viry, trojany

Zpráva

#16 Příspěvek od **Caroprd111** » 23 dub 2010 12:49

Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe

Spusťte program, poté klikněte na Prohledat
Po dokončení, sem vložte logy OTL.Txt a Extras.txt

cpt · #17 Příspěvek od **cpt** » 23 dub 2010 13:39

OTL.TXT:

OTL logfile created on: 23.4.2010 14:34:24 - Run 1
OTL by OldTimer - Version 3.2.1.3 Folder = C:\Documents and Settings\Olga Gajdová\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1 015,00 Mb Total Physical Memory | 375,00 Mb Available Physical Memory | 37,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 76,00% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 104,47 Gb Total Space | 43,56 Gb Free Space | 41,69% Space Free | Partition Type: NTFS
Drive D: | 7,30 Gb Total Space | 0,54 Gb Free Space | 7,43% Space Free | Partition Type: FAT32
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: PC257173278573
Current User Name: Olga Gajdová
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010.04.20 15:37:25 | 000,562,176 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Olga Gajdová\Plocha\OTL.exe
PRC - [2010.04.20 08:53:33 | 000,620,896 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgnsx.exe
PRC - [2010.04.18 11:14:42 | 001,101,152 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe
PRC - [2010.04.18 11:14:41 | 000,710,424 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe
PRC - [2010.04.18 11:14:41 | 000,508,184 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgrsx.exe
PRC - [2010.04.18 11:14:36 | 000,916,760 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgemc.exe
PRC - [2010.04.18 11:14:36 | 000,836,888 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgam.exe
PRC - [2010.04.18 11:14:36 | 000,308,064 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe
PRC - [2008.08.26 19:02:24 | 000,014,336 | ---- | M] (Agere Systems) -- C:\Program Files\LSI SoftModem\agrsmsvc.exe
PRC - [2008.05.26 22:19:14 | 000,123,904 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Desktop Search\WindowsSearch.exe
PRC - [2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2007.01.05 22:36:48 | 000,872,448 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\Core\smax4pnp.exe
PRC - [2006.02.15 16:16:02 | 000,581,693 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
PRC - [2006.02.15 15:43:16 | 000,892,928 | ---- | M] () -- C:\Windows\SMINST\Scheduler.exe
PRC - [2006.02.14 11:56:08 | 000,122,880 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\HPQ\HP ProtectTools Security Manager\pthosttr.exe
PRC - [2005.12.23 12:44:26 | 000,491,606 | ---- | M] () -- C:\Program Files\HPQ\Shared\HpqToaster.exe
PRC - [2005.12.20 15:51:40 | 001,187,840 | ---- | M] () -- C:\Windows\SMINST\Recguard.exe
PRC - [2005.11.10 13:03:52 | 000,036,975 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
PRC - [2005.08.31 05:20:00 | 000,122,940 | ---- | M] (Sonic Solutions) -- C:\Windows\system32\DLA\DLACTRLW.EXE
PRC - [2005.06.29 21:06:54 | 000,043,008 | ---- | M] (Cognizance Corporation) -- C:\Program Files\HPQ\IAM\Bin\asghost.exe

========== Modules (SafeList) ==========

MOD - [2010.04.20 15:37:25 | 000,562,176 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Olga Gajdová\Plocha\OTL.exe

========== Win32 Services (SafeList) ==========

SRV - [2010.04.18 11:14:36 | 000,916,760 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgemc.exe -- (avg9emc)
SRV - [2010.04.18 11:14:36 | 000,308,064 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
SRV - [2010.02.23 14:04:34 | 000,369,920 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe -- (AVG Security Toolbar Service)
SRV - [2008.08.26 19:02:24 | 000,014,336 | ---- | M] (Agere Systems) [Auto | Running] -- C:\Program Files\LSI SoftModem\agrsmsvc.exe -- (AgereModemAudio)
SRV - [2008.07.29 19:16:38 | 000,132,096 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- c:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Running] -- -- (catchme)
DRV - [2010.04.20 08:53:33 | 000,242,896 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\system32\drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2010.04.18 11:15:14 | 000,052,872 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\System32\Drivers\avgrkx86.sys -- (AvgRkx86)
DRV - [2010.04.18 11:15:08 | 000,216,200 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\system32\drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2010.04.18 11:15:07 | 000,029,512 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\system32\drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2008.11.21 21:53:40 | 001,204,128 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2008.11.17 15:23:16 | 003,636,864 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\NETw5x32.sys -- (NETw5x32) Intel(R)
DRV - [2008.04.28 20:22:10 | 000,009,344 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\CPQBttn.sys -- (HBtnKey)
DRV - [2008.04.13 18:36:05 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2008.02.15 21:12:06 | 005,854,752 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\igxpmp32.sys -- (ialm)
DRV - [2007.10.01 18:27:40 | 000,281,600 | ---- | M] (Analog Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\ADIHdAud.sys -- (ADIHdAudAddService)
DRV - [2007.09.15 02:09:44 | 000,213,696 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\SynTP.sys -- (SynTP)
DRV - [2006.02.16 09:45:26 | 000,057,096 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\btwusb.sys -- (BTWUSB)
DRV - [2006.02.15 15:56:58 | 001,342,570 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\btkrnl.sys -- (BTKRNL)
DRV - [2006.02.06 04:00:06 | 000,045,312 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\bcm4sbxp.sys -- (bcm4sbxp)
DRV - [2006.01.19 15:50:40 | 001,428,096 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\w39n51.sys -- (w39n51) Intel(R)
DRV - [2005.10.12 14:07:12 | 000,874,240 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\iaStor.sys -- (iaStor)
DRV - [2005.09.19 13:24:20 | 000,005,760 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\EabUsb.sys -- (eabusb)
DRV - [2005.09.19 13:23:52 | 000,007,808 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | System | Running] -- C:\Windows\system32\drivers\eabfiltr.sys -- (eabfiltr)
DRV - [2005.08.31 05:20:00 | 000,094,332 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\Windows\system32\DLA\DLAUDFAM.SYS -- (DLAUDFAM)
DRV - [2005.08.31 05:20:00 | 000,087,036 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\Windows\system32\DLA\DLAUDF_M.SYS -- (DLAUDF_M)
DRV - [2005.08.31 05:20:00 | 000,086,524 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\Windows\system32\DLA\DLAIFS_M.SYS -- (DLAIFS_M)
DRV - [2005.08.31 05:20:00 | 000,025,628 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\Windows\system32\DLA\DLABOIOM.SYS -- (DLABOIOM)
DRV - [2005.08.31 05:20:00 | 000,014,684 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\Windows\system32\DLA\DLAOPIOM.SYS -- (DLAOPIOM)
DRV - [2005.08.31 05:20:00 | 000,006,364 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\Windows\system32\DLA\DLAPoolM.SYS -- (DLAPoolM)
DRV - [2005.08.31 05:20:00 | 000,002,496 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\Windows\system32\DLA\DLADResN.SYS -- (DLADResN)
DRV - [2005.08.30 03:30:00 | 000,088,752 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\DRVMCDB.SYS -- (DRVMCDB)
DRV - [2005.08.25 12:16:52 | 000,005,628 | ---- | M] (Sonic Solutions) [File_System | System | Running] -- C:\Windows\system32\drivers\DLACDBHM.SYS -- (DLACDBHM)
DRV - [2005.08.25 12:16:16 | 000,022,684 | ---- | M] (Sonic Solutions) [File_System | System | Running] -- C:\Windows\system32\drivers\DLARTL_N.SYS -- (DLARTL_N)
DRV - [2005.08.12 05:20:00 | 000,040,544 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\Windows\system32\drivers\DRVNDDM.SYS -- (DRVNDDM)
DRV - [2001.10.24 12:04:44 | 000,035,913 | ---- | M] (SMC) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\smcirda.sys -- (SMCIRDA)
DRV - [2001.08.17 16:51:56 | 000,005,248 | ---- | M] (Acer Laboratories Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\aliide.sys -- (AliIde)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchT ... f8&oe=utf8
IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

