Zpomalený pc, prosím o kontrolu logu

[Svitiplyn]

Logfile of random's system information tool 1.08 (written by random/random)
Run by Martin at 2011-03-05 15:56:48
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 147 GB (48%) free of 305 GB
Total RAM: 3070 MB (74% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:56:56, on 5.3.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Alwil Software\Avast5\avastUI.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\DivX\DivX Plus Web Player\DDmService.exe
C:\WINDOWS\vsnpstd.exe
C:\Program Files\Microsoft Games\Age Of Empires ii\Config.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\EXPERTool\TBPanel.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\QIP\qip.exe
C:\Documents and Settings\Martin\Local Settings\Data aplikací\TeamSpeak 3 Client\ts3client_win32.exe
C:\Program Files\Xfire\Xfire.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Hamachi\hamachi.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Documents and Settings\Martin\Plocha\RSIT.exe
C:\Program Files\trend micro\Martin.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://downloads.phpnuke.org/en/index.php?rvs=google
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://downloads.phpnuke.org/en/index.php?rvs=google
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://downloads.phpnuke.org/en/index.php?rvs=google
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://downloads.phpnuke.org/en/index.php?rvs=google
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = wmplayer.exe //ICWLaunch
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O1 - Hosts: 5.116.108.29 pes09pcgate-e.winning-eleven.net
O1 - Hosts: 5.116.108.29 pes2009web.winning-eleven.net
O1 - Hosts: stun.xten.com pes7stun-e.winning-eleven.net
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: Use the DivX Plus Web Player to watch web videos with less interruptions and smoother playback on supported sites - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: (no name) - {D5D47440-0750-463D-BAEF-A47D02414806} - (no file)
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe /installquiet
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [DivX Download Manager] "C:\Program Files\DivX\DivX Plus Web Player\DDmService.exe" start
O4 - HKLM\..\Run: [snpstd] C:\WINDOWS\vsnpstd.exe
O4 - HKLM\..\Run: [Config] C:\Program Files\Microsoft Games\Age Of Empires ii\Config.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [GAINWARD] C:\Program Files\EXPERTool\TBPanel.exe /A
O4 - HKCU\..\Run: [SpywareTerminatorUpdate] "C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe"
O4 - HKCU\..\Run: [EPSON Stylus DX8400 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATICEE.EXE /FU "C:\WINDOWS\TEMP\E_SDB.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Martin\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: (no name) - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: (no name) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe

