nejde nainstalovat NOD

[koskos]

Dobrý den,
prosím o pomoc.
- přestal mi fungovat NOD (Eset endpoint security - poslední sestavení stažené z webu eset.cz), tak jsem ho odinstaloval a zkoušel znovu nainstalovat
- během instalace mi oznámil, že nelze ho nainstalovat a proces instalace se ukončil
- mám Windows XP
Děkuji moc za pomoc

zde zasílám výpisy z:
1. FRST
2. DDS
3. AdwCleaner

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 23-02-2014 02
Ran by Pepik (administrator) on PEPA on 23-02-2014 23:00:06
Running from C:\Documents and Settings\Pepik\Plocha\Nemazat nebo sním večeři
Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(TeamViewer GmbH) C:\Documents and Settings\Pepik\Local Settings\Temp\TeamViewer\Version9\TeamViewer.exe
(TeamViewer GmbH) C:\Documents and Settings\Pepik\Local Settings\Temp\TeamViewer\Version9\tv_w32.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(TeamViewer GmbH) C:\Documents and Settings\Pepik\Local Settings\Temp\TeamViewer\Version9\TeamViewer_Desktop.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [MSConfig] - C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe [171008 2008-04-14] (Microsoft Corporation)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll (ATI Technologies Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKLM - DefaultScope value is missing.
BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - No Name - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - No File
Toolbar: HKCU - &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
Toolbar: HKCU - &Odkazy - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} http://office.microsoft.com/officeupdat ... /opuc3.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://windowsupdate.microsoft.com/wind ... 2532014452
DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} http://download.divx.com/player/DivXBrowserPlugin.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} http://www.sibelius.com/download/softwa ... Plugin.cab
DPF: {CAFEEFAC-0017-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
ShellExecuteHooks: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll [304128 2009-05-24] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Pepik\Data aplikací\Mozilla\Firefox\Profiles\79dx92nx.default
FF DefaultSearchEngine: AOL Search
FF SelectedSearchEngine: AOL Search
FF Homepage: hxxp://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll ()
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.6.2 - C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll No File
FF Plugin: @java.com/JavaPlugin,version=10.6.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @nokia.com/EnablerPlugin - C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF Plugin: @real.com/nppl3260;version=16.0.0.282 - c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.0 - C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.0 - C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.3.0 - C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpchromebrowserrecordext;version=15.0.5.109 - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprphtml5videoshim;version=15.0.5.109 - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=16.0.0.282 - c:\program files\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin: @realnetworks.com/npdlplugin;version=1 - C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.3 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpplugin.dll (RealPlayer)
FF SearchPlugin: C:\Documents and Settings\Pepik\Data aplikací\Mozilla\Firefox\Profiles\79dx92nx.default\searchplugins\aol-search.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Nokia Maps 3D browser plugin - C:\Documents and Settings\Pepik\Data aplikací\Mozilla\Firefox\Profiles\79dx92nx.default\Extensions\maps@ovi.com [2012-04-16]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
FF HKLM\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012-01-13]
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-10-16]
FF HKLM\...\Firefox\Extensions: [{34712C68-7391-4c47-94F3-8F88D49AD632}] - C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ []
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-01-02]
FF HKLM\...\Firefox\Extensions: [fmconverter@gmail.com] - C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\
FF Extension: Freemake Video Converter Plugin - C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\ []
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-10-16]

Chrome:
=======
CHR Extension: (Dokumenty Google) - C:\Documents and Settings\Pepik\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-22]
CHR Extension: (Disk Google) - C:\Documents and Settings\Pepik\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-22]
CHR Extension: (YouTube) - C:\Documents and Settings\Pepik\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-22]
CHR Extension: (Vyhledávání Google) - C:\Documents and Settings\Pepik\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-22]
CHR Extension: (RealDownloader) - C:\Documents and Settings\Pepik\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2014-01-22]
CHR Extension: (Freemake Video Converter) - C:\Documents and Settings\Pepik\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj [2014-01-22]
CHR Extension: (Skype Click to Call) - C:\Documents and Settings\Pepik\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-01-22]
CHR Extension: (Peněženka Google) - C:\Documents and Settings\Pepik\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-22]
CHR Extension: (DivX Plus Web Player HTML5 <video>) - C:\Documents and Settings\Pepik\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2014-01-22]
CHR Extension: (Gmail) - C:\Documents and Settings\Pepik\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-22]
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2012-11-29]
CHR HKLM\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx [2012-11-20]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-10-09]
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2011-12-12]

========================== Services (Whitelisted) =================

S4 ABBYY.Licensing.FineReader.Professional.9.0; C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [660768 2007-12-06] (ABBYY (BIT Software))
S4 ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [520192 2006-01-04] ()
S4 Freemake Improver; C:\Documents and Settings\All Users\Data aplikací\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [101888 2013-12-09] (Freemake)
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [38608 2012-11-29] ()
S4 Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3275136 2013-10-09] (Skype Technologies S.A.)
R2 syshost32; C:\WINDOWS\Installer\{1D5BA4A0-3218-E7F1-430B-5B5222A3D981}\syshost.exe [83456 2014-02-11] ()

