 22:46:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2008.05.02 22:46:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2008.05.02 22:46:00 | 000,442,368 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe
[2008.05.02 22:46:00 | 000,425,984 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe
[2008.05.02 22:46:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2007.11.09 18:21:04 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2007.11.09 17:42:33 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2007.11.09 17:41:40 | 001,626,632 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2007.11.09 17:08:56 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2007.11.09 17:07:02 | 000,001,732 | ---- | C] () -- C:\WINDOWS\System32\drivers\nvphy.bin
[2007.11.09 17:06:32 | 000,000,502 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2007.11.09 17:04:44 | 000,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat
[2007.11.09 16:51:04 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2007.11.09 16:47:53 | 000,021,812 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2007.07.09 01:41:02 | 000,217,088 | ---- | C] () -- C:\WINDOWS\NVGfxOgl.dll
[2004.08.18 14:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2004.08.18 14:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2004.08.18 14:00:00 | 000,444,016 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2004.08.18 14:00:00 | 000,440,738 | ---- | C] () -- C:\WINDOWS\System32\perfh005.dat
[2004.08.18 14:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2004.08.18 14:00:00 | 000,269,162 | ---- | C] () -- C:\WINDOWS\System32\perfi005.dat
[2004.08.18 14:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2004.08.18 14:00:00 | 000,096,512 | ---- | C] () -- C:\WINDOWS\System32\drivers\atapi.sys
[2004.08.18 14:00:00 | 000,084,058 | ---- | C] () -- C:\WINDOWS\System32\perfc005.dat
[2004.08.18 14:00:00 | 000,072,274 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2004.08.18 14:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2004.08.18 14:00:00 | 000,032,072 | ---- | C] () -- C:\WINDOWS\System32\perfd005.dat
[2004.08.18 14:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2004.08.18 14:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2004.08.18 14:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2004.08.18 14:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2004.08.18 14:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2003.04.09 15:38:04 | 000,005,664 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[1999.04.11 23:54:20 | 000,281,600 | ---- | C] () -- C:\WINDOWS\System32\cncs232.dll
[1999.01.22 20:46:58 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\MSRTEDIT.DLL
[1997.06.14 00:56:08 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\Iyvu9_32.dll

========== LOP Check ==========

[2008.12.25 13:37:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2011.07.18 13:28:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2011.06.10 18:59:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\IObit
[2008.12.27 19:52:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\LangSoft
[2009.05.07 18:08:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MSScanAppDataDir
[2008.06.29 18:31:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\phenomedia
[2010.02.07 09:40:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Pinnacle
[2010.02.07 09:35:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Pinnacle Studio Plus
[2010.02.07 09:40:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Pinnacle Studio Ultimate Collection
[2010.02.07 09:35:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Studio 14
[2008.12.25 13:37:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\DAEMON Tools
[2008.12.25 13:34:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\DAEMON Tools Lite
[2008.12.25 13:46:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\DAEMON Tools Pro
[2011.07.18 13:29:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\ESET
[2008.07.06 19:12:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\Ford Street Racing
[2011.06.29 13:16:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\IObit
[2008.12.27 19:53:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\LangSoft
[2010.08.12 16:12:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\Skinux
[2010.08.10 18:19:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\Vso
[2008.09.05 18:47:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\Zoner
[2011.08.11 10:26:12 | 000,000,308 | ---- | M] () -- C:\WINDOWS\Tasks\ASC4_AutoSweep.job
[2011.08.10 17:00:02 | 000,000,310 | ---- | M] () -- C:\WINDOWS\Tasks\ASC4_AutoUpdate.job
[2011.08.11 10:26:04 | 000,000,394 | ---- | M] () -- C:\WINDOWS\Tasks\AWC AutoSweep.job
[2011.08.10 23:06:53 | 000,032,530 | ---- | M] () -- C:\WINDOWS\Tasks\SCHEDLGU.TXT

========== Purity Check ==========

========== Custom Scans ==========

< >

< >

< MD5 for: AGP440.SYS >
[2004.08.18 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2011.07.18 16:31:23 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2011.07.18 16:31:23 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys

< MD5 for: ATAPI.SYS >
[2004.08.18 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2011.07.18 16:31:23 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2011.07.18 16:31:23 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2008.04.14 05:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 05:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2004.08.18 14:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe

< MD5 for: CDROM.SYS >
[2004.08.18 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2011.07.18 16:31:23 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2011.07.18 16:31:23 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\$NtUninstallKB932716-v2$\cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.05.02 12:49:39 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=4B0A100EAF5C49EF3CCA8C641431EACC -- C:\WINDOWS\$hf_mig$\KB932716-v2\SP3QFE\cdrom.sys
[2008.05.02 12:49:39 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=4B0A100EAF5C49EF3CCA8C641431EACC -- C:\WINDOWS\Driver Cache\i386\cdrom.sys
[2008.05.02 12:49:39 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=4B0A100EAF5C49EF3CCA8C641431EACC -- C:\WINDOWS\system32\dllcache\cdrom.sys
[2008.05.02 12:49:39 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=4B0A100EAF5C49EF3CCA8C641431EACC -- C:\WINDOWS\system32\drivers\cdrom.sys
[2008.05.02 11:05:56 | 000,062,592 | ---- | M] (Microsoft Corporation) MD5=882B4257E5A5ADFB6B5C03E8A02D4BF1 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys
[2004.08.18 14:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtUninstallKB932716-v2_0$\cdrom.sys

< MD5 for: CRYPTSVC.DLL >
[2004.08.18 14:00:00 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=70D2A1756F4B2067658A186C963FCABD -- C:\WINDOWS\$NtServicePackUninstall$\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ServicePackFiles\i386\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll

< MD5 for: EVENTLOG.DLL >
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
[2004.08.18 14:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=6EB66066D5C0175320CFEA0A4C74C88F -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll

< MD5 for: EXPLORER.EXE >
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2004.08.18 14:00:00 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe

< MD5 for: HAL.DLL >
[2004.08.18 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2011.07.18 16:31:23 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2011.07.18 16:31:23 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.13 20:31:28 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\HAL.DLL
[2008.04.13 20:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2004.08.18 14:00:00 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=DFCE51FD96909D1B97D4A1A72D060D77 -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll

< MD5 for: CHANGER.SYS >
[2004.08.18 14:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2011.07.18 16:31:23 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2011.07.18 16:31:23 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008.04.13 20:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys

< MD5 for: ISAPNP.SYS >
[2011.07.18 16:31:23 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2011.07.18 16:31:23 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:isapnp.sys
[2004.08.18 14:00:00 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=1091528512E4DD7ED5FDDCC4DF1C53D7 -- C:\WINDOWS\$NtServicePackUninstall$\isapnp.sys
[2008.04.14 04:27:53 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\ServicePackFiles\i386\isapnp.sys
[2008.04.14 04:27:53 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\drivers\isapnp.sys

< MD5 for: LSASS.EXE >
[2004.08.18 14:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=82A362FE1D4980B71B588D9C10748511 -- C:\WINDOWS\$NtServicePackUninstall$\lsass.exe
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ServicePackFiles\i386\lsass.exe
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe

< MD5 for: NDIS.SYS >
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2004.08.18 14:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys

< MD5 for: NETLOGON.DLL >
[2009.02.06 20:47:20 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=1F43B8C0F4C767FBED89711C30E704D9 -- C:\WINDOWS\$hf_mig$\KB968389\SP2QFE\netlogon.dll
[2009.02.06 20:47:20 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=1F43B8C0F4C767FBED89711C30E704D9 -- C:\WINDOWS\$hf_mig$\KB975467\SP2QFE\netlogon.dll
[2009.02.06 20:47:20 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=1F43B8C0F4C767FBED89711C30E704D9 -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[2009.02.06 20:47:20 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=1F43B8C0F4C767FBED89711C30E704D9 -- C:\WINDOWS\$NtUninstallKB975467_1$\netlogon.dll
[2004.08.18 14:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=2591CADAEF7D2242039255028E577688 -- C:\WINDOWS\$NtUninstallKB968389_1$\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll

< MD5 for: NVGTS.SYS >
[2007.07.02 18:35:34 | 000,101,888 | ---- | M] (NVIDIA Corporation) MD5=45E57B3E5A544B228AC30FFDCB89D079 -- C:\NVIDIA\nForceWinXP\12.15\IDE\WinXP\sata_ide\nvgts.sys
[2007.07.02 18:35:34 | 000,101,888 | ---- | M] (NVIDIA Corporation) MD5=45E57B3E5A544B228AC30FFDCB89D079 -- C:\NVIDIA\nForceWinXP\12.15\IDE\WinXP\sataraid\nvgts.sys

< MD5 for: NVRD32.SYS >
[2007.07.02 18:35:24 | 000,124,928 | ---- | M] (NVIDIA Corporation) MD5=CAF51613911DF4DA452A612EBB35EAC6 -- C:\NVIDIA\nForceWinXP\12.15\IDE\WinXP\sataraid\nvrd32.sys

< MD5 for: SCECLI.DLL >
[2004.08.18 14:00:00 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll

< MD5 for: SMSS.EXE >
[2004.08.18 14:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=04B69D49D7FC3358A372E97DB6D39447 -- C:\WINDOWS\$NtServicePackUninstall$\smss.exe
[2008.04.14 05:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\ServicePackFiles\i386\smss.exe
[2008.04.14 05:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe

< MD5 for: SVCHOST.EXE >
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2004.08.18 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe

< MD5 for: TCPIP.SYS >
[2006.04.20 13:51:50 | 000,359,808 | ---- | M] (Microsoft Corporation) MD5=1DBF125862891817F374F407626967F4 -- C:\WINDOWS\$NtUninstallKB951748_0$\tcpip.sys
[2008.06.20 12:45:13 | 000,360,320 | ---- | M] (Microsoft Corporation) MD5=2A5554FC5B1E04E131230E3CE035C3F9 -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008.06.20 12:44:42 | 000,360,960 | ---- | M] (Microsoft Corporation) MD5=744E57C99232201AE98C49168B918F48 -- C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[2008.06.20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[2006.04.20 14:18:35 | 000,360,576 | ---- | M] (Microsoft Corporation) MD5=B2220C618B42A2212A59D91EBD6FC4B4 -- C:\WINDOWS\$hf_mig$\KB917953\SP2QFE\tcpip.sys

< MD5 for: USERINIT.EXE >
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2004.08.18 14:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe

< MD5 for: WINLOGON.EXE >
[2004.08.18 14:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe

< MD5 for: WS2_32.DLL >
[2004.08.18 14:00:00 | 000,082,944 | ---- | M] (Microsoft Corporation) MD5=382E9B87F1282E697C67AF84E34E35E2 -- C:\WINDOWS\$NtServicePackUninstall$\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ServicePackFiles\i386\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll

< >

< %systemroot%*.* /U /s >
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[12 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2011.07.28 13:03:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\Adobe
[2008.12.22 15:32:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\Ahead
[2010.08.12 16:30:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\Apple Computer
[2010.08.12 16:09:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\ArcSoft
[2008.06.20 22:54:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\CyberLink
[2008.12.25 13:37:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\DAEMON Tools
[2008.12.25 13:34:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\DAEMON Tools Lite
[2008.12.25 13:46:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\DAEMON Tools Pro
[2011.07.18 13:29:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\ESET
[2008.07.06 19:12:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\Ford Street Racing
[2011.07.22 21:23:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\Google
[2008.07.24 21:20:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\Help
[2008.06.20 10:16:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\Identities
[2011.06.29 13:16:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\IObit
[2010.08.12 16:13:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\KodakCredentialStore
[2008.12.27 19:53:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\LangSoft
[2011.08.10 20:44:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\Macromedia
[2011.07.28 17:08:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\Malwarebytes
[2011.07.18 13:04:54 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\Microsoft
[2008.07.06 22:14:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\Microsoft Games
[2008.07.17 20:43:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\Microsoft Web Folders
[2010.08.12 16:12:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\Skinux
[2011.08.09 10:26:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\Skype
[2011.07.26 11:39:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\Sun
[2008.07.15 13:36:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\Symantec
[2010.08.10 18:19:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\Vso
[2008.09.05 18:47:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Nemám co dělat\Data aplikací\Zoner

< %APPDATA%\*.exe /s >
[2010.08.10 18:19:24 | 000,087,608 | ---- | M] () -- C:\Documents and Settings\Nemám co dělat\Data aplikací\inst.exe
[2010.02.07 09:41:24 | 000,029,926 | R--- | M] () -- C:\Documents and Settings\Nemám co dělat\Data aplikací\Microsoft\Installer\{6DE721A5-5E89-4D74-994C-652BB3C0672E}\ARPPRODUCTICON.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\atapi.sys
[2008.12.25 13:34:19 | 000,717,296 | ---- | M] () Unable to obtain MD5 -- C:\WINDOWS\system32\drivers\sptd.sys

< %systemroot%\System32\config\*.sav >
[2007.11.09 17:40:53 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2007.11.09 17:40:53 | 000,638,976 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2007.11.09 17:40:53 | 000,454,656 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav

< %systemroot%\system32\*.dll /lockedfiles >
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2011.08.10 09:27:50 | 052,390,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MRT.exe
[2011.08.11 10:27:14 | 000,182,038 | ---- | M] () -- C:\WINDOWS\system32\nvapps.xml
[2011.08.11 10:30:01 | 000,084,058 | ---- | M] () -- C:\WINDOWS\system32\perfc005.dat
[2011.08.11 10:30:01 | 000,072,274 | ---- | M] () -- C:\WINDOWS\system32\perfc009.dat
[2011.08.11 10:30:01 | 000,440,738 | ---- | M] () -- C:\WINDOWS\system32\perfh005.dat
[2011.08.11 10:30:01 | 000,444,016 | ---- | M] () -- C:\WINDOWS\system32\perfh009.dat
[2011.08.11 10:30:01 | 001,056,086 | ---- | M] () -- C:\WINDOWS\system32\PerfStringBackup.INI
[2011.08.10 09:22:30 | 000,001,374 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"CTFMON.EXE" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 05:22:17 | 000,015,360 | ---- | M] (Microsoft Corporation)
"NVIDIA nTune" = "C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe" clear -- [2007.07.20 16:46:32 | 000,081,920 | ---- | M] (NVIDIA)
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}" = "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" -- [2007.03.12 13:49:26 | 000,153,136 | ---- | M] (Nero AG)
"Advanced SystemCare 4" = C:\Program Files\IObit\Advanced SystemCare 4\ASCTray.exe -- [2011.05.28 14:46:56 | 000,412,560 | ---- | M] (IObit)
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\AdobeUpdater]
"" =

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
No captured output from command...

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
No captured output from command...

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
No captured output from command...

< >

< type c:\boot.ini >> test.txt /c >
No captured output from command...

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2011.08.11 14:33:16 | 000,000,512 | ---- | M] () MD5=4CB15DA0D7AF82C59DFB06901633A8AA -- C:\PhysicalMBR.bin

< End of report >

Extras :

OTL Extras logfile created on: 11.8.2011 14:32:46 - Run 1
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Documents and Settings\Nemám co dělat\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,37 Gb Available Physical Memory | 68,38% Memory free
3,85 Gb Paging File | 3,33 Gb Available in Paging File | 86,52% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 232,88 Gb Total Space | 161,73 Gb Free Space | 69,45% Space Free | Partition Type: NTFS

Computer Name: ROUDNO | User Name: Nemám co dělat | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

[HKEY_USERS\S-1-5-21-3615762775-2647865256-2770328900-1007\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1723:TCP" = 1723:TCP:*:Enabled:@xpsp2res.dll,-22015
"1701:UDP" = 1701:UDP:*:Enabled:@xpsp2res.dll,-22016
"500:UDP" = 500:UDP:*:Enabled:@xpsp2res.dll,-22017

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
"1723:TCP" = 1723:TCP:*:Enabled:@xpsp2res.dll,-22015
"1701:UDP" = 1701:UDP:*:Enabled:@xpsp2res.dll,-22016
"500:UDP" = 500:UDP:*:Enabled:@xpsp2res.dll,-22017
"5985:TCP" = 5985:TCP:*:Disabled:Vzdálená správa systému Windows
"80:TCP" = 80:TCP:*:Disabled:Vzdálená správa systému Windows – režim kompatibility (HTTP-In)