--
End of file - 8439 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-583907252-1220945662-682003330-1003Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-583907252-1220945662-682003330-1003UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2005-09-24 63136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2010-12-08 3123072]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{593DDEC6-7468-4cdd-90E1-42DADAA222E9}]
DivX HiQ - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2010-12-08 3123072]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-12-23 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-12-23 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{D5D47440-0750-463D-BAEF-A47D02414806}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-10-16 16855552]
"SkyTel"=C:\WINDOWS\SkyTel.EXE [2007-10-11 1826816]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"avast5"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2011-01-13 3396624]
"SpywareTerminator"=C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2010-12-23 2216960]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2010-10-16 110696]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2010-10-16 13851752]
"nwiz"=C:\Program Files\NVIDIA Corporation\nView\nwiz.exe [2010-08-26 1753192]
"DivXUpdate"=C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2010-12-09 1226608]
"DivX Download Manager"=C:\Program Files\DivX\DivX Plus Web Player\DDmService.exe [2010-12-08 63360]
"snpstd"=C:\WINDOWS\vsnpstd.exe [2004-06-10 286720]
"Config"=C:\Program Files\Microsoft Games\Age Of Empires ii\Config.exe [2006-07-06 151552]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"GAINWARD"=C:\Program Files\EXPERTool\TBPanel.exe [2008-10-21 2177576]
"SpywareTerminatorUpdate"=C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [2010-12-23 3318784]
"EPSON Stylus DX8400 Series"=C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATICEE.EXE [2007-04-12 182272]
"Google Update"=C:\Documents and Settings\Martin\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2011-02-09 136176]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableStatusMessages"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"ForceClassicControlPanel"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\QIP 2010\qip.exe"="C:\Program Files\QIP 2010\qip.exe:*:Enabled:QIP 2010"
"C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe"="C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe:*:Enabled:Spyware Terminator Update Support"
"C:\Program Files\Microsoft Office\Office14\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office14\ONENOTE.EXE:*:Enabled:Microsoft OneNote"
"C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\QIP\qip.exe"="C:\Program Files\QIP\qip.exe:*:Enabled:Quiet Internet Pager"
"C:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe"="C:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
"C:\Program Files\Xfire\Xfire.exe"="C:\Program Files\Xfire\Xfire.exe:*:Enabled:Xfire"
"C:\Program Files\EA Sports\FIFA 11\Game\fifa.exe"="C:\Program Files\EA Sports\FIFA 11\Game\fifa.exe:*:Enabled:FIFA 11"
"C:\Documents and Settings\Martin\Data aplikací\GameRanger\GameRanger\GameRanger.exe"="C:\Documents and Settings\Martin\Data aplikací\GameRanger\GameRanger\GameRanger.exe:*:Enabled:GameRanger"
"C:\WINDOWS\system32\winmine.exe"="C:\WINDOWS\system32\winmine.exe:*:Enabled:Hledání min"
"C:\Program Files\Hamachi\hamachi.exe"="C:\Program Files\Hamachi\hamachi.exe:*:Enabled:Hamachi"
"C:\Program Files\Warcraft III\war3.exe"="C:\Program Files\Warcraft III\war3.exe:*:Enabled:war3"
"C:\Program Files\KONAMI\Pro Evolution Soccer 2011\pes2011.exe"="C:\Program Files\KONAMI\Pro Evolution Soccer 2011\pes2011.exe:*:Enabled:Pro Evolution Soccer 2011"
"C:\Program Files\Bohemia Interactive\ArmA 2\arma2.exe"="C:\Program Files\Bohemia Interactive\ArmA 2\arma2.exe:*:Enabled:ArmA 2"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\SopCast\adv\SopAdver.exe"="C:\Program Files\SopCast\adv\SopAdver.exe:*:Enabled:SopCast Adver"
"C:\Program Files\SopCast\SopCast.exe"="C:\Program Files\SopCast\SopCast.exe:*:Enabled:SopCast Main Application"
"C:\Program Files\Electronic Arts\Battlefield Bad Company 2\BFBC2Updater.exe"="C:\Program Files\Electronic Arts\Battlefield Bad Company 2\BFBC2Updater.exe:*:Enabled:Battlefield: Bad Company™ 2"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\MARTIN\Age of Empires 2 + Conquerors [CZ] - no instal, full, no pass [medigen]\aoe2\age2_x1.exe"="C:\MARTIN\Age of Empires 2 + Conquerors [CZ] - no instal, full, no pass [medigen]\aoe2\age2_x1.exe:*:Enabled:Age of Empires II Expansion"
"C:\WINDOWS\system32\dplaysvr.exe"="C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper"
"C:\MARTIN\Age of Empires 2 + Conquerors [CZ] - no instal, full, no pass [medigen]\aoe2\empires2.exe"="C:\MARTIN\Age of Empires 2 + Conquerors [CZ] - no instal, full, no pass [medigen]\aoe2\empires2.exe:*:Enabled:Age of Empires II"
"C:\MARTIN\Age of Empires 2 + Conquerors [CZ] - no instal, full, no pass\aoe2\age2_x1.exe"="C:\MARTIN\Age of Empires 2 + Conquerors [CZ] - no instal, full, no pass\aoe2\age2_x1.exe:*:Enabled:Age of Empires II Expansion"
"C:\MARTIN\aoe2\age2_x1.exe"="C:\MARTIN\aoe2\age2_x1.exe:*:Enabled:Age of Empires II Expansion"
"C:\Program Files\Age of Empires II\aoe2\age2_x1.exe"="C:\Program Files\Age of Empires II\aoe2\age2_x1.exe:*:Enabled:Age of Empires II Expansion"
"C:\Program Files\Microsoft Games\Age of Empires II\Age2_x1\Age2_x1.exe"="C:\Program Files\Microsoft Games\Age of Empires II\Age2_x1\Age2_x1.exe:*:Enabled:Age of Empires II Expansion"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======List of files/folders created in the last 1 months======