==================== Drivers (Whitelisted) ====================

R3 ASAPIW2K; C:\WINDOWS\System32\Drivers\ASAPIW2K.sys [11264 2005-02-23] (VOB Computersysteme GmbH)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
S3 esihdrv; C:\Documents and Settings\Pepik\Local Settings\Temp\esihdrv.sys [122240 2014-02-18] (ESET)
S3 HdAudAddService; C:\WINDOWS\System32\drivers\HdAudio.sys [145920 2005-01-07] (Windows (R) Server 2003 DDK provider)
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [49920 2008-10-29] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16496 2008-10-29] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21568 2008-10-29] (HP)
R1 ISODrive; C:\Program Files\UltraISO\drivers\ISODrive.sys [82320 2010-01-29] (EZB Systems, Inc.)
R3 MarvinBus; C:\WINDOWS\System32\DRIVERS\MarvinBus.sys [171008 2005-06-02] (Pinnacle Systems GmbH)
R3 MTsensor; C:\WINDOWS\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
S3 nm; C:\WINDOWS\System32\DRIVERS\NMnt.sys [40320 2008-04-13] (Microsoft Corporation)
R1 PCLEPCI; C:\WINDOWS\system32\drivers\pclepci.sys [14165 2005-02-09] (Pinnacle Systems GmbH)
R3 yukonwxp; C:\WINDOWS\System32\DRIVERS\yk51x86.sys [223104 2004-10-27] (Marvell)
U5 3282b15f8ce36c92; C:\Windows\System32\Drivers\3282b15f8ce36c92.sys [61056 2014-02-11] ()
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U1 WS2IFSL;
U3 mbr; \??\C:\DOCUME~1\Pepik\LOCALS~1\Temp\mbr.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-23 23:00 - 2014-02-23 23:00 - 00000000 ____D () C:\FRST
2014-02-23 22:54 - 2014-02-23 22:56 - 00025421 _____ () C:\Documents and Settings\Pepik\Plocha\attach.txt
2014-02-23 22:54 - 2014-02-23 22:56 - 00008606 _____ () C:\Documents and Settings\Pepik\Plocha\dds.txt
2014-02-23 22:16 - 2014-02-23 22:21 - 00000000 ____D () C:\AdwCleaner
2014-02-23 22:13 - 2014-02-23 22:57 - 00000000 ____D () C:\rsit
2014-02-23 22:13 - 2014-02-23 22:49 - 00000000 ____D () C:\Program Files\trend micro
2014-02-23 22:12 - 2014-02-23 23:00 - 00000000 ____D () C:\Documents and Settings\Pepik\Plocha\Nemazat nebo sním večeři
2014-02-16 22:48 - 2014-02-16 22:48 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\ESET
2014-02-15 11:37 - 2014-02-15 11:45 - 00011880 _____ () C:\WINDOWS\FaxSetup.log
2014-02-15 11:37 - 2014-02-15 11:45 - 00011166 _____ () C:\WINDOWS\ocgen.log
2014-02-15 11:37 - 2014-02-15 11:45 - 00008916 _____ () C:\WINDOWS\tsoc.log
2014-02-15 11:37 - 2014-02-15 11:45 - 00007825 _____ () C:\WINDOWS\iis6.log
2014-02-15 11:37 - 2014-02-15 11:45 - 00004392 _____ () C:\WINDOWS\comsetup.log
2014-02-15 11:37 - 2014-02-15 11:45 - 00003862 _____ () C:\WINDOWS\msmqinst.log
2014-02-15 11:37 - 2014-02-15 11:45 - 00003283 _____ () C:\WINDOWS\ntdtcsetup.log
2014-02-15 11:37 - 2014-02-15 11:45 - 00003096 _____ () C:\WINDOWS\netfxocm.log
2014-02-15 11:37 - 2014-02-15 11:45 - 00001917 _____ () C:\WINDOWS\imsins.log
2014-02-15 11:37 - 2014-02-15 11:45 - 00001400 _____ () C:\WINDOWS\MedCtrOC.log
2014-02-15 11:37 - 2014-02-15 11:45 - 00000924 _____ () C:\WINDOWS\msgsocm.log
2014-02-15 11:37 - 2014-02-15 11:45 - 00000813 _____ () C:\WINDOWS\ocmsn.log
2014-02-15 11:37 - 2014-02-15 11:45 - 00000583 _____ () C:\WINDOWS\tabletoc.log
2014-02-15 11:37 - 2014-02-15 11:37 - 00001642 _____ () C:\WINDOWS\imsins.BAK
2014-02-15 11:37 - 2014-02-15 11:37 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-02-15 11:37 - 2014-02-15 11:37 - 00000000 _____ () C:\WINDOWS\setupact.log
2014-02-11 07:20 - 2014-02-16 22:03 - 00006661 _____ () C:\WINDOWS\setupapi.log
2014-02-11 00:18 - 2014-02-11 00:18 - 00061056 _____ () C:\WINDOWS\system32\Drivers\3282b15f8ce36c92.sys
2014-02-11 00:18 - 2014-02-11 00:18 - 00061056 _____ () C:\WINDOWS\system32\Drivers\1c51f15.sys
2014-01-28 18:50 - 2014-01-28 18:50 - 00112024 _____ () C:\Documents and Settings\Pepik\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT

==================== One Month Modified Files and Folders =======

2014-02-23 23:00 - 2014-02-23 23:00 - 00000000 ____D () C:\FRST
2014-02-23 23:00 - 2014-02-23 22:12 - 00000000 ____D () C:\Documents and Settings\Pepik\Plocha\Nemazat nebo sním večeři
2014-02-23 22:57 - 2014-02-23 22:13 - 00000000 ____D () C:\rsit
2014-02-23 22:57 - 2012-05-31 01:05 - 00008192 ___SH () C:\WINDOWS\Thumbs.db
2014-02-23 22:57 - 2011-12-30 22:39 - 00000143 _____ () C:\WINDOWS\NeroDigital.ini
2014-02-23 22:56 - 2014-02-23 22:54 - 00025421 _____ () C:\Documents and Settings\Pepik\Plocha\attach.txt
2014-02-23 22:56 - 2014-02-23 22:54 - 00008606 _____ () C:\Documents and Settings\Pepik\Plocha\dds.txt
2014-02-23 22:54 - 2006-02-11 09:39 - 00000000 ____D () C:\Documents and Settings\Pepik\Plocha
2014-02-23 22:49 - 2014-02-23 22:13 - 00000000 ____D () C:\Program Files\trend micro
2014-02-23 22:48 - 2014-01-22 18:23 - 00001813 _____ () C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2014-02-23 22:48 - 2014-01-22 18:22 - 00000938 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-23 22:47 - 2013-03-09 00:23 - 00000466 ____H () C:\WINDOWS\Tasks\User_Feed_Synchronization-{DB048E47-F5A9-4926-A875-69938696147D}.job
2014-02-23 22:47 - 2011-12-30 15:40 - 00000000 ____D () C:\Documents and Settings\Pepik\Data aplikací\Skype
2014-02-23 22:45 - 2012-06-09 18:47 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-02-23 22:44 - 2014-01-22 18:22 - 00000934 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-23 22:44 - 2013-08-16 14:15 - 00000278 _____ () C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1801674531-842925246-725345543-1006.job
2014-02-23 22:44 - 2013-03-09 11:45 - 00000278 _____ () C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1801674531-842925246-725345543-1003.job
2014-02-23 22:44 - 2013-01-10 15:31 - 00000300 _____ () C:\WINDOWS\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-1801674531-842925246-725345543-1003.job
2014-02-23 22:44 - 2013-01-02 09:44 - 00000286 _____ () C:\WINDOWS\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1801674531-842925246-725345543-1003.job
2014-02-23 22:44 - 2012-06-09 10:02 - 00000278 _____ () C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-1801674531-842925246-725345543-1003.job
2014-02-23 22:44 - 2004-08-18 13:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2014-02-23 22:44 - 2004-08-18 13:00 - 00000707 _____ () C:\WINDOWS\win.ini
2014-02-23 22:44 - 2004-08-18 13:00 - 00000227 _____ () C:\WINDOWS\system.ini
2014-02-23 22:23 - 2006-01-27 11:19 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-02-23 22:23 - 2006-01-27 11:19 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2014-02-23 22:23 - 2006-01-27 11:01 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-02-23 22:22 - 2006-01-27 11:01 - 00032474 _____ () C:\WINDOWS\SchedLgU.Txt
2014-02-23 22:22 - 2006-01-27 11:01 - 00000178 ___SH () C:\Documents and Settings\Pepik\ntuser.ini
2014-02-23 22:22 - 2006-01-27 10:42 - 01796468 _____ () C:\WINDOWS\WindowsUpdate.log
2014-02-23 22:21 - 2014-02-23 22:16 - 00000000 ____D () C:\AdwCleaner
2014-02-23 22:21 - 2013-08-09 07:35 - 00000000 __RHD () C:\Documents and Settings\Majka\Data aplikací
2014-02-23 22:21 - 2013-08-09 07:35 - 00000000 ___HD () C:\Documents and Settings\Majka\Local Settings\Data aplikací
2014-02-23 22:21 - 2006-02-11 09:38 - 00000000 __RHD () C:\Documents and Settings\Pepik\Data aplikací
2014-02-23 22:21 - 2006-02-11 09:38 - 00000000 ___HD () C:\Documents and Settings\Pepik\Local Settings\Data aplikací
2014-02-23 22:20 - 2006-01-27 11:15 - 00000000 __RHD () C:\Documents and Settings\All Users\Data aplikací
2014-02-17 22:20 - 2006-01-27 11:16 - 00000000 ___RD () C:\Documents and Settings\All Users\Nabídka Start\Programy
2014-02-17 22:18 - 2006-02-03 08:26 - 00000000 ____D () C:\IJJ
2014-02-17 05:19 - 2013-12-20 01:51 - 00334466 _____ () C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-S-1-5-18-0.dat
2014-02-17 05:19 - 2012-11-20 15:43 - 00334466 _____ () C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-System.dat
2014-02-16 22:48 - 2014-02-16 22:48 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\ESET
2014-02-16 22:48 - 2012-10-31 12:56 - 00000000 ____D () C:\Program Files\ESET
2014-02-16 22:25 - 2012-05-10 21:45 - 00000000 ____D () C:\Documents and Settings\Pepik\Data aplikací\TeamViewer
2014-02-16 22:03 - 2014-02-11 07:20 - 00006661 _____ () C:\WINDOWS\setupapi.log
2014-02-16 00:06 - 2006-02-03 08:55 - 00001324 _____ () C:\WINDOWS\system32\d3d9caps.dat
2014-02-15 11:45 - 2014-02-15 11:37 - 00011880 _____ () C:\WINDOWS\FaxSetup.log
2014-02-15 11:45 - 2014-02-15 11:37 - 00011166 _____ () C:\WINDOWS\ocgen.log
2014-02-15 11:45 - 2014-02-15 11:37 - 00008916 _____ () C:\WINDOWS\tsoc.log
2014-02-15 11:45 - 2014-02-15 11:37 - 00007825 _____ () C:\WINDOWS\iis6.log
2014-02-15 11:45 - 2014-02-15 11:37 - 00004392 _____ () C:\WINDOWS\comsetup.log
2014-02-15 11:45 - 2014-02-15 11:37 - 00003862 _____ () C:\WINDOWS\msmqinst.log
2014-02-15 11:45 - 2014-02-15 11:37 - 00003283 _____ () C:\WINDOWS\ntdtcsetup.log
2014-02-15 11:45 - 2014-02-15 11:37 - 00003096 _____ () C:\WINDOWS\netfxocm.log
2014-02-15 11:45 - 2014-02-15 11:37 - 00001917 _____ () C:\WINDOWS\imsins.log
2014-02-15 11:45 - 2014-02-15 11:37 - 00001400 _____ () C:\WINDOWS\MedCtrOC.log
2014-02-15 11:45 - 2014-02-15 11:37 - 00000924 _____ () C:\WINDOWS\msgsocm.log
2014-02-15 11:45 - 2014-02-15 11:37 - 00000813 _____ () C:\WINDOWS\ocmsn.log
2014-02-15 11:45 - 2014-02-15 11:37 - 00000583 _____ () C:\WINDOWS\tabletoc.log
2014-02-15 11:37 - 2014-02-15 11:37 - 00001642 _____ () C:\WINDOWS\imsins.BAK
2014-02-15 11:37 - 2014-02-15 11:37 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-02-15 11:37 - 2014-02-15 11:37 - 00000000 _____ () C:\WINDOWS\setupact.log
2014-02-11 00:26 - 2013-08-09 07:41 - 00000000 ____D () C:\Documents and Settings\Majka\Data aplikací\Skype
2014-02-11 00:26 - 2013-08-09 07:35 - 00000178 ___SH () C:\Documents and Settings\Majka\ntuser.ini
2014-02-11 00:24 - 2013-08-16 14:15 - 00000286 _____ () C:\WINDOWS\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1801674531-842925246-725345543-1006.job
2014-02-11 00:18 - 2014-02-11 00:18 - 00061056 _____ () C:\WINDOWS\system32\Drivers\3282b15f8ce36c92.sys
2014-02-11 00:18 - 2014-02-11 00:18 - 00061056 _____ () C:\WINDOWS\system32\Drivers\1c51f15.sys
2014-02-10 08:10 - 2006-01-27 16:00 - 00000000 __SHD () C:\WINDOWS\CSC
2014-02-05 15:55 - 2006-02-11 09:38 - 00000000 ___RD () C:\Documents and Settings\Pepik\Dokumenty\Hudba
2014-02-04 22:28 - 2012-07-20 18:21 - 00000000 ____D () C:\Documents and Settings\Pepik\Data aplikací\vlc
2014-02-04 19:09 - 2006-01-27 12:23 - 85946576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-02-04 11:52 - 2013-01-10 15:31 - 00000308 _____ () C:\WINDOWS\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-1801674531-842925246-725345543-1003.job
2014-01-28 18:50 - 2014-01-28 18:50 - 00112024 _____ () C:\Documents and Settings\Pepik\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2014-01-24 18:30 - 2012-06-09 10:02 - 00000286 _____ () C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-1801674531-842925246-725345543-1003.job
2014-01-24 16:11 - 2013-08-09 07:36 - 00001813 _____ () C:\Documents and Settings\Majka\Plocha\Google Chrome.lnk