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Microsoft Games\Zoo Tycoon 2\zt.exe" = C:\Program Files\Microsoft Games\Zoo Tycoon 2\zt.exe:*:Enabled:Zoo Tycoon 2 Executable -- (Microsoft Corporation)
"C:\Program Files\Warthog\Rally Championship Xtreme\Rally.exe" = C:\Program Files\Warthog\Rally Championship Xtreme\Rally.exe:*:Enabled:Rally -- ()
"C:\WINDOWS\system32\dplaysvr.exe" = C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper -- (Microsoft Corporation)
"C:\Program Files\Pinnacle\Studio 14\Programs\RM.exe" = C:\Program Files\Pinnacle\Studio 14\Programs\RM.exe:*:Enabled:Render Manager -- (Pinnacle Systems)
"C:\Program Files\Pinnacle\Studio 14\Programs\Studio.exe" = C:\Program Files\Pinnacle\Studio 14\Programs\Studio.exe:*:Enabled:Studio -- (Pinnacle Systems)
"C:\Program Files\Pinnacle\Studio 14\Programs\umi.exe" = C:\Program Files\Pinnacle\Studio 14\Programs\umi.exe:*:Enabled:umi -- (Pinnacle Systems)
"C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe" = C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM) -- ()
"C:\Program Files\Google\Google Earth\client\googleearth.exe" = C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth -- (Google)
"C:\Program Files\Google\Google Earth\plugin\geplugin.exe" = C:\Program Files\Google\Google Earth\plugin\geplugin.exe:*:Enabled:Google Earth -- (Google)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0046FA01-C5B9-4985-BACB-398DC480FC05}" = Adobe Photoshop CS3
"{01521746-02A6-4A72-00BD-A285DF6B80C6}" = The Sims 2 Univerzita
"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{08CA9554-B5FE-4313-938F-D4A417B81175}" = QuickTime
"{0F9196C6-58B4-445B-B56E-B1200FECC151}" = Microsoft Bootvis
"{14B7A9EF-BB68-4529-9190-8CE164E0F548}" = ESET Smart Security
"{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin
"{26A24AE4-039D-4CA4-87B4-2F83216026FF}" = Java(TM) 6 Update 26
"{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3
"{31610C80-309D-40C5-8CF4-9D1EA19DBA0B}_is1" = 18 Wheels of Steel American Long Haul
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3C6D1F24-C121-407D-A49D-46C0971C9751}" = Moorhuhn Soccer
"{3F50AF3B-8997-4916-0095-99D63DDB785A}" = Harry Potter TM
"{4817189D-1785-4627-A33C-39FD90919300}" = The Sims™ 2 Mazlíčci
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4F2CE68F-EDBB-4592-BF07-5AC930A51029}" = Nero 7 Ultra Edition
"{51846830-E7B2-4218-8968-B77F0FF475B8}" = Adobe Color EU Extra Settings
"{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5AAA952E-B15E-47E0-94E4-DD6DC7B9C796}_is1" = Kobra 11 Nitro
"{5C648FDB-0138-4619-B66E-230EF53E8E2C}" = The Sims™ 2 Pro Teenagery Kolekce
"{5E65E94D-69F2-4850-9E93-6459C53A0F50}" = Microsoft .NET Framework 1.1 Czech Language Pack
"{5F055711-2CAF-4323-8443-BEE4913FC7E6}" = Shade: Hněv andělů
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{68F41203-B08A-4EFC-8414-408485473BB3}" = Donald Duck
"{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All
"{6DE721A5-5E89-4D74-994C-652BB3C0672E}" = Ovladače videa společnosti Pinnacle
"{6E7DD182-9FC6-4651-0095-2E666CC6AF35}" = The Sims 2
"{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7B3577F5-1D82-4C9B-008B-69D026FD8BCA}" = The Sims 2 Ve světě podnikání
"{7BF68B83-5057-4D4B-0093-28285EEB9EE3}" = Harry Potter II
"{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}" = NVIDIA nTune
"{7DE24E33-FAF6-4235-958F-F92560B9C7F6}_is1" = Ford Street Racing
"{7F3AD00A-1819-4B15-BB7D-08B3586336D7}" = 3DMark06
"{7F947BFE-C2DF-4779-9909-5BEE746BD0C4}" = Microsoft .NET Framework 2.0 Language Pack - CSY
"{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3
"{87F6C83D-F949-4d14-B5CB-DC8C75F8932D}" = The Sims™ 2 Volný čas
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support
"{90110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{91B323B5-A79C-4D23-BD6D-046C565F9BCF}" = MadOnion.com/3DMark2001 SE
"{92C7D009-A464-4948-A980-7A3E28CB2F49}_is1" = Richard Burns Rally
"{95655ED4-7CA5-46DF-907F-7144877A32E5}" = Adobe Color NA Recommended Settings
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{9CDBC303-3EED-40b0-8E41-A7C65AA96C26}" = The Sims™ 2 Pro luxusní život - Kolekce
"{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps
"{A2D81E70-2A98-4A08-A628-94388B063C5E}" = Adobe Color - Photoshop Specific
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A7AA93B6-6909-4073-B4EC-45CCDEFD4665}" = NHL® 08
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AADD1C8F-D59F-4D55-A726-768C71A205A8}" = Pinnacle Studio 14
"{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}" = PDF Settings
"{AC76BA86-7AD7-1029-7B44-CEA000000001}" = Adobe Reader 6.0.2 CE
"{AFE59147-DDC0-4A42-A10C-9EF953728A1C}" = HAMA Racing Wheel Thunder V18
"{B1899CD8-9584-4DC5-00AE-48F47CF81183}" = The Sims 2 HomeCrafter Plus
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B3FED300-806C-11E0-A0D0-B8AC6F97B88E}" = Google Earth
"{B48F9C44-C904-4FA3-984D-F65AE4C49745}" = Zoner Media Explorer 5
"{B4FEA924-630D-11D4-B78E-005004566E4D}" = ViewSonic Monitor Drivers
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Toolbars
"{B6F5B704-06D3-4687-90F3-6195304AD755}" = The Sims™ 2 Život v bytě
"{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}" = Adobe ExtendScript Toolkit 2
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE7062BD-BE6F-4153-9654-3D72D0C1CC17}" = Zoo Tycoon 2 - African Adventure
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files
"{D6F879CC-59D6-4D4B-AE9B-D761E48D25ED}" = Skype™ 5.3
"{DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9}" = Adobe Color Common Settings
"{DBA4DB9D-EE51-4944-A419-98AB1F1249C8}" = LiveUpdate Notice (Symantec Corporation)
"{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}" = Adobe Color JA Extra Settings
"{DFEF49D9-FC95-4301-99B9-2FB91C6ABA06}" = The Sims™ 2 Roční období
"{DFF29C16-11B8-4AD2-AC1A-2841DA197982}" = Rally Championship Xtreme
"{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3
"{E9F81423-211E-46B6-9AE0-38568BC5CF6F}" =
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F248ADFA-64E0-4b03-8A83-059078BED6A0}" = The Sims™ 2 Šťastnou cestu
"{F5AB23F4-796A-4929-99D9-71F09F145A0B}" = Sousedé z pekla 2
"{F5C372A1-40F3-49DA-A049-F75CDE9177DC}" = Pinnacle Studio Ultimate Collection Plugins
"{F7529650-B9DB-481B-0089-A2AC3C2821C1}" = The Sims 2 Noční život
"{FF35F637-72B9-43BE-A281-06EB2854393A}" = 3DMark03
"{FF895069-BD9A-11D5-986D-00500443CF9F}" = Moorhuhn 3 DL
"18 Wheels of Steel: Haulin'" = 18 Wheels of Steel: Haulin'
"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"Advanced SystemCare 4_is1" = Advanced SystemCare 4
"Bus Driver" = Bus Driver 1.0
"CloneCD" = CloneCD
"CloneDVD2" = CloneDVD2
"CodInstl" = Intel A/V Codecs V2.0
"DVD Shrink_is1" = DVD Shrink 3.2
"DX-Ball 1.09" = DX-Ball 1.09
"Euro Truck Simulator" = Euro Truck Simulator
"EVEREST Home Edition_is1" = EVEREST Home Edition v2.01
"Haulin Czech 1.00-03 R1" = Haulin Czech 1.00-03 R1
"Heavyweight Thunder_is1" = Heavyweight Thunder
"Chessvision Free version" = Chessvision Free version
"ie8" = Windows Internet Explorer 8
"I-Chess" = I-Chess
"InstallShield_{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}" = NVIDIA nTune
"InstallShield_{CE7062BD-BE6F-4153-9654-3D72D0C1CC17}" = Zoo Tycoon 2 - African Adventure
"InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"Knoll Light Factory EZ Studio" = Knoll Light Factory EZ Studio
"Magic Bullet Looks Studio" = Magic Bullet Looks Studio
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware verze 1.51.1.1800
"MechWarrior 3" = MechWarrior 3
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 2.0 Language Pack - CSY" = Microsoft .NET Framework 2.0 Language Pack - CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Moorhuhn 2 V1.1" = Moorhuhn 2 V1.1
"Moorhuhn Winter-Edition" = Moorhuhn Winter-Edition
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NVIDIA Drivers" = NVIDIA Drivers
"PC Translator 2007 DEMO" = PC Translator 2007 DEMO
"Red Giant ToonIt Studio" = Red Giant ToonIt Studio
"Traktor Simulátor_is1" = Traktor Simulátor
"Trapcode 3DStroke Studio" = Trapcode 3DStroke Studio
"Trapcode Particular Studio" = Trapcode Particular Studio
"Trapcode Shine Studio" = Trapcode Shine Studio
"VirtualCloneDrive" = VirtualCloneDrive
"WIC" = Windows Imaging Component
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"Yahoo! Companion" = Yahoo! Companion
"Zeek the Geek Part One" = Zeek the Geek Part One

