VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

pc se sám zapíná a další problémy

https://forum.viry.cz:443/viewtopic.php?t=113295

Stránka 1 z 2

pc se sám zapíná a další problémy

Napsal: 19 črc 2011 07:43
od [ACze]miky
Dobrý den,
dneska v noci už po 2. (i včera) se mi sám zapnul počítač. Taky se mi teď často stává, že když jdu na nějakou stránku tak se mi ata stránka přepne na nějakou stránku s reklamou.

Tady je log z RSIT:

Logfile of random's system information tool 1.09 (written by random/random)
Run by matmik at 2011-07-19 08:43:04
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 7 GB (36%) free of 20 GB
Total RAM: 3070 MB (77% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:43:08, on 19.7.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
D:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\svchost.exe
D:\Program Files\CDBurnerXP\NMSAccessU.exe
D:\Program Files\PC Auto Shutdown\ShutdownService.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\UAService7.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\PROGRA~1\COMMON~1\Stardock\SDMCP.exe
C:\WINDOWS\system32\WgaTray.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe
C:\WINDOWS\system32\qttask.exe
D:\Program Files\AVAST Software\Avast\avastUI.exe
D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Documents and Settings\matmik\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\matmik\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\matmik\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\matmik\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\matmik\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\matmik\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\matmik\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\matmik\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\matmik\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\matmik\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\matmik\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
D:\audio svms\RSIT.exe
C:\Program Files\trend micro\matmik.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://paflikkq.info
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://paflikkq.info
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://paflikkq.info
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: (no name) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - (no file)
O1 - Hosts: 178.162.171.49 google-analytics.com
O1 - Hosts: 178.162.171.49 www.google-analytics.com
O1 - Hosts: 178.162.171.49 google-analytics.com
O1 - Hosts: 178.162.171.49 www.google-analytics.com
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: SMTTB2009 - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\HyperCam Toolbar\tbcore3.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\WINDOWS\system32\qttask.exe" -atboottime
O4 - HKLM\..\Run: [StartCCC] "D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [avast] "D:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [PC Auto Shutdown] "D:\Program Files\PC Auto Shutdown\AutoShutdown.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [uTorrent] "D:\Program Files\uTorrent\uTorrent.exe"
O4 - Global Startup: avast! Free Antivirus.lnk = C:\Program Files\Alwil Software\Avast5\AvastUI.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html
O9 - Extra button: (no name) - {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: My kikin - {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - D:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - D:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: HP Chytrý výběr - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://icq.oberon-media.com/Gameshell/G ... meHost.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} (get_atlcom Class) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O20 - AppInit_DLLs: C:\WINDOWS\system32\wbsys.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - AVAST Software - D:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Desura Install Service - Desura Pty Ltd - C:\Program Files\Common Files\Desura\desura_service.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: {2EB1BFFC-297B-46A2-8F0D-AD9CDA4EE1D4} (hhkhlt) - Unknown owner - C:\Program Files\ophcrack\pwdump\servpw.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NMSAccessU - Unknown owner - D:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: PCAutoShutdown_Service - GoldSolution Software, Inc. - D:\Program Files\PC Auto Shutdown\ShutdownService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\system32\UAService7.exe
O23 - Service: Služba Windows Media Player Network Sharing (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10245 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\UpdateCheck.job
C:\WINDOWS\tasks\WGASetup.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\matmik\Data aplikací\Mozilla\Firefox\Profiles\iciim6xk.default

prefs.js - "browser.search.suggest.enabled" - false
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "google.cz"
prefs.js - "extensions.enabledItems" - "ffxtlbr@babylon.com:1.1.3, engine@conduit.com:3.3.3.2, plugin@gameplaylabs.com:1.0, {75656794-AB59-4712-BFBC-5D816D56F3BC}:1.1.6, jqs@sun.com:1.0, {AA994882-F391-4d2e-806F-8908DA4814ED}:2.11.19, {37b1d48c-6e0a-dfe8-8a74-05116b74c806}:4.6.6.3, {20a82645-c095-46ed-80e3-08825760534b}:1.1, {a1e75a0e-4397-4ba8-bb50-e19fb66890f4}:3.3.3.2, {C8431CD2-C25A-45F3-BEA9-A9103C31409A}:1.0, {EBFCD017-BCAD-42C3-9ED5-89DBDFC59171}:1.0.0, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.16"
prefs.js - "keyword.URL" - "http://search.icq.com/search/afe_result ... id=afex&q="

"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"wrc@avast.com"=D:\Program Files\AVAST Software\Avast\WebRep\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\system32\Adobe\Director\np32dsw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@bittorrent.com/BitTorrentDNA]
"Description"=Delivery Network Acceleration by BitTorrent™
"Path"=C:\Program Files\DNA\plugins\npbtdna.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Web Player
"Path"=D:\Program Files\DivX\DivX Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0]
"Description"=DivX® Player Plugin for VOD Content
"Path"=D:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2027]
"Description"=RealMedia Plugin
"Path"=D:\Program Files\ACE Mega CoDecS Pack\SystemS\RealMedia\Browser\plugins\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1040]
"Description"=6.0.12.1040
"Path"=D:\Program Files\ACE Mega CoDecS Pack\SystemS\RealMedia\Browser\plugins\nprpjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll

D:\Program Files\Mozilla Firefox\extensions\
{37b1d48c-6e0a-dfe8-8a74-05116b74c806}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{C8431CD2-C25A-45F3-BEA9-A9103C31409A}

D:\Program Files\Mozilla Firefox\components\
aboutCertError.js
aboutPrivateBrowsing.js
aboutRights.js
aboutRobots.js
aboutSessionRestore.js
browser.xpt
browserdirprovider.dll
brwsrcmp.dll
FeedConverter.js
FeedProcessor.js
FeedWriter.js
fuelApplication.js
jsconsole-clhandler.js
NetworkGeolocationProvider.js
nsAddonRepository.js
nsBadCertHandler.js
nsBlocklistService.js
nsBrowserContentHandler.js
nsBrowserGlue.js
nsContentDispatchChooser.js
nsContentPrefService.js
nsDefaultCLH.js
nsDownloadManagerUI.js
nsExtensionManager.js
nsHandlerService.js
nsHelperAppDlg.js
nsLivemarkService.js
nsLoginInfo.js
nsLoginManager.js
nsLoginManagerPrompter.js
nsMicrosummaryService.js
nsPlacesDBFlush.js
nsPlacesTransactionsService.js
nsPostUpdateWin.js
nsPrivateBrowsingService.js
nsProxyAutoConfig.js
nsSafebrowsingApplication.js
nsSearchService.js
nsSearchSuggestions.js
nsSessionStartup.js
nsSessionStore.js
nsSetDefaultBrowser.js
nsSidebar.js
nsTaggingService.js
nsTryToClose.js
nsUpdateService.js
nsUrlClassifierLib.js
nsUrlClassifierListManager.js
nsURLFormatter.js
nsWebHandlerApp.js
pluginGlue.js
storage-Legacy.js
storage-mozStorage.js
txEXSLTRegExFunctions.js
WebContentConverter.js

D:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npdeploytk.dll
npnul32.dll
NPOFFICE.DLL
nppdf32.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

D:\Program Files\Mozilla Firefox\searchplugins\
avg_igeared.xml
google.xml
jookz.xml
jyxo-cz.xml
mall-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Documents and Settings\matmik\Data aplikací\Mozilla\Firefox\Profiles\iciim6xk.default\extensions\
engine@conduit.com
ffxtlbr@babylon.com
plugin@gameplaylabs.com
{20a82645-c095-46ed-80e3-08825760534b}
{75656794-AB59-4712-BFBC-5D816D56F3BC}
{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}
{AA994882-F391-4d2e-806F-8908DA4814ED}

C:\Documents and Settings\matmik\Data aplikací\Mozilla\Firefox\Profiles\iciim6xk.default\searchplugins\
askcom.xml
conduit.xml
icqplugin-1.xml
icqplugin-2.xml
icqplugin-3.xml
icqplugin-4.xml
icqplugin.xml
Search.xml
sweetim.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2007-11-06 322880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2008-09-23 1088296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2011-06-28 305328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll [2011-06-28 1007160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-04-11 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-04-11 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}]
SMTTB2009 Class - C:\Program Files\HyperCam Toolbar\tbcore3.dll [2010-02-16 2495488]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2007-11-06 542016]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2011-06-28 305328]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"hpqSRMon"=C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe [2007-08-22 80896]
"QuickTime Task"=C:\WINDOWS\system32\qttask.exe [2008-06-29 98304]
"StartCCC"=D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-05-24 98304]
"avast"=D:\Program Files\AVAST Software\Avast\avastUI.exe [2011-07-04 3493720]
"PC Auto Shutdown"=D:\Program Files\PC Auto Shutdown\AutoShutdown.exe [2011-07-03 1431552]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-04-16 68856]
"uTorrent"=D:\Program Files\uTorrent\uTorrent.exe [2011-04-08 399736]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATICustomerCare]
C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe [2010-05-04 311296]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BitTorrent]
D:\Documents and Settings\matmik\Plocha\bittorrent.exe [2007-09-08 43008]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Desura]
D:\Program Files\Desura\desura.exe [2011-06-11 2482496]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FixCamera]
C:\WINDOWS\FixCamera.exe [2007-02-12 20480]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Game Fire]
C:\Program Files\Smart PC Utilities\Game Fire\GFTray.exe [2011-03-08 46592]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Auto Shutdown]
D:\Program Files\PC Auto Shutdown\AutoShutdown.exe [2011-07-03 1431552]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
C:\WINDOWS\RTHDCPL.EXE [2010-12-30 19972712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\snp325]
C:\WINDOWS\vsnp325.exe [2006-10-10 827392]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-04-16 68856]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\tsnp325]
C:\WINDOWS\tsnp325.exe [2006-10-10 270336]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
D:\Program Files\uTorrent\uTorrent.exe [2011-04-08 399736]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^HP Digital Imaging Monitor.lnk]
C:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.exe [2007-10-14 214360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^ImageMixer 3 SE Camera Monitor for SD.lnk]
D:\PROGRA~1\PIXELA\IMAGEM~1\CAMERA~1.EXE [2010-03-30 253952]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^matmik^Nabídka Start^Programy^Po spuštění^BluetoothPCDialer.lnk]
D:\PROGRA~1\BLUETO~1\BLUETO~1.EXE [2005-11-29 266240]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^matmik^Nabídka Start^Programy^Po spuštění^OpenOffice.org 2.3.lnk]
C:\PROGRA~1\OPENOF~1.3\program\QUICKS~1.EXE [2007-09-11 393216]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^matmik^Nabídka Start^Programy^Po spuštění^Xfire.lnk]
D:\PROGRA~1\Xfire\xfire.exe [2011-02-26 3502992]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
avast! Free Antivirus.lnk - C:\Program Files\Alwil Software\Avast5\AvastUI.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\WINDOWS\system32\wbsys.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2011-05-25 188416]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\MCPClient]
C:\PROGRA~1\COMMON~1\Stardock\mcpstub.dll [2005-01-31 49152]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WB]
D:\Program Files\Stardock\Object Desktop\ThemeManager\fastload.dll [2001-12-20 24576]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2006-06-19 312112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
0aMCPClient - {F5DF91F9-15E9-416B-A7C3-7519B11ECBFC} - C:\PROGRA~1\COMMON~1\Stardock\MCPCore.dll [2005-05-10 86016]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLUA"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"D:\Documents and Settings\matmik\Plocha\bittorrent.exe"="D:\Documents and Settings\matmik\Plocha\bittorrent.exe:*:Enabled:BitTorrent"
"C:\Program Files\DNA\btdna.exe"="C:\Program Files\DNA\btdna.exe:*:Enabled:DNA"
"D:\Program Files\Steam\Steam.exe"="D:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Program Files\TeamViewer\Version5\TeamViewer.exe"="C:\Program Files\TeamViewer\Version5\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"D:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe"="D:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:*:Enabled:Rockstar Games Social Club"
"D:\Program Files\uTorrent\uTorrent.exe"="D:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"D:\Program Files\Team JPN\SpiderMan Web of Shadows\image\pc\Spider-Man Web of Shadows.exe"="D:\Program Files\Team JPN\SpiderMan Web of Shadows\image\pc\Spider-Man Web of Shadows.exe:*:Enabled:Spider-Man(R) - Web of Shadows(TM) "
"D:\Program Files\ICQ7.2\ICQ.exe"="D:\Program Files\ICQ7.2\ICQ.exe:*:Enabled:ICQ7.2"
"D:\Program Files\ICQ7.2\aolload.exe"="D:\Program Files\ICQ7.2\aolload.exe:*:Enabled:aolload.exe"
"D:\Program Files\Steam\steamapps\common\zero gear\Server\ZeroGearServer.exe"="D:\Program Files\Steam\steamapps\common\zero gear\Server\ZeroGearServer.exe:*:Enabled:ZeroGearServer"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"D:\Program Files\Valve\csstrike\hl.exe"="D:\Program Files\Valve\csstrike\hl.exe:*:Enabled:Half-Life Launcher"
"D:\Program Files\Electronic Arts\Battlefield Bad Company 2\BFBC2Updater.exe"="D:\Program Files\Electronic Arts\Battlefield Bad Company 2\BFBC2Updater.exe:*:Enabled:Battlefield: Bad Company™ 2"
"D:\Program Files\Xfire\xfire.exe"="D:\Program Files\Xfire\xfire.exe:*:Enabled:Xfire"
"D:\Program Files\Steam\steamapps\common\zero gear\ZeroGear.bat"="D:\Program Files\Steam\steamapps\common\zero gear\ZeroGear.bat:*:Enabled:Zero Gear Demo"
"D:\Program Files\Steam\steamapps\common\aliens vs predator\AvP_Launcher.exe"="D:\Program Files\Steam\steamapps\common\aliens vs predator\AvP_Launcher.exe:*:Enabled:Aliens vs. Predator"
"D:\Program Files\Steam\steamapps\common\aliens vs predator\AvP_DX11.exe"="D:\Program Files\Steam\steamapps\common\aliens vs predator\AvP_DX11.exe:*:Enabled:Aliens vs. Predator"
"D:\Program Files\Steam\steamapps\common\aliens vs predator\AvP.exe"="D:\Program Files\Steam\steamapps\common\aliens vs predator\AvP.exe:*:Enabled:Aliens vs. Predator"
"D:\Program Files\Steam\steamapps\common\aliens vs predator dedicated server\AvP_CLI.exe"="D:\Program Files\Steam\steamapps\common\aliens vs predator dedicated server\AvP_CLI.exe:*:Enabled:Aliens vs Predator Dedicated Server"
"D:\Program Files\Electronic Arts\Crytek\Crysis 2\bin32\Crysis2.exe"="D:\Program Files\Electronic Arts\Crytek\Crysis 2\bin32\Crysis2.exe:*:Enabled:Crysis2"
"D:\Program Files\Steam\steamapps\common\call of duty modern warfare 2\iw4sp.exe"="D:\Program Files\Steam\steamapps\common\call of duty modern warfare 2\iw4sp.exe:*:Enabled:Call of Duty: Modern Warfare 2"
"D:\Program Files\Steam\steamapps\common\call of duty modern warfare 2\iw4mp.exe"="D:\Program Files\Steam\steamapps\common\call of duty modern warfare 2\iw4mp.exe:*:Enabled:Call of Duty: Modern Warfare 2 - Multiplayer"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"D:\Program Files\Mass Effect 2\Binaries\MassEffect2.exe"="D:\Program Files\Mass Effect 2\Binaries\MassEffect2.exe:*:Enabled:Mass Effect 2"
"D:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\GameData\jamp.exe"="D:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\GameData\jamp.exe:*:Enabled:Jedi Academy MultiPlayer"
"D:\Program Files\LucasArts\Star Wars Jedi Knight Jedi Academy\GameData\jamp.exe"="D:\Program Files\LucasArts\Star Wars Jedi Knight Jedi Academy\GameData\jamp.exe:*:Enabled:Jedi Academy MultiPlayer"
"D:\Program Files\LucasArts\Star Wars Jedi Knight Jedi Academy\GameData\EoC-S-EDed.exe"="D:\Program Files\LucasArts\Star Wars Jedi Knight Jedi Academy\GameData\EoC-S-EDed.exe:*:Enabled:Jedi Academy MP Dedicated Server"
"D:\Program Files\LucasArts\Star Wars Battlefront II\GameData\BattlefrontII.exe"="D:\Program Files\LucasArts\Star Wars Battlefront II\GameData\BattlefrontII.exe:*:Enabled:BattlefrontII"
"D:\Program Files\AVG\AVG10\avgmfapx.exe"="D:\Program Files\AVG\AVG10\avgmfapx.exe:*:Enabled:Instalátor AVG"
"D:\Documents and Settings\matmik\Dokumenty\Downloads\Assassins.Creed.Brotherhood.[ENG].RiP.JoeKkerr\Assassins.Creed.Brotherhood.[ENG].RiP.JoeKkerr\ACBSP.exe"="D:\Documents and Settings\matmik\Dokumenty\Downloads\Assassins.Creed.Brotherhood.[ENG].RiP.JoeKkerr\Assassins.Creed.Brotherhood.[ENG].RiP.JoeKkerr\ACBSP.exe:*:Enabled:ACBSP"
"D:\Program Files\UBISOFT\Assassin's Creed\AssassinsCreed_Dx9.exe"="D:\Program Files\UBISOFT\Assassin's Creed\AssassinsCreed_Dx9.exe:*:Enabled:Assassin's Creed Dx9"
"D:\Program Files\UBISOFT\Assassin's Creed\AssassinsCreed_Dx10.exe"="D:\Program Files\UBISOFT\Assassin's Creed\AssassinsCreed_Dx10.exe:*:Enabled:Assassin's Creed Dx10"
"D:\Program Files\UBISOFT\Assassin's Creed\AssassinsCreed_Launcher.exe"="D:\Program Files\UBISOFT\Assassin's Creed\AssassinsCreed_Launcher.exe:*:Enabled:Assassin's Creed Update"
"D:\Program Files\UBISOFT\Far Cry 2\bin\FarCry2.exe"="D:\Program Files\UBISOFT\Far Cry 2\bin\FarCry2.exe:*:Enabled:Far Cry 2"
"D:\Program Files\UBISOFT\Far Cry 2\bin\FC2Launcher.exe"="D:\Program Files\UBISOFT\Far Cry 2\bin\FC2Launcher.exe:*:Enabled:Far Cry 2 Updater"
"D:\Program Files\UBISOFT\Far Cry 2\bin\FC2Editor.exe"="D:\Program Files\UBISOFT\Far Cry 2\bin\FC2Editor.exe:*:Enabled:Editor"
"D:\Program Files\Steam\steamapps\common\bulletstorm demo\Binaries\Win32\ShippingPC-StormGame.exe"="D:\Program Files\Steam\steamapps\common\bulletstorm demo\Binaries\Win32\ShippingPC-StormGame.exe:*:Enabled:Bulletstorm Demo"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"D:\Program Files\ICQ7.2\ICQ.exe"="D:\Program Files\ICQ7.2\ICQ.exe:*:Enabled:ICQ7.2"
"D:\Program Files\ICQ7.2\aolload.exe"="D:\Program Files\ICQ7.2\aolload.exe:*:Enabled:aolload.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=D:\PROGRA~1\ACEMEG~1\SystemS\Intel\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"msacm.lameacm"=D:\PROGRA~1\ACEMEG~1\SystemS\lameacm.acm
"vidc.div3"=D:\PROGRA~1\ACEMEG~1\SystemS\DivX\DivXc32.dll
"vidc.div5"=D:\PROGRA~1\ACEMEG~1\SystemS\DivX\DivXc32.dll
"vidc.mpg3"=D:\PROGRA~1\ACEMEG~1\SystemS\DivX\DivXc32.dll
"vidc.div4"=D:\PROGRA~1\ACEMEG~1\SystemS\DivX\DivXc32f.dll
"vidc.div6"=D:\PROGRA~1\ACEMEG~1\SystemS\DivX\DivXc32f.dll
"vidc.ap41"=D:\PROGRA~1\ACEMEG~1\SystemS\DivX\DivXc32f.dll
"msacm.divxa32"=D:\PROGRA~1\ACEMEG~1\SystemS\DivX\divxa32.acm
"vidc.dv25"=D:\PROGRA~1\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.dv50"=D:\PROGRA~1\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.msmc"=D:\PROGRA~1\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mmjp"=D:\PROGRA~1\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mtx1"=D:\PROGRA~1\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mtx2"=D:\PROGRA~1\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mtx3"=D:\PROGRA~1\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mtx4"=D:\PROGRA~1\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mtx5"=D:\PROGRA~1\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mtx6"=D:\PROGRA~1\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mtx7"=D:\PROGRA~1\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mtx8"=D:\PROGRA~1\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mtx9"=D:\PROGRA~1\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.mmes"=D:\PROGRA~1\ACEMEG~1\SystemS\Matrox\DigiVCap.dll
"vidc.xvid"=D:\PROGRA~1\ACEMEG~1\SystemS\XviD\xvidvfw.dll
"VIDC.XFR1"=xfcodec.dll
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"VIDC.FPS1"=frapsvid.dll
"msacm.lhacm"=lhacm.acm
"msacm.vorbis"=vorbis.acm
"VIDC.CFHD"=CFHD.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======List of files/folders created in the last 1 month======