Some content of TEMP:
====================
C:\Documents and Settings\Majka\Local Settings\Temp\SkypeSetup.exe
C:\Documents and Settings\Pepik\Local Settings\Temp\lowproc.exe
C:\Documents and Settings\Pepik\Local Settings\Temp\NEventMessages.dll
C:\Documents and Settings\Pepik\Local Settings\Temp\NOSEventMessages.dll
C:\Documents and Settings\Pepik\Local Settings\Temp\Quarantine.exe
C:\Documents and Settings\Pepik\Local Settings\Temp\SkypeSetup.exe
C:\Documents and Settings\Pepik\Local Settings\Temp\stubhelper.dll


==================== Bamital & volsnap Check =================

C:\WINDOWS\explorer.exe
[2004-08-18 13:00] - [2008-04-14 04:22] - 1034240 ____A (Microsoft Corporation) 27afd587c462e280ee046b8cca3c2cd1

C:\WINDOWS\system32\winlogon.exe
[2004-08-18 13:00] - [2008-04-14 04:22] - 0507904 ____A (Microsoft Corporation) cddb1f8e1aea356f3ad106f2cf9b7fea

C:\WINDOWS\system32\svchost.exe
[2004-08-18 13:00] - [2008-04-14 04:22] - 0014336 ____A (Microsoft Corporation) be4a520e29b6391f49e79ccc52044d93

C:\WINDOWS\system32\services.exe
[2004-08-18 13:00] - [2009-02-09 12:25] - 0111104 ____A (Microsoft Corporation) 9ef697af07bb8dd82c3b02ca953a95b7

C:\WINDOWS\system32\User32.dll
[2004-08-18 13:00] - [2008-04-14 04:22] - 0578560 ____A (Microsoft Corporation) e16e0990967374e76f3e40cacafd3d53

C:\WINDOWS\system32\userinit.exe
[2004-08-18 13:00] - [2008-04-14 04:22] - 0026112 ____A (Microsoft Corporation) 7dc1830f22e7d275b438127b68030239

C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\volsnap.sys
[2004-08-18 13:00] - [2008-04-14 03:12] - 0052480 ____A (Microsoft Corporation) 28a4b296b47782173c346e376cb374d1