2011-03-05 15:56:48 ----D---- C:\rsit
2011-03-05 15:56:48 ----D---- C:\Program Files\trend micro
2011-03-04 16:30:03 ----D---- C:\Program Files\Microsoft Games
2011-03-02 18:00:50 ----D---- C:\Program Files\Common Files\Skype
2011-03-01 14:15:40 ----D---- C:\OscarData
2011-03-01 14:12:24 ----D---- C:\Oscar
2011-02-28 21:47:43 ----A---- C:\WINDOWS\ODBC.INI
2011-02-27 14:03:08 ----D---- C:\Program Files\OSCAR Editor X7
2011-02-27 13:48:54 ----D---- C:\Program Files\OscarX7
2011-02-27 13:35:18 ----A---- C:\WINDOWS\system32\drivers\Amusbprt.sys
2011-02-27 13:35:18 ----A---- C:\WINDOWS\system32\drivers\Amps2prt.sys
2011-02-27 13:35:18 ----A---- C:\WINDOWS\system32\drivers\Amfilter.sys
2011-02-26 12:17:21 ----A---- C:\WINDOWS\system32\pbsvc_bc2.exe
2011-02-26 12:08:25 ----D---- C:\Program Files\Electronic Arts
2011-02-26 12:08:23 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2011-02-26 12:08:22 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2011-02-26 12:08:21 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2011-02-26 12:08:20 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2011-02-26 12:08:20 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2011-02-26 02:19:32 ----A---- C:\WINDOWS\system32\xfcodec.dll
2011-02-25 21:55:19 ----A---- C:\WINDOWS\system32\drivers\wdcsam.sys
2011-02-25 21:55:18 ----D---- C:\Program Files\Western Digital
2011-02-24 21:00:42 ----A---- C:\WINDOWS\system32\drivers\MSTEE.sys
2011-02-24 21:00:38 ----A---- C:\WINDOWS\system32\drivers\NdisIP.sys
2011-02-24 21:00:37 ----A---- C:\WINDOWS\system32\drivers\StreamIP.sys
2011-02-24 21:00:35 ----A---- C:\WINDOWS\system32\drivers\SLIP.sys
2011-02-24 21:00:32 ----A---- C:\WINDOWS\system32\drivers\WSTCODEC.SYS
2011-02-24 21:00:30 ----A---- C:\WINDOWS\system32\drivers\NABTSFEC.sys
2011-02-24 21:00:28 ----A---- C:\WINDOWS\system32\drivers\CCDECODE.sys
2011-02-24 21:00:22 ----A---- C:\WINDOWS\system32\vfwwdm32.dll
2011-02-24 20:55:44 ----D---- C:\WINDOWS\Album
2011-02-24 20:55:44 ----D---- C:\Program Files\KYE
2011-02-24 20:55:31 ----A---- C:\WINDOWS\vsnpstd.exe
2011-02-24 20:55:31 ----A---- C:\WINDOWS\system32\unicows.dll
2011-02-24 20:55:31 ----A---- C:\WINDOWS\system32\dsnpstd.dll
2011-02-24 20:55:31 ----A---- C:\WINDOWS\snpstd.ini
2011-02-24 20:55:28 ----A---- C:\WINDOWS\system32\drivers\snpstd.sys
2011-02-24 20:55:26 ----A---- C:\WINDOWS\system32\vsnpstd.dll
2011-02-24 20:55:26 ----A---- C:\WINDOWS\system32\rsnpstd.dll
2011-02-24 20:55:26 ----A---- C:\WINDOWS\system32\csnpstd.dll
2011-02-24 20:55:24 ----D---- C:\Program Files\Common Files\snpstd
2011-02-24 20:55:24 ----A---- C:\WINDOWS\usnpstd.exe
2011-02-24 20:11:22 ----A---- C:\WINDOWS\amcap.exe
2011-02-21 00:28:46 ----D---- C:\Documents and Settings\Martin\Data aplikací\AVS4YOU
2011-02-21 00:27:29 ----A---- C:\WINDOWS\system32\libmfxsw32.dll
2011-02-21 00:27:28 ----A---- C:\WINDOWS\system32\libmfxhw32.dll
2011-02-21 00:27:11 ----D---- C:\Program Files\Common Files\AVSMedia
2011-02-21 00:26:54 ----D---- C:\Program Files\AVS4YOU
2011-02-21 00:26:54 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVS4YOU
2011-02-21 00:26:54 ----A---- C:\WINDOWS\system32\msxml3a.dll
2011-02-21 00:26:54 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2011-02-20 17:55:35 ----D---- C:\Documents and Settings\Martin\Data aplikací\.minecraft
2011-02-15 17:52:21 ----D---- C:\Program Files\Microsoft Silverlight
2011-02-10 07:21:24 ----D---- C:\Documents and Settings\Martin\Data aplikací\AdobeUM