O1 HOSTS File: ([2010.04.21 14:43:08 | 000,000,027 | ---- | M]) - C:\Windows\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (DriveLetterAccess) - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\Windows\system32\DLA\DLASHX_W.DLL (Sonic Solutions)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O2 - BHO: (HP Credential Manager for ProtectTools) - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\HPQ\IAM\Bin\ItIeAddIN.dll (Infineon Technologies AG)
O3 - HKLM\..\Toolbar: (&Google) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O4 - HKLM..\Run: [CognizanceTS] C:\Program Files\HPQ\IAM\Bin\AsTsVcc.dll (Cognizance Corporation)
O4 - HKLM..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\Cpqset.exe ()
O4 - HKLM..\Run: [DLA] C:\Windows\system32\DLA\DLACTRLW.EXE (Sonic Solutions)
O4 - HKLM..\Run: [PTHOSTTR] C:\Program Files\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE (Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [Recguard] C:\Windows\SMINST\Recguard.exe ()
O4 - HKLM..\Run: [Reminder] C:\Windows\CREATOR\Remind_XP.exe ()
O4 - HKLM..\Run: [Scheduler] C:\Windows\SMINST\Scheduler.exe ()
O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [WatchDog] C:\Program Files\InterVideo\DVD Check\DVDCheck.exe (InterVideo Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Bluetooth.lnk = C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\DVD Check.lnk = C:\Program Files\InterVideo\DVD Check\DVDCheck.exe (InterVideo Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: &Google Search - C:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O8 - Extra context menu item: &Translate English Word - C:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O8 - Extra context menu item: Backward Links - C:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O8 - Extra context menu item: Cached Snapshot of Page - C:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Similar Pages - C:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O8 - Extra context menu item: Translate Page into English - C:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\NPJPI150_06.dll (Sun Microsystems, Inc.)
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microso ... 1672347937 (MUWebControl Class)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (OnlineScanner Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Java Plug-in 1.5.0_06)
O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Java Plug-in 1.5.0_06)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Java Plug-in 1.5.0_06)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.50
O18 - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O20 - Winlogon\Notify\OneCard: DllName - C:\Program Files\HPQ\IAM\Bin\AsWlnPkg.dll - C:\Program Files\HPQ\IAM\Bin\AsWlnPkg.dll (Cognizance Corporation)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Windows\HP Cityscape Wide.bmp
O24 - Desktop BackupWallPaper: C:\Windows\HP Cityscape Wide.bmp
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010.04.20 15:50:16 | 000,000,000 | R--D | M] - C:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2001.07.27 23:07:00 | 000,000,000 | -HS- | M] () - D:\AUTOEXEC.BAT -- [ FAT32 ]
O32 - AutoRun File - [2010.04.20 15:50:18 | 000,000,000 | R--D | M] - D:\autorun.inf -- [ FAT32 ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010.04.23 11:29:34 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2010.04.23 09:19:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2010.04.23 09:12:07 | 000,000,000 | ---D | C] -- C:\ComboFix
[2010.04.22 16:51:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Olga Gajdová\Data aplikací\Malwarebytes
[2010.04.22 16:51:28 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010.04.22 16:51:26 | 000,020,824 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010.04.22 16:51:26 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010.04.22 16:51:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2010.04.22 16:49:28 | 005,918,776 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\Olga Gajdová\Plocha\mbam-setup-1.45.exe
[2010.04.22 15:03:48 | 000,000,000 | ---D | C] -- C:\_OTM
[2010.04.22 15:01:40 | 000,510,464 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Olga Gajdová\Plocha\OTM.exe
[2010.04.21 14:47:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump
[2010.04.21 14:20:56 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2010.04.21 14:19:53 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2010.04.21 14:19:53 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2010.04.21 14:19:53 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2010.04.21 14:19:53 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2010.04.21 14:19:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010.04.21 14:19:40 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010.04.20 15:50:16 | 000,000,000 | R--D | C] -- C:\autorun.inf
[2010.04.20 15:37:37 | 000,000,000 | ---D | C] -- C:\UsbFix
[2010.04.20 15:37:22 | 000,562,176 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Olga Gajdová\Plocha\OTL.exe
[2010.04.20 14:32:55 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2010.04.20 14:32:54 | 000,000,000 | ---D | C] -- C:\rsit
[2010.04.20 12:21:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Olga Gajdová\Data aplikací\GHISLER
[2010.04.20 12:21:25 | 000,737,280 | ---- | C] (Indigo Rose Corporation) -- C:\WINDOWS\iun6002.exe
[2010.04.20 12:21:16 | 000,000,000 | ---D | C] -- C:\Program Files\Codec Pack - All In 1
[2010.04.20 12:17:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Adobe
[2010.04.20 12:17:14 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2010.04.20 10:03:59 | 000,030,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mdimon.dll
[2010.04.20 10:03:43 | 000,032,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msonpmon.dll
[2010.04.20 10:02:56 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
[2010.04.20 10:02:32 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2010.04.20 10:01:58 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2010.04.20 09:59:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW
[2010.04.20 09:59:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Olga Gajdová\Local Settings\Data aplikací\Microsoft Help
[2010.04.20 09:59:22 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2010.04.20 09:59:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
[2010.04.20 09:13:32 | 000,014,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg2.dll
[2010.04.20 08:50:56 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Olga Gajdová\IECompatCache
[2010.04.20 08:50:29 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Olga Gajdová\PrivacIE
[2010.04.20 08:49:05 | 000,017,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll.mui
[2010.04.20 08:49:04 | 000,274,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll
[2010.04.19 17:51:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Olga Gajdová\Data aplikací\Windows Search
[2010.04.19 17:48:58 | 000,176,128 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxres.dll
[2010.04.19 17:48:29 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Olga Gajdová\IETldCache
[2010.04.19 17:45:32 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2010.04.19 17:42:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2010.04.19 17:39:50 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2010.04.19 17:25:24 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Data aplikací\Microsoft
[2010.04.19 17:24:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2010.04.19 17:24:38 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2010.04.19 17:24:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2010.04.19 17:24:31 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2010.04.19 17:24:00 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\printfilterpipelinesvc.exe
[2010.04.19 17:24:00 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpsshhdr.dll
[2010.04.19 17:24:00 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\prntvpt.dll
[2010.04.19 17:24:00 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\filterpipelineprintproc.dll
[2010.04.19 17:23:58 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpssvcs.dll
[2010.04.19 17:23:58 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpssvcs.dll
[2010.04.19 17:23:58 | 000,000,000 | ---D | C] -- C:\3ce7dfa89d9ca9d7ec31bd0d6a
[2010.04.19 17:20:39 | 000,000,000 | ---D | C] -- C:\Program Files\LSI SoftModem
[2010.04.19 17:20:13 | 000,920,088 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\igxpun.exe
[2010.04.19 17:20:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\x64
[2010.04.19 17:19:44 | 000,319,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\difxapi.dll
[2010.04.19 17:19:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE
[2010.04.19 17:18:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Olga Gajdová\Data aplikací\Windows Desktop Search
[2010.04.19 17:18:31 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Desktop Search
[2010.04.19 17:18:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\GroupPolicy
[2010.04.19 17:17:59 | 000,192,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\offfilt.dll
[2010.04.19 17:17:59 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nlhtml.dll
[2010.04.19 17:17:59 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mimefilt.dll
[2010.04.19 17:17:51 | 000,016,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll
[2010.04.19 17:17:33 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2010.04.19 17:15:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2010.04.19 17:15:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles
[2010.04.19 14:19:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Microsoft