==================== End Of Log ============================









DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.6.2
Run by Pepik at 22:53:16 on 2014-02-23
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1535.981 [GMT 1:00]
.
.
============== Running Processes ================
.
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\DOCUME~1\Pepik\LOCALS~1\Temp\TeamViewer\Version9\TeamViewer.exe
C:\DOCUME~1\Pepik\LOCALS~1\Temp\TeamViewer\Version9\tv_w32.exe
C:\Program Files\Skype\Phone\Skype.exe
c:\docume~1\pepik\locals~1\temp\teamviewer\version9\TeamViewer_Desktop.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k hpdevmgmt
C:\WINDOWS\system32\svchost.exe -k imgsvc
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.seznam.cz/
BHO: HP Print Enhancer: {0347C33E-8762-4905-BF09-768834316C61} - c:\program files\hp\digital imaging\smart web printing\hpswp_printenhancer.dll
BHO: RealNetworks Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - c:\documents and settings\all users\data aplikací\realnetworks\realdownloader\browserplugins\ie\rndlbrowserrecordplugin.dll
BHO: DivX Plus Web Player HTML5 <video>: {326E768D-4182-46FD-9C16-1449A49795F4} - c:\program files\divx\divx plus web player\ie\divxhtml5\DivXHTML5.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
BHO: HP Smart BHO Class: {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
EB: HP Smart Web Printing: {555D4D79-4BD2-4094-A395-CFC534424A05} - c:\program files\hp\digital imaging\smart web printing\hpswp_bho.dll
EB: HP Smart Web Printing: {555D4D79-4BD2-4094-A395-CFC534424A05} - c:\program files\hp\digital imaging\smart web printing\hpswp_bho.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [MSConfig] c:\windows\pchealth\helpctr\binaries\MSConfig.exe /auto
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
uPolicies-Explorer: NoDriveTypeAutoRun = dword:0
mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} - hxxp://office.microsoft.com/officeupdate/content/opuc3.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://windowsupdate.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1322532014452
DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - hxxp://download.divx.com/player/DivXBrowserPlugin.cab
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://www.update.microsoft.com/microsoftupdat ... 1987111437
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_06-windows-i586.cab
DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} - hxxp://www.sibelius.com/download/software/win/ ... Plugin.cab
DPF: {CAFEEFAC-0017-0000-0006-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_06-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_06-windows-i586.cab
TCP: NameServer = 10.0.0.138
TCP: Interfaces\{CB375E4B-0511-4A7F-9A1A-A97E860AFB7C} : DHCPNameServer = 10.0.0.138
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Notify: AtiExtEvent - Ati2evxx.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
SEH: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\33.0.1750.117\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\pepik\data aplikací\mozilla\firefox\profiles\79dx92nx.default\
.
============= SERVICES / DRIVERS ===============
.
R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;c:\program files\realnetworks\realdownloader\rndlresolversvc.exe [2012-11-29 38608]
R2 syshost32;syshost32;c:\windows\installer\{1d5ba4a0-3218-e7f1-430b-5b5222a3d981}\syshost.exe [2014-2-11 83456]
R3 BENDER;Pinnacle AV/DV2 Capture;c:\windows\system32\drivers\bender.sys [2006-2-3 200320]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 esihdrv;esihdrv;c:\docume~1\pepik\locals~1\temp\esihdrv.sys [2014-2-18 122240]
S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [2004-8-18 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2013-7-20 754856]
S4 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 PE Licensing Service;c:\program files\common files\abbyy\finereader\9.00\licensing\pe\NetworkLicenseServer.exe [2007-12-6 660768]
S4 Freemake Improver;Freemake Improver;c:\documents and settings\all users\data aplikací\freemake\freemakeutilsservice\FreemakeUtilsService.exe [2012-11-20 101888]
S4 Skype C2C Service;Skype C2C Service;c:\documents and settings\all users\data aplikací\skype\toolbars\skype c2c service\c2c_service.exe [2013-10-9 3275136]
S4 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2013-9-5 171680]
.
=============== Created Last 30 ================
.
2014-02-23 21:16:00 -------- d-----w- C:\AdwCleaner
2014-02-23 21:13:01 -------- d-----w- c:\program files\trend micro
2014-02-10 23:18:29 61056 ----a-w- c:\windows\system32\drivers\3282b15f8ce36c92.sys
2014-02-10 23:18:28 61056 ----a-w- c:\windows\system32\drivers\1c51f15.sys
.
==================== Find3M ====================
.
2014-01-18 08:25:27 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-01-18 08:25:27 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-11-27 20:21:06 40960 ----a-w- c:\windows\system32\drivers\ndproxy.sys
2012-03-10 20:49:45 2426528 ----a-w- c:\program files\4shared_desktop_3.3.5.exe
.
============= FINISH: 22:54:05,93 ===============






# AdwCleaner v3.019 - Report created 23/02/2014 at 22:20:54
# Updated 17/02/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Pepik - PEPA
# Running from : C:\Documents and Settings\Pepik\Plocha\Nemazat nebo sním večeři\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\boost_interprocess
Folder Deleted : C:\Program Files\Conduit
Folder Deleted : C:\Program Files\DVDVideoSoftTB
Folder Deleted : C:\Program Files\Common Files\Software Update Utility
Folder Deleted : C:\Documents and Settings\Pepik\Local Settings\Data aplikací\Conduit
Folder Deleted : C:\Documents and Settings\Pepik\Local Settings\Data aplikací\DVDVideoSoftTB
Folder Deleted : C:\Documents and Settings\Pepik\Data aplikací\OpenCandy
Folder Deleted : C:\Documents and Settings\Pepik\Data aplikací\PriceGong
Folder Deleted : C:\Documents and Settings\Majka\Local Settings\Data aplikací\Conduit
Folder Deleted : C:\Documents and Settings\Majka\Local Settings\Data aplikací\DVDVideoSoftTB
Folder Deleted : C:\Documents and Settings\Majka\Data aplikací\PriceGong
Folder Deleted : C:\Documents and Settings\Pepik\Data aplikací\Mozilla\Firefox\Profiles\79dx92nx.default\ConduitCommon
Folder Deleted : C:\Documents and Settings\Pepik\Data aplikací\Mozilla\Firefox\Profiles\79dx92nx.default\WinampToolbarData
Folder Deleted : C:\Documents and Settings\Pepik\Data aplikací\Mozilla\Firefox\Profiles\79dx92nx.default\CT2269050
Folder Deleted : C:\Documents and Settings\Pepik\Data aplikací\Mozilla\Firefox\Profiles\79dx92nx.default\Extensions\{0B38152B-1B20-484D-A11F-5E04A9B0661F}
Folder Deleted : C:\Documents and Settings\Pepik\Data aplikací\Mozilla\Firefox\Profiles\79dx92nx.default\Extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
File Deleted : C:\Program Files\Mozilla Firefox\plugins\npdnu.dll
File Deleted : C:\Program Files\Mozilla Firefox\plugins\npdnu.xpt
File Deleted : C:\Program Files\Mozilla Firefox\plugins\npdnupdater2.dll
File Deleted : C:\Program Files\Mozilla Firefox\plugins\npdnupdater2.xpt
File Deleted : C:\Documents and Settings\Pepik\Data aplikací\Mozilla\Firefox\Profiles\79dx92nx.default\searchplugins\aol-web-search.xml
File Deleted : C:\Documents and Settings\Pepik\Data aplikací\Mozilla\Firefox\Profiles\79dx92nx.default\searchplugins\Conduit.xml

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Toolbar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\dnu.EXE
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdate
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser.1
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2269050
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{6C259840-5BA8-46E6-8ED1-EF3BA47D8BA1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D3F69D07-0AEE-47AF-87D0-1A67D4F70C68}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E15A9BFD-D16D-496D-8222-44CADF316E70}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{92380354-381A-471F-BE2E-DD9ACD9777EA}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{25CEE8EC-5730-41BC-8B58-22DDC8AB8C20}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{57BCA5FA-5DBB-45A2-B558-1755C3F6253B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D3F69D07-0AEE-47AF-87D0-1A67D4F70C68}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EBF2BA02-9094-4C5A-858B-BB198F3D8DE2}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3F69D07-0AEE-47AF-87D0-1A67D4F70C68}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EC3D1302-C39A-4867-9BE9-3073C004D07B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{871AC293-3D2E-4945-BC01-9EE42FC585CB}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE7E0A3-AE64-4DC8-84D1-F5D7BAF2DB0C}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\DVDVideoSoftTB
Key Deleted : HKCU\Software\PriceGong
Key Deleted : HKCU\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\DVDVideoSoftTB
Key Deleted : HKLM\Software\Iminent
Key Deleted : HKLM\Software\Uniblue
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdUtility
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DVDVideoSoftTB Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SoftwareUpdUtility
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Winamp Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\DVDVideoSoftTB Toolbar