2011-07-18 12:31:34 ----D---- C:\WINDOWS\8A809006C25A4A3A9DAB94659BCDB107.TMP
2011-07-18 12:31:01 ----SHD---- C:\Config.Msi
2011-07-18 11:54:30 ----HDC---- C:\Documents and Settings\All Users\Data aplikací\{74CA62F1-AA45-46D5-944A-D4996B69B253}
2011-07-18 11:50:42 ----HDC---- C:\Documents and Settings\All Users\Data aplikací\{E3AE4A9C-391C-4205-93BA-8EA0631205F2}
2011-07-17 02:30:14 ----D---- C:\Documents and Settings\All Users\Data aplikací\PC Auto Shutdown
2011-07-15 17:47:51 ----HDC---- C:\WINDOWS\$NtUninstallKB2507938$
2011-07-15 17:43:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2555917$
2011-07-01 17:40:17 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2011-07-01 17:40:17 ----A---- C:\WINDOWS\system32\drivers\aswFsBlk.sys
2011-07-01 17:40:15 ----A---- C:\WINDOWS\system32\drivers\aswTdi.sys
2011-07-01 17:40:15 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2011-07-01 17:40:15 ----A---- C:\WINDOWS\system32\drivers\aswRdr.sys
2011-07-01 17:40:14 ----A---- C:\WINDOWS\system32\drivers\aswmon2.sys
2011-07-01 17:40:14 ----A---- C:\WINDOWS\system32\drivers\aswmon.sys
2011-07-01 17:40:14 ----A---- C:\WINDOWS\system32\drivers\aavmker4.sys
2011-07-01 17:40:03 ----A---- C:\WINDOWS\avastSS.scr
2011-07-01 17:40:02 ----A---- C:\WINDOWS\system32\aswBoot.exe
2011-07-01 17:39:55 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2011-06-30 06:33:27 ----HDC---- C:\WINDOWS\$NtUninstallKB2541763$
2011-06-26 11:19:04 ----D---- C:\WINDOWS\system32\drivers\AVG
2011-06-26 09:59:08 ----D---- C:\Documents and Settings\All Users\Data aplikací\ATI
2011-06-26 09:54:52 ----D---- C:\Program Files\AMD APP
2011-06-26 09:15:54 ----HD---- C:\$AVG
2011-06-26 08:37:31 ----D---- C:\Documents and Settings\matmik\Data aplikací\AVG10
2011-06-26 08:36:27 ----HD---- C:\Documents and Settings\All Users\Data aplikací\Common Files
2011-06-26 08:34:27 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVG10
2011-06-26 08:26:53 ----D---- C:\Documents and Settings\All Users\Data aplikací\MFAData
2011-06-25 18:51:10 ----D---- C:\Program Files\Common Files\ODBC
2011-06-25 14:12:56 ----SD---- C:\ComboFix
2011-06-25 07:25:57 ----SHD---- C:\RECYCLER
2011-06-24 16:51:04 ----A---- C:\ComboFix.txt
2011-06-24 16:32:11 ----D---- C:\WINDOWS\ERDNT
2011-06-23 16:47:06 ----D---- C:\rsit

======List of files/folders modified in the last 1 month======

2011-07-19 08:43:06 ----D---- C:\Program Files\trend micro
2011-07-19 08:39:22 ----D---- C:\Documents and Settings\matmik\Data aplikací\uTorrent
2011-07-19 08:35:25 ----D---- C:\WINDOWS\Temp
2011-07-19 08:35:15 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-07-18 16:49:52 ----D---- C:\WINDOWS\system32\CatRoot2
2011-07-18 16:17:21 ----SHD---- C:\WINDOWS\Installer
2011-07-18 15:40:57 ----AD---- C:\WINDOWS
2011-07-18 15:34:01 ----D---- C:\WINDOWS\system32
2011-07-18 15:33:52 ----DC---- C:\WINDOWS\system32\dllcache
2011-07-18 15:33:46 ----D---- C:\WINDOWS\system32\drivers
2011-07-18 15:33:40 ----D---- C:\WINDOWS\system32\ReinstallBackups
2011-07-18 15:31:19 ----D---- C:\WINDOWS\inf
2011-07-18 14:12:00 ----D---- C:\WINDOWS\WinSxS
2011-07-18 12:33:17 ----D---- C:\Program Files\Microsoft Games for Windows - LIVE
2011-07-18 12:32:11 ----D---- C:\WINDOWS\system32\DirectX
2011-07-18 12:31:32 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2011-07-18 12:31:18 ----DC---- C:\WINDOWS\system32\DRVSTORE
2011-07-18 12:31:08 ----RSH---- C:\boot.ini
2011-07-18 11:46:53 ----D---- C:\WINDOWS\Prefetch
2011-07-18 10:57:29 ----RSD---- C:\WINDOWS\assembly
2011-07-17 11:26:52 ----AC---- C:\WINDOWS\system32\PnkBstrB.exe
2011-07-17 11:26:32 ----AC---- C:\WINDOWS\system32\pbsvc.exe
2011-07-17 11:26:32 ----A---- C:\WINDOWS\system32\PnkBstrA.exe
2011-07-17 11:18:30 ----HD---- C:\Program Files\InstallShield Installation Information
2011-07-17 11:07:18 ----D---- C:\WINDOWS\Minidump
2011-07-17 10:24:29 ----D---- C:\WINDOWS\system32\config
2011-07-16 18:49:30 ----D---- C:\Documents and Settings\matmik\Data aplikací\Adobe
2011-07-16 18:49:30 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2011-07-16 12:16:46 ----D---- C:\WINDOWS\Debug
2011-07-15 17:43:26 ----AC---- C:\WINDOWS\system32\MRT.exe
2011-07-13 18:32:16 ----HD---- C:\WINDOWS\$hf_mig$
2011-07-04 18:12:18 ----D---- C:\Documents and Settings\matmik\Data aplikací\Ubisoft
2011-07-04 17:37:07 ----D---- C:\Documents and Settings\All Users\Data aplikací\Ubisoft
2011-07-04 16:07:02 ----D---- C:\Documents and Settings\matmik\Data aplikací\ICQ
2011-06-29 20:21:38 ----AC---- C:\WINDOWS\NeroDigital.ini
2011-06-28 16:14:52 ----D---- C:\Documents and Settings\All Users\Data aplikací\Solidshield
2011-06-28 06:41:56 ----A---- C:\cmdlog.txt
2011-06-27 19:58:38 ----D---- C:\Documents and Settings\matmik\Data aplikací\Vso
2011-06-26 10:11:00 ----D---- C:\Program Files\AVG
2011-06-26 09:54:52 ----D---- C:\Program Files
2011-06-25 18:52:17 ----AC---- C:\WINDOWS\ODBC.INI
2011-06-25 18:51:38 ----A---- C:\WINDOWS\win.ini
2011-06-25 18:51:10 ----D---- C:\Program Files\Common Files
2011-06-25 18:51:10 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2011-06-25 14:42:57 ----D---- C:\Program Files\Common Files\BioWare
2011-06-25 14:13:50 ----SHD---- C:\System Volume Information
2011-06-25 14:13:50 ----D---- C:\WINDOWS\system32\Restore
2011-06-24 16:44:55 ----A---- C:\WINDOWS\system.ini
2011-06-24 16:39:13 ----D---- C:\WINDOWS\AppPatch
2011-06-24 13:18:55 ----D---- C:\WINDOWS\Microsoft.NET
2011-06-22 21:10:26 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 d347bus;d347bus; C:\WINDOWS\system32\DRIVERS\d347bus.sys [2004-08-22 155136]
R0 d347prt;d347prt; C:\WINDOWS\System32\Drivers\d347prt.sys [2004-08-22 5248]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI VIA; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 PxHelp20;PxHelp20; C:\WINDOWS\system32\DRIVERS\PxHelp20.sys [2007-03-08 43528]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2011-07-04 30808]
R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-07-01 43008]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2011-07-04 25432]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2011-07-04 441176]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2011-07-04 309848]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2011-07-04 43608]
R1 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2009-02-17 24232]
R1 HWiNFO32;HWiNFO32 Kernel Driver; \??\D:\Program Files\HWiNFO32\HWiNFO32.SYS []
R2 Aspi32;Aspi32; C:\WINDOWS\System32\drivers\aspi32.sys [2002-07-17 16877]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2011-07-04 19544]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2011-07-04 102616]
R3 AmdLLD;AMD Low Level Device Driver; C:\WINDOWS\system32\DRIVERS\AmdLLD.sys [2007-06-29 34304]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2011-05-25 6554624]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\AtiHdmi.sys [2009-11-18 95232]
R3 ElbyCDFL;ElbyCDFL; C:\WINDOWS\System32\Drivers\ElbyCDFL.sys [2007-02-16 34760]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2010-12-30 6290024]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2009-03-13 47360]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2006-08-15 83200]
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2009-11-18 1691480]
S3 catchme;catchme; \??\C:\DOCUME~1\matmik\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 CFcatchme;CFcatchme; \??\C:\DOCUME~1\matmik\LOCALS~1\Temp\CFcatchme.sys []
S3 cpuz132;cpuz132; \??\C:\DOCUME~1\matmik\LOCALS~1\Temp\cpuz132\cpuz132_x32.sys []
S3 CrystalSysInfo;CrystalSysInfo; \??\D:\Program Files\MediaCoder\SysInfo.sys []
S3 GMSIPCI;GMSIPCI; C:\WINDOWS\system32\drivers\GMSIPCI.sys []
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2008-02-07 17480]
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2007-11-01 49920]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2007-11-01 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2005-10-21 21568]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2009-11-18 1395800]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 SNP325;USB PC Camera (SNPSTD325); C:\WINDOWS\system32\DRIVERS\snp325.sys [2007-04-03 10251904]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2011-05-25 643072]
R2 avast! Antivirus;avast! Antivirus; D:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-07-04 42184]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-04-11 153376]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-20 322120]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 NMSAccessU;NMSAccessU; D:\Program Files\CDBurnerXP\NMSAccessU.exe [2008-06-15 71096]
R2 PCAutoShutdown_Service;PCAutoShutdown_Service; D:\Program Files\PC Auto Shutdown\ShutdownService.exe [2011-02-16 441624]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2011-07-17 66872]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2011-07-17 107832]
R2 UserAccess7;SecuROM User Access Service (V7); C:\WINDOWS\system32\UAService7.exe [2008-05-02 126976]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 hpqcxs08;hpqcxs08; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2010-02-10 593920]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-03-25 135664]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2009-12-15 72704]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 Desura Install Service;Desura Install Service; C:\Program Files\Common Files\Desura\desura_service.exe [2011-06-11 130368]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-04-19 655624]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 getPlusHelper;getPlus(R) Helper; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-03-25 135664]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-03-25 182768]
S3 hhkhlt;{2EB1BFFC-297B-46A2-8F0D-AD9CDA4EE1D4}; C:\Program Files\ophcrack\pwdump\servpw.exe []
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Služba Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2007-05-03 74656]
S3 usprserv;User Privilege Service; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\wmpnetwk.exe []
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

Re: pc se sám zapíná a další problémy

Napsal: 19 črc 2011 08:06
od motji
Hezké dopoledne :)

:arrow: Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe
-uložte ho na plochu a spustte soubor OTL.exe.
-do bílého okna dole skopírujte tento skript:

Kód: Vybrat vše

netsvcs
drivers32
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
c:\windows\*.* /U
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
symmpi.sys
adp3132.sys
mv61xx.sys
nvraid.sys
ndis.sys
winlogon.exe
explorer.exe
userinit.exe
lsass.exe
svchost.exe
smss.exe
hal.dll
ws2_32.dll
tcpip.sys
cryptsvc.dll
Changer.sys
JakNDis.sys
isapnp.sys
cdrom.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
CREATERESTOREPOINT
- zaškrtněte okénko Pro všechny uživatele.
-označte okénka Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
- Klikněte na tlačítko Prohledat
-po dokončení skenu se objeví logy OTL.Txt a Extras.txt, vložte je zde :)



:arrow: Stahněte MBAM z mého podpisu
-Nainstalujte,dejte úplný sken

NIC NEMAZAT :!:
-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.