======List of files/folders modified in the last 1 months======

2011-03-05 15:56:48 ----RD---- C:\Program Files
2011-03-05 15:32:34 ----D---- C:\Documents and Settings\Martin\Data aplikací\Xfire
2011-03-05 15:28:10 ----A---- C:\WINDOWS\system32\PnkBstrB.exe
2011-03-05 15:27:19 ----D---- C:\WINDOWS\Temp
2011-03-05 15:23:09 ----RD---- C:\MARTIN
2011-03-05 15:01:25 ----D---- C:\Documents and Settings\Martin\Data aplikací\Hamachi
2011-03-05 14:08:26 ----D---- C:\WINDOWS\system32\CatRoot2
2011-03-05 11:33:02 ----D---- C:\Program Files\Mozilla Firefox
2011-03-05 00:36:24 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-03-05 00:09:06 ----D---- C:\Documents and Settings\Martin\Data aplikací\Skype
2011-03-05 00:03:06 ----D---- C:\Documents and Settings\Martin\Data aplikací\skypePM
2011-03-04 16:30:23 ----RSD---- C:\WINDOWS\Fonts
2011-03-04 15:56:43 ----SHD---- C:\WINDOWS\Installer
2011-03-04 15:14:36 ----RD---- C:\Program Files\Skype
2011-03-04 13:34:05 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
2011-03-03 23:41:57 ----SHD---- C:\WINDOWS\CSC
2011-03-03 14:43:14 ----D---- C:\Program Files\Xfire
2011-03-03 14:25:20 ----D---- C:\Program Files\OSCAR Editor
2011-03-02 21:11:57 ----D---- C:\WINDOWS\Prefetch
2011-03-02 21:11:05 ----HD---- C:\WINDOWS\inf
2011-03-02 21:08:24 ----HD---- C:\Program Files\InstallShield Installation Information
2011-03-02 21:06:46 ----D---- C:\WINDOWS\system32
2011-03-02 19:07:07 ----D---- C:\Documents and Settings\Martin\Data aplikací\Spyware Terminator
2011-03-02 18:00:50 ----D---- C:\Program Files\Common Files
2011-03-02 14:54:04 ----A---- C:\WINDOWS\NeroDigital.ini
2011-02-28 21:48:10 ----SD---- C:\Documents and Settings\Martin\Data aplikací\Microsoft
2011-02-28 21:47:43 ----D---- C:\WINDOWS
2011-02-28 21:47:14 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-02-28 21:47:12 ----D---- C:\WINDOWS\SHELLNEW
2011-02-28 21:46:26 ----D---- C:\Program Files\Microsoft Office
2011-02-28 21:45:21 ----D---- C:\WINDOWS\system
2011-02-28 21:43:02 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2011-02-28 21:41:08 ----D---- C:\Program Files\Common Files\System
2011-02-28 21:41:07 ----A---- C:\WINDOWS\win.ini
2011-02-26 12:17:21 ----A---- C:\WINDOWS\system32\PnkBstrA.exe
2011-02-26 12:08:25 ----D---- C:\WINDOWS\system32\DirectX
2011-02-26 12:07:59 ----RSD---- C:\WINDOWS\assembly
2011-02-25 21:55:29 ----D---- C:\WINDOWS\system32\drivers
2011-02-25 21:55:19 ----DC---- C:\WINDOWS\system32\DRVSTORE
2011-02-24 21:00:47 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-02-24 20:55:48 ----D---- C:\WINDOWS\system32\CatRoot
2011-02-24 20:55:31 ----D---- C:\WINDOWS\twain_32
2011-02-24 20:09:08 ----D---- C:\Program Files\Common Files\InstallShield
2011-02-21 00:27:09 ----D---- C:\WINDOWS\WinSxS
2011-02-17 19:24:00 ----D---- C:\Program Files\Spyware Terminator
2011-02-15 17:52:38 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2011-02-15 16:40:13 ----D---- C:\Program Files\GamePark
2011-02-09 17:33:15 ----SD---- C:\WINDOWS\Tasks