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Mozilla Firefox v26.0 (cs)

[ File : C:\Documents and Settings\Pepik\Data aplikací\Mozilla\Firefox\Profiles\79dx92nx.default\prefs.js ]

Line Deleted : user_pref("CT2233703.autoDisableScopes", -1);
Line Deleted : user_pref("CT2269050..clientLogIsEnabled", false);
Line Deleted : user_pref("CT2269050..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Deleted : user_pref("CT2269050..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Deleted : user_pref("CT2269050.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Line Deleted : user_pref("CT2269050.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/default.aspx");
Line Deleted : user_pref("CT2269050.AppTrackingLastCheckTime", "Mon Apr 16 2012 16:28:44 GMT+0200");
Line Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_129681780741097243", true);
Line Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_129853623028165512", true);
Line Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_129881141106886992", true);
Line Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_129977890572899945", true);
Line Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_130100683276316706", true);
Line Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_1359634297000", true);
Line Deleted : user_pref("CT2269050.CTID", "CT2269050");
Line Deleted : user_pref("CT2269050.CurrentServerDate", "23-1-2014");
Line Deleted : user_pref("CT2269050.DSChangedManually", false);
Line Deleted : user_pref("CT2269050.DSInstall", true);
Line Deleted : user_pref("CT2269050.DSProtectChoice", true);
Line Deleted : user_pref("CT2269050.DSProtectCount", 1);
Line Deleted : user_pref("CT2269050.DialogsAlignMode", "LTR");
Line Deleted : user_pref("CT2269050.DialogsGetterLastCheckTime", "Thu Jan 23 2014 14:06:50 GMT+0100");
Line Deleted : user_pref("CT2269050.DownloadReferralCookieData", "");
Line Deleted : user_pref("CT2269050.EMailNotifierPollDate", "Fri Jul 20 2012 18:51:00 GMT+0200");
Line Deleted : user_pref("CT2269050.FirstServerDate", "31-12-2011");
Line Deleted : user_pref("CT2269050.FirstTime", true);
Line Deleted : user_pref("CT2269050.FirstTimeFF3", true);
Line Deleted : user_pref("CT2269050.FixPageNotFoundErrors", true);
Line Deleted : user_pref("CT2269050.GroupingServerCheckInterval", 1440);
Line Deleted : user_pref("CT2269050.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Line Deleted : user_pref("CT2269050.HPChangedManually", false);
Line Deleted : user_pref("CT2269050.HPInstall", true);
Line Deleted : user_pref("CT2269050.HPProtectChoice", false);
Line Deleted : user_pref("CT2269050.HPProtectCount", 2);
Line Deleted : user_pref("CT2269050.HasUserGlobalKeys", true);
Line Deleted : user_pref("CT2269050.HomePageProtectorEnabled", false);
Line Deleted : user_pref("CT2269050.HomepageBeforeUnload", "hxxp://www.seznam.cz/st/img/2011/set-hp-logo.jpg");
Line Deleted : user_pref("CT2269050.Initialize", true);
Line Deleted : user_pref("CT2269050.InitializeCommonPrefs", true);
Line Deleted : user_pref("CT2269050.InstallationAndCookieDataSentCount", 3);
Line Deleted : user_pref("CT2269050.InstallationType", "UnknownIntegration");
Line Deleted : user_pref("CT2269050.InstalledDate", "Fri Dec 30 2011 23:13:32 GMT+0100");
Line Deleted : user_pref("CT2269050.InvalidateCache", false);
Line Deleted : user_pref("CT2269050.IsAlertDBUpdated", true);
Line Deleted : user_pref("CT2269050.IsGrouping", false);
Line Deleted : user_pref("CT2269050.IsInitSetupIni", true);
Line Deleted : user_pref("CT2269050.IsMulticommunity", false);
Line Deleted : user_pref("CT2269050.IsOpenThankYouPage", false);
Line Deleted : user_pref("CT2269050.IsOpenUninstallPage", false);
Line Deleted : user_pref("CT2269050.IsProtectorsInit", true);
Line Deleted : user_pref("CT2269050.LanguagePackLastCheckTime", "Thu Jan 23 2014 14:06:50 GMT+0100");
Line Deleted : user_pref("CT2269050.LanguagePackReloadIntervalMM", 1440);
Line Deleted : user_pref("CT2269050.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Line Deleted : user_pref("CT2269050.LastLogin_3.12.0.7", "Thu May 10 2012 23:06:29 GMT+0200");
Line Deleted : user_pref("CT2269050.LastLogin_3.12.2.3", "Fri Jul 20 2012 18:51:22 GMT+0200");
Line Deleted : user_pref("CT2269050.LastLogin_3.14.1.0", "Tue Aug 21 2012 16:20:55 GMT+0200");
Line Deleted : user_pref("CT2269050.LastLogin_3.15.1.0", "Tue Nov 20 2012 20:39:42 GMT+0100");
Line Deleted : user_pref("CT2269050.LastLogin_3.16.0.3", "Thu Jan 23 2014 14:06:46 GMT+0100");
Line Deleted : user_pref("CT2269050.LastLogin_3.8.1.0", "Mon Apr 23 2012 21:07:32 GMT+0200");
Line Deleted : user_pref("CT2269050.LatestVersion", "3.20.0.4");
Line Deleted : user_pref("CT2269050.Locale", "en");
Line Deleted : user_pref("CT2269050.MCDetectTooltipHeight", "83");
Line Deleted : user_pref("CT2269050.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Line Deleted : user_pref("CT2269050.MCDetectTooltipWidth", "295");
Line Deleted : user_pref("CT2269050.MyStuffEnabledAtInstallation", true);
Line Deleted : user_pref("CT2269050.OriginalFirstVersion", "3.8.1.0");
Line Deleted : user_pref("CT2269050.RadioIsPodcast", false);
Line Deleted : user_pref("CT2269050.RadioLastCheckTime", "Fri Jul 20 2012 18:45:37 GMT+0200");
Line Deleted : user_pref("CT2269050.RadioLastUpdateIPServer", "3");
Line Deleted : user_pref("CT2269050.RadioLastUpdateServer", "129132338014870000");
Line Deleted : user_pref("CT2269050.RadioMediaID", "12473383");
Line Deleted : user_pref("CT2269050.RadioMediaType", "Media Player");
Line Deleted : user_pref("CT2269050.RadioMenuSelectedID", "EBRadioMenu_CT226905012473383");
Line Deleted : user_pref("CT2269050.RadioShrinkedFromSetup", false);
Line Deleted : user_pref("CT2269050.RadioStationName", "Hotmix%20108");
Line Deleted : user_pref("CT2269050.RadioStationURL", "hxxp://67.202.67.18:8082");
Line Deleted : user_pref("CT2269050.SHRINK_TOOLBAR", 1);
Line Deleted : user_pref("CT2269050.SavedHomepage", "hxxp://www.seznam.cz/");
Line Deleted : user_pref("CT2269050.SearchCaption", "DVDVideoSoftTB Customized Web Search");
Line Deleted : user_pref("CT2269050.SearchEngineBeforeUnload", "DVDVideoSoftTB Customized Web Search");
Line Deleted : user_pref("CT2269050.SearchFromAddressBarIsInit", true);
Line Deleted : user_pref("CT2269050.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&SearchSource=2&q=");
Line Deleted : user_pref("CT2269050.SearchInNewTabEnabled", true);
Line Deleted : user_pref("CT2269050.SearchInNewTabIntervalMM", 1440);
Line Deleted : user_pref("CT2269050.SearchInNewTabLastCheckTime", "Thu Jan 23 2014 14:06:49 GMT+0100");
Line Deleted : user_pref("CT2269050.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID&UM=UM_ID");
Line Deleted : user_pref("CT2269050.SearchInNewTabUsageUrl", "hxxp://usage.hosting.toolbar.conduit-services.com/usage.ashx?ctid=EB_TOOLBAR_ID");
Line Deleted : user_pref("CT2269050.SearchProtectorEnabled", true);
Line Deleted : user_pref("CT2269050.SearchProtectorToolbarDisabled", true);
Line Deleted : user_pref("CT2269050.SendProtectorDataViaLogin", true);
Line Deleted : user_pref("CT2269050.ServiceMapLastCheckTime", "Thu Jan 23 2014 14:06:46 GMT+0100");