Re: pc se sám zapíná a další problémy

Napsal: 19 črc 2011 08:35
od [ACze]miky
1. část otl.txt:


OTL logfile created on: 19.7.2011 9:16:44 - Run 1
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Documents and Settings\matmik\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,00 Gb Total Physical Memory | 2,12 Gb Available Physical Memory | 70,60% Memory free
6,29 Gb Paging File | 5,43 Gb Available in Paging File | 86,33% Paging File free
Paging file location(s): [Binary data over 100 bytes]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 19,53 Gb Total Space | 7,12 Gb Free Space | 36,43% Space Free | Partition Type: NTFS
Drive D: | 166,77 Gb Total Space | 17,97 Gb Free Space | 10,77% Space Free | Partition Type: NTFS
Drive E: | 7,54 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: MATMIK-D179D564 | User Name: matmik | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011.07.19 09:11:45 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\matmik\Plocha\OTL.exe
PRC - [2011.07.04 13:43:54 | 003,493,720 | ---- | M] (AVAST Software) -- D:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2011.07.04 13:43:51 | 000,042,184 | ---- | M] (AVAST Software) -- D:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2011.02.16 15:53:08 | 000,441,624 | ---- | M] (GoldSolution Software, Inc.) -- D:\Program Files\PC Auto Shutdown\ShutdownService.exe
PRC - [2010.12.09 01:28:23 | 000,991,800 | ---- | M] (Google Inc.) -- C:\Documents and Settings\matmik\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2008.06.29 16:17:29 | 000,098,304 | ---- | M] (Apple Computer, Inc.) -- C:\WINDOWS\system32\qttask.exe
PRC - [2008.06.15 16:34:20 | 000,071,096 | ---- | M] () -- D:\Program Files\CDBurnerXP\NMSAccessU.exe
PRC - [2008.05.02 10:19:54 | 000,126,976 | ---- | M] () -- C:\WINDOWS\system32\UAService7.exe
PRC - [2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006.06.19 17:19:26 | 000,253,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WgaTray.exe
PRC - [2005.05.10 13:31:22 | 000,241,664 | ---- | M] (Stardock) -- C:\Program Files\Common Files\Stardock\SDMCP.exe


========== Modules (SafeList) ==========

MOD - [2011.07.19 09:11:45 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\matmik\Plocha\OTL.exe
MOD - [2011.07.04 13:43:51 | 000,199,792 | ---- | M] (AVAST Software) -- D:\Program Files\AVAST Software\Avast\snxhk.dll
MOD - [2010.08.23 18:12:33 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2003.02.26 22:27:44 | 000,036,864 | ---- | M] (Stardock.Net, Inc) -- C:\WINDOWS\system32\wbsys.dll
MOD - [2003.02.26 22:24:32 | 000,028,740 | ---- | M] (Stardock.Net, Inc) -- D:\Program Files\Stardock\Object Desktop\ThemeManager\wbhelp.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (WMPNetworkSvc)
SRV - File not found [Disabled | Stopped] -- -- (HidServ)
SRV - File not found [On_Demand | Stopped] -- -- (hhkhlt)
SRV - [2011.07.04 13:43:51 | 000,042,184 | ---- | M] (AVAST Software) [Auto | Running] -- D:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2011.06.11 14:10:00 | 000,130,368 | ---- | M] (Desura Pty Ltd) [On_Demand | Stopped] -- C:\Program Files\Common Files\Desura\desura_service.exe -- (Desura Install Service)
SRV - [2011.04.19 15:35:14 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2011.02.16 15:53:08 | 000,441,624 | ---- | M] (GoldSolution Software, Inc.) [Auto | Running] -- D:\Program Files\PC Auto Shutdown\ShutdownService.exe -- (PCAutoShutdown_Service)
SRV - [2009.09.03 11:51:46 | 000,048,368 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_Helper.dll -- (getPlusHelper) getPlus(R)
SRV - [2008.06.15 16:34:20 | 000,071,096 | ---- | M] () [Auto | Running] -- D:\Program Files\CDBurnerXP\NMSAccessU.exe -- (NMSAccessU)
SRV - [2008.05.02 10:19:54 | 000,126,976 | ---- | M] () [Auto | Running] -- C:\WINDOWS\system32\UAService7.exe -- (UserAccess7) SecuROM User Access Service (V7)


========== Driver Services (SafeList) ==========

DRV - [2011.07.04 13:36:43 | 000,441,176 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011.07.04 13:36:32 | 000,309,848 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011.07.04 13:35:23 | 000,043,608 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011.07.04 13:35:12 | 000,102,616 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011.07.04 13:32:32 | 000,025,432 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011.07.04 13:32:13 | 000,030,808 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011.07.04 13:32:12 | 000,019,544 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2011.05.25 06:21:44 | 006,554,624 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2010.12.30 12:59:18 | 006,290,024 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2009.11.18 12:24:26 | 000,095,232 | R--- | M] (ATI Research Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV - [2009.11.18 08:17:00 | 001,395,800 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)
DRV - [2009.11.18 08:16:00 | 001,691,480 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)
DRV - [2009.07.16 15:22:10 | 000,019,064 | ---- | M] (REALiX(tm)) [Kernel | System | Running] -- D:\Program Files\HWiNFO32\HWiNFO32.SYS -- (HWiNFO32)
DRV - [2008.02.07 19:45:17 | 000,017,480 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2007.09.25 16:59:46 | 000,015,152 | ---- | M] () [Kernel | On_Demand | Stopped] -- D:\Program Files\MediaCoder\SysInfo.sys -- (CrystalSysInfo)
DRV - [2007.06.29 14:47:34 | 000,034,304 | ---- | M] (AMD, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AmdLLD.sys -- (AmdLLD)
DRV - [2007.04.03 14:55:26 | 010,251,904 | ---- | M] (Sonix Co. Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\snp325.sys -- (SNP325) USB PC Camera (SNPSTD325)
DRV - [2007.02.16 02:57:04 | 000,034,760 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ElbyCDFL.sys -- (ElbyCDFL)
DRV - [2006.08.15 07:09:48 | 000,083,200 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2006.07.01 22:42:58 | 000,043,008 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2004.08.22 16:31:48 | 000,005,248 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\d347prt.sys -- (d347prt)
DRV - [2004.08.22 16:31:10 | 000,155,136 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\d347bus.sys -- (d347bus)
DRV - [2004.08.13 20:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)
DRV - [2002.07.17 09:53:02 | 000,016,877 | ---- | M] (Adaptec) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\ASPI32.SYS -- (Aspi32)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://paflikkq.info
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = http://www.google.com/
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://paflikkq.info
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-73586283-115176313-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = http://www.google.com/
IE - HKU\S-1-5-21-73586283-115176313-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKU\S-1-5-21-73586283-115176313-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-73586283-115176313-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://paflikkq.info
IE - HKU\S-1-5-21-73586283-115176313-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = http://seznam.cz/
IE - HKU\S-1-5-21-73586283-115176313-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-73586283-115176313-725345543-1003\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-73586283-115176313-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-73586283-115176313-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@bittorrent.com/BitTorrentDNA: C:\Program Files\DNA\plugins\npbtdna.dll (BitTorrent, Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: D:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: D:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll (DivX, Inc)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2027: D:\Program Files\ACE Mega CoDecS Pack\SystemS\RealMedia\Browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1040: D:\Program Files\ACE Mega CoDecS Pack\SystemS\RealMedia\Browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=8: C:\Documents and Settings\matmik\Local Settings\Data aplikací\Google\Update\1.2.183.39\npGoogleOneClick8.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Documents and Settings\matmik\Local Settings\Data aplikací\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\wrc@avast.com: D:\Program Files\AVAST Software\Avast\WebRep\FF [2011.07.15 17:46:26 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.5.16\extensions\\Components: D:\Program Files\Mozilla Firefox\components [2011.01.17 15:24:14 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.5.16\extensions\\Plugins: D:\Program Files\Mozilla Firefox\plugins [2011.01.17 15:24:14 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{EBFCD017-BCAD-42C3-9ED5-89DBDFC59171}: C:\Program Files\SpeedBit Toolbar\SPFireFox [2010.09.19 18:11:17 | 000,000,000 | ---D | M]

[2010.12.03 16:26:30 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\matmik\Data aplikací\Mozilla\Extensions
[2011.06.04 11:45:48 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\matmik\Data aplikací\Mozilla\Firefox\Profiles\iciim6xk.default\extensions
[2010.09.16 16:01:56 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\matmik\Data aplikací\Mozilla\Firefox\Profiles\iciim6xk.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011.04.21 10:44:17 | 000,000,000 | ---D | M] (HyperCam Toolbar) -- C:\Documents and Settings\matmik\Data aplikací\Mozilla\Firefox\Profiles\iciim6xk.default\extensions\{75656794-AB59-4712-BFBC-5D816D56F3BC}
[2011.05.11 20:16:15 | 000,000,000 | ---D | M] (MyAshampoo Community Toolbar) -- C:\Documents and Settings\matmik\Data aplikací\Mozilla\Firefox\Profiles\iciim6xk.default\extensions\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}
[2011.06.04 11:36:26 | 000,000,000 | ---D | M] (kikin plugin) -- C:\Documents and Settings\matmik\Data aplikací\Mozilla\Firefox\Profiles\iciim6xk.default\extensions\{AA994882-F391-4d2e-806F-8908DA4814ED}
[2011.05.11 20:16:15 | 000,000,000 | ---D | M] (Conduit Engine) -- C:\Documents and Settings\matmik\Data aplikací\Mozilla\Firefox\Profiles\iciim6xk.default\extensions\engine@conduit.com
[2011.04.21 10:43:51 | 000,000,000 | ---D | M] (Babylon) -- C:\Documents and Settings\matmik\Data aplikací\Mozilla\Firefox\Profiles\iciim6xk.default\extensions\ffxtlbr@babylon.com
[2011.03.06 09:49:59 | 000,000,000 | ---D | M] (GamePlayLabs Plugin) -- C:\Documents and Settings\matmik\Data aplikací\Mozilla\Firefox\Profiles\iciim6xk.default\extensions\plugin@gameplaylabs.com
[2011.03.06 09:49:59 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\matmik\Data aplikací\Mozilla\Firefox\Profilesiciim6xk.default\extensions
[2011.03.06 09:49:59 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\matmik\Data aplikací\Mozilla\Firefox\Profilesiciim6xk.default\extensions\plugin@gameplaylabs.com

O1 HOSTS File: ([2011.07.18 12:50:31 | 000,000,193 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 178.162.171.49 google-analytics.com
O1 - Hosts: 178.162.171.49 www.google-analytics.com
O1 - Hosts: 178.162.171.49 google-analytics.com
O1 - Hosts: 178.162.171.49 www.google-analytics.com
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll (Google Inc.)
O2 - BHO: (SMTTB2009 Class) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\HyperCam Toolbar\tbcore3.dll ()
O3 - HKLM\..\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O3 - HKU\S-1-5-21-73586283-115176313-725345543-1003\..\Toolbar\ShellBrowser: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - No CLSID value found.
O3 - HKU\S-1-5-21-73586283-115176313-725345543-1003\..\Toolbar\ShellBrowser: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} - No CLSID value found.
O3 - HKU\S-1-5-21-73586283-115176313-725345543-1003\..\Toolbar\WebBrowser: (BS.Player ControlBar) - {2C688203-7EB3-4327-9995-1CB417BA23F9} - C:\Program Files\BS.Player ControlBar\BSToolbar.dll ()
O3 - HKU\S-1-5-21-73586283-115176313-725345543-1003\..\Toolbar\WebBrowser: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O4 - HKLM..\Run: [avast] D:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [PC Auto Shutdown] D:\Program Files\PC Auto Shutdown\AutoShutdown.exe (GoldSolution Software, Inc.)
O4 - HKLM..\Run: [QuickTime Task] C:\WINDOWS\System32\qttask.exe (Apple Computer, Inc.)
O4 - HKLM..\Run: [StartCCC] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKU\S-1-5-21-73586283-115176313-725345543-1003..\Run: [uTorrent] D:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\avast! Free Antivirus.lnk = File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\__aswSnx private storage\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-73586283-115176313-725345543-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-73586283-115176313-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-73586283-115176313-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-73586283-115176313-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-73586283-115176313-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll (Google Inc.)
O9 - Extra 'Tools' menuitem : My kikin - {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} - Reg Error: Key error. File not found
O9 - Extra Button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - D:\Program Files\ICQ7.2\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - D:\Program Files\ICQ7.2\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\Program Files\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_19)
O16 - DPF: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_19)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_19)
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} http://icq.oberon-media.com/Gameshell/G ... meHost.cab (Oberon Flash Game Host)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shoc ... wflash.cab (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (get_atlcom Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O20 - AppInit_DLLs: (C:\WINDOWS\system32\wbsys.dll) - C:\WINDOWS\system32\wbsys.dll (Stardock.Net, Inc)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (C:\WINDOWS\system32\logonuiX.exe) - C:\WINDOWS\system32\logonuiX.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\MCPClient: DllName - C:\PROGRA~1\COMMON~1\Stardock\mcpstub.dll - C:\Program Files\Common Files\Stardock\MCPStub.dll (Stardock)
O20 - Winlogon\Notify\WB: DllName - D:\Program Files\Stardock\Object Desktop\ThemeManager\fastload.dll - D:\Program Files\Stardock\Object Desktop\ThemeManager\fastload.dll (Stardock)
O21 - SSODL: 0aMCPClient - {F5DF91F9-15E9-416B-A7C3-7519B11ECBFC} - C:\Program Files\Common Files\Stardock\MCPCore.dll (Stardock)
O24 - Desktop WallPaper: C:\Documents and Settings\matmik\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\matmik\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008.05.09 14:52:24 | 000,000,000 | ---D | M] - C:\AutoRun -- [ NTFS ]
O32 - AutoRun File - [2005.11.17 10:50:28 | 000,577,536 | ---- | M] (Electronic Arts Inc.) - C:\AutoRunGUI.dll -- [ NTFS ]
O32 - AutoRun File - [2008.06.22 11:19:53 | 000,000,000 | ---D | M] - D:\AutoRun -- [ NTFS ]
O32 - AutoRun File - [2005.11.17 11:26:54 | 000,733,184 | ---- | M] (Electronic Arts Inc.) - D:\AutoRun.exe -- [ NTFS ]
O32 - AutoRun File - [2005.11.17 10:50:28 | 000,577,536 | ---- | M] (Electronic Arts Inc.) - D:\AutoRunGUI.dll -- [ NTFS ]
O32 - AutoRun File - [2011.02.28 18:44:49 | 000,467,168 | R--- | M] (Electronic Arts) - E:\AutoRun.exe -- [ CDFS ]
O32 - AutoRun File - [2011.02.28 18:52:39 | 000,000,000 | R--D | M] - E:\Autorun -- [ CDFS ]
O32 - AutoRun File - [2011.02.28 18:52:37 | 004,032,512 | R--- | M] () - E:\autorun.dat -- [ CDFS ]
O32 - AutoRun File - [2011.02.28 18:52:37 | 000,000,152 | R--- | M] () - E:\autorun.inf -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: HidServ - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