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-3615762775-2647865256-2770328900-1007\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 9.8.2011 11:04:02 | Computer Name = ROUDNO | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 9.8.2011 11:04:06 | Computer Name = ROUDNO | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 10.8.2011 3:14:59 | Computer Name = ROUDNO | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 10.8.2011 3:15:03 | Computer Name = ROUDNO | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 10.8.2011 5:40:43 | Computer Name = ROUDNO | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 10.8.2011 5:40:48 | Computer Name = ROUDNO | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 10.8.2011 10:38:06 | Computer Name = ROUDNO | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 10.8.2011 10:38:10 | Computer Name = ROUDNO | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 11.8.2011 4:26:00 | Computer Name = ROUDNO | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 11.8.2011 4:26:04 | Computer Name = ROUDNO | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

[ System Events ]
Error - 9.8.2011 12:31:53 | Computer Name = ROUDNO | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby upnphost
s argumenty za účelem spuštění serveru: {204810B9-73B2-11D4-BF42-00B0D0118B56}

Error - 9.8.2011 12:33:08 | Computer Name = ROUDNO | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby upnphost
s argumenty za účelem spuštění serveru: {204810B9-73B2-11D4-BF42-00B0D0118B56}

Error - 9.8.2011 15:24:07 | Computer Name = ROUDNO | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby upnphost
s argumenty za účelem spuštění serveru: {204810B9-73B2-11D4-BF42-00B0D0118B56}