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI VIA; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2010-07-12 45648]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-12-23 691696]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2011-01-13 29392]
R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-07-01 43008]
R1 Amfilter;A4Tech Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\Amfilter.sys [2007-05-15 9216]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2011-01-13 23632]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2011-01-13 294608]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2011-01-13 47440]
R1 BIOS;BIOS; \??\C:\WINDOWS\system32\drivers\BIOS.sys []
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2011-01-13 17744]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2011-01-13 100176]
R2 TBPanel;TBPanel; C:\WINDOWS\system32\drivers\TBPanel.sys [2007-03-16 12256]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 DynCal;Dynamic Calibration Service; C:\WINDOWS\system32\drivers\Dyncal.sys [2007-11-07 12928]
R3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2010-12-25 17480]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-10-16 4615168]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2010-10-22 9623680]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2007-06-28 45824]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2007-06-28 20480]
R3 PnkBstrK;PnkBstrK; \??\C:\WINDOWS\system32\drivers\PnkBstrK.sys []
S3 Amusbprt;A4Tech HID-compliant Mouse Driver; C:\WINDOWS\system32\DRIVERS\Amusbprt.sys [2007-05-15 14336]
S3 aw8whz3i;aw8whz3i; C:\WINDOWS\system32\drivers\aw8whz3i.sys []
S3 Cardex;Cardex; \??\C:\WINDOWS\system32\drivers\TBPANEL.SYS []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 snpstd;VideoCAM Messenger; C:\WINDOWS\system32\DRIVERS\snpstd.sys [2004-06-25 331008]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\WINDOWS\system32\DRIVERS\wdcsam.sys [2009-02-13 11520]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-01-13 40384]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-12-23 153376]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2010-10-16 156776]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2011-02-26 75064]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2011-03-05 214520]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files\Spyware Terminator\sp_rsser.exe [2010-12-23 496128]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]