Drivers32: msacm.divxa32 - D:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\divxa32.acm (Kristal StudioDFileDescription)
Drivers32: msacm.iac2 - D:\Program Files\ACE Mega CoDecS Pack\SystemS\Intel\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - D:\Program Files\ACE Mega CoDecS Pack\SystemS\lameacm.acm (http://www.mp3dev.org/)
Drivers32: msacm.lhacm - C:\WINDOWS\System32\lhacm.acm (Microsoft Corporation)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: msacm.vorbis - C:\WINDOWS\System32\vorbis.acm (HMS http://hp.vector.co.jp/authors/VA012897/)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.ap41 - D:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\divxc32f.dll (Hacked with Joy !)
Drivers32: VIDC.CFHD - C:\WINDOWS\System32\cfhd.dll (CineForm Inc.)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.div3 - D:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\divxc32.dll (Hacked with Joy !)
Drivers32: vidc.div4 - D:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\divxc32f.dll (Hacked with Joy !)
Drivers32: vidc.div5 - D:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\divxc32.dll (Hacked with Joy !)
Drivers32: vidc.div6 - D:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\divxc32f.dll (Hacked with Joy !)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: vidc.dv25 - D:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.dv50 - D:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: VIDC.FPS1 - C:\WINDOWS\System32\frapsvid.dll (Beepa P/L)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.mmes - D:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mmjp - D:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mpg3 - D:\Program Files\ACE Mega CoDecS Pack\SystemS\DivX\divxc32.dll (Hacked with Joy !)
Drivers32: vidc.msmc - D:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx1 - D:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx2 - D:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx3 - D:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx4 - D:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx5 - D:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx6 - D:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx7 - D:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx8 - D:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: vidc.mtx9 - D:\Program Files\ACE Mega CoDecS Pack\SystemS\Matrox\digivcap.dll (Matrox Electronic Systems)
Drivers32: VIDC.XFR1 - C:\WINDOWS\System32\xfcodec.dll ()
Drivers32: vidc.xvid - D:\Program Files\ACE Mega CoDecS Pack\SystemS\XviD\xvidvfw.dll ()
Drivers32: vidc.yv12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2011.07.19 09:13:14 | 000,579,584 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\matmik\Plocha\OTL.exe
[2011.07.19 09:10:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood
[2011.07.18 12:33:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft Games for Windows - LIVE
[2011.07.18 11:54:30 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Data aplikací\{74CA62F1-AA45-46D5-944A-D4996B69B253}
[2011.07.18 11:50:42 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Data aplikací\{E3AE4A9C-391C-4205-93BA-8EA0631205F2}
[2011.07.18 11:48:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\CryENGINE 3 SDK
[2011.07.17 02:30:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\PC Auto Shutdown
[2011.07.17 02:30:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\PC Auto Shutdown
[2011.07.16 12:16:45 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\matmik\Recent
[2011.07.04 17:35:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Ubisoft
[2011.07.04 08:07:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\matmik\Plocha\Nepoužívané odkazy plochy
[2011.07.01 17:40:17 | 000,309,848 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011.07.01 17:40:17 | 000,019,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011.07.01 17:40:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\avast! Free Antivirus
[2011.07.01 17:40:15 | 000,441,176 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2011.07.01 17:40:15 | 000,043,608 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011.07.01 17:40:15 | 000,025,432 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011.07.01 17:40:14 | 000,102,616 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011.07.01 17:40:14 | 000,096,344 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011.07.01 17:40:14 | 000,030,808 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011.07.01 17:40:03 | 000,040,112 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011.07.01 17:40:02 | 000,199,304 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011.07.01 17:39:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
[2011.06.28 16:11:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\matmik\Local Settings\Data aplikací\Ubisoft Game Launcher
[2011.06.26 11:19:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\AVG
[2011.06.26 09:59:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\ATI
[2011.06.26 09:54:52 | 000,000,000 | ---D | C] -- C:\Program Files\AMD APP
[2011.06.26 09:54:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Catalyst Control Center
[2011.06.26 09:15:54 | 000,000,000 | -H-D | C] -- C:\$AVG
[2011.06.26 08:37:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\matmik\Data aplikací\AVG10
[2011.06.26 08:36:27 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Data aplikací\Common Files
[2011.06.26 08:34:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\AVG10
[2011.06.26 08:26:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\MFAData
[2011.06.25 18:51:10 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2011.06.25 18:22:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\matmik\Nabídka Start\Programy\HyperCam 2
[2011.06.25 14:12:56 | 000,000,000 | --SD | C] -- C:\ComboFix
[2011.06.25 07:25:57 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2011.06.24 16:32:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2011.06.23 16:47:06 | 000,000,000 | ---D | C] -- C:\rsit
[2011.01.20 19:27:30 | 000,147,456 | ---- | C] ( ) -- C:\WINDOWS\System32\rsnp325.dll
[2011.01.20 19:27:30 | 000,061,440 | ---- | C] ( ) -- C:\WINDOWS\System32\vsnp325.dll
[2011.01.20 19:27:30 | 000,053,248 | ---- | C] ( ) -- C:\WINDOWS\System32\csnp325.dll
[2009.03.13 11:51:14 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\matmik\Data aplikací\pcouffin.sys
[2008.05.28 10:13:29 | 000,155,136 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\d347bus.sys
[2008.05.28 10:13:29 | 000,005,248 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\d347prt.sys
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011.07.19 09:11:45 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\matmik\Plocha\OTL.exe
[2011.07.19 08:39:17 | 000,000,260 | ---- | M] () -- C:\WINDOWS\tasks\WGASetup.job
[2011.07.19 08:39:03 | 000,000,940 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011.07.19 08:35:16 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011.07.19 08:28:28 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011.07.18 15:42:59 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2011.07.18 12:31:08 | 000,000,339 | RHS- | M] () -- C:\boot.ini
[2011.07.17 11:34:23 | 000,000,836 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Far Cry® 2.lnk
[2011.07.17 11:27:02 | 000,022,328 | ---- | M] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2011.07.17 11:27:02 | 000,022,328 | ---- | M] () -- C:\Documents and Settings\matmik\Data aplikací\PnkBstrK.sys
[2011.07.17 11:26:32 | 002,250,024 | ---- | M] () -- C:\WINDOWS\System32\pbsvc.exe
[2011.07.17 11:07:19 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011.07.17 02:30:14 | 000,000,628 | ---- | M] () -- C:\Documents and Settings\matmik\Plocha\PC Auto Shutdown.lnk
[2011.07.15 18:12:13 | 002,338,312 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011.07.15 17:46:27 | 000,002,552 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011.07.04 17:35:35 | 000,000,877 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Assassin's Creed.lnk
[2011.07.04 13:43:53 | 000,040,112 | ---- | M] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011.07.04 13:43:51 | 000,199,304 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011.07.04 13:36:43 | 000,441,176 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2011.07.04 13:36:32 | 000,309,848 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011.07.04 13:35:23 | 000,043,608 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011.07.04 13:35:12 | 000,102,616 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011.07.04 13:35:09 | 000,096,344 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011.07.04 13:32:32 | 000,025,432 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011.07.04 13:32:13 | 000,030,808 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011.07.04 13:32:12 | 000,019,544 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011.07.01 17:40:17 | 000,000,773 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
[2011.07.01 17:00:55 | 000,000,340 | ---- | M] () -- C:\WINDOWS\tasks\UpdateCheck.job
[2011.06.30 20:54:20 | 000,655,619 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\iavifw.avm
[2011.06.29 20:21:38 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2011.06.29 20:21:36 | 000,113,152 | ---- | M] () -- C:\Documents and Settings\matmik\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.06.27 19:58:37 | 000,001,041 | ---- | M] () -- C:\Documents and Settings\matmik\Data aplikací\vso_ts_preview.xml
[2011.06.26 09:28:21 | 000,000,779 | ---- | M] () -- C:\Documents and Settings\matmik\Plocha\Star Wars The Force Unleashed 2.lnk
[2011.06.26 08:21:17 | 000,000,650 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2011.06.25 18:52:17 | 000,000,390 | ---- | M] () -- C:\WINDOWS\ODBC.INI
[2011.06.25 18:22:01 | 000,000,508 | ---- | M] () -- C:\Documents and Settings\matmik\Plocha\HyperCam 2.lnk
[2011.06.22 21:10:26 | 000,446,762 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011.06.22 21:10:26 | 000,443,628 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2011.06.22 21:10:26 | 000,085,468 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2011.06.22 21:10:26 | 000,073,618 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

Re: pc se sám zapíná a další problémy

Napsal: 19 črc 2011 08:35
od [ACze]miky
2. část otl.txt:


========== Files Created - No Company Name ==========

[2011.07.17 11:34:23 | 000,000,836 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Far Cry® 2.lnk
[2011.07.17 02:30:14 | 000,000,628 | ---- | C] () -- C:\Documents and Settings\matmik\Plocha\PC Auto Shutdown.lnk
[2011.07.04 17:35:35 | 000,000,877 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Assassin's Creed.lnk
[2011.07.01 17:40:17 | 000,000,773 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
[2011.06.30 20:54:20 | 000,655,619 | ---- | C] () -- C:\WINDOWS\System32\drivers\AVG\iavifw.avm
[2011.06.26 09:28:21 | 000,000,779 | ---- | C] () -- C:\Documents and Settings\matmik\Plocha\Star Wars The Force Unleashed 2.lnk
[2011.06.26 08:21:17 | 000,000,650 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2011.06.25 18:22:00 | 000,000,508 | ---- | C] () -- C:\Documents and Settings\matmik\Plocha\HyperCam 2.lnk
[2011.05.24 23:44:26 | 000,059,904 | ---- | C] () -- C:\WINDOWS\System32\OVDecode.dll
[2011.04.21 10:00:18 | 000,001,433 | ---- | C] () -- C:\Documents and Settings\matmik\Local Settings\Data aplikací\RecConfig.xml
[2011.04.17 11:28:28 | 000,376,832 | ---- | C] () -- C:\WINDOWS\System32\M2000Twn.dll
[2011.04.17 11:28:26 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\CompressATI2.dll
[2011.03.25 15:36:44 | 002,097,152 | ---- | C] () -- C:\WINDOWS\sample5x.dat
[2011.02.26 03:19:32 | 000,041,872 | ---- | C] () -- C:\WINDOWS\System32\xfcodec.dll
[2011.01.20 19:27:32 | 000,827,392 | ---- | C] () -- C:\WINDOWS\vsnp325.exe
[2011.01.20 19:27:32 | 000,020,480 | ---- | C] () -- C:\WINDOWS\FixCamera.exe
[2011.01.20 19:27:31 | 000,270,336 | ---- | C] () -- C:\WINDOWS\tsnp325.exe
[2011.01.20 19:27:31 | 000,015,498 | ---- | C] () -- C:\WINDOWS\snp325.ini
[2010.12.02 16:44:17 | 000,000,024 | ---- | C] () -- C:\WINDOWS\LogonStudio.ini
[2010.12.02 16:44:11 | 000,187,392 | ---- | C] () -- C:\WINDOWS\System32\JPGUtils.dll
[2010.10.01 15:03:31 | 001,618,824 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
[2010.09.25 09:44:49 | 000,258,048 | ---- | C] () -- C:\WINDOWS\System32\_AvP.dll
[2010.09.16 06:35:21 | 000,000,127 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI
[2010.06.16 16:43:42 | 000,000,082 | ---- | C] () -- C:\WINDOWS\wb.ini
[2010.06.08 17:14:40 | 000,005,036 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\mtbjfghn.xbe
[2010.05.23 14:09:27 | 000,000,178 | ---- | C] () -- C:\WINDOWS\System32\imon1.dat
[2010.05.13 15:17:11 | 002,250,024 | ---- | C] () -- C:\WINDOWS\System32\pbsvc.exe
[2010.05.03 15:47:53 | 002,434,856 | ---- | C] () -- C:\WINDOWS\System32\pbsvc_bc2.exe
[2010.05.03 15:47:28 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\matmik\Data aplikací\PnkBstrK.sys
[2010.04.17 16:30:59 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2010.04.02 17:17:34 | 000,179,091 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2010.02.11 06:12:00 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat
[2010.02.11 06:12:00 | 000,000,003 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat
[2009.11.22 17:54:07 | 000,000,126 | ---- | C] () -- C:\Documents and Settings\matmik\Local Settings\Data aplikací\fusioncache.dat
[2009.10.27 10:35:33 | 001,189,339 | ---- | C] () -- C:\Program Files\Apr2006_MDX1_x86_Archive.cab
[2009.09.14 19:48:08 | 000,000,766 | ---- | C] () -- C:\WINDOWS\CoD.INI
[2009.09.04 19:00:58 | 000,916,430 | ---- | C] () -- C:\Program Files\Apr2006_MDX1_x86.cab
[2009.09.04 19:00:56 | 001,397,822 | ---- | C] () -- C:\Program Files\Apr2006_d3dx9_30_x64.cab
[2009.09.04 19:00:56 | 001,347,354 | ---- | C] () -- C:\Program Files\Apr2005_d3dx9_25_x64.cab
[2009.09.04 19:00:56 | 001,115,221 | ---- | C] () -- C:\Program Files\Apr2006_d3dx9_30_x86.cab
[2009.09.04 19:00:56 | 001,078,954 | ---- | C] () -- C:\Program Files\Apr2005_d3dx9_25_x86.cab
[2009.06.04 20:38:14 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2009.05.25 20:08:50 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009.05.24 10:58:48 | 000,001,324 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2009.05.24 10:58:46 | 000,001,100 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat
[2009.05.23 12:18:34 | 000,000,041 | -HS- | C] () -- C:\Documents and Settings\All Users\Data aplikací\.zreglib
[2009.03.15 18:08:57 | 000,022,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2009.03.15 18:08:49 | 000,107,832 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2009.03.15 18:08:37 | 000,066,872 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2009.03.13 11:51:56 | 000,001,041 | ---- | C] () -- C:\Documents and Settings\matmik\Data aplikací\vso_ts_preview.xml
[2009.03.13 11:51:14 | 000,087,608 | ---- | C] () -- C:\Documents and Settings\matmik\Data aplikací\inst.exe
[2009.03.13 11:51:14 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\matmik\Data aplikací\pcouffin.cat
[2009.03.13 11:51:14 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\matmik\Data aplikací\pcouffin.inf
[2009.02.11 15:50:52 | 000,000,769 | ---- | C] () -- C:\WINDOWS\Thps3.INI
[2008.12.13 13:29:38 | 000,000,031 | ---- | C] () -- C:\WINDOWS\GunzLauncher.INI
[2008.11.20 20:22:22 | 000,026,112 | R--- | C] () -- C:\WINDOWS\LgUninst.exe
[2008.11.06 18:37:32 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2008.11.06 18:33:02 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\DivXWMPExtType.dll
[2008.11.01 15:24:09 | 000,113,152 | ---- | C] () -- C:\Documents and Settings\matmik\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008.11.01 10:27:21 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2008.10.30 11:17:47 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2008.10.22 19:09:46 | 000,183,247 | ---- | C] () -- C:\WINDOWS\hpoins21.dat
[2008.10.22 19:09:46 | 000,007,262 | ---- | C] () -- C:\WINDOWS\hpomdl21.dat
[2008.10.19 17:06:43 | 000,021,840 | ---- | C] () -- C:\WINDOWS\System32\SIntfNT.dll
[2008.10.19 17:06:43 | 000,017,212 | ---- | C] () -- C:\WINDOWS\System32\SIntf32.dll
[2008.10.19 17:06:43 | 000,012,067 | ---- | C] () -- C:\WINDOWS\System32\SIntf16.dll
[2008.10.11 08:36:35 | 000,000,126 | ---- | C] () -- C:\WINDOWS\disney.ini
[2008.10.11 08:36:27 | 000,000,213 | ---- | C] () -- C:\WINDOWS\disneysy.ini
[2008.09.10 18:19:20 | 002,070,016 | ---- | C] () -- C:\WINDOWS\setup_rangers_2.exe
[2008.06.29 16:15:55 | 000,019,968 | ---- | C] () -- C:\WINDOWS\System32\cpuinf32.dll
[2008.06.29 16:15:53 | 000,765,952 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2008.05.02 10:19:54 | 000,126,976 | ---- | C] () -- C:\WINDOWS\System32\UAService7.exe
[2008.03.02 12:17:08 | 000,000,048 | ---- | C] () -- C:\WINDOWS\drawinghand.ini
[2008.03.02 12:17:05 | 000,200,704 | ---- | C] () -- C:\WINDOWS\System32\TSUZ.DLL
[2008.02.06 19:06:43 | 000,593,920 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe
[2008.02.06 19:06:29 | 003,107,788 | R--- | C] () -- C:\WINDOWS\System32\ativvaxx.dat
[2008.02.06 19:06:29 | 000,233,765 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2008.02.06 19:00:36 | 000,001,125 | ---- | C] () -- C:\WINDOWS\winamp.ini
[2008.02.06 18:53:17 | 000,004,212 | -H-- | C] () -- C:\WINDOWS\System32\zllictbl.dat
[2008.01.27 14:04:14 | 000,000,390 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2008.01.26 17:11:30 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2008.01.26 17:10:25 | 002,338,312 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2008.01.26 16:49:01 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2008.01.26 16:34:47 | 000,021,914 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini
[2008.01.26 16:34:07 | 000,021,597 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2008.01.26 16:34:07 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2008.01.26 16:33:58 | 000,010,288 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2008.01.26 16:23:38 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2008.01.26 16:18:38 | 000,021,812 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2007.11.12 19:11:46 | 000,131,072 | ---- | C] () -- C:\WINDOWS\System32\gc.dll
[2007.01.10 07:44:26 | 001,457,024 | R--- | C] () -- C:\WINDOWS\System32\SSCProt.dll
[2004.08.17 15:58:58 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2004.08.02 14:20:40 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2003.04.09 16:38:04 | 000,005,664 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2002.10.16 00:54:04 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2001.10.25 16:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2001.10.25 16:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2001.10.25 16:00:00 | 000,446,762 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2001.10.25 16:00:00 | 000,443,628 | ---- | C] () -- C:\WINDOWS\System32\perfh005.dat
[2001.10.25 16:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2001.10.25 16:00:00 | 000,269,162 | ---- | C] () -- C:\WINDOWS\System32\perfi005.dat
[2001.10.25 16:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2001.10.25 16:00:00 | 000,085,468 | ---- | C] () -- C:\WINDOWS\System32\perfc005.dat
[2001.10.25 16:00:00 | 000,073,618 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2001.10.25 16:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2001.10.25 16:00:00 | 000,032,072 | ---- | C] () -- C:\WINDOWS\System32\perfd005.dat
[2001.10.25 16:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2001.10.25 16:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2001.10.25 16:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat

========== LOP Check ==========

[2010.10.20 15:00:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
[2011.07.01 17:39:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
[2011.07.13 18:28:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\AVG10
[2011.06.26 08:36:27 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\Common Files
[2011.06.11 08:18:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Desura
[2011.03.01 18:01:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\EA Core
[2011.03.01 18:01:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Electronic Arts
[2010.07.20 15:10:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\f-secure
[2010.07.22 13:32:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Fighters
[2009.03.30 14:17:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\fssg
[2010.12.15 16:29:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ICQ
[2008.12.13 12:45:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\IJJIGame
[2008.02.06 19:31:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MailFrontier
[2011.07.01 17:57:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\MFAData
[2011.07.17 02:30:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PC Auto Shutdown
[2010.10.12 11:26:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PC Drivers HeadQuarters
[2010.03.30 15:21:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PIXELA
[2011.06.28 16:14:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Solidshield
[2009.07.07 21:15:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Sony
[2009.11.16 16:52:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Sports Interactive
[2011.04.28 14:49:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TEMP
[2011.07.04 17:37:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Ubisoft
[2010.06.05 12:55:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\vsosdk
[2010.12.02 19:36:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\WildTangent
[2010.06.09 06:46:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{5E98E5C2-0C82-4AE9-AED4-E6D1EDB6EFF2}
[2010.11.29 12:35:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{7451F7D5-591C-4490-8D3B-C73A69A0E782}
[2011.07.18 11:54:30 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\{74CA62F1-AA45-46D5-944A-D4996B69B253}
[2011.07.18 11:50:42 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Data aplikací\{E3AE4A9C-391C-4205-93BA-8EA0631205F2}
[2010.06.09 13:45:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Activision
[2011.06.26 08:37:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\AVG10
[2011.04.21 10:44:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\BabylonToolbar
[2011.06.05 11:33:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\BitTorrent
[2009.03.13 12:05:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Broad Intelligence
[2008.11.20 18:25:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\BSplayer
[2008.11.20 18:04:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\BSplayer Pro
[2009.03.20 22:38:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Canneverbe_Limited
[2010.06.08 17:14:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Carambis
[2008.10.11 08:40:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Disney Interactive Studios
[2010.09.05 16:29:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\DNA
[2011.04.21 10:36:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\DVDVideoSoftIEHelpers
[2010.12.02 19:36:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\F-Secure
[2010.02.20 11:44:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Games
[2011.03.14 15:53:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\GetRightToGo
[2011.07.04 16:07:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\ICQ
[2011.05.15 11:18:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\kikin
[2010.12.02 19:36:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Miranda
[2010.11.22 15:38:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\OpenCandy
[2009.02.21 10:56:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Photo2Sketch
[2009.04.04 09:26:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Publish Providers
[2010.02.27 10:56:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\RadioBar
[2009.06.14 15:13:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Sony
[2009.06.14 15:02:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Sony Setup
[2009.11.16 16:50:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Sports Interactive
[2010.06.05 13:25:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\TeamViewer
[2011.04.21 10:44:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Toolbar4
[2011.07.04 18:12:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Ubisoft
[2009.12.23 14:42:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Unity
[2011.07.19 09:21:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\uTorrent
[2010.06.04 16:32:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\VitySoft
[2011.06.27 19:58:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Vso
[2011.06.26 18:20:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mich.Mik\Data aplikací\AVG10
[2011.04.23 10:37:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mich.Mik\Data aplikací\BabylonToolbar
[2011.06.05 18:09:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mich.Mik\Data aplikací\Toolbar4
[2011.07.01 17:00:55 | 000,000,340 | ---- | M] () -- C:\WINDOWS\Tasks\UpdateCheck.job
[2011.07.19 08:39:17 | 000,000,260 | ---- | M] () -- C:\WINDOWS\Tasks\WGASetup.job

========== Purity Check ==========



========== Custom Scans ==========


< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"swg" = "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" -- [2008.04.16 07:00:44 | 000,068,856 | ---- | M] (Google Inc.)
"uTorrent" = "D:\Program Files\uTorrent\uTorrent.exe" -- [2011.04.08 14:46:59 | 000,399,736 | ---- | M] (BitTorrent, Inc.)
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\AdobeUpdater]
"" =

< c:\windows\*.* /U >
[1 c:\windows\*.tmp files -> c:\windows\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >
[2005.11.17 11:26:54 | 000,339,968 | ---- | M] (Electronic Arts Inc.) -- C:\eauninstall.exe
[2008.09.06 10:53:52 | 000,049,707 | ---- | M] () -- C:\Odinstalovat.exe

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2010.06.09 13:45:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Activision
[2011.07.16 18:49:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Adobe
[2010.12.03 18:53:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\ATI
[2011.06.26 08:37:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\AVG10
[2011.04.21 10:44:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\BabylonToolbar
[2011.06.05 11:33:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\BitTorrent
[2009.03.13 12:05:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Broad Intelligence
[2008.11.20 18:25:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\BSplayer
[2008.11.20 18:04:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\BSplayer Pro
[2009.03.20 22:38:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Canneverbe_Limited
[2010.06.08 17:14:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Carambis
[2008.10.11 08:40:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Disney Interactive Studios
[2010.12.14 17:18:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\DivX
[2010.09.05 16:29:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\DNA
[2010.07.17 18:37:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Download Manager
[2011.04.21 12:44:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\dvdcss
[2011.04.21 10:36:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\DVDVideoSoftIEHelpers
[2010.12.02 19:36:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\F-Secure
[2010.02.20 11:44:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Games
[2011.03.14 15:53:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\GetRightToGo
[2010.12.02 19:36:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Google
[2010.12.02 19:36:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Hamachi
[2008.10.22 19:18:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\HP
[2009.08.14 13:08:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\HPAppData
[2011.07.04 16:07:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\ICQ
[2011.01.20 19:27:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\InstallShield
[2010.10.13 11:07:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\InstallShield Installation Information
[2011.05.15 11:18:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\kikin
[2008.04.04 13:35:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Macromedia
[2010.12.05 11:59:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Malwarebytes
[2011.05.31 14:19:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Microsoft
[2010.12.02 19:36:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Miranda
[2010.12.03 16:26:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Mozilla
[2010.11.22 15:38:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\OpenCandy
[2011.06.17 06:41:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\OpenOffice.org2
[2009.02.21 10:56:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Photo2Sketch
[2009.04.04 09:26:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Publish Providers
[2010.02.27 10:56:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\RadioBar
[2010.12.02 19:52:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Real
[2008.05.02 10:19:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\SecuROM
[2011.05.10 16:26:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Skype
[2011.05.10 16:05:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\skypePM
[2009.06.14 15:13:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Sony
[2009.06.14 15:02:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Sony Setup
[2009.11.16 16:50:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Sports Interactive
[2010.04.11 18:29:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Sun
[2009.08.03 15:06:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\teamspeak2
[2010.06.05 13:25:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\TeamViewer
[2011.04.21 10:44:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Toolbar4
[2011.07.04 18:12:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Ubisoft
[2009.12.23 14:42:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Unity
[2011.07.19 09:21:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\uTorrent
[2010.06.04 16:32:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\VitySoft
[2011.06.15 15:49:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\vlc
[2011.06.27 19:58:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Vso
[2010.12.03 19:03:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\WinRAR
[2011.03.17 15:30:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\matmik\Data aplikací\Xfire