Error - 9.8.2011 15:24:10 | Computer Name = ROUDNO | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby upnphost
s argumenty za účelem spuštění serveru: {204810B9-73B2-11D4-BF42-00B0D0118B56}

Error - 9.8.2011 15:24:13 | Computer Name = ROUDNO | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby upnphost
s argumenty za účelem spuštění serveru: {204810B9-73B2-11D4-BF42-00B0D0118B56}

Error - 10.8.2011 3:14:59 | Computer Name = ROUDNO | Source = Service Control Manager | ID = 7000
Description = Služba Plánovač automatické aktualizace LiveUpdate neuspěla při spuštění
v důsledku následující chyby: %%3

Error - 10.8.2011 5:40:47 | Computer Name = ROUDNO | Source = Service Control Manager | ID = 7000
Description = Služba Plánovač automatické aktualizace LiveUpdate neuspěla při spuštění
v důsledku následující chyby: %%3

Error - 10.8.2011 5:52:02 | Computer Name = ROUDNO | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby upnphost
s argumenty za účelem spuštění serveru: {204810B9-73B2-11D4-BF42-00B0D0118B56}

Error - 10.8.2011 10:38:06 | Computer Name = ROUDNO | Source = Service Control Manager | ID = 7000
Description = Služba Plánovač automatické aktualizace LiveUpdate neuspěla při spuštění
v důsledku následující chyby: %%3

Error - 11.8.2011 4:26:00 | Computer Name = ROUDNO | Source = Service Control Manager | ID = 7000
Description = Služba Plánovač automatické aktualizace LiveUpdate neuspěla při spuštění
v důsledku následující chyby: %%3

< End of report >

VydraMan · #9 Příspěvek od **VydraMan** » 11 srp 2011 15:25

Provedl jsem sken MBAM a nic.
Log :

Malwarebytes' Anti-Malware
www.malwarebytes.org

Verze databáze:

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

11.8.2011 16:18:54
mbam-log-2011-08-11 (16-18-54).txt

Typ: Úplná kontrola (C:\|)
Kontrolované objekty: 279858
Uplynulý čas: 35 minut, 46 sekund

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 0

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)

#10 Příspěvek od **vyosek** » 11 srp 2011 16:35

Odinstalujte Advanced SystemCare 4 a nasledne i vse od IObit - jsou to cinske smejdy, databazi haveti ukradli jine renomovane spolecnosti, jejich ucinek je nulovy, odstranuji neexistujici problemy a spise skodi...

Spustte znovu OTL

Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

Kód: Vybrat vše

:otl
SRV - File not found [Auto | Stopped] -- -- (Plánovač automatické aktualizace LiveUpdate)
SRV - File not found [Disabled | Stopped] -- -- (HidServ)
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - File not found [On_Demand | Stopped] -- -- (ACDaemon)
O2 - BHO: (Yahoo! Companion BHO) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - Reg Error: Value error. File not found
O2 - BHO: (no name) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.
O3 - HKU\S-1-5-21-3615762775-2647865256-2770328900-1007\..\Toolbar\WebBrowser: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.
O4 - HKU\S-1-5-21-3615762775-2647865256-2770328900-1007..\RunOnce: [Shockwave Updater] File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O33 - MountPoints2\{003e4c38-b12c-11e0-a4bf-001d7dc3215b}\Shell - "" = AutoRun
O33 - MountPoints2\{003e4c3b-b12c-11e0-a4bf-001d7dc3215b}\Shell - "" = AutoRun
O33 - MountPoints2\{f3b2eac8-b48c-11e0-a4e4-001d7dc3215b}\Shell - "" = AutoRun
O33 - MountPoints2\E\Shell - "" = AutoRun
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[12 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

:services
gupdate
gupdatem
NBService
JavaQuickStarterService

:reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NeroFilterCheck"=-
"CloneCDTray"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=-
 
:files
C:\WINDOWS\tasks\ASC4_AutoSweep.job
C:\WINDOWS\tasks\ASC4_AutoUpdate.job
C:\WINDOWS\tasks\AWC AutoSweep.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3615762775-2647865256-2770328900-1007Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3615762775-2647865256-2770328900-1007UA.job
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp

:commands
[RESETHOSTS]
[EMPTYTEMP]
[EMPTYFLASH]

Nasledne kliknete na Opravit
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