[2010.04.19 14:19:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2010.04.19 13:56:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2010.04.19 13:56:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\cs
[2010.04.19 13:56:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2010.04.19 13:49:33 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2010.04.19 13:49:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\EHome
[2010.04.19 13:43:29 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft CAPICOM 2.1.0.2
[2010.04.19 13:27:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie7updates
[2010.04.19 13:27:29 | 000,594,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2010.04.19 13:27:29 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2010.04.19 13:27:28 | 011,070,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2010.04.19 13:27:28 | 003,698,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieapfltr.dat
[2010.04.19 13:27:28 | 001,985,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2010.04.19 13:27:28 | 001,282,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll.mui
[2010.04.19 13:27:28 | 000,445,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieapfltr.dll
[2010.04.19 13:27:28 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icardie.dll
[2010.04.19 13:27:28 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieudinit.exe
[2010.04.19 13:27:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2010.04.19 13:27:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\cs-cz
[2010.04.19 13:26:56 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie7
[2010.04.19 13:26:45 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$
[2010.04.19 13:26:30 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
[2010.04.19 13:24:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2010.04.19 13:02:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Windows Genuine Advantage
[2010.04.19 12:13:29 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Olga Gajdová\UserData
[2010.04.19 11:57:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Olga Gajdová\Plocha\Fotokniha
[2010.04.18 23:36:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Olga Gajdová\Plocha\Magda fotokniha 3_mcf-Dateien
[2010.04.18 20:44:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2010.04.18 20:24:21 | 000,025,471 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\watv10nt.sys
[2010.04.18 20:24:21 | 000,022,271 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\watv06nt.sys
[2010.04.18 20:24:21 | 000,011,935 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv11nt.sys
[2010.04.18 20:24:21 | 000,011,871 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv09nt.sys
[2010.04.18 20:24:21 | 000,011,807 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv07nt.sys
[2010.04.18 20:24:21 | 000,011,295 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv08nt.sys
[2010.04.18 20:24:15 | 000,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slntamr.sys
[2010.04.18 20:24:15 | 000,129,535 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnt7554.sys
[2010.04.18 20:24:15 | 000,095,424 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnthal.sys
[2010.04.18 20:24:15 | 000,013,240 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slwdmsup.sys
[2010.04.18 20:24:14 | 000,166,912 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\drivers\s3gnbm.sys
[2010.04.18 20:24:13 | 000,013,776 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\recagent.sys
[2010.04.18 20:24:11 | 001,897,408 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nv4_mini.sys
[2010.04.18 20:24:11 | 000,180,360 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\ntmtlfax.sys
[2010.04.18 20:24:09 | 001,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlstrm.sys
[2010.04.18 20:24:09 | 000,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys
[2010.04.18 20:24:09 | 000,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys
[2010.04.18 20:21:21 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys
[2010.04.18 20:21:21 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atintuxx.sys
[2010.04.18 20:21:21 | 000,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys
[2010.04.18 20:21:21 | 000,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinraxx.sys
[2010.04.18 20:21:21 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys
[2010.04.18 20:21:21 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys
[2010.04.18 20:21:21 | 000,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys
[2010.04.18 20:21:21 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinttxx.sys
[2010.04.18 20:21:20 | 000,701,440 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtag.sys
[2010.04.18 20:21:20 | 000,326,912 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys
[2010.04.18 20:21:20 | 000,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys
[2010.04.18 20:21:20 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinbtxx.sys
[2010.04.18 20:21:20 | 000,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1btxx.sys
[2010.04.18 20:21:20 | 000,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys
[2010.04.18 20:21:20 | 000,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys
[2010.04.18 20:21:20 | 000,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys
[2010.04.18 20:21:20 | 000,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys
[2010.04.18 20:21:20 | 000,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys
[2010.04.18 20:21:20 | 000,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys
[2010.04.18 20:21:20 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys
[2010.04.18 20:21:20 | 000,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys
[2010.04.18 20:21:20 | 000,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys
[2010.04.18 20:17:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Olga Gajdová\Plocha\Magda fotokniha 2_mcf-Dateien
[2010.04.18 20:02:53 | 000,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys
[2010.04.18 20:02:23 | 000,353,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srv.sys
[2010.04.18 20:01:14 | 000,455,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2010.04.18 20:01:04 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll
[2010.04.18 20:00:25 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\t2embed.dll
[2010.04.18 20:00:25 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll
[2010.04.18 20:00:20 | 002,192,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe
[2010.04.18 20:00:18 | 000,729,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll
[2010.04.18 20:00:17 | 002,148,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2010.04.18 20:00:16 | 002,026,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2010.04.18 19:58:14 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe
[2010.04.18 19:52:57 | 000,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys
[2010.04.18 19:52:43 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll
[2010.04.18 19:52:12 | 000,691,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll
[2010.04.18 19:52:07 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe
[2010.04.18 19:51:25 | 002,066,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstscax.dll
[2010.04.18 19:51:02 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netapi32.dll
[2010.04.18 19:50:55 | 001,172,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml3.dll
[2010.04.18 19:29:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Olga Gajdová\Plocha\Magda fotokniha 1_mcf-Dateien
[2010.04.18 18:03:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Olga Gajdová\Plocha\Magda fotokniha_mcf-Dateien
[2010.04.18 16:55:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2010.04.18 15:01:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\hps
[2010.04.18 14:59:59 | 000,000,000 | ---D | C] -- C:\Program Files\Fotolab
[2010.04.18 11:15:27 | 000,000,000 | ---D | C] -- C:\$AVG
[2010.04.18 11:15:14 | 000,242,896 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgtdix.sys
[2010.04.18 11:15:14 | 000,052,872 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgrkx86.sys
[2010.04.18 11:15:14 | 000,012,464 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll
[2010.04.18 11:15:08 | 000,216,200 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgldx86.sys
[2010.04.18 11:15:07 | 000,029,512 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgmfx86.sys
[2010.04.18 11:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\Avg
[2010.04.18 11:14:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\AVG Security Toolbar
[2010.04.18 11:14:35 | 000,000,000 | ---D | C] -- C:\Program Files\AVG
[2010.04.18 11:14:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\avg9
[2010.04.18 11:12:45 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Data aplikací\Microsoft
[2010.04.18 11:12:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Microsoft
[2010.04.18 10:18:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2010.04.18 06:07:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\i386
[2010.04.18 05:45:55 | 000,000,000 | ---D | C] -- C:\My Backup -- 17-04-10 2045
[2010.04.17 21:28:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Olga Gajdová\Local Settings\Data aplikací\Adobe
[2010.04.17 21:28:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Olga Gajdová\Data aplikací\Adobe
[2010.04.17 21:23:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Olga Gajdová\Local Settings\Data aplikací\Identities
[2010.04.17 21:23:18 | 000,000,000 | ---D | C] -- C:\Program Files\WIDCOMM
[2010.04.17 21:23:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Olga Gajdová\Local Settings\Data aplikací\Google
[2010.04.17 21:22:58 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2010.04.17 21:21:18 | 000,000,000 | ---D | C] -- C:\Program Files\InterVideo