Line Deleted : user_pref("CT2269050.SettingsLastCheckTime", "Thu Jan 23 2014 14:06:43 GMT+0100");
Line Deleted : user_pref("CT2269050.SettingsLastUpdate", "1390413892");
Line Deleted : user_pref("CT2269050.TBHomePageUrl", "hxxp://search.conduit.com/?ctid=CT2269050&SearchSource=13");
Line Deleted : user_pref("CT2269050.ThirdPartyComponentsInterval", 504);
Line Deleted : user_pref("CT2269050.ThirdPartyComponentsLastCheck", "Sat Jul 07 2012 17:09:24 GMT+0200");
Line Deleted : user_pref("CT2269050.ThirdPartyComponentsLastUpdate", "1331805997");
Line Deleted : user_pref("CT2269050.ToolbarDisabled", true);
Line Deleted : user_pref("CT2269050.ToolbarShrinkedFromSetup", false);
Line Deleted : user_pref("CT2269050.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2269050");
Line Deleted : user_pref("CT2269050.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCity[...]
Line Deleted : user_pref("CT2269050.UserID", "UN79484546633623649");
Line Deleted : user_pref("CT2269050.ValidationData_Toolbar", 2);
Line Deleted : user_pref("CT2269050.WeatherNetwork", "");
Line Deleted : user_pref("CT2269050.WeatherPollDate", "Fri Jul 20 2012 18:45:41 GMT+0200");
Line Deleted : user_pref("CT2269050.WeatherUnit", "C");
Line Deleted : user_pref("CT2269050.alertChannelId", "666138");
Line Deleted : user_pref("CT2269050.backendstorage.cb_firstuse0100", "31");
Line Deleted : user_pref("CT2269050.backendstorage.cb_user_id_000", "43423932303536333235343930385F46697265666F78");
Line Deleted : user_pref("CT2269050.backendstorage.cbcountry_000", "435A");
Line Deleted : user_pref("CT2269050.backendstorage.cbcountry_001", "435A");
Line Deleted : user_pref("CT2269050.backendstorage.cbfirsttime", "4672692044656320333020323031312032333A31333A343220474D542B30313030");
Line Deleted : user_pref("CT2269050.backendstorage.ct2269050ads1", "25374225323261647325323225334125354225374225323261696425323225334125323233393432382532322532432532327469746C652532322533412532322A253230436C65616E2[...]
Line Deleted : user_pref("CT2269050.backendstorage.ct2269050current_term", "");
Line Deleted : user_pref("CT2269050.backendstorage.ct2269050isadsdisabled", "66616C7365");
Line Deleted : user_pref("CT2269050.backendstorage.ct2269050sdate", "3230");
Line Deleted : user_pref("CT2269050.backendstorage.shoppingapp.gk.exipres", "576564204A756C20323520323031322031383A34353A343120474D542B30323030");
Line Deleted : user_pref("CT2269050.backendstorage.shoppingapp.gk.geolocation", "637A6563682072657075626C6963");
Line Deleted : user_pref("CT2269050.backendstorage.url_history", "68747470733A2F2F646F746163652E6B722D6B72616C6F76656872616465636B792E637A2F446F63756D656E7448616E646C65722E617368783F49643D3133343632");
Line Deleted : user_pref("CT2269050.backendstorage.url_history0001", "687474703A2F2F7777772E70726F676C61732E637A2F6F646B617A792E68746D6C3A3A3A636C69636B68616E646C65723A3A3A313334323830323837393736352C2C2C687474703A2[...]
Line Deleted : user_pref("CT2269050.backendstorage.url_history_time", "31333235373134333232333933");
Line Deleted : user_pref("CT2269050.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"hxxp://appdown[...]
Line Deleted : user_pref("CT2269050.globalFirstTimeInfoLastCheckTime", "Fri Jul 20 2012 18:45:39 GMT+0200");
Line Deleted : user_pref("CT2269050.homepageProtectorEnableByLogin", true);
Line Deleted : user_pref("CT2269050.initDone", true);
Line Deleted : user_pref("CT2269050.isAppTrackingManagerOn", true);
Line Deleted : user_pref("CT2269050.isFirstRadioInstallation", false);
Line Deleted : user_pref("CT2269050.myStuffEnabled", true);
Line Deleted : user_pref("CT2269050.myStuffPublihserMinWidth", 400);
Line Deleted : user_pref("CT2269050.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Line Deleted : user_pref("CT2269050.myStuffServiceIntervalMM", 1440);
Line Deleted : user_pref("CT2269050.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Line Deleted : user_pref("CT2269050.oldAppsList", "128834881989343894,128834881989343895,111,129853623028165512,129466585399606892,129391330693125668,129863783591067571,129121052374999726,129023235807856892,1000082,[...]
Line Deleted : user_pref("CT2269050.revertSettingsEnabled", true);
Line Deleted : user_pref("CT2269050.searchProtectorDialogDelayInSec", 10);
Line Deleted : user_pref("CT2269050.searchProtectorEnableByLogin", true);
Line Deleted : user_pref("CT2269050.testingCtid", "");
Line Deleted : user_pref("CT2269050.toolbarAppMetaDataLastCheckTime", "Thu Jan 23 2014 14:06:50 GMT+0100");
Line Deleted : user_pref("CT2269050.toolbarContextMenuLastCheckTime", "Sat Jul 07 2012 17:09:27 GMT+0200");
Line Deleted : user_pref("CT2269050.usagesFlag", 2);
Line Deleted : user_pref("CommunityToolbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT2269050&SearchSource=13");
Line Deleted : user_pref("CommunityToolbar.ConduitSearchList", "DVDVideoSoftTB Customized Web Search");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT2269050/CT2269050", "\"a8f7dd6185b2b7b6f5b731a1ba4675ef3\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/666138/661999/CZ", "\"0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2269050", "\"1365594729\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&locale=en", "wNaokyQn90mMItP1sym06A==");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&locale=en", "mfQ70fvlD2zuBxSBj8rQqA==");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&locale=en", "k9un27OkAvkwB2ZmvXxTnA==");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&locale=en", "9zRvKErdMb8hJOq85ft5Vg==");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\"8076e3ce381dcd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.12.0.7", "\"4ead38b3e6bcd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.12.2.3", "\"04afd94b864cd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.14.1.0", "\"0e0a4327275cd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.15.1.0", "\"0343677cfb1cd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.16.0.3", "\"9f8d2729abc2ce1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.8.1.0", "\"4ead38b3e6bcd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT2269050", "\"7097fd37277b6a1b754b125bd11d0197\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Bluenote/equalizer_dead.gif", "\"0a8c48d3330c81:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Bluenote/minimize.gif", "\"0e2106f3030c81:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Bluenote/play.gif", "\"0f475394430c81:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Bluenote/stop.gif", "\"08d9ef44430c81:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Bluenote/vol.gif", "\"066e8863030c81:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"cac9bd75d98049295759dd50972793f2\"");
Line Deleted : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Documents and Settings\\Pepik\\Data aplikací\\Mozilla\\Firefox\\Profiles\\79dx92nx.default\\conduitCommon\\modules\\3.12.2.3");
Line Deleted : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.12.2.3");
Line Deleted : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "");