< %APPDATA%\*.exe /s >
[2009.03.13 11:51:14 | 000,087,608 | ---- | M] () -- C:\Documents and Settings\matmik\Data aplikací\inst.exe
[2009.10.13 17:26:54 | 000,118,736 | ---- | M] (Macrovision Corporation) -- C:\Documents and Settings\matmik\Data aplikací\InstallShield Installation Information\{8BECF123-B0EF-4E51-B7F3-923EFE15CC4A}\setup.exe
[2009.10.04 10:26:44 | 000,025,614 | R--- | M] () -- C:\Documents and Settings\matmik\Data aplikací\Microsoft\Installer\{02C3757A-B63E-4BDA-AD0C-052A087353DC}\app_icon.exe
[2010.04.11 09:39:05 | 000,061,440 | R--- | M] (InstallShield Software Corp.) -- C:\Documents and Settings\matmik\Data aplikací\Microsoft\Installer\{1A621A2F-98F6-4373-89A2-8ED16076990A}\NewShortcut1_1A621A2F98F6437389A28ED16076990A.exe
[2010.04.11 09:39:05 | 000,040,960 | R--- | M] (InstallShield Software Corp.) -- C:\Documents and Settings\matmik\Data aplikací\Microsoft\Installer\{1A621A2F-98F6-4373-89A2-8ED16076990A}\NewShortcut2_1A621A2F98F6437389A28ED16076990A.exe
[2010.10.18 14:39:34 | 000,187,211 | R--- | M] () -- C:\Documents and Settings\matmik\Data aplikací\Microsoft\Installer\{313D3F56-93B7-4148-9435-F8FC660F81AD}\_4376F6D050003E4E86C1A7.exe
[2010.10.18 14:39:34 | 000,187,211 | R--- | M] () -- C:\Documents and Settings\matmik\Data aplikací\Microsoft\Installer\{313D3F56-93B7-4148-9435-F8FC660F81AD}\_CA71CCE9C6F153DFEE6359.exe
[2010.06.17 16:16:40 | 000,040,960 | R--- | M] (InstallShield Software Corp.) -- C:\Documents and Settings\matmik\Data aplikací\Microsoft\Installer\{4E526F25-8B1F-46AA-B50C-BBDA00EDFF66}\NewShortcut1_4E526F258B1F46AAB50CBBDA00EDFF66.exe
[2010.06.17 16:16:40 | 000,040,960 | R--- | M] (InstallShield Software Corp.) -- C:\Documents and Settings\matmik\Data aplikací\Microsoft\Installer\{4E526F25-8B1F-46AA-B50C-BBDA00EDFF66}\NewShortcut3_4E526F258B1F46AAB50CBBDA00EDFF66.exe
[2009.06.26 10:13:45 | 000,000,766 | R--- | M] () -- C:\Documents and Settings\matmik\Data aplikací\Microsoft\Installer\{4E906533-F57F-45BD-A837-FCF24A2C243E}\_14051ce6.exe
[2009.06.26 10:13:45 | 000,000,478 | R--- | M] () -- C:\Documents and Settings\matmik\Data aplikací\Microsoft\Installer\{4E906533-F57F-45BD-A837-FCF24A2C243E}\_32e4233b.exe
[2009.06.26 10:13:45 | 000,001,078 | R--- | M] () -- C:\Documents and Settings\matmik\Data aplikací\Microsoft\Installer\{4E906533-F57F-45BD-A837-FCF24A2C243E}\_4e777b59.exe
[2009.06.26 10:13:45 | 000,000,894 | R--- | M] () -- C:\Documents and Settings\matmik\Data aplikací\Microsoft\Installer\{4E906533-F57F-45BD-A837-FCF24A2C243E}\_6d3451bf.exe
[2009.06.26 10:13:45 | 000,001,078 | R--- | M] () -- C:\Documents and Settings\matmik\Data aplikací\Microsoft\Installer\{4E906533-F57F-45BD-A837-FCF24A2C243E}\_71d9420b.exe
[2008.02.06 19:10:34 | 000,009,158 | R--- | M] () -- C:\Documents and Settings\matmik\Data aplikací\Microsoft\Installer\{C941F1F1-25B3-4DF5-83E6-888C51A1AAB6}\ARPPRODUCTICON.exe
[2011.05.12 16:06:13 | 000,699,392 | ---- | M] () -- C:\Documents and Settings\matmik\Data aplikací\Mozilla\Firefox\Profiles\iciim6xk.default\extensions\{AA994882-F391-4d2e-806F-8908DA4814ED}\components\kikin_updater_2.0.0.11.exe
[2011.04.12 01:06:44 | 000,188,784 | ---- | M] (kikin) -- C:\Documents and Settings\matmik\Data aplikací\Mozilla\Firefox\Profiles\iciim6xk.default\extensions\{AA994882-F391-4d2e-806F-8908DA4814ED}\platform\WINNT\components\KikinCrashReporter.exe
[2010.06.25 21:49:50 | 003,828,846 | ---- | M] () -- C:\Documents and Settings\matmik\Data aplikací\OpenCandy\maximus_install.exe
[2010.11.22 15:38:43 | 000,349,296 | ---- | M] () -- C:\Documents and Settings\matmik\Data aplikací\OpenCandy\67C6F776A72045D0BD9459BF5666B578\DLMgr_3_1.6.87.exe
[2010.05.16 09:33:35 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\matmik\Data aplikací\OpenCandy\OpenCandy_2582E95C862044C99CFFC5340E1A535C\WeFiSetup_5_142_513Wrapped.exe
[2010.10.15 22:41:18 | 000,043,440 | ---- | M] () -- C:\Documents and Settings\matmik\Data aplikací\OpenCandy\OpenCandy_67C6F776A72045D0BD9459BF5666B578\SpeedstarterCZ.exe
[2010.10.23 01:29:06 | 001,472,552 | ---- | M] (Speedchecker Limited ) -- C:\Documents and Settings\matmik\Data aplikací\OpenCandy\OpenCandy_67C6F776A72045D0BD9459BF5666B578\ZrychleniPocitace.exe
[2009.06.14 15:03:23 | 052,770,576 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\matmik\Data aplikací\Sony Setup\64993CD0-67D1-4244-A2BC-FD73F4DA5B62\dotnetfx3.exe
[2010.02.16 11:57:38 | 000,197,632 | ---- | M] () -- C:\Documents and Settings\matmik\Data aplikací\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\TbHelper2.exe
[2009.11.25 11:12:00 | 000,042,496 | ---- | M] () -- C:\Documents and Settings\matmik\Data aplikací\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\uninstall.exe
[2011.04.21 10:44:17 | 000,059,209 | ---- | M] () -- C:\Documents and Settings\matmik\Data aplikací\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\UninstallToolbar.exe
[2009.11.25 11:12:00 | 000,056,832 | ---- | M] () -- C:\Documents and Settings\matmik\Data aplikací\Toolbar4\{338B4DFE-2E2C-4338-9E41-E176D497299E}\update.exe


< MD5 for: AGP440.SYS >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008.04.14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ERDNT\cache\agp440.sys
[2008.04.13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\agp440.sys
[2008.04.14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys

< MD5 for: AHCIX86.SYS >
[2007.01.26 07:09:12 | 000,120,832 | ---- | M] (ATI Technologies Inc.) MD5=18876330870FE64BF38DD5E3BFAC110B -- C:\Documents and Settings\matmik\Dokumenty\AMD_Chipset_Driver_xp\x86_x64\SBDrv\RAID\x86\x86\ahcix86.sys
[2007.03.07 12:47:30 | 000,119,808 | ---- | M] (ATI Technologies Inc.) MD5=F1B9E3A223CA684D98BB91FD82157601 -- C:\Documents and Settings\matmik\Dokumenty\AMD_Chipset_Driver_xp\x86_x64\x86_x64\x86\ahcix86.sys

< MD5 for: ATAPI.SYS >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ERDNT\cache\atapi.sys
[2008.04.13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\atapi.sys
[2008.04.14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys

< MD5 for: CDROM.SYS >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008.04.13 20:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\cdrom.sys
[2008.04.14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys

< MD5 for: CRYPTSVC.DLL >
[2008.04.14 08:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\ERDNT\cache\cryptsvc.dll
[2008.04.14 05:21:38 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\cryptsvc.dll
[2008.04.14 08:51:40 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=F3AB0933CBD166D271992F411C27CCAF -- C:\WINDOWS\system32\cryptsvc.dll

< MD5 for: EVENTLOG.DLL >
[2008.04.14 08:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\ERDNT\cache\eventlog.dll
[2008.04.14 05:21:41 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\eventlog.dll
[2008.04.14 08:51:42 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll

< MD5 for: EXPLORER.EXE >
[2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ERDNT\cache\explorer.exe
[2008.04.14 08:52:24 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\explorer.exe

< MD5 for: HAL.DLL >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2008.04.14 00:01:30 | 000,134,400 | ---- | M] (Microsoft Corporation) MD5=4329EE7D502C9113EBA0F9570392F5EE -- C:\WINDOWS\system32\HAL.DLL
[2008.04.13 20:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\hal.dll

< MD5 for: CHANGER.SYS >
[2004.08.17 15:57:28 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2008.04.13 20:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\changer.sys

< MD5 for: ISAPNP.SYS >
[2008.04.14 09:10:02 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:isapnp.sys
[2008.04.14 04:27:53 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\isapnp.sys
[2008.04.14 07:57:54 | 000,037,248 | ---- | M] (Microsoft Corporation) MD5=CC9F8A2D60AED1A51A3AC34C59B987AE -- C:\WINDOWS\system32\drivers\isapnp.sys

< MD5 for: LSASS.EXE >
[2008.04.14 08:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\ERDNT\cache\lsass.exe
[2008.04.14 05:22:29 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\lsass.exe
[2008.04.14 08:52:30 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=ED0A176354487CEED65B80A7148AB739 -- C:\WINDOWS\system32\lsass.exe

< MD5 for: NDIS.SYS >
[2008.04.14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ERDNT\cache\ndis.sys
[2008.04.13 21:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\ndis.sys
[2008.04.14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys

< MD5 for: NETLOGON.DLL >
[2008.04.14 08:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\ERDNT\cache\netlogon.dll
[2008.04.14 05:21:50 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\netlogon.dll
[2008.04.14 08:51:52 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll

< MD5 for: SCECLI.DLL >
[2008.04.14 08:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ERDNT\cache\scecli.dll
[2008.04.14 05:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\scecli.dll
[2008.04.14 08:51:56 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll

< MD5 for: SMSS.EXE >
[2004.08.17 16:49:28 | 000,164,864 | ---- | M] (Microsoft Corporation) MD5=3C100B7FDB179B63829103DF6541337F -- C:\cmdcons\SYSTEM32\SMSS.EXE
[2008.04.14 05:22:47 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\smss.exe
[2008.04.14 08:52:48 | 000,050,688 | ---- | M] (Microsoft Corporation) MD5=9B08A8C6331C2DA9C30377BCB4262721 -- C:\WINDOWS\system32\smss.exe

< MD5 for: SVCHOST.EXE >
[2008.04.14 08:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ERDNT\cache\svchost.exe
[2008.04.14 05:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\svchost.exe
[2008.04.14 08:52:50 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe

< MD5 for: TCPIP.SYS >
[2008.04.13 21:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\ERDNT\cache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys

< MD5 for: USERINIT.EXE >
[2008.04.14 08:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ERDNT\cache\userinit.exe
[2008.04.14 05:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\userinit.exe
[2008.04.14 08:52:52 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe

< MD5 for: WINLOGON.EXE >
[2008.04.14 08:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ERDNT\cache\winlogon.exe
[2008.04.14 05:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\winlogon.exe
[2008.04.14 08:52:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe

< MD5 for: WS2_32.DLL >
[2008.04.14 08:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\ERDNT\cache\ws2_32.dll
[2008.04.14 05:22:06 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\SoftwareDistribution\Download\8fb85d68ee3649be8b622da7b69408ee\ws2_32.dll
[2008.04.14 08:52:08 | 000,082,432 | ---- | M] (Microsoft Corporation) MD5=951D473917C51F21496D914CF6E5DDD1 -- C:\WINDOWS\system32\ws2_32.dll

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >
[2008.01.26 17:09:22 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2008.01.26 17:09:22 | 000,663,552 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2008.01.26 17:09:22 | 000,479,232 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav

< %systemroot%\system32\*.dll /lockedfiles >

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\system32\svchost.exe -k netsvcs

< %systemroot%\system32\drivers\*.sys /3 >
[2011.07.17 11:27:02 | 000,022,328 | ---- | M] () -- C:\WINDOWS\system32\drivers\PnkBstrK.sys

< %systemroot%\system32\*.* /3 >
[2011.07.18 15:42:59 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
[2011.07.17 11:26:32 | 002,250,024 | ---- | M] () -- C:\WINDOWS\system32\pbsvc.exe
[2011.07.17 11:26:32 | 000,066,872 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrA.exe
[2011.07.17 11:26:52 | 000,107,832 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrB.exe
[2011.07.17 11:07:19 | 000,002,206 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl

========== Alternate Data Streams ==========

@Alternate Data Stream - 110 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:888AFB86

< End of report >

Re: pc se sám zapíná a další problémy

Napsal: 19 črc 2011 08:36
od [ACze]miky
extras.txt:


OTL Extras logfile created on: 19.7.2011 9:16:44 - Run 1
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Documents and Settings\matmik\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,00 Gb Total Physical Memory | 2,12 Gb Available Physical Memory | 70,60% Memory free
6,29 Gb Paging File | 5,43 Gb Available in Paging File | 86,33% Paging File free
Paging file location(s): [Binary data over 100 bytes]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 19,53 Gb Total Space | 7,12 Gb Free Space | 36,43% Space Free | Partition Type: NTFS
Drive D: | 166,77 Gb Total Space | 17,97 Gb Free Space | 10,77% Space Free | Partition Type: NTFS
Drive E: | 7,54 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: MATMIK-D179D564 | User Name: matmik | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

[HKEY_USERS\S-1-5-21-73586283-115176313-725345543-1003\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- "D:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "D:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\Winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\Winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\Winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000
"D:\Program Files\ICQ7.2\ICQ.exe" = D:\Program Files\ICQ7.2\ICQ.exe:*:Enabled:ICQ7.2 -- (ICQ, LLC.)
"D:\Program Files\ICQ7.2\aolload.exe" = D:\Program Files\ICQ7.2\aolload.exe:*:Enabled:aolload.exe -- (AOL LLC)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"D:\Documents and Settings\matmik\Plocha\bittorrent.exe" = D:\Documents and Settings\matmik\Plocha\bittorrent.exe:*:Enabled:BitTorrent -- ()
"C:\Program Files\DNA\btdna.exe" = C:\Program Files\DNA\btdna.exe:*:Enabled:DNA -- (BitTorrent, Inc.)
"D:\Program Files\Steam\Steam.exe" = D:\Program Files\Steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation)
"C:\Program Files\TeamViewer\Version5\TeamViewer.exe" = C:\Program Files\TeamViewer\Version5\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application -- (TeamViewer GmbH)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000
"D:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe" = D:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:*:Enabled:Rockstar Games Social Club -- (Take-Two Interactive Software, Inc.)
"D:\Program Files\uTorrent\uTorrent.exe" = D:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"D:\Program Files\Team JPN\SpiderMan Web of Shadows\image\pc\Spider-Man Web of Shadows.exe" = D:\Program Files\Team JPN\SpiderMan Web of Shadows\image\pc\Spider-Man Web of Shadows.exe:*:Enabled:Spider-Man(R) - Web of Shadows(TM) -- (Activision, Inc.)
"D:\Program Files\ICQ7.2\ICQ.exe" = D:\Program Files\ICQ7.2\ICQ.exe:*:Enabled:ICQ7.2 -- (ICQ, LLC.)
"D:\Program Files\ICQ7.2\aolload.exe" = D:\Program Files\ICQ7.2\aolload.exe:*:Enabled:aolload.exe -- (AOL LLC)
"D:\Program Files\Steam\steamapps\common\zero gear\Server\ZeroGearServer.exe" = D:\Program Files\Steam\steamapps\common\zero gear\Server\ZeroGearServer.exe:*:Enabled:ZeroGearServer -- ()
"C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
"D:\Program Files\Valve\csstrike\hl.exe" = D:\Program Files\Valve\csstrike\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
"D:\Program Files\Electronic Arts\Battlefield Bad Company 2\BFBC2Updater.exe" = D:\Program Files\Electronic Arts\Battlefield Bad Company 2\BFBC2Updater.exe:*:Enabled:Battlefield: Bad Company™ 2 -- (EA Digital Illusions CE AB)
"D:\Program Files\Xfire\xfire.exe" = D:\Program Files\Xfire\xfire.exe:*:Enabled:Xfire -- (Xfire Inc.)
"D:\Program Files\Steam\steamapps\common\zero gear\ZeroGear.bat" = D:\Program Files\Steam\steamapps\common\zero gear\ZeroGear.bat:*:Enabled:Zero Gear Demo -- ()
"D:\Program Files\Steam\steamapps\common\aliens vs predator\AvP_Launcher.exe" = D:\Program Files\Steam\steamapps\common\aliens vs predator\AvP_Launcher.exe:*:Enabled:Aliens vs. Predator -- (Sega Europe Limited)
"D:\Program Files\Steam\steamapps\common\aliens vs predator\AvP_DX11.exe" = D:\Program Files\Steam\steamapps\common\aliens vs predator\AvP_DX11.exe:*:Enabled:Aliens vs. Predator -- (Sega Europe Limited)
"D:\Program Files\Steam\steamapps\common\aliens vs predator\AvP.exe" = D:\Program Files\Steam\steamapps\common\aliens vs predator\AvP.exe:*:Enabled:Aliens vs. Predator -- (Sega Europe Limited)
"D:\Program Files\Steam\steamapps\common\aliens vs predator dedicated server\AvP_CLI.exe" = D:\Program Files\Steam\steamapps\common\aliens vs predator dedicated server\AvP_CLI.exe:*:Enabled:Aliens vs Predator Dedicated Server -- ()
"D:\Program Files\Electronic Arts\Crytek\Crysis 2\bin32\Crysis2.exe" = D:\Program Files\Electronic Arts\Crytek\Crysis 2\bin32\Crysis2.exe:*:Enabled:Crysis2 -- (Crytek GmbH)
"D:\Program Files\Steam\steamapps\common\call of duty modern warfare 2\iw4sp.exe" = D:\Program Files\Steam\steamapps\common\call of duty modern warfare 2\iw4sp.exe:*:Enabled:Call of Duty: Modern Warfare 2 -- ()
"D:\Program Files\Steam\steamapps\common\call of duty modern warfare 2\iw4mp.exe" = D:\Program Files\Steam\steamapps\common\call of duty modern warfare 2\iw4mp.exe:*:Enabled:Call of Duty: Modern Warfare 2 - Multiplayer -- ()
"D:\Program Files\Mass Effect 2\Binaries\MassEffect2.exe" = D:\Program Files\Mass Effect 2\Binaries\MassEffect2.exe:*:Enabled:Mass Effect 2
"D:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\GameData\jamp.exe" = D:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\GameData\jamp.exe:*:Enabled:Jedi Academy MultiPlayer -- (Activision Inc)
"D:\Program Files\LucasArts\Star Wars Jedi Knight Jedi Academy\GameData\jamp.exe" = D:\Program Files\LucasArts\Star Wars Jedi Knight Jedi Academy\GameData\jamp.exe:*:Enabled:Jedi Academy MultiPlayer -- (Activision Inc)
"D:\Program Files\LucasArts\Star Wars Jedi Knight Jedi Academy\GameData\EoC-S-EDed.exe" = D:\Program Files\LucasArts\Star Wars Jedi Knight Jedi Academy\GameData\EoC-S-EDed.exe:*:Enabled:Jedi Academy MP Dedicated Server -- (Activision Inc)
"D:\Program Files\LucasArts\Star Wars Battlefront II\GameData\BattlefrontII.exe" = D:\Program Files\LucasArts\Star Wars Battlefront II\GameData\BattlefrontII.exe:*:Enabled:BattlefrontII
"D:\Program Files\AVG\AVG10\avgmfapx.exe" = D:\Program Files\AVG\AVG10\avgmfapx.exe:*:Enabled:Instalátor AVG
"D:\Documents and Settings\matmik\Dokumenty\Downloads\Assassins.Creed.Brotherhood.[ENG].RiP.JoeKkerr\Assassins.Creed.Brotherhood.[ENG].RiP.JoeKkerr\ACBSP.exe" = D:\Documents and Settings\matmik\Dokumenty\Downloads\Assassins.Creed.Brotherhood.[ENG].RiP.JoeKkerr\Assassins.Creed.Brotherhood.[ENG].RiP.JoeKkerr\ACBSP.exe:*:Enabled:ACBSP -- ()
"D:\Program Files\UBISOFT\Assassin's Creed\AssassinsCreed_Dx9.exe" = D:\Program Files\UBISOFT\Assassin's Creed\AssassinsCreed_Dx9.exe:*:Enabled:Assassin's Creed Dx9 -- (Ubisoft)
"D:\Program Files\UBISOFT\Assassin's Creed\AssassinsCreed_Dx10.exe" = D:\Program Files\UBISOFT\Assassin's Creed\AssassinsCreed_Dx10.exe:*:Enabled:Assassin's Creed Dx10 -- (Ubisoft)
"D:\Program Files\UBISOFT\Assassin's Creed\AssassinsCreed_Launcher.exe" = D:\Program Files\UBISOFT\Assassin's Creed\AssassinsCreed_Launcher.exe:*:Enabled:Assassin's Creed Update -- (Ubisoft)
"D:\Program Files\UBISOFT\Far Cry 2\bin\FarCry2.exe" = D:\Program Files\UBISOFT\Far Cry 2\bin\FarCry2.exe:*:Enabled:Far Cry 2
"D:\Program Files\UBISOFT\Far Cry 2\bin\FC2Launcher.exe" = D:\Program Files\UBISOFT\Far Cry 2\bin\FC2Launcher.exe:*:Enabled:Far Cry 2 Updater
"D:\Program Files\UBISOFT\Far Cry 2\bin\FC2Editor.exe" = D:\Program Files\UBISOFT\Far Cry 2\bin\FC2Editor.exe:*:Enabled:Editor
"D:\Program Files\Steam\steamapps\common\bulletstorm demo\Binaries\Win32\ShippingPC-StormGame.exe" = D:\Program Files\Steam\steamapps\common\bulletstorm demo\Binaries\Win32\ShippingPC-StormGame.exe:*:Enabled:Bulletstorm Demo