-----------------EOF-----------------









info.txt logfile of random's system information tool 1.08 2011-03-05 15:57:05

======Uninstall list======

-->MsiExec /X{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10m_Plugin.exe -maintain plugin
Adobe Reader 7.0.5 - Czech-->MsiExec.exe /I{AC76BA86-7AD7-1029-7B44-A70500000002}
Age of Empires II - The Conquerors - 1.0e Patch FINAL-->"C:\Program Files\Age of Empires II\aoe2\unins000.exe"
Age Of Empires II(All in One)-->"C:\Program Files\Microsoft Games\uninstall.exe"
ArmA 2 Uninstall-->C:\Program files\Bohemia Interactive\ArmA 2\UnInstall.exe
avast! Free Antivirus-->C:\Program Files\Alwil Software\Avast5\aswRunDll.exe "C:\Program Files\Alwil Software\Avast5\Setup\setiface.dll" RunSetup
AVS Update Manager 1.0-->"C:\Program Files\AVS4YOU\AVSUpdateManager\unins000.exe"
AVS Video Converter 7-->"C:\Program Files\AVS4YOU\AVSVideoConverter\unins000.exe"
AVS4YOU Software Navigator 1.4-->"C:\Program Files\AVS4YOU\AVSSoftwareNavigator\unins000.exe"
Balíček ovladače systému Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)-->C:\PROGRA~1\DIFX\7B44739871F4D539FA473F57A832EA4B6A59EF06\DPInst.exe /d /u C:\WINDOWS\system32\DRVSTORE\amdk8_272AB57A055A98BD494E3A7FDA0E8216ECE25347\amdk8.inf
Call of Duty(R) 2 Patch 1.3-->C:\Program Files\Activision\Call of Duty 2\Uninst_Call of Duty(R) 2 Patch 1.3.exe /U "C:\Program Files\Activision\Call of Duty 2\Uninst_Call of Duty(R) 2 Patch 1.3.log"
Call Of Duty(R) 2-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{DBECFA83-42DC-4585-A970-A764AB01A956}\setup.exe" -l0x5
DivX Setup-->C:\Documents and Settings\All Users\Data aplikací\DivX\Setup\DivXSetup.exe /uninstall /bundleGroupId divx.com
EPSON Scan-->C:\Program Files\epson\escndv\setup\setup.exe /r
EXPERTool 6.7-->"C:\Program Files\EXPERTool\unins000.exe"
FIFA 11-->MsiExec.exe /X{3FEA6CD1-EA13-4CE7-A74E-A74A4A0A7B5C}
Flashpoint uninstall-->C:\Program Files\Codemasters\UnInstall.exe
GamePark-->"C:\Program Files\GamePark\unins000.exe"
Hamachi 1.0.1.5-->C:\Program Files\Hamachi\uninstall.exe
IrfanView (remove only)-->C:\Program Files\IrfanView\iv_uninstall.exe
Java(TM) 6 Update 22-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216022F0}
Java(TM) 6 Update 23-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216023FF}
Java(TM) 6 Update 4-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160040}
K-Lite Codec Pack 3.9.0 Full-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
Microsoft Office Excel MUI (Czech) 2010-->MsiExec.exe /X{90140000-0016-0405-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (Czech) 2010-->MsiExec.exe /X{90140000-0018-0405-0000-0000000FF1CE}
Microsoft Office Professional 2010-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\setup.exe" /uninstall SINGLEIMAGE /dll OSETUP.DLL
Microsoft Office Single Image 2010-->MsiExec.exe /X{90140000-003D-0000-0000-0000000FF1CE}
Microsoft Office XP Professional s aplikací FrontPage-->MsiExec.exe /I{90280405-6000-11D3-8CFE-0050048383C9}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Minecraft 1.2.0_02-->C:\Documents and Settings\Martin\Data aplikací\Uninstal.exe
Mozilla Firefox (3.6.15)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
Nero 6 Ultra Edition-->C:\Program Files\Ahead\nero\uninstall\UNNERO.exe /UNINSTALL
NVIDIA Drivers-->C:\WINDOWS\system32\NVUNINST.EXE UninstallGUI
NVIDIA nView 135.36-->"C:\WINDOWS\system32\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.0\NVI2.DLL",UninstallPackage Display.NView
NVIDIA nView Desktop Manager-->C:\Program Files\NVIDIA Corporation\nView\nViewSetup.exe -uninstall
NVIDIA Ovladače grafiky 260.99-->"C:\WINDOWS\system32\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.0\NVI2.DLL",UninstallPackage Display.Driver
NVIDIA PhysX-->MsiExec.exe /X{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}
NVIDIA Systémový software PhysX 9.10.0514-->"C:\WINDOWS\system32\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.0\NVI2.DLL",UninstallPackage Display.PhysX
OSCAR Editor-->C:\Program Files\InstallShield Installation Information\{21FFDD40-F6B9-4609-B1C9-514E0A342BFA}\setup.exe -runfromtemp -l0x0409
Pro Evolution Soccer 2011-->MsiExec.exe /X{9773450C-E2F3-46C3-9464-1D7EDE5EFB63}
PunkBuster Services-->C:\WINDOWS\system32\pbsvc_bc2.exe -u
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\setup.exe" -l0x5 -removeonly
Seismovision 3 (remove only)-->"C:\Program Files\NuGardt Software\Seismovision 3\uninst_seis3.exe"
SES Driver-->MsiExec.exe /X{0673654C-5296-453B-9798-B61CD7E03FEB}
Skype™ 5.1-->MsiExec.exe /X{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}
Software tiskárny EPSON-->C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\EPUPDATE.EXE /R
SopCast 3.0.3-->C:\Program Files\SopCast\uninst.exe
Spyware Terminator-->"C:\Program Files\Spyware Terminator\unins000.exe"
System Requirements Lab-->C:\Program Files\SystemRequirementsLab\Uninstall.exe
Universal AntiCheat 3 v1.014-->"C:\Program Files\UAC3\unins000.exe"
VC80CRTRedist - 8.0.50727.4053-->MsiExec.exe /I{5EE7D259-D137-4438-9A5F-42F432EC0421}
VibrateGameDeviceDriver-->MsiExec.exe /I{DBB7F606-0C13-4182-AD7F-427A4773580E}
VideoCAM Messenger-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{862546CA-19C6-4D42-A6EB-352820682FA3}\setup.exe" -l0x5
Windows Media Format Runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Player 10-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
WinRAR-->C:\Program Files\WinRAR\uninstall.exe
Xfire (remove only)-->"C:\Program Files\Xfire\uninst.exe"