Line Deleted : user_pref("CommunityToolbar.ToolbarsList", "CT2269050");
Line Deleted : user_pref("CommunityToolbar.ToolbarsList2", "CT2269050");
Line Deleted : user_pref("CommunityToolbar.ToolbarsList4", "CT2269050");
Line Deleted : user_pref("CommunityToolbar.globalUserId", "80b13295-a5f3-4e56-8289-94d48a10a741");
Line Deleted : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Line Deleted : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Line Deleted : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2269050");
Line Deleted : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Fri Jul 20 2012 18:45:37 GMT+0200");
Line Deleted : user_pref("CommunityToolbar.notifications.alertInfoInterval", 1440);
Line Deleted : user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Fri Jul 20 2012 18:45:43 GMT+0200");
Line Deleted : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com");
Line Deleted : user_pref("CommunityToolbar.notifications.locale", "en");
Line Deleted : user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);
Line Deleted : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Fri Jul 20 2012 18:45:35 GMT+0200");
Line Deleted : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1313487611");
Line Deleted : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
Line Deleted : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com");
Line Deleted : user_pref("CommunityToolbar.notifications.showTrayIcon", false);
Line Deleted : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
Line Deleted : user_pref("CommunityToolbar.notifications.userId", "2180cd9d-10d9-4d29-86c9-e0bb7f09a8f4");
Line Deleted : user_pref("CommunityToolbar.originalHomepage", "hxxp://www.seznam.cz/");
Line Deleted : user_pref("CommunityToolbar.originalSearchEngine", "chrome://browser-region/locale/region.properties");
Line Deleted : user_pref("aol_toolbar.surf.date", "1");
Line Deleted : user_pref("aol_toolbar.surf.lastDate", "16");
Line Deleted : user_pref("aol_toolbar.surf.lastMonth", "1");
Line Deleted : user_pref("aol_toolbar.surf.lastYear", "2014");
Line Deleted : user_pref("aol_toolbar.surf.month", "1498");
Line Deleted : user_pref("aol_toolbar.surf.prevMonth", "1203");
Line Deleted : user_pref("aol_toolbar.surf.total", "2926");
Line Deleted : user_pref("aol_toolbar.surf.week", "1");
Line Deleted : user_pref("aol_toolbar.surf.year", "2700");
Line Deleted : user_pref("browser.search.defaultthis.engineName", "DVDVideoSoftTB Customized Web Search");
Line Deleted : user_pref("browser.search.defaulturl", "hxxp://search.winamp.com/search/search?query={searchTerms}&invocationType=winamp-ff&s_qt=sb&tb_uuid=20111230230650359&tb_oid=31-12-2011&tb_mrud=23-01-2014&query[...]
Line Deleted : user_pref("keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&SearchSource=2&q=");
Line Deleted : user_pref("winamp_toolbar.buttons.layout", "shoutcast_30026;mobile/android_33522;post_to_twitter_33500;post_to_facebook_33511;post_to_AIM_33511;;facebook_45469");
Line Deleted : user_pref("winamp_toolbar.cookie.homepage", "");
Line Deleted : user_pref("winamp_toolbar.cookie.search", "");
Line Deleted : user_pref("winamp_toolbar.default.homepage.check", false);
Line Deleted : user_pref("winamp_toolbar.default.search.check", true);
Line Deleted : user_pref("winamp_toolbar.default.search.label", "AOL Search");
Line Deleted : user_pref("winamp_toolbar.default.search.url", "hxxp://search.winamp.com/search/search?query={searchTerms}&invocationType=winamp-ff&s_qt=sb&tb_uuid=20111230230650359&tb_oid=31-12-2011&tb_mrud=23-01-20[...]
Line Deleted : user_pref("winamp_toolbar.firsttime.showwindow", false);
Line Deleted : user_pref("winamp_toolbar.guid", "{9D411F51-F0BC-4ABB-53AE-19C9C4E24154}");
Line Deleted : user_pref("winamp_toolbar.install.distroid", "");
Line Deleted : user_pref("winamp_toolbar.install.lastTbVersion", "5.6.20.8949");
Line Deleted : user_pref("winamp_toolbar.install.lid", "");
Line Deleted : user_pref("winamp_toolbar.install.mtmhp", "");
Line Deleted : user_pref("winamp_toolbar.install.ncid", "");
Line Deleted : user_pref("winamp_toolbar.metrics.activestampdate", "16");
Line Deleted : user_pref("winamp_toolbar.metrics.activestampmonth", "1");
Line Deleted : user_pref("winamp_toolbar.metrics.activestampyear", "2014");
Line Deleted : user_pref("winamp_toolbar.metrics.log", false);
Line Deleted : user_pref("winamp_toolbar.metrics.originalDate", "31");
Line Deleted : user_pref("winamp_toolbar.metrics.originalHours", "0");
Line Deleted : user_pref("winamp_toolbar.metrics.originalMinutes", "15");
Line Deleted : user_pref("winamp_toolbar.metrics.originalMonth", "12");
Line Deleted : user_pref("winamp_toolbar.metrics.originalSeconds", "34");
Line Deleted : user_pref("winamp_toolbar.metrics.originalYear", "2011");
Line Deleted : user_pref("winamp_toolbar.relatednews.enabled", false);
Line Deleted : user_pref("winamp_toolbar.remote..xml", "1392585533680");
Line Deleted : user_pref("winamp_toolbar.remote.publish.xml", "1392585460681");
Line Deleted : user_pref("winamp_toolbar.search.button", true);
Line Deleted : user_pref("winamp_toolbar.search.cid", "23-01-2014");
Line Deleted : user_pref("winamp_toolbar.search.instd", "20111230230650359");
Line Deleted : user_pref("winamp_toolbar.search.oid", "31-12-2011");
Line Deleted : user_pref("winamp_toolbar.search.placement", "left");
Line Deleted : user_pref("winamp_toolbar.search.populateoncomplete", false);
Line Deleted : user_pref("winamp_toolbar.search.savehistory", false);
Line Deleted : user_pref("winamp_toolbar.search.searchtype", "web");
Line Deleted : user_pref("winamp_toolbar.search.source", "winamp-ff");
Line Deleted : user_pref("winamp_toolbar.skin.custom", true);
Line Deleted : user_pref("winamp_toolbar.upgrade.showwindow", false);
Line Deleted : user_pref("winamp_toolbar.weather.degc", "-3");
Line Deleted : user_pref("winamp_toolbar.weather.degf", "27");
Line Deleted : user_pref("winamp_toolbar.weather.image", "chrome://winamptoolbar/skin/weather/34.png");
Line Deleted : user_pref("winamp_toolbar.weather.locationid", "USNY0996");
Line Deleted : user_pref("winamp_toolbar.weather.metric", true);
Line Deleted : user_pref("winamp_toolbar.weather.tooltip", "New York , NY : Mostly Sunny");
Line Deleted : user_pref("winamp_toolbar.weather.update", "1392585533682");
Line Deleted : user_pref("winamp_toolbar.weather.zipcode", "10065");
Line Deleted : user_pref("winamp_toolbar.winamp.artist", "");
Line Deleted : user_pref("winamp_toolbar.winamp.button.focus", true);
Line Deleted : user_pref("winamp_toolbar.winamp.button.forward", true);
Line Deleted : user_pref("winamp_toolbar.winamp.button.open", true);
Line Deleted : user_pref("winamp_toolbar.winamp.button.pause", true);
Line Deleted : user_pref("winamp_toolbar.winamp.button.play", true);
Line Deleted : user_pref("winamp_toolbar.winamp.button.rewind", true);
Line Deleted : user_pref("winamp_toolbar.winamp.button.stop", false);
Line Deleted : user_pref("winamp_toolbar.winamp.button.volume", true);
Line Deleted : user_pref("winamp_toolbar.winamp.ticker.show", true);
Line Deleted : user_pref("winamp_toolbar.winamp.title", "-999999");