[2010.04.17 21:20:20 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Olga Gajdová\Data aplikací\Microsoft
[2010.04.17 21:20:20 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Olga Gajdová\Data aplikací
[2010.04.17 21:20:20 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Olga Gajdová\Dokumenty\Obrázky
[2010.04.17 21:20:20 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Olga Gajdová\Dokumenty\Hudba
[2010.04.17 21:20:20 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Olga Gajdová\Dokumenty
[2010.04.17 21:20:20 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Olga Gajdová\Cookies
[2010.04.17 21:20:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Olga Gajdová\Data aplikací\SampleView
[2010.04.17 21:20:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Olga Gajdová\Local Settings\Data aplikací\Microsoft
[2010.04.17 21:20:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Olga Gajdová\Data aplikací\Identities
[2010.04.17 21:20:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Olga Gajdová\Local Settings\Data aplikací\ApplicationHistory
[2010.04.17 21:20:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Olga Gajdová\Local Settings\Data aplikací\{3248F0A6-6813-11D6-A77B-00B0D0150060}
[2010.04.17 21:20:19 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Olga Gajdová\SendTo
[2010.04.17 21:20:19 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Olga Gajdová\Recent
[2010.04.17 21:20:19 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Olga Gajdová\Oblíbené položky
[2010.04.17 21:20:19 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Olga Gajdová\Nabídka Start
[2010.04.17 21:20:19 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Olga Gajdová\Šablony
[2010.04.17 21:20:19 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Olga Gajdová\Okolní tiskárny
[2010.04.17 21:20:19 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Olga Gajdová\Okolní síť
[2010.04.17 21:20:19 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Olga Gajdová\Local Settings
[2010.04.17 21:20:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Olga Gajdová\Plocha
[2010.04.17 21:19:22 | 000,000,000 | ---D | C] -- C:\Program Files\Zástupci programů
[2010.04.16 21:39:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Olga Gajdová\Plocha\Pepa 3
[2010.04.12 02:27:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Olga Gajdová\Plocha\Majda miminko
[2010.04.12 02:21:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Olga Gajdová\Plocha\školení černoch
[2010.04.12 00:03:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Olga Gajdová\Dokumenty\Fotolab Magda a Martin_mcf-Dateien
[2010.04.01 23:06:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Olga Gajdová\Plocha\Martin kniha 2
[2010.04.01 22:37:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Olga Gajdová\Plocha\Martin1
[2010.04.01 22:35:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Olga Gajdová\Plocha\Martin
[1 C:\Documents and Settings\Olga Gajdová\Dokumenty\*.tmp files -> C:\Documents and Settings\Olga Gajdová\Dokumenty\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010.04.23 09:19:51 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.04.23 09:18:45 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010.04.23 09:11:35 | 003,923,062 | R--- | M] () -- C:\Documents and Settings\Olga Gajdová\Plocha\ComboFix.exe
[2010.04.23 08:49:32 | 059,177,035 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2010.04.22 16:51:33 | 001,572,864 | -H-- | M] () -- C:\Documents and Settings\Olga Gajdová\NTUSER.DAT
[2010.04.22 16:51:31 | 000,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2010.04.22 16:49:38 | 005,918,776 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Olga Gajdová\Plocha\mbam-setup-1.45.exe
[2010.04.22 15:59:39 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.04.22 15:59:37 | 1064,751,104 | -HS- | M] () -- C:\hiberfil.sys
[2010.04.22 15:58:42 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Olga Gajdová\ntuser.ini
[2010.04.22 15:58:36 | 003,760,324 | -H-- | M] () -- C:\Documents and Settings\Olga Gajdová\Local Settings\Data aplikací\IconCache.db
[2010.04.22 15:01:41 | 000,510,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Olga Gajdová\Plocha\OTM.exe
[2010.04.22 08:44:59 | 000,034,456 | ---- | M] () -- C:\Documents and Settings\Olga Gajdová\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
[2010.04.21 14:43:08 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2010.04.21 14:21:02 | 000,000,281 | RHS- | M] () -- C:\boot.ini
[2010.04.20 17:25:05 | 000,000,141 | ---- | M] () -- C:\Documents and Settings\Olga Gajdová\Plocha\cmd.bat
[2010.04.20 15:50:21 | 000,002,524 | ---- | M] () -- C:\UsbFix_Upload_Me_PC257173278573.zip
[2010.04.20 15:37:25 | 000,562,176 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Olga Gajdová\Plocha\OTL.exe
[2010.04.20 15:37:13 | 001,777,862 | ---- | M] () -- C:\Documents and Settings\Olga Gajdová\Plocha\UsbFix.exe
[2010.04.20 14:32:33 | 000,781,909 | ---- | M] () -- C:\Documents and Settings\Olga Gajdová\Plocha\RSIT.exe
[2010.04.20 12:23:12 | 000,000,548 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Total Commander.lnk
[2010.04.20 12:21:00 | 000,737,280 | ---- | M] (Indigo Rose Corporation) -- C:\WINDOWS\iun6002.exe
[2010.04.20 12:19:18 | 000,166,712 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010.04.20 12:17:39 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Adobe Reader 9.lnk
[2010.04.20 12:13:08 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.04.20 09:47:00 | 001,036,152 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010.04.20 09:47:00 | 000,458,882 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2010.04.20 09:47:00 | 000,441,458 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010.04.20 09:47:00 | 000,090,924 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2010.04.20 09:47:00 | 000,071,394 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010.04.20 09:02:34 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010.04.20 08:53:33 | 000,242,896 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgtdix.sys
[2010.04.19 17:18:38 | 000,001,779 | ---- | M] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Windows Search.lnk
[2010.04.19 17:17:42 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2010.04.19 17:17:42 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2010.04.19 17:17:39 | 000,000,507 | ---- | M] () -- C:\WINDOWS\win.ini
[2010.04.19 17:16:06 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2010.04.19 17:15:31 | 000,000,944 | ---- | M] () -- C:\WINDOWS\System32\InstallUtil.InstallLog
[2010.04.19 17:15:24 | 000,000,132 | ---- | M] () -- C:\Documents and Settings\Olga Gajdová\Local Settings\Data aplikací\fusioncache.dat
[2010.04.19 14:20:04 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2010.04.19 13:51:51 | 000,250,576 | -HS- | M] () -- C:\NTLDR
[2010.04.19 11:11:40 | 000,001,503 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Výběr prohlížeče.lnk
[2010.04.18 23:36:45 | 000,190,413 | ---- | M] () -- C:\Documents and Settings\Olga Gajdová\Plocha\Magda fotokniha 3.mcf
[2010.04.18 23:36:37 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Olga Gajdová\Plocha\Magda fotokniha 3.mcf~
[2010.04.18 23:31:47 | 000,189,478 | ---- | M] () -- C:\Documents and Settings\Olga Gajdová\Plocha\Magda fotokniha 2.mcf
[2010.04.18 23:21:32 | 000,188,676 | ---- | M] () -- C:\Documents and Settings\Olga Gajdová\Plocha\Magda fotokniha 2.mcf~
[2010.04.18 19:29:36 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Olga Gajdová\Plocha\Magda fotokniha 1.mcf
[2010.04.18 18:03:08 | 000,171,617 | ---- | M] () -- C:\Documents and Settings\Olga Gajdová\Plocha\Magda fotokniha.mcf
[2010.04.18 18:03:03 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Olga Gajdová\Plocha\Magda fotokniha.mcf~
[2010.04.18 18:03:03 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Olga Gajdová\Dokumenty\Magda fotokniha.mcf~
[2010.04.18 18:01:14 | 000,171,585 | ---- | M] () -- C:\Documents and Settings\Olga Gajdová\Dokumenty\Fotolab Magda a Martin.mcf
[2010.04.18 16:41:38 | 000,170,804 | ---- | M] () -- C:\Documents and Settings\Olga Gajdová\Dokumenty\Fotolab Magda a Martin.mcf~
[2010.04.18 16:02:57 | 000,000,902 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Fotolab Fotosvet 3.lnk
[2010.04.18 11:36:41 | 001,411,488 | ---- | M] () -- C:\Documents and Settings\Olga Gajdová\Plocha\setup_Fotolab_Fotosvet_3.exe
[2010.04.18 11:15:15 | 000,001,507 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\AVG 9.0.lnk
[2010.04.18 11:15:14 | 000,052,872 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgrkx86.sys
[2010.04.18 11:15:14 | 000,012,464 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll
[2010.04.18 11:15:08 | 000,216,200 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgldx86.sys
[2010.04.18 11:15:07 | 000,113,461 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\iavichjw.avm
[2010.04.18 11:15:07 | 000,029,512 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgmfx86.sys
[2010.04.18 10:32:33 | 000,000,837 | RHS- | M] () -- C:\WINDOWS\System32\autorun.i
[2010.04.18 10:32:33 | 000,000,368 | RHS- | M] () -- C:\WINDOWS\System32\autorun.in
[2010.04.17 21:23:31 | 000,000,635 | ---- | M] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Bluetooth.lnk
[2010.04.17 21:21:18 | 000,001,714 | ---- | M] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\DVD Check.lnk
[2010.04.17 21:20:54 | 000,001,825 | RHS- | M] () -- C:\WINDOWS\System32\drivers\103C_HP_NTBK_HP Compaq nx7300 (RU583ES#AKB)_YN_0U_QCNU7110NWK_E410312223_46_I30A2_SHP_VKBC Version 40.17_B68YGU Ver. F.0E_T080827_WXH2_L405_M1016_J120_7Intel_8Core2 T5200_91.6_#100417_N14E4170C_(RU583ES#AKB).MRK