======Hosts File======

127.0.0.1 localhost
5.116.108.29 pes09pcgate-e.winning-eleven.net
5.116.108.29 pes2009web.winning-eleven.net
stun.xten.com pes7stun-e.winning-eleven.net

======Security center information======

AV: avast! Antivirus

======System event log======

Computer Name: BENO1
Event Code: 6009
Message: Microsoft (R) Windows (R) 5.01. 2600 Service Pack 3 Multiprocessor Free.

Record Number: 2088
Source Name: EventLog
Time Written: 20110116105216.000000+060
Event Type: Informace
User:

Computer Name: BENO1
Event Code: 6006
Message: Služba Event Log byla zastavena.

Record Number: 2087
Source Name: EventLog
Time Written: 20110116021850.000000+060
Event Type: Informace
User:

Computer Name: BENO1
Event Code: 7035
Message: Řídící příkaz Spuštěno byl službě PnkBstrK úspěšně odeslán.

Record Number: 2086
Source Name: Service Control Manager
Time Written: 20110116004455.000000+060
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: BENO1
Event Code: 7035
Message: Řídící příkaz Spuštěno byl službě PnkBstrB úspěšně odeslán.

Record Number: 2085
Source Name: Service Control Manager
Time Written: 20110116004445.000000+060
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: BENO1
Event Code: 7036
Message: Stav služby PnkBstrB byl změněn na: Spuštěno

Record Number: 2084
Source Name: Service Control Manager
Time Written: 20110116004445.000000+060
Event Type: Informace
User:

=====Application event log=====

Computer Name: BENO1
Event Code: 1004
Message: The Software Protection service has successfully installed the license.
License Title=Office 14 Publishing License (Public)
License Id=d5e4270e-7b2a-4efb-9b01-b1f713989446

Record Number: 384
Source Name: Office Software Protection Platform Service
Time Written: 20101223202641.000000+060
Event Type: Informace
User:

Computer Name: BENO1
Event Code: 1004
Message: The Software Protection service has successfully installed the license.
License Title=Office 14 - Product PPD License (Security-SPP-Component-SKU-OfficeProfessionalAcad-Retail)
License Id=c016374f-a12b-8b99-1771-dca0bd144da9