VydraMan · #11 Příspěvek od **VydraMan** » 11 srp 2011 16:50

All processes killed
========== OTL ==========
Service Plánovač automatické aktualizace LiveUpdate stopped successfully!
Service Plánovač automatické aktualizace LiveUpdate deleted successfully!
Service HidServ stopped successfully!
Service HidServ deleted successfully!
Service AppMgmt stopped successfully!
Service AppMgmt deleted successfully!
Service ACDaemon stopped successfully!
Service ACDaemon deleted successfully!
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{02478D38-C3F9-4efb-9B51-7695ECA05670}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}\ not found.
Registry value HKEY_USERS\S-1-5-21-3615762775-2647865256-2770328900-1007\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}\ not found.
Registry value HKEY_USERS\S-1-5-21-3615762775-2647865256-2770328900-1007\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Shockwave Updater deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Infodelivery\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{003e4c38-b12c-11e0-a4bf-001d7dc3215b}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{003e4c38-b12c-11e0-a4bf-001d7dc3215b}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{003e4c3b-b12c-11e0-a4bf-001d7dc3215b}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{003e4c3b-b12c-11e0-a4bf-001d7dc3215b}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f3b2eac8-b48c-11e0-a4e4-001d7dc3215b}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f3b2eac8-b48c-11e0-a4e4-001d7dc3215b}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\E\ deleted successfully.
C:\WINDOWS\002952_.tmp deleted successfully.
C:\WINDOWS\SET3.tmp deleted successfully.
C:\WINDOWS\SET4.tmp deleted successfully.
C:\WINDOWS\SET8.tmp deleted successfully.
C:\WINDOWS\System32\CONFIG.TMP deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP10AC.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP10CE.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1C4.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1D0.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP853.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP85D.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP8E1.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9BE.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPB45.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPBF8.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPCAD.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPD68.tmp folder deleted successfully.
========== SERVICES/DRIVERS ==========
Service gupdate stopped successfully!
Service gupdate deleted successfully!
Service gupdatem stopped successfully!
Service gupdatem deleted successfully!
Service NBService stopped successfully!
Service NBService deleted successfully!
Service JavaQuickStarterService stopped successfully!
Service JavaQuickStarterService deleted successfully!
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\NeroFilterCheck deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\CloneCDTray deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} deleted successfully.
========== FILES ==========
C:\WINDOWS\tasks\ASC4_AutoSweep.job moved successfully.
C:\WINDOWS\tasks\ASC4_AutoUpdate.job moved successfully.
C:\WINDOWS\tasks\AWC AutoSweep.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3615762775-2647865256-2770328900-1007Core.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3615762775-2647865256-2770328900-1007UA.job moved successfully.
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32902 bytes

User: Nemám co dělat
->Temp folder emptied: 46728566 bytes
->Temporary Internet Files folder emptied: 1450916 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 19067156 bytes
->Flash cache emptied: 343 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 49152 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 78796710 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33438 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 139,00 mb

[EMPTYFLASH]

User: All Users

User: Default User

User: LocalService

User: Nemám co dělat
->Flash cache emptied: 0 bytes

User: NetworkService

Total Flash Files Cleaned = 0,00 mb

OTL by OldTimer - Version 3.2.26.1 log created on 08112011_174053

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...

#12 Příspěvek od **vyosek** » 11 srp 2011 17:06

Nastala nejaka zmena

VydraMan · #13 Příspěvek od **VydraMan** » 11 srp 2011 17:09

PC Spouští pořád pomalu

Naskočí Vítejte, Plocha le ikony nikde. Po nějakých 25 vteřinách naskočí ikony a začne nabíhat antivir.

#14 Příspěvek od **vyosek** » 11 srp 2011 17:10

Nemate na plose nejake velke soubory (filmy, hodne fotek) atd. Plocha by mela byt cista a jen obsahovat zastupce. Data patri primo na disk

VydraMan · #15 Příspěvek od **VydraMan** » 11 srp 2011 17:12

Mám tam jenom zástupce her, pár programů a pár složek s daty. To je vše. Ale tak to mám už dlouho bez problému. až po nainstalování ESETa a ovladače modemu sem začal mít tyhle problémy.

VIRY.CZ

Pomalé zapínání pc, 5x svchost

Pomalé zapínání pc, 5x svchost

Re: Pomalé zapínání pc, 5x svchost

Re: Pomalé zapínání pc, 5x svchost

Re: Pomalé zapínání pc, 5x svchost

Re: Pomalé zapínání pc, 5x svchost

Re: Pomalé zapínání pc, 5x svchost

Re: Pomalé zapínání pc, 5x svchost

Re: Pomalé zapínání pc, 5x svchost

Re: Pomalé zapínání pc, 5x svchost

Re: Pomalé zapínání pc, 5x svchost

Re: Pomalé zapínání pc, 5x svchost

Re: Pomalé zapínání pc, 5x svchost

Re: Pomalé zapínání pc, 5x svchost

Re: Pomalé zapínání pc, 5x svchost

Re: Pomalé zapínání pc, 5x svchost