[2010.04.17 21:19:30 | 000,002,965 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2010.04.17 21:19:28 | 000,262,144 | ---- | M] () -- C:\Documents and Settings\All Users\NTUSER.DAT
[2010.04.17 21:19:26 | 000,000,211 | ---- | M] () -- C:\Boot.bak
[2010.04.17 21:14:25 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD
[2010.04.16 22:34:10 | 000,177,963 | ---- | M] () -- C:\Documents and Settings\Olga Gajdová\Plocha\Scan10001.JPG
[2010.04.14 13:05:58 | 000,174,099 | ---- | M] () -- C:\Documents and Settings\Olga Gajdová\Plocha\Magda a Martin Fotokniha.mcf
[2010.03.30 00:46:30 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010.03.30 00:45:52 | 000,020,824 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010.03.30 00:11:28 | 000,022,528 | ---- | M] () -- C:\Documents and Settings\Olga Gajdová\Dokumenty\Výpověď Nymburk.doc
[1 C:\Documents and Settings\Olga Gajdová\Dokumenty\*.tmp files -> C:\Documents and Settings\Olga Gajdová\Dokumenty\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010.04.22 16:51:31 | 000,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2010.04.21 14:21:02 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2010.04.21 14:20:58 | 000,261,312 | ---- | C] () -- C:\cmldr
[2010.04.21 14:19:53 | 000,261,632 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2010.04.21 14:19:53 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2010.04.21 14:19:53 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2010.04.21 14:19:53 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2010.04.21 14:19:53 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2010.04.21 14:19:19 | 003,923,062 | R--- | C] () -- C:\Documents and Settings\Olga Gajdová\Plocha\ComboFix.exe
[2010.04.21 08:52:13 | 1064,751,104 | -HS- | C] () -- C:\hiberfil.sys
[2010.04.20 16:08:29 | 000,000,141 | ---- | C] () -- C:\Documents and Settings\Olga Gajdová\Plocha\cmd.bat
[2010.04.20 15:50:21 | 000,002,524 | ---- | C] () -- C:\UsbFix_Upload_Me_PC257173278573.zip
[2010.04.20 15:37:11 | 001,777,862 | ---- | C] () -- C:\Documents and Settings\Olga Gajdová\Plocha\UsbFix.exe
[2010.04.20 14:32:33 | 000,781,909 | ---- | C] () -- C:\Documents and Settings\Olga Gajdová\Plocha\RSIT.exe
[2010.04.20 12:23:12 | 000,000,548 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Total Commander.lnk
[2010.04.20 12:21:51 | 000,000,545 | ---- | C] () -- C:\WINDOWS\UC.PIF
[2010.04.20 12:21:51 | 000,000,545 | ---- | C] () -- C:\WINDOWS\RAR.PIF
[2010.04.20 12:21:51 | 000,000,545 | ---- | C] () -- C:\WINDOWS\PKZIP.PIF
[2010.04.20 12:21:51 | 000,000,545 | ---- | C] () -- C:\WINDOWS\PKUNZIP.PIF
[2010.04.20 12:21:51 | 000,000,545 | ---- | C] () -- C:\WINDOWS\NOCLOSE.PIF
[2010.04.20 12:21:51 | 000,000,545 | ---- | C] () -- C:\WINDOWS\LHA.PIF
[2010.04.20 12:21:51 | 000,000,545 | ---- | C] () -- C:\WINDOWS\ARJ.PIF
[2010.04.20 12:17:39 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Adobe Reader 9.lnk
[2010.04.19 17:18:38 | 000,001,779 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Windows Search.lnk
[2010.04.19 17:16:06 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2010.04.19 11:11:38 | 000,001,503 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Výběr prohlížeče.lnk
[2010.04.18 23:36:37 | 000,190,413 | ---- | C] () -- C:\Documents and Settings\Olga Gajdová\Plocha\Magda fotokniha 3.mcf
[2010.04.18 23:36:37 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Olga Gajdová\Plocha\Magda fotokniha 3.mcf~
[2010.04.18 20:24:10 | 000,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img
[2010.04.18 20:23:50 | 000,129,045 | ---- | C] () -- C:\WINDOWS\System32\drivers\cxthsfs2.cty
[2010.04.18 20:21:21 | 000,064,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\ativmc20.cod
[2010.04.18 20:17:31 | 000,189,478 | ---- | C] () -- C:\Documents and Settings\Olga Gajdová\Plocha\Magda fotokniha 2.mcf
[2010.04.18 20:17:31 | 000,188,676 | ---- | C] () -- C:\Documents and Settings\Olga Gajdová\Plocha\Magda fotokniha 2.mcf~
[2010.04.18 19:29:36 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Olga Gajdová\Plocha\Magda fotokniha 1.mcf
[2010.04.18 19:22:03 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Olga Gajdová\Dokumenty\Magda fotokniha.mcf~
[2010.04.18 18:03:03 | 000,171,617 | ---- | C] () -- C:\Documents and Settings\Olga Gajdová\Plocha\Magda fotokniha.mcf
[2010.04.18 18:03:03 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Olga Gajdová\Plocha\Magda fotokniha.mcf~
[2010.04.18 15:01:25 | 000,000,902 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Fotolab Fotosvet 3.lnk
[2010.04.18 11:36:40 | 001,411,488 | ---- | C] () -- C:\Documents and Settings\Olga Gajdová\Plocha\setup_Fotolab_Fotosvet_3.exe
[2010.04.18 11:15:15 | 000,001,507 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\AVG 9.0.lnk
[2010.04.18 11:15:07 | 000,113,461 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\iavichjw.avm
[2010.04.18 11:14:58 | 059,177,035 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2010.04.18 10:32:33 | 000,000,837 | RHS- | C] () -- C:\WINDOWS\System32\autorun.i
[2010.04.18 10:32:33 | 000,000,368 | RHS- | C] () -- C:\WINDOWS\System32\autorun.in
[2010.04.17 21:23:31 | 000,000,635 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Bluetooth.lnk
[2010.04.17 21:21:40 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll
[2010.04.17 21:21:40 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll
[2010.04.17 21:21:39 | 000,200,704 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll
[2010.04.17 21:21:39 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll
[2010.04.17 21:21:39 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll
[2010.04.17 21:21:39 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll
[2010.04.17 21:21:18 | 000,001,714 | ---- | C] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\DVD Check.lnk
[2010.04.17 21:20:47 | 000,001,825 | RHS- | C] () -- C:\WINDOWS\System32\drivers\103C_HP_NTBK_HP Compaq nx7300 (RU583ES#AKB)_YN_0U_QCNU7110NWK_E410312223_46_I30A2_SHP_VKBC Version 40.17_B68YGU Ver. F.0E_T080827_WXH2_L405_M1016_J120_7Intel_8Core2 T5200_91.6_#100417_N14E4170C_(RU583ES#AKB).MRK
[2010.04.17 21:20:21 | 000,000,132 | ---- | C] () -- C:\Documents and Settings\Olga Gajdová\Local Settings\Data aplikací\fusioncache.dat
[2010.04.17 21:20:21 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Olga Gajdová\Local Settings\Data aplikací\QSwitch.txt
[2010.04.17 21:20:21 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Olga Gajdová\Local Settings\Data aplikací\DSwitch.txt
[2010.04.17 21:20:21 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Olga Gajdová\Local Settings\Data aplikací\AtStart.txt
[2010.04.17 21:20:19 | 001,572,864 | -H-- | C] () -- C:\Documents and Settings\Olga Gajdová\NTUSER.DAT
[2010.04.17 21:20:19 | 000,028,672 | -H-- | C] () -- C:\Documents and Settings\Olga Gajdová\ntuser.dat.LOG
[2010.04.17 21:20:19 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\Olga Gajdová\ntuser.ini
[2010.04.17 21:19:28 | 000,262,144 | ---- | C] () -- C:\Documents and Settings\All Users\NTUSER.DAT
[2010.04.17 21:19:28 | 000,001,024 | -H-- | C] () -- C:\Documents and Settings\All Users\NTUSER.DAT.LOG
[2010.04.17 21:14:25 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD
[2010.04.16 22:40:45 | 000,177,963 | ---- | C] () -- C:\Documents and Settings\Olga Gajdová\Plocha\Scan10001.JPG
[2010.04.12 02:10:47 | 000,174,099 | ---- | C] () -- C:\Documents and Settings\Olga Gajdová\Plocha\Magda a Martin Fotokniha.mcf
[2010.04.11 23:05:12 | 000,171,585 | ---- | C] () -- C:\Documents and Settings\Olga Gajdová\Dokumenty\Fotolab Magda a Martin.mcf
[2010.04.11 23:05:12 | 000,170,804 | ---- | C] () -- C:\Documents and Settings\Olga Gajdová\Dokumenty\Fotolab Magda a Martin.mcf~
[2010.03.30 00:11:28 | 000,022,528 | ---- | C] () -- C:\Documents and Settings\Olga Gajdová\Dokumenty\Výpověď Nymburk.doc
[2008.05.26 22:22:14 | 000,015,552 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini
[2008.05.26 22:22:10 | 000,021,464 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini
[2008.05.26 22:22:04 | 000,014,910 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini
[2008.02.15 21:21:56 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4926.dll
[2006.08.19 21:19:41 | 000,000,172 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2006.08.19 21:18:21 | 000,029,516 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2006.02.15 16:04:52 | 000,090,112 | ---- | C] () -- C:\WINDOWS\System32\btprn2k.dll
[2005.12.01 21:11:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2005.10.14 11:56:50 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2005.10.14 11:56:50 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\VorbisEnc.dll
[2005.10.14 11:56:50 | 000,761,856 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2005.10.14 11:56:50 | 000,344,064 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll
[2005.10.14 11:56:50 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll
[2005.10.14 11:56:50 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2005.10.14 11:56:50 | 000,155,136 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2005.10.14 11:56:50 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll
[2005.10.14 11:56:48 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\MMSwitch.dll
[2004.09.08 12:26:52 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2004.06.01 11:39:56 | 000,094,274 | ---- | C] () -- C:\WINDOWS\System32\HPBHEALR.DLL
[2002.05.15 22:29:04 | 000,000,607 | ---- | C] () -- C:\WINDOWS\System32\BTNeighborhood.dll.manifest
[2001.11.23 17:18:00 | 000,000,597 | ---- | C] () -- C:\WINDOWS\System32\btcss.dll.manifest
[2001.11.14 12:56:00 | 001,802,240 | ---- | C] () -- C:\WINDOWS\System32\lcppn21.dll
[1998.05.07 04:10:00 | 000,069,632 | ---- | C] () -- C:\WINDOWS\System32\ODMA32.dll