Record Number: 383
Source Name: Office Software Protection Platform Service
Time Written: 20101223202641.000000+060
Event Type: Informace
User:

Computer Name: BENO1
Event Code: 1004
Message: The Software Protection service has successfully installed the license.
License Title=Office 14 UL-OOB License (Private)
License Id=3e66685e-cada-4978-a409-d4c8ea86a5ed

Record Number: 382
Source Name: Office Software Protection Platform Service
Time Written: 20101223202641.000000+060
Event Type: Informace
User:

Computer Name: BENO1
Event Code: 1004
Message: The Software Protection service has successfully installed the license.
License Title=Office 14 UL-OOB License (Public)
License Id=0788dfaa-cf1d-49d0-bc71-e50d6f7dd154

Record Number: 381
Source Name: Office Software Protection Platform Service
Time Written: 20101223202641.000000+060
Event Type: Informace
User:

Computer Name: BENO1
Event Code: 1004
Message: The Software Protection service has successfully installed the license.
License Title=Office 14 UL-PHN License (Private)
License Id=aebc2998-b098-41e8-a45b-dce10fef0420

Record Number: 380
Source Name: Office Software Protection Platform Service
Time Written: 20101223202641.000000+060
Event Type: Informace
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=C:\Program Files\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 107 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=6b02
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP

-----------------EOF-----------------

děkuji

[Rudy]

Nic nebezpečného není vidět. Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.

[Svitiplyn]

nedávno jsem reinstaloval pc, tak možná by to tu chtělo jenom nějak uklidit ccleanem a nebo nemám doinstalované nějaké ovladače, ale prostě se mi ten pc nějak nezdá... právě dělám tu kontrolu mbmamem tak za chvíli to tu hodím

[Svitiplyn]

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Verze databáze: 5977

Windows 5.1.2600 Service Pack 3
Internet Explorer 6.0.2900.5512

7.3.2011 10:40:39
mbam-log-2011-03-07 (10-40-34).txt

Typ kontroly: Úplný test (C:\|D:\|E:\|F:\|)
Testované objekty: 191469
Uplynulý čas: 40 minut, 14 sekund

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 1
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 10

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty v registru:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\ForceClassicControlPanel (Hijack.ControlPanelStyle) -> Value: ForceClassicControlPanel -> No action taken.

Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
f:\downloads\GTA IV\gta.iv.crack\launchgtaiv.exe (Risktool.Crack) -> No action taken.
f:\downloads\TuneUp\ZWT\keygen.exe (Backdoor.RBot) -> No action taken.
f:\system volume information\_restore{19a9541b-cdde-4630-acbb-b87895e4f0f1}\RP96\A0046514.EXE (Dont.Steal.Our.Software) -> No action taken.
f:\system volume information\_restore{19a9541b-cdde-4630-acbb-b87895e4f0f1}\RP96\A0046515.exe (Trojan.Downloader) -> No action taken.
f:\system volume information\_restore{d0a4276a-6d9c-4012-9dd1-409da7937503}\RP3\A0001986.exe (Backdoor.RBot) -> No action taken.
f:\system volume information\_restore{d0a4276a-6d9c-4012-9dd1-409da7937503}\RP3\A0002200.exe (Risktool.Crack) -> No action taken.
f:\system volume information\_restore{d0a4276a-6d9c-4012-9dd1-409da7937503}\RP3\A0002263.EXE (Dont.Steal.Our.Software) -> No action taken.
f:\system volume information\_restore{d0a4276a-6d9c-4012-9dd1-409da7937503}\RP3\A0002264.exe (Trojan.Downloader) -> No action taken.
f:\system volume information\_restore{d0a4276a-6d9c-4012-9dd1-409da7937503}\RP3\A0002495.exe (Trojan.MultiDropper) -> No action taken.
f:\Zaloha\tuneup utilities 2008\ZWT\keygen.exe (Backdoor.RBot) -> No action taken.

[Rudy]

Všechny nalezené položky smažte.

[Svitiplyn]

hotovo

[Rudy]

PC by již měl být čistý.