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0046FA01-C5B9-4985-BACB-398DC480FC05}" = Adobe Photoshop CS3
"{0224CACC-994D-45F8-B973-D65056EA9C2F}" = Adobe XMP DVA Panels CS3
"{02C3757A-B63E-4BDA-AD0C-052A087353DC}" = Renegade Paintball Demo
"{02EBDBB9-4600-41D3-B566-40CB861511D2}" = World of Warcraft FREE Trial
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3
"{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
"{053BE69E-4EFE-3621-3613-30080CD26070}" = Catalyst Control Center Graphics Previews Common
"{083F79E4-6FE9-46FB-A6C6-4F8862742947}" = ATI HYDRAVISION
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{08B3869E-D282-424C-9AFC-870E04A4BA14}" = Rockstar Games Social Club
"{08F173A8-AB81-4760-AEB0-CE91F3B05AEF}" = Activision(R)
"{09BDEEF0-5590-457D-89A9-5DB2742F9BBF}" = 32 Bit HP CIO Components Installer
"{0C5A665C-EB82-237B-4703-88CACDE22C0C}" = Catalyst Control Center Graphics Previews Common
"{0D994CC5-819F-4657-84DD-397B8FE1EA80}" = Star Wars Jedi Knight Jedi Academy
"{0F7C2E47-089E-4d23-B9F7-39BE00100776}" = Toolbox
"{11083C7A-D0D6-4DA4-8C3A-74B8389EC07B}" = ATI Catalyst Registration
"{11B83AD3-7A46-4C2E-A568-9505981D4C6F}" = HP Update
"{1246FF64-3035-4A92-8FE6-A968275495EB}" = Sony Vegas Pro 8.0
"{12A76360-388E-4B27-ABEB-D5FC5378DD2A}" = HPPhotoSmartPhotobookWebPack1
"{13B792AA-C078-43A4-8A3A-8B12D629940D}" = Counter-Strike 1.6
"{13F3917B56CD4C25848BDC69916971BB}" = DivX Converter
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin
"{18669FF9-C8FE-407a-9F70-E674896B1DB4}" = GPBaseService
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{195F2C6C-A343-4b10-B1A4-3F00AB9E9DD9}" = Fax
"{19A492A0-888F-44A0-9B21-D91700763F62}" = Catalyst Control Center - Branding
"{1A621A2F-98F6-4373-89A2-8ED16076990A}" = WinRez LT Studio
"{1BF4CB15-6055-452A-8487-021AE2D91208}" = Crysis® 2 Demo
"{1DA75811-6C2C-ABFA-7DBF-9B9EDAA005E3}" = ATI Catalyst Install Manager
"{1DCC7418-2089-4BDD-B321-3771956160FC}" = ijji Auto Installer
"{1E04F83B-2AB9-4301-9EF7-E86307F79C72}" = Google Earth
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{20B30DC1-E423-4939-B51D-05C58B0F9BBB}" = HP Photosmart All-In-One Driver Software 10.0 Rel .2
"{20EA84D4-6CB0-4FEA-8B6C-DC816CA7385F}" = Harry Potter and the Half-Blood Prince™ Demo
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{24D7346D-D4B4-45E8-98EA-75EC14B42DD8}" = Adobe ExtendScript Toolkit 2
"{266C7330-C0F4-49E5-8F20-A56F9F822875}" = SweetIM Toolbar for Internet Explorer 3.3
"{26A24AE4-039D-4CA4-87B4-2F83216019FF}" = Java(TM) 6 Update 19
"{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3
"{29FDDE76-CFDA-4891-BEEB-3AB04AB52841}" = black12
"{2A9A40C7-6670-4D5F-8F41-D12E2E08B48B}" = Star Wars®: Knights of the Old Republic (TM)
"{2C294A0B-DF22-4023-B168-8C7645B10019}" = Adobe Setup
"{313D3F56-93B7-4148-9435-F8FC660F81AD}" = BFSimulator
"{315F5FFC-1A5C-4A2A-B8E7-1C5B1174C198}_is1" = AML Free Registry Cleaner 4.21
"{33DE82AC-A35F-4f41-AC10-7932D5F12528}" = Harry Potter and the Order of the Phoenix™ Demo
"{34BFB099-07B2-4E95-A673-7362D60866A2}" = PSSWCORE
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{36CDA33B-909B-4719-97D1-C4B99309BDC7}" = ATI Parental Control & Encoder
"{36FDBE6E-6684-462b-AE98-9A39A1B200CC}" = HPProductAssistant
"{3AC8457C-0385-4BEA-A959-E095F05D6D67}" = Battlefield: Bad Company™ 2
"{3DED3A72-61A8-4B87-98A5-EF0BC8038AA0}" = DAEMON Tools
"{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}" = NVIDIA PhysX
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{411F3ABA-2AB5-4799-AA19-6ADF0A8F7424}" = Adobe Setup
"{45EC816C-0771-4C14-AE6D-72D1B578F4C8}" = Adobe After Effects CS4
"{49FC50FC-F965-40D9-89B4-CBFF80941033}" = Windows Movie Maker 2.0
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4B215C29-1A3E-4736-92AA-10C83FA56EB9}" = Adobe After Effects CS3 Presets
"{4CACFCD9-F71B-413A-8DF5-1A6419D5CDC6}" = Cards_Calendar_OrderGift_DoMorePlugout
"{4E526F25-8B1F-46AA-B50C-BBDA00EDFF66}" = Bluetooth PC Dialer
"{4E906533-F57F-45BD-A837-FCF24A2C243E}" = TubeSucker
"{5109C064-813E-4e87-B0DE-C8AF7B5BC02B}" = SmartWebPrintingOC
"{51846830-E7B2-4218-8968-B77F0FF475B8}" = Adobe Color EU Extra Settings
"{519556CC-4382-4B35-80F5-DD8E9460EEAC}" = OpenOffice.org 2.3
"{52A69E11-7CEB-4a7d-9607-68BA4F39A89B}" = DeviceDiscovery
"{52AC37AD-2435-4BD8-A28A-5AF1306EF69B}" = Transformers(TM) - Le Jeu Demo
"{542068F1-9AAE-4E1B-8ACA-094FE03728BE}" = Carambis Driver Updater
"{5454083B-1308-4485-BF17-1110000D8301}" = Grand Theft Auto IV
"{546C143E-68DC-314D-97BC-1E454E3BA429}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - CSY
"{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{576E71DA-3000-48F6-9B21-B9A70D47DFCF}" = Star Wars JK II Jedi Outcast
"{590F4980-1C17-EF89-E0C8-1D5866385DD5}" = CCC Help English
"{5ACE69F0-A3E8-44eb-88C1-0A841E700180}" = TrayApp
"{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}" = Skype™ 3.8
"{5DA6F06A-B389-407B-BF8C-1548767914D8}" = ATI Problem Report Wizard
"{5ECA5B22-4073-8A6D-2E7E-8F4C39FC4309}" = Catalyst Control Center InstallProxy
"{6033673D-2530-4587-8AD0-EB059FC263F9}" = Crysis® 2
"{6084D038-3401-4C9D-A216-86E6EEA25AFB}" = ZBrush3
"{60DB5894-B5A1-4B62-B0F3-669A22C0EE5D}" = Adobe Dynamiclink Support
"{64C1FA9A-FA94-4B6E-B3E4-8573738E4AD1}" = Adobe Setup
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{679EC478-3FF9-4987-B2FF-C2C2B27532A2}" = DocProc
"{67A9747A-E1F5-4E9A-81CC-12B5D5B81B6E}" = Adobe After Effects CS4 Third Party Content
"{687FEF8A-8597-40b4-832C-297EA3F35817}" = BufferChm
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6B437F94-056F-4791-AF2C-0D10E2706AF0}" = PanoStandAlone
"{6D4AC5A4-4CF9-4F90-8111-B9B53CE257BF}" = Adobe Color Common Settings
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
"{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3
"{7234061E-3D70-2682-F47B-75A5D2F83685}" = Catalyst Control Center
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{72EFBFE4-C74F-4187-AEFD-73EA3BE968D6}" = ICQ7.2
"{7353BAE6-5E49-46C4-A9B5-8A269A313789}" = Crysis WARHEAD(R)
"{7396ED28-EFCC-41F1-B267-9E1E73CC9AF3}" = venomspiderman
"{767CC44C-9BBC-438D-BAD3-FD4595DD148B}" = VC80CRTRedist - 8.0.50727.762
"{76C24F39-B161-498F-BD8B-C64789812D13}_is1" = ConvertXtoDVD 3.5.1.135
"{786C5747-1437-443D-B06E-79A00FE45110}" = Adobe Stock Photos 1.0
"{79D085FB-2960-47A3-BDA0-321F22A43989}" = 184691
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP
"{7F0B94C6-828C-4EDE-A86B-ECF4D792B68D}" = Activision(R)
"{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3
"{80533B67-C407-485D-8B5D-63BB8ED9D878}" = Scan
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83F81F91-7BE9-44D1-98AF-2B87E0B8710C}" = AMD Fusion for Gaming 1.0
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{8662F390-6B44-4BB8-909A-F6EBC94D1722}" = X-Men(TM) Legends 2 Demo
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{87E2B986-07E8-477a-93DC-AF0B6758B192}" = DocProcQFolder
"{8A85DEAD-7C1F-4368-881C-72AC74CB2E91}" = UnloadSupport
"{8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3}" = The Lord of the Rings FREE Trial
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8CFA9151-6404-409A-AF22-4632D04582FD}" = Assassin's Creed
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{8EB8E60B-315D-44EB-A896-10D88602EE46}" = Adobe Setup
"{8EDBA74D-0686-4C99-BFDD-F894678E5102}" = Adobe Common File Installer
"{8FB1B528-E260-451E-9B55-E9152F94B80B}" = Microsoft Games for Windows - LIVE Redistributable
"{8FFC924C-ED06-44CB-8867-3CA778ECE903}" = Adobe Help Center 2.0
"{90110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0405-0000-0000000FF1CE}" = Sada Compatibility Pack pro systém Office 2007
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{9208F706-6528-4591-A997-F41395FBD8A7}" = Spider-Man(TM) - Web of Shadows 1.1 Patch
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{95655ED4-7CA5-46DF-907F-7144877A32E5}" = Adobe Color NA Recommended Settings
"{97E038E1-41AD-4C93-BCDC-6A2394AEE352}" = Vegas Movie Studio Platinum 9.0
"{97EA42A5-3FAB-4948-B74D-F3C44B13F5CE}" = Crysis WARHEAD(R) Patch
"{990166FA-1ACB-4AA7-B592-4D370C7CDD1A}" = Spider-Man 3(TM)
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{A07840FC-CE63-4CB8-8030-EF4B9805925A}" = HPPhotoSmartDiscLabel_PaperLabel
"{A0B9F8DF-C949-45ed-9808-7DC5C0C19C81}" = Status
"{A25FF1C0-80B6-4B8B-A551-DC525697A408}" = AMD APP SDK Runtime
"{A2C9CD1B-2551-3AED-B244-6698FB929FA6}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - CSY
"{A2D81E70-2A98-4A08-A628-94388B063C5E}" = Adobe Color - Photoshop Specific
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A5AB9D5E-52E2-440e-A3ED-9512E253C81A}" = SolutionCenter
"{A7E19604-93AF-4611-8C9F-CE509C2B286E}_is1" = VDownloader 2.5
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A96E97134CA649888820BCDE5E300BBD}" = H.264 Decoder
"{AAC389499AEF40428987B3D30CFC76C9}" = MKV Splitter
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}" = PDF Settings
"{AC76BA86-7AD7-1033-7B44-A94000000001}" = Adobe Reader 9.4.1
"{ADFB9653-F44C-460C-BF58-189CC552DFFE}" = hpphotosmartdisclabelplugin
"{AE3D38A6-13B1-40B3-9423-D1FA9982FB6A}" = Adobe Bridge 1.0
"{AED7F169-9AF5-478C-9979-EBB6742BD231}" = CryENGINE 3 SDK
"{AEDBD563-24BB-4EE3-8366-A654DAC2D988}" = Mirror's Edge™
"{AEF9DC35ADDF4825B049ACBFD1C6EB37}" = AAC Decoder
"{AF05C9CC-A32A-484A-AF4D-AD5CAFEA34DE}" = 1989
"{AF7FC1CA-79DF-43c3-90A3-33EFEB9294CE}" = AIO_Scan
"{B05DE7B7-0B40-4411-BD4B-222CAE2D8F15}" = Adobe MotionPicture Color Files CS4
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B15381DD-FF97-4FCD-A881-ED4DB0975500}" = Adobe Color Video Profiles AE CS4
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B3C02EC1-A7B0-4987-9A43-8789426AAA7D}" = Adobe Setup
"{B4E91E95-A5BA-4E50-A465-DB7EFEB176E8}" = HPPhotoSmartDiscLabel_PrintOnDisc
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{B74D4E10-0000-0000-0000-EDED00000102}" = Adobe ExtendScript Toolkit 1.0
"{B8DBED1E-8BC3-4d08-B94A-F9D7D88E9BBF}" = HPSSupply
"{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3
"{b9be267c-e096-4cce-a4fd-f24eec004938}" = PS_AIO_02_ProductContext
"{BAD0FA60-09CF-4411-AE6A-C2844C8812FA}" = HP Photosmart Essential 2.5
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{BDE0CF4C-8DE2-41DB-A845-78D48874E2C6}" = SLOW-PCfighter
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C0DDC931-CD9C-4527-872A-5FA96F6EF77F}" = The Hulk(TM) Demo
"{C359507C-30B1-48A6-BD9B-C7B1CC3B06D7}" = SweetIM for Messenger 2.6
"{c4549405-195f-4450-8865-6be9dc5ad136}" = PS_AIO_02_Software_Min
"{C646C3D7-3013-4A78-A0A5-746320F94D77}" = Game Fire
"{C6B7E731-A9E1-4AEC-A1E7-2E63646647FE}" = Prince of Persia Warrior Within (Demo)
"{C708333C-B1B9-43be-B797-49FEC7A8D15B}" = C5200
"{C941F1F1-25B3-4DF5-83E6-888C51A1AAB6}" = AVIVO Codecs
"{C9BED750-1211-4480-B1A5-718A3BE15525}" = REALTEK GbE & FE Ethernet PCI-E NIC Driver
"{CA567AD5-33A4-403D-86D1-EE2D38251951}_is1" = VDownloader 0.82
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CC35B08B-4EC1-4759-B159-0EC4E69C3E7C}" = Ultimate Spider-Man (TM)
"{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
"{CCB9B81A-167F-4832-B305-D2A0430840B3}" = WebReg
"{cd0b9359-b716-4fd0-8e0a-09b3e312e8a4}" = PS_AIO_02_Software
"{CD104A82-D92A-484B-90F9-4CA044315DEC}" = UpdateMyDrivers
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{cef78f86-19a8-4bbd-91fa-e9b6b2d37348}" = C5200_Help
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{D1BB4446-AE9C-4256-9A7F-4D46604D2462}" = Adobe Setup
"{D1F6BB2F-E9A4-4233-BA03-BB62E8AED82A}" = Star Wars Jedi Knight Jedi Academy Demo
"{D2E0F0CC-6BE0-490b-B08B-9267083E34C9}" = MarketResearch
"{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}" = GTA San Andreas
"{D7739941-59D4-F971-A68B-0318CFBE02D6}" = ccc-utility
"{D80A6A73-E58A-4673-AFF5-F12D7110661F}" = Call of Duty(R) - World at War(TM)
"{D99A8E3A-AE5A-4692-8B19-6F16D454E240}" = Destination Component
"{DB6AB705-C9BD-40E3-8929-2EA57F36A4FF}_is1" = ConvertXtoDVD 4.0.6.316
"{DD362256-A7A2-4524-9457-213DDC2AFC2A}" = Adobe After Effects 7.0
"{DD3C88A0-C53C-41D0-A21B-6D021981D23E}" = HPPhotoSmartDiscLabelContent1
"{DD73CA82-EA82-38AA-863D-9A24A018DC96}" = Microsoft .NET Framework 3.5 Language Pack SP1 - csy
"{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}" = Adobe Color JA Extra Settings
"{DE904E59-2144-11D6-AD90-00B0D03E862E}" = Bionicle Bohrok Swarm
"{E08DC77E-D09A-4e36-8067-D6DBBCC5F8DC}" = VideoToolkit01
"{E1D7C392-EAF5-405F-A31D-BBD3B56C0C6A}" = ImageMixer 3 SE for SD
"{E2883E8F-472F-4fb0-9522-AC9BF37916A7}" = Adobe Download Manager
"{E4A71A41-BCC8-480a-9E69-0DA29CBA7ECA}" = kikin plugin 2.11
"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3
"{E9F6D498-1F81-49ED-B22D-3B008B54833B}" = CryENGINE (R) Photoshop Tool
"{ED340366-F336-420D-8867-88643836D900}" = Worms 4 Mayhem Demo
"{EFB21DE7-8C19-4A88-BB28-A766E16493BC}" = Adobe Photoshop CS
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F2835483-37F2-4123-B4FE-0E77D58447F2}" = Far Cry 2
"{F42CD69D-E393-47c8-B2CD-B139C4ADA9A8}" = Copy
"{F5346614-B7C4-4E94-826A-E2363155233D}" = EasyCleaner
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{F9466082-90E9-4BE4-92F0-CF0AF195B0CF}" = 325 USB PC Camera
"{F97E3841-CA9D-4964-9D64-26066241D26F}" = Microsoft Games for Windows - LIVE
"{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
"{FD1B1980-8CAB-4474-89F8-1245AF657AD1}" = Harry Potter a Princ Dvojí Krve™
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"{FFFF6D5C-E2F1-4B40-BC89-8923312E89EB}}_is1" = ACE Mega CoDecS Pack
"3FA1705966809259F916AF817C59B4F389F4572C" = Balíček ovladače systému Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)
"Adobe After Effects 7.0" = Adobe After Effects 7.0
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player
"Adobe_3dcb365ab9e01871fb8c6f27b0ea079" = Adobe After Effects CS4
"Adobe_5aab5a491a3a52ae624fd639f6aaa95" = Adobe After Effects CS4 Third Party Content
"Adobe_b7dd24a87e82dcf8af8876fd727b7cf" = Adobe After Effects CS3
"Amazon MP3 Downloader" = Amazon MP3 Downloader 1.0.3
"Ashampoo WinOptimizer 8_is1" = Ashampoo WinOptimizer 8 v.8.04
"ASIO4ALL" = ASIO4ALL
"avast" = avast! Free Antivirus
"AviSynth" = AviSynth 2.5
"BabylonToolbar" = Babylon toolbar
"BATMAN VENGEANCE" = BATMAN VENGEANCE
"BitTorrent Acceleration Patch" = BitTorrent Acceleration Patch
"BS.Player ControlBar" = BS.Player ControlBar
"Call of Duty" = Call of Duty
"CCleaner" = CCleaner
"CDex" = CDex extraction audio
"CloneCD" = CloneCD
"conduitEngine" = Conduit Engine
"CryENGINE (R) Photoshop Tool" = CryENGINE (R) Photoshop Tool
"CryENGINE 3 SDK" = CryENGINE 3 SDK
"Crysis WARHEAD(R)" = Crysis WARHEAD(R)
"Crysis WARHEAD(R) Patch" = Crysis WARHEAD(R) Patch
"DesktopX" = DesktopX
"Desura" = Desura
"DiskCheckerXP" = DiskCheckerXP 6.1
"Diver - Deep Water Adventures_is1" = Diver - Deep Water Adventures
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"Doom Shareware for Windows 95" = Doom Shareware for Windows 95
"Eusing Free Registry Cleaner" = Eusing Free Registry Cleaner
"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
"Evolution of Combat" = Evolution of Combat
"Fraps" = Fraps (remove only)
"Free Create-Burn ISO Image_is1" = Free Create-Burn ISO Image v2.0
"Graffiti Studio 2.0_is1" = Graffiti Studio 2.0
"Guitar Pro 5_is1" = Guitar Pro 5.2
"HP Imaging Device Functions" = HP Imaging Device Functions 10.0
"HP Photosmart Essential" = HP Photosmart Essential 2.5
"HP Smart Web Printing" = HP Smart Web Printing
"HP Solution Center & Imaging Support Tools" = HP Solution Center 10.0
"HPExtendedCapabilities" = HP Customer Participation Program 10.0
"HPOCR" = OCR Software by I.R.I.S. 10.0
"HWiNFO32_is1" = HWiNFO32 Version 3.35
"HyperCam 2" = HyperCam 2
"HyperCam Toolbar" = HyperCam Toolbar
"Cheat Engine 5.3_is1" = Cheat Engine 5.3
"InstallShield_{8662F390-6B44-4BB8-909A-F6EBC94D1722}" = X-Men(TM) Legends 2 Demo
"InstallShield_{9208F706-6528-4591-A997-F41395FBD8A7}" = Spider-Man(R) - Web of Shadows(TM) 1.1 Patch
"InstallShield_{CC35B08B-4EC1-4759-B159-0EC4E69C3E7C}" = Ultimate Spider-Man (TM)
"Knights of the Force 2.0" = Knights of the Force 2.0
"Lexicon 4.0" = Lingea Lexicon 2002
"Liveupdate4_is1" = Liveupdate4
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware verze 1.51.0.1200
"MediaCoder" = MediaCoder 0.7.1.4490
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack SP1 - csy" = Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Miranda IM" = Miranda IM 0.8.1
"MOV to AVI MPEG WMV Converter_is1" = MOV to AVI MPEG WMV Converter 1.7.4
"Mozilla Firefox (3.5.16)" = Mozilla Firefox (3.5.16)
"Multi Virus Cleaner 2007_is1" = Multi Virus Cleaner 2007
"MyAshampoo Toolbar" = MyAshampoo Toolbar
"Nero - Burning Rom!UninstallKey" = Nero 6 Ultra Edition
"NMPUninstallKey" = Nero Media Player
"Online_Sharing Toolbar" = Online_Sharing Toolbar
"OpenAL" = OpenAL
"P2P Energy Toolbar" = P2P Energy Toolbar
"PC Auto Shutdown_is1" = PC Auto Shutdown 4.8
"PunkBusterSvc" = PunkBuster Services
"RadioBar" = RadioBar Toolbar
"RADVideo" = RAD Video Tools
"Sakura" = Sakura
"San Andreas Mod Installer1.1" = San Andreas Mod Installer
"Sanny Builder 3_is1" = Sanny Builder 3.04
"Sawer" = Sawer
"Secret Crush Revealer" = Secret Crush Revealer
"Serenity Sabersystem Demo" = Serenity Sabersystem Demo
"Shockwave" = Shockwave
"Shop for HP Supplies" = Shop for HP Supplies
"SLOW-PCfighter" = SLOW-PCfighter
"Softonic_VLC_EN Toolbar" = Softonic_VLC_EN Toolbar
"SpeedBit Toolbar" = SpeedBit Toolbar
"Star Wars: The Force Unleashed_is1" = Star Wars: The Force Unleashed
"Steam App 10180" = Call of Duty: Modern Warfare 2
"Steam App 10190" = Call of Duty: Modern Warfare 2 - Multiplayer
"Steam App 10680" = Aliens vs. Predator
"Steam App 18800" = Zero Gear Demo
"Steam App 33290" = Call of Juarez: Bound in Blood Demo
"Steam App 34120" = Aliens vs Predator Dedicated Server
"Steam App 99870" = Bulletstorm Demo
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"TeamViewer 5" = TeamViewer 5
"Theme Manager" = Theme Manager
"ToggleEN Toolbar" = ToggleEN Toolbar
"UpdateMyDrivers" = UpdateMyDrivers
"uTorrent" = µTorrent
"VDJ50_is1" = Virtual Dj Studio 5.3
"Vietcong2-MP-test" = Vietcong 2 - public MP test
"Virtual DJ - Atomix Productions" = Virtual DJ - Atomix Productions
"VLC media player" = VLC media player 1.0.2
"VobSub" = VobSub v2.23 (Remove Only)
"WildTangent CDA" = WildTangent Web Driver
"Winamp" = Winamp
"WinASO Registry Optimizer 4.5.5_is1" = WinASO Registry Optimizer 4.5.5
"WinAVI VideoConverter_is1" = WinAVI VideoConverter
"Windows Media Player" = Windows Media Player 11
"WinRAR archiver" = WinRAR
"World of Warcraft Desktop" = World of Warcraft Desktop
"Worms 2" = Worms 2
"WT004618" = Tornado Jockey
"Xfire" = Xfire (remove only)
"XnView_is1" = XnView 1.82.3
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"Xvid_is1" = Xvid 1.1.2 final uninstall
"Yahoo! Companion" = Yahoo! Toolbar