========== Alternate Data Streams ==========

@Alternate Data Stream - 88 bytes -> C:\Documents and Settings\Olga Gajdová\Plocha\Magda a Martin Fotokniha.mcf:SummaryInformation
< End of report >

cpt · #18 Příspěvek od **cpt** » 23 dub 2010 13:41

EXTRAS.TXT:

OTL Extras logfile created on: 23.4.2010 14:34:24 - Run 1
OTL by OldTimer - Version 3.2.1.3 Folder = C:\Documents and Settings\Olga Gajdová\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1 015,00 Mb Total Physical Memory | 375,00 Mb Available Physical Memory | 37,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 76,00% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 104,47 Gb Total Space | 43,56 Gb Free Space | 41,69% Space Free | Partition Type: NTFS
Drive D: | 7,30 Gb Total Space | 0,54 Gb Free Space | 7,43% Space Free | Partition Type: FAT32
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: PC257173278573
Current User Name: Olga Gajdová
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Fotolab Fotosvet 3] -- "C:\Program Files\Fotolab\Fotolab Fotosvet 3\Fotolab Fotosvet 3.exe" "%1" ()
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~3\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"10243:TCP" = 10243:TCP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10280:UDP" = 10280:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10281:UDP" = 10281:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10282:UDP" = 10282:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10283:UDP" = 10283:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10284:UDP" = 10284:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"10243:TCP" = 10243:TCP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10280:UDP" = 10280:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10281:UDP" = 10281:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10282:UDP" = 10282:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10283:UDP" = 10283:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10284:UDP" = 10284:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\WINDOWS\SMINST\Scheduler.exe" = C:\WINDOWS\SMINST\Scheduler.exe:*:Enabled:Scheduler -- ()
"C:\Program Files\AVG\AVG9\avgam.exe" = C:\Program Files\AVG\AVG9\avgam.exe:*:Enabled:avgam.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgdiagex.exe" = C:\Program Files\AVG\AVG9\avgdiagex.exe:*:Enabled:avgdiagex.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgemc.exe" = C:\Program Files\AVG\AVG9\avgemc.exe:*:Enabled:avgemc.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgupd.exe" = C:\Program Files\AVG\AVG9\avgupd.exe:*:Enabled:avgupd.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgnsx.exe" = C:\Program Files\AVG\AVG9\avgnsx.exe:*:Enabled:avgnsx.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" = C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{075473F5-846A-448B-BCB3-104AA1760205}" = Sonic Data Module
"{1206EF92-2E83-4859-ACCB-2048C3CB7DA6}" = Sonic DLA
"{21657574-BD54-48A2-9450-EB03B2C7FC29}" = Sonic MyDVD Plus
"{22C28506-B1E0-4050-B0B7-B97AEB061381}" = HP User Guides 0029
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Sonic Update Manager
"{3248F0A8-6813-11D6-A77B-00B0D0150060}" = J2SE Runtime Environment 5.0 Update 6
"{34D2AB40-150D-475D-AE32-BD23FB5EE355}" = HP Quick Launch Buttons 6.00 D2
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3F4EC965-28EF-45C3-B063-04B25D4E9679}" = HP Integrated Module with Bluetooth wireless technology
"{3F9F7336-6DF8-476F-ABF6-C70A17FAF619}" = Instalátor programu HP Backup and Recovery Manager
"{4302B2DD-D958-40E3-BAF3-B07FFE1978CE}" = HP Wireless Assistant 2.00 E1
"{546C143E-68DC-314D-97BC-1E454E3BA429}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - CSY
"{5D97A4A7-C274-4B63-86D9-07A33435F505}" = InterVideo DVD Check
"{5E65E94D-69F2-4850-9E93-6459C53A0F50}" = Microsoft .NET Framework 1.1 Czech Language Pack
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Sonic Express Labeler
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_HOMESTUDENTR_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_HOMESTUDENTR_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_HOMESTUDENTR_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_HOMESTUDENTR_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_HOMESTUDENTR_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_HOMESTUDENTR_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_HOMESTUDENTR_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{914E1AB1-DCA0-4A7D-935F-B58C4B887A2B}" = HP ProtectTools Security Manager 2.00 C3
"{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}" = InterVideo WinDVD
"{9F7AF7CD-E3D0-4C68-A3BA-C76C359B3AA8}" = LightScribe 1.4.105.1
"{A2C9CD1B-2551-3AED-B244-6698FB929FA6}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - CSY
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A7AD8CEF-72D7-4FE4-8A14-DDD09DC86074}" = HP Notebook Accessories Product Tour
"{A93C4E94-1005-489D-BEAA-B873C1AA6CFC}" = HP Help and Support
"{AB708C9B-97C8-4AC9-899B-DBF226AC9382}" = Sonic Audio Module
"{AC76BA86-7AD7-1029-7B44-A93000000001}" = Adobe Reader 9.3 - Czech
"{AE052EF7-2640-48D7-8915-69B810D975CB}" = HP BIOS Configuration for ProtectTools 2.00 C3
"{B12665F4-4E93-4AB4-B7FC-37053B524629}" = Sonic Copy Module
"{B9F4C05D-E42F-4E9A-A73F-FDD9355319FB}" = HP Credential Manager for ProtectTools
"{BB85ED9C-AFC9-43BD-B8DC-258C3C7DF72E}" = HP Software Update
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{DB518BA6-CB74-4EB6-9ABD-880B6D6E1F38}" = HpSdpAppCoreApp
"{DD73CA82-EA82-38AA-863D-9A24A018DC96}" = Microsoft .NET Framework 3.5 Language Pack SP1 - csy
"{E0DBC47C-ED3F-4A1B-A929-9A26DAAA14B3}" = Application Installer 4.00.B5
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"AVG9Uninstall" = AVG 9.0
"Cool's_Codec_pack_4.12" = Codec Pack - All In 1 6.0.3.0
"ESET Online Scanner" = ESET Online Scanner v3
"Fotolab Fotosvet 3" = Fotolab Fotosvet 3
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"HijackThis" = HijackThis 2.0.2
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack SP1 - csy" = Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"Totalcmd" = Total Commander (Remove or Repair)
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 19.4.2010 11:18:46 | Computer Name = PC257173278573 | Source = Windows Search Service | ID = 3026
Description = Změna stavu doporučení se nezdařila. V systému je pravděpodobně nedostatek
prostředků. Uvolněte prostředky a restartujte službu. Kontext: aplikace Windows,
katalog SystemIndex Podrobnosti: Služba indexu obsahu byla zastavena. (0x80041812)

Error - 19.4.2010 11:18:46 | Computer Name = PC257173278573 | Source = Windows Search Service | ID = 3026
Description = Změna stavu doporučení se nezdařila. V systému je pravděpodobně nedostatek
prostředků. Uvolněte prostředky a restartujte službu. Kontext: aplikace Windows,
katalog SystemIndex Podrobnosti: Služba indexu obsahu byla zastavena. (0x80041812)

Error - 19.4.2010 11:18:46 | Computer Name = PC257173278573 | Source = Windows Search Service | ID = 3026
Description = Změna stavu doporučení se nezdařila. V systému je pravděpodobně nedostatek
prostředků. Uvolněte prostředky a restartujte službu. Kontext: aplikace Windows,
katalog SystemIndex Podrobnosti: Služba indexu obsahu byla zastavena. (0x80041812)

Error - 19.4.2010 11:18:46 | Computer Name = PC257173278573 | Source = Windows Search Service | ID = 3026
Description = Změna stavu doporučení se nezdařila. V systému je pravděpodobně nedostatek
prostředků. Uvolněte prostředky a restartujte službu. Kontext: aplikace Windows,
katalog SystemIndex Podrobnosti: Služba indexu obsahu byla zastavena. (0x80041812)

Error - 19.4.2010 11:18:46 | Computer Name = PC257173278573 | Source = Windows Search Service | ID = 3026
Description = Změna stavu doporučení se nezdařila. V systému je pravděpodobně nedostatek
prostředků. Uvolněte prostředky a restartujte službu. Kontext: aplikace Windows,
katalog SystemIndex Podrobnosti: Služba indexu obsahu byla zastavena. (0x80041812)

Error - 19.4.2010 11:19:13 | Computer Name = PC257173278573 | Source = Windows Search Service | ID = 3024
Description = Aktualizaci nelze spustit, protože zdroje obsahu jsou nepřístupné.
Opravte chyby a spusťte aktualizaci znovu. Kontext: aplikace Windows, katalog SystemIndex

Error - 20.4.2010 10:13:29 | Computer Name = PC257173278573 | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace OTL.exe, verze 3.2.1.3, zablokovaný modul hungapp,
verze 0.0.0.0, adresa bloku 0x00000000.

Error - 20.4.2010 10:29:23 | Computer Name = PC257173278573 | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace OTL.exe, verze 3.2.1.3, zablokovaný modul hungapp,
verze 0.0.0.0, adresa bloku 0x00000000.

Error - 20.4.2010 10:57:15 | Computer Name = PC257173278573 | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace OTL.exe, verze 3.2.1.3, zablokovaný modul hungapp,
verze 0.0.0.0, adresa bloku 0x00000000.

Error - 23.4.2010 3:17:03 | Computer Name = PC257173278573 | Source = Application Error | ID = 1000
Description = Chybující aplikace pev.exe, verze 0.0.0.0, chybující modul unknown,
verze 0.0.0.0, adresa chyby 0x003e4353.