-\\ Google Chrome v32.0.1700.107

[ File : C:\Documents and Settings\Pepik\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Documents and Settings\Majka\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [32251 octets] - [23/02/2014 22:16:02]
AdwCleaner[S0].txt - [31331 octets] - [23/02/2014 22:20:54]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [31392 octets] ##########

[JaRon]

ahoj,
Presun ComboFix
na plochu (ak tam este nie je)

otvor si Poznamkovy blok - notepad

do neho zkopiruj skript z nasledujiceho okna:

Kód: Vybrat vše

Driver::
syshost32
esihdrv

uloz vytvoreny textovy soubor ako CFScript.txt na plochu

po ulozeni uchop vytvoreny skript lavym tlacitkom mysi a presun ho nad ikonu Combofixu, nad nim skript upust:



po aplikacii by mal vzniknut dalsi log, ten vloz sem

[koskos]

děkuji moc a omlouvám se za delší prodlemu - nemoc
zde je ten log:


ComboFix 14-03-05.01 - Pepik 07.03.2014 22:20:11.1.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1535.895 [GMT 1:00]
Spuštěný z: c:\documents and settings\Pepik\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Pepik\Plocha\CFScript.txt
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\administrator\WINDOWS
c:\documents and settings\Majka\Local Settings\Temporary Internet Files\WDICT32.INI
c:\documents and settings\Majka\Local Settings\Temporary Internet Files\WTRAN32.INI
c:\documents and settings\Pepik\WINDOWS
C:\Documents
c:\windows\IsUn0405.exe
c:\windows\iun6002.exe
c:\windows\msmqinst.log
c:\windows\system32\drivers\3282b15f8ce36c92.sys
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_SYSHOST32
-------\Service_esihdrv
-------\Service_syshost32
-------\Legacy_3282b15f8ce36c92
-------\Legacy_Freemake_Improver
-------\Legacy_Skype_C2C_Service
-------\Service_3282b15f8ce36c92
-------\Service_Freemake Improver
-------\Service_Skype C2C Service
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-02-07 do 2014-03-07 )))))))))))))))))))))))))))))))
.
.
2014-02-23 22:00 . 2014-02-23 22:03 -------- d-----w- C:\FRST
2014-02-23 21:16 . 2014-02-23 21:21 -------- d-----w- C:\AdwCleaner
2014-02-23 21:13 . 2014-02-23 21:57 -------- d-----w- C:\rsit
2014-02-23 21:13 . 2014-02-23 21:49 -------- d-----w- c:\program files\trend micro
2014-02-16 21:48 . 2014-02-16 21:48 -------- d-----w- c:\documents and settings\All Users\Data aplikací\ESET
2014-02-10 23:18 . 2014-02-10 23:18 61056 ----a-w- c:\windows\system32\drivers\1c51f15.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-01-18 08:25 . 2012-04-16 06:26 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-01-18 08:25 . 2011-12-30 13:37 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-03-10 20:49 . 2012-03-10 20:49 2426528 ----a-w- c:\program files\4shared_desktop_3.3.5.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Adobe Gamma Loader.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Gamma Loader.lnk
backup=c:\windows\pss\Adobe Gamma Loader.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Adobe Reader Speed Launch.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Reader Speed Launch.lnk
backup=c:\windows\pss\Adobe Reader Speed Launch.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^HP Digital Imaging Monitor.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\HP Digital Imaging Monitor.lnk
backup=c:\windows\pss\HP Digital Imaging Monitor.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^InterVideo WinCinema Manager.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\InterVideo WinCinema Manager.lnk
backup=c:\windows\pss\InterVideo WinCinema Manager.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Windows Search.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\Windows Search.lnk
backup=c:\windows\pss\Windows Search.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^WinZip Quick Pick.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\WinZip Quick Pick.lnk
backup=c:\windows\pss\WinZip Quick Pick.lnkCommon Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2013-11-21 16:57 959904 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]
2005-05-03 10:43 69632 ----a-w- c:\windows\ALCMTR.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcWzrd]
2005-07-13 07:47 2806272 ----a-w- c:\windows\ALCWZRD.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATICCC]
2005-08-12 13:43 45056 ----a-w- c:\program files\ATI Technologies\ATI.ACE\CLI.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
2006-02-01 15:45 98304 ----a-w- c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
2008-04-14 03:22 15360 ----a-w- c:\windows\system32\ctfmon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
2011-07-28 23:08 1259376 ----a-w- c:\program files\DivX\DivX Update\DivXUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
2009-02-26 17:36 30040 ----a-w- c:\program files\Microsoft Office\Office12\GrooveMonitor.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\High Definition Audio Property Page Shortcut]
2005-01-07 16:07 61952 ------w- c:\windows\system32\HdAShCut.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
2009-11-18 14:13 54576 ----a-w- c:\program files\HP\HP Software Update\hpwuschd2.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
2006-01-12 14:40 155648 ----a-w- c:\windows\system32\NeroCheck.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaSuite.exe]
2013-10-02 18:28 1090912 ----a-w- c:\program files\Nokia\Nokia Suite\NokiaSuite.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PinnacleDriverCheck]
2004-03-11 00:26 406016 ----a-w- c:\windows\system32\PSDrvCheck.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]
2005-06-21 07:09 90112 ----a-w- c:\windows\SOUNDMAN.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2012-07-03 07:04 252848 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
2013-01-02 08:42 295072 ----a-w- c:\program files\real\realplayer\Update\realsched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG]
2007-01-05 18:57 204288 ----a-w- c:\program files\Windows Media Player\wmpnscfg.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"SkypeUpdate"=2 (0x2)
"Skype C2C Service"=2 (0x2)
"JavaQuickStarterService"=2 (0x2)
"WMPNetworkSvc"=2 (0x2)
"rpcapd"=3 (0x3)
&quot..

[koskos]

mohl bych se prosím Vás připomenout? Děkuji

[JaRon]

nuz ja som mal zasa dovolenku
- prescanuj PC s MBAM - kompletna kontrola
- vycisti PC s CCleanerom
- napis, ci problem pretrvava ?

[koskos]

Děkuji moc
vše již funguje. Děkuji

[JaRon]

rado sa stalo