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-73586283-115176313-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{8BECF123-B0EF-4E51-B7F3-923EFE15CC4A}" = Battlefield 2(TM) Demo
"6b96a6d3a7084a90" = Password List Generator
"BitTorrent DNA" = DNA
"Google Chrome" = Google Chrome
"ijji FireFox Launcher" = ijji FireFox Launcher 1.0
"ijji.com" = ijji
"Star Wars Movie Duels 2" = Star Wars Movie Duels 2
"The (darkness) Clan Map" = The (darkness) Clan Map
"UnityWebPlayer" = Unity Web Player

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 30.6.2011 5:38:42 | Computer Name = MATMIK-D179D564 | Source = Application Error | ID = 1000
Description = Chybující aplikace acbsp.exe, verze 0.0.0.0, chybující modul acbsp.exe,
verze 0.0.0.0, adresa chyby 0x001469a4.

Error - 30.6.2011 12:14:19 | Computer Name = MATMIK-D179D564 | Source = Application Error | ID = 1000
Description = Chybující aplikace acbsp.exe, verze 0.0.0.0, chybující modul unknown,
verze 0.0.0.0, adresa chyby 0x70005c29.

Error - 1.7.2011 2:23:01 | Computer Name = MATMIK-D179D564 | Source = ESENT | ID = 490
Description = svchost (1720) Pokus o otevření souboru C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb
pro čtení nebo zápis se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces
nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření
souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).

Error - 1.7.2011 2:23:03 | Computer Name = MATMIK-D179D564 | Source = ESENT | ID = 490
Description = svchost (1720) Pokus o otevření souboru C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb
pro čtení nebo zápis se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces
nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření
souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).

Error - 17.7.2011 5:33:52 | Computer Name = MATMIK-D179D564 | Source = MsiInstaller | ID = 1013
Description = Produkt: Microsoft .NET Framework 2.0 - Setup cannot continue because
this version of the .NET Framework is incompatible with a previously installed
one. For more information, see http://support.microsoft.com/support/kb ... 2/5/00.asp

Error - 18.7.2011 6:31:34 | Computer Name = MATMIK-D179D564 | Source = MsiInstaller | ID = 1013
Description = Produkt: NVIDIA PhysX -- Installation terminated

Error - 18.7.2011 6:44:50 | Computer Name = MATMIK-D179D564 | Source = Application Error | ID = 1000
Description = Chybující aplikace shippingpc-stormgame.exe, verze 1.0.7028.0, chybující
modul shippingpc-stormgame.exe, verze 1.0.7028.0, adresa chyby 0x00a1432b.

Error - 18.7.2011 8:26:54 | Computer Name = MATMIK-D179D564 | Source = Application Error | ID = 1000
Description = Chybující aplikace shippingpc-stormgame.exe, verze 1