[ System Events ]
Error - 22.4.2010 7:08:36 | Computer Name = PC257173278573 | Source = PSched | ID = 14103
Description = Služba QoS [Adaptér {EBFA38E9-2AE9-40C0-9A62-E67119E95C83}]: Ovladači
síťové karty se nezdařil dotaz na OID_GEN_LINK_SPEED.

Error - 22.4.2010 7:09:54 | Computer Name = PC257173278573 | Source = atapi | ID = 262153
Description = Zařízení \Device\Ide\IdePort0 neodpovídá v periodě časového limitu.

Error - 22.4.2010 7:40:38 | Computer Name = PC257173278573 | Source = PSched | ID = 14103
Description = Služba QoS [Adaptér {EBFA38E9-2AE9-40C0-9A62-E67119E95C83}]: Ovladači
síťové karty se nezdařil dotaz na OID_GEN_LINK_SPEED.

Error - 22.4.2010 9:03:48 | Computer Name = PC257173278573 | Source = Service Control Manager | ID = 7034
Description = Služba Agere Modem Call Progress Audio byla neočekávaně ukončena.
Tento stav nastal již 1krát.

Error - 22.4.2010 9:03:49 | Computer Name = PC257173278573 | Source = Service Control Manager | ID = 7031
Description = Služba AVG WatchDog byla nečekaně ukončena. Stalo se to 1 krát. Následující
opravná akce bude spuštěna za 0 milisekund: Restartovat službu.

Error - 22.4.2010 9:03:49 | Computer Name = PC257173278573 | Source = Service Control Manager | ID = 7034
Description = Služba LightScribeService Direct Disc Labeling Service byla neočekávaně
ukončena. Tento stav nastal již 1krát.

Error - 22.4.2010 9:03:49 | Computer Name = PC257173278573 | Source = Service Control Manager | ID = 7031
Description = Služba Bluetooth Service byla nečekaně ukončena. Stalo se to 1 krát.
Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error - 22.4.2010 9:03:49 | Computer Name = PC257173278573 | Source = Service Control Manager | ID = 7034
Description = Služba hpqwmiex byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error - 23.4.2010 3:12:30 | Computer Name = PC257173278573 | Source = Service Control Manager | ID = 7031
Description = Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena.
Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund:
Restartovat službu.

Error - 23.4.2010 3:15:41 | Computer Name = PC257173278573 | Source = Service Control Manager | ID = 7031
Description = Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena.
Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund:
Restartovat službu.

< End of report >

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Fotolab Fotosvet 3] -- "C:\Program Files\Fotolab\Fotolab Fotosvet 3\Fotolab Fotosvet 3.exe" "%1" ()
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~3\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"10243:TCP" = 10243:TCP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10280:UDP" = 10280:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10281:UDP" = 10281:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10282:UDP" = 10282:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10283:UDP" = 10283:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10284:UDP" = 10284:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"10243:TCP" = 10243:TCP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10280:UDP" = 10280:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10281:UDP" = 10281:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10282:UDP" = 10282:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10283:UDP" = 10283:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing
"10284:UDP" = 10284:UDP:LocalSubNet:Enabled:Služba Windows Media Player Network Sharing

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\WINDOWS\SMINST\Scheduler.exe" = C:\WINDOWS\SMINST\Scheduler.exe:*:Enabled:Scheduler -- ()
"C:\Program Files\AVG\AVG9\avgam.exe" = C:\Program Files\AVG\AVG9\avgam.exe:*:Enabled:avgam.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgdiagex.exe" = C:\Program Files\AVG\AVG9\avgdiagex.exe:*:Enabled:avgdiagex.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgemc.exe" = C:\Program Files\AVG\AVG9\avgemc.exe:*:Enabled:avgemc.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgupd.exe" = C:\Program Files\AVG\AVG9\avgupd.exe:*:Enabled:avgupd.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgnsx.exe" = C:\Program Files\AVG\AVG9\avgnsx.exe:*:Enabled:avgnsx.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" = C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{075473F5-846A-448B-BCB3-104AA1760205}" = Sonic Data Module
"{1206EF92-2E83-4859-ACCB-2048C3CB7DA6}" = Sonic DLA
"{21657574-BD54-48A2-9450-EB03B2C7FC29}" = Sonic MyDVD Plus
"{22C28506-B1E0-4050-B0B7-B97AEB061381}" = HP User Guides 0029
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Sonic Update Manager
"{3248F0A8-6813-11D6-A77B-00B0D0150060}" = J2SE Runtime Environment 5.0 Update 6
"{34D2AB40-150D-475D-AE32-BD23FB5EE355}" = HP Quick Launch Buttons 6.00 D2
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3F4EC965-28EF-45C3-B063-04B25D4E9679}" = HP Integrated Module with Bluetooth wireless technology
"{3F9F7336-6DF8-476F-ABF6-C70A17FAF619}" = Instalátor programu HP Backup and Recovery Manager
"{4302B2DD-D958-40E3-BAF3-B07FFE1978CE}" = HP Wireless Assistant 2.00 E1
"{546C143E-68DC-314D-97BC-1E454E3BA429}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - CSY
"{5D97A4A7-C274-4B63-86D9-07A33435F505}" = InterVideo DVD Check
"{5E65E94D-69F2-4850-9E93-6459C53A0F50}" = Microsoft .NET Framework 1.1 Czech Language Pack
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Sonic Express Labeler
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_HOMESTUDENTR_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_HOMESTUDENTR_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_HOMESTUDENTR_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_HOMESTUDENTR_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_HOMESTUDENTR_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_HOMESTUDENTR_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_HOMESTUDENTR_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{914E1AB1-DCA0-4A7D-935F-B58C4B887A2B}" = HP ProtectTools Security Manager 2.00 C3
"{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}" = InterVideo WinDVD
"{9F7AF7CD-E3D0-4C68-A3BA-C76C359B3AA8}" = LightScribe 1.4.105.1
"{A2C9CD1B-2551-3AED-B244-6698FB929FA6}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - CSY
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A7AD8CEF-72D7-4FE4-8A14-DDD09DC86074}" = HP Notebook Accessories Product Tour
"{A93C4E94-1005-489D-BEAA-B873C1AA6CFC}" = HP Help and Support
"{AB708C9B-97C8-4AC9-899B-DBF226AC9382}" = Sonic Audio Module
"{AC76BA86-7AD7-1029-7B44-A93000000001}" = Adobe Reader 9.3 - Czech
"{AE052EF7-2640-48D7-8915-69B810D975CB}" = HP BIOS Configuration for ProtectTools 2.00 C3
"{B12665F4-4E93-4AB4-B7FC-37053B524629}" = Sonic Copy Module
"{B9F4C05D-E42F-4E9A-A73F-FDD9355319FB}" = HP Credential Manager for ProtectTools
"{BB85ED9C-AFC9-43BD-B8DC-258C3C7DF72E}" = HP Software Update
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{DB518BA6-CB74-4EB6-9ABD-880B6D6E1F38}" = HpSdpAppCoreApp
"{DD73CA82-EA82-38AA-863D-9A24A018DC96}" = Microsoft .NET Framework 3.5 Language Pack SP1 - csy
"{E0DBC47C-ED3F-4A1B-A929-9A26DAAA14B3}" = Application Installer 4.00.B5
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"AVG9Uninstall" = AVG 9.0
"Cool's_Codec_pack_4.12" = Codec Pack - All In 1 6.0.3.0
"ESET Online Scanner" = ESET Online Scanner v3
"Fotolab Fotosvet 3" = Fotolab Fotosvet 3
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"HijackThis" = HijackThis 2.0.2
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack SP1 - csy" = Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"Totalcmd" = Total Commander (Remove or Repair)
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 19.4.2010 11:18:46 | Computer Name = PC257173278573 | Source = Windows Search Service | ID = 3026
Description = Změna stavu doporučení se nezdařila. V systému je pravděpodobně nedostatek
prostředků. Uvolněte prostředky a restartujte službu. Kontext: aplikace Windows,
katalog SystemIndex Podrobnosti: Služba indexu obsahu byla zastavena. (0x80041812)

Error - 19.4.2010 11:18:46 | Computer Name = PC257173278573 | Source = Windows Search Service | ID = 3026
Description = Změna stavu doporučení se nezdařila. V systému je pravděpodobně nedostatek
prostředků. Uvolněte prostředky a restartujte službu. Kontext: aplikace Windows,
katalog SystemIndex Podrobnosti: Služba indexu obsahu byla zastavena. (0x80041812)

Error - 19.4.2010 11:18:46 | Computer Name = PC257173278573 | Source = Windows Search Service | ID = 3026
Description = Změna stavu doporučení se nezdařila. V systému je pravděpodobně nedostatek
prostředků. Uvolněte prostředky a restartujte službu. Kontext: aplikace Windows,
katalog SystemIndex Podrobnosti: Služba indexu obsahu byla zastavena. (0x80041812)

Error - 19.4.2010 11:18:46 | Computer Name = PC257173278573 | Source = Windows Search Service | ID = 3026
Description = Změna stavu doporučení se nezdařila. V systému je pravděpodobně nedostatek
prostředků. Uvolněte prostředky a restartujte službu. Kontext: aplikace Windows,
katalog SystemIndex Podrobnosti: Služba indexu obsahu byla zastavena. (0x80041812)

Error - 19.4.2010 11:18:46 | Computer Name = PC257173278573 | Source = Windows Search Service | ID = 3026
Description = Změna stavu doporučení se nezdařila. V systému je pravděpodobně nedostatek
prostředků. Uvolněte prostředky a restartujte službu. Kontext: aplikace Windows,
katalog SystemIndex Podrobnosti: Služba indexu obsahu byla zastavena. (0x80041812)

Error - 19.4.2010 11:19:13 | Computer Name = PC257173278573 | Source = Windows Search Service | ID = 3024
Description = Aktualizaci nelze spustit, protože zdroje obsahu jsou nepřístupné.
Opravte chyby a spusťte aktualizaci znovu. Kontext: aplikace Windows, katalog SystemIndex

Error - 20.4.2010 10:13:29 | Computer Name = PC257173278573 | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace OTL.exe, verze 3.2.1.3, zablokovaný modul hungapp,
verze 0.0.0.0, adresa bloku 0x00000000.

Error - 20.4.2010 10:29:23 | Computer Name = PC257173278573 | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace OTL.exe, verze 3.2.1.3, zablokovaný modul hungapp,
verze 0.0.0.0, adresa bloku 0x00000000.

Error - 20.4.2010 10:57:15 | Computer Name = PC257173278573 | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace OTL.exe, verze 3.2.1.3, zablokovaný modul hungapp,
verze 0.0.0.0, adresa bloku 0x00000000.

Error - 23.4.2010 3:17:03 | Computer Name = PC257173278573 | Source = Application Error | ID = 1000
Description = Chybující aplikace pev.exe, verze 0.0.0.0, chybující modul unknown,
verze 0.0.0.0, adresa chyby 0x003e4353.

[ System Events ]
Error - 22.4.2010 7:08:36 | Computer Name = PC257173278573 | Source = PSched | ID = 14103
Description = Služba QoS [Adaptér {EBFA38E9-2AE9-40C0-9A62-E67119E95C83}]: Ovladači
síťové karty se nezdařil dotaz na OID_GEN_LINK_SPEED.

Error - 22.4.2010 7:09:54 | Computer Name = PC257173278573 | Source = atapi | ID = 262153
Description = Zařízení \Device\Ide\IdePort0 neodpovídá v periodě časového limitu.

Error - 22.4.2010 7:40:38 | Computer Name = PC257173278573 | Source = PSched | ID = 14103
Description = Služba QoS [Adaptér {EBFA38E9-2AE9-40C0-9A62-E67119E95C83}]: Ovladači
síťové karty se nezdařil dotaz na OID_GEN_LINK_SPEED.

Error - 22.4.2010 9:03:48 | Computer Name = PC257173278573 | Source = Service Control Manager | ID = 7034
Description = Služba Agere Modem Call Progress Audio byla neočekávaně ukončena.
Tento stav nastal již 1krát.

Error - 22.4.2010 9:03:49 | Computer Name = PC257173278573 | Source = Service Control Manager | ID = 7031
Description = Služba AVG WatchDog byla nečekaně ukončena. Stalo se to 1 krát. Následující
opravná akce bude spuštěna za 0 milisekund: Restartovat službu.

Error - 22.4.2010 9:03:49 | Computer Name = PC257173278573 | Source = Service Control Manager | ID = 7034
Description = Služba LightScribeService Direct Disc Labeling Service byla neočekávaně
ukončena. Tento stav nastal již 1krát.

Error - 22.4.2010 9:03:49 | Computer Name = PC257173278573 | Source = Service Control Manager | ID = 7031
Description = Služba Bluetooth Service byla nečekaně ukončena. Stalo se to 1 krát.
Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error - 22.4.2010 9:03:49 | Computer Name = PC257173278573 | Source = Service Control Manager | ID = 7034
Description = Služba hpqwmiex byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error - 23.4.2010 3:12:30 | Computer Name = PC257173278573 | Source = Service Control Manager | ID = 7031
Description = Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena.
Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund:
Restartovat službu.

Error - 23.4.2010 3:15:41 | Computer Name = PC257173278573 | Source = Service Control Manager | ID = 7031
Description = Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena.
Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund:
Restartovat službu.

< End of report >

#19 Příspěvek od **Caroprd111** » 23 dub 2010 13:47

Spusťte OTL a do spodního okna vložte následující skript.

Kód: Vybrat vše

:OTL
DRV - File not found [Kernel | On_Demand | Running] -- -- (catchme)
[1 C:\Documents and Settings\Olga Gajdová\Dokumenty\*.tmp files -> C:\Documents and Settings\Olga Gajdová\Dokumenty\*.tmp -> ]
[2010.04.18 10:32:33 | 000,000,837 | RHS- | M] () -- C:\WINDOWS\System32\autorun.i
[2010.04.18 10:32:33 | 000,000,368 | RHS- | M] () -- C:\WINDOWS\System32\autorun.in
@Alternate Data Stream - 88 bytes -> C:\Documents and Settings\Olga Gajdová\Plocha\Magda a Martin Fotokniha.mcf:SummaryInformation

:Commands
[PURITY] 
[EMPTYTEMP] 
[EMPTYFLASH]
[CLEARALLRESTOREPOINTS]
[CREATERESTOREPOINT]

Poté klikněte na Opravit, PC se restartuje, log vložte sem.

cpt · #20 Příspěvek od **cpt** » 23 dub 2010 14:01

All processes killed
========== OTL ==========
Service catchme stopped successfully!
Service catchme deleted successfully!
C:\Documents and Settings\Olga Gajdová\Dokumenty\~WRL0004.tmp deleted successfully.
C:\Windows\system32\autorun.i moved successfully.
C:\Windows\system32\autorun.in moved successfully.
ADS C:\Documents and Settings\Olga Gajdová\Plocha\Magda a Martin Fotokniha.mcf:SummaryInformation deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32902 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Olga Gajdová
->Temp folder emptied: 100791 bytes
->Temporary Internet Files folder emptied: 5778813 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 6,00 mb

[EMPTYFLASH]

User: All Users

User: Default User

User: LocalService

User: NetworkService

User: Olga Gajdová

Total Flash Files Cleaned = 0,00 mb

Restore points cleared and new OTL Restore Point set!
Error starting restore point: System Restore is disabled.
Error closing restore point: System Restore is disabled.

OTL by OldTimer - Version 3.2.1.3 log created on 04232010_145735

Files\Folders moved on Reboot...
File\Folder C:\Documents and Settings\Olga Gajdová\Local Settings\Temp\~DFA9B8.tmp not found!
File\Folder C:\Documents and Settings\Olga Gajdová\Local Settings\Temp\~DFA9C5.tmp not found!
File\Folder C:\Documents and Settings\Olga Gajdová\Local Settings\Temp\~DFAA1F.tmp not found!
File\Folder C:\Documents and Settings\Olga Gajdová\Local Settings\Temp\~DFAA66.tmp not found!
File\Folder C:\Documents and Settings\Olga Gajdová\Local Settings\Temp\~DFAA9A.tmp not found!
File\Folder C:\Documents and Settings\Olga Gajdová\Local Settings\Temp\~DFAAA7.tmp not found!
C:\Documents and Settings\Olga Gajdová\Local Settings\Temporary Internet Files\Content.IE5\0U3WWJON\afr[1].htm moved successfully.
C:\Documents and Settings\Olga Gajdová\Local Settings\Temporary Internet Files\Content.IE5\0U3WWJON\viewtopic[1].htm moved successfully.
C:\Documents and Settings\Olga Gajdová\Local Settings\Temporary Internet Files\AntiPhishing\2CEDBFBC-DBA8-43AA-B1FD-CC8E6316E3E2.dat moved successfully.

Registry entries deleted on Reboot...

#21 Příspěvek od **Caroprd111** » 23 dub 2010 14:31

Jak to vypadá s PC

VIRY.CZ

viry, trojany

Re: viry, trojany

Re: viry, trojany

Re: viry, trojany

Re: viry, trojany

Re: viry, trojany

Re: viry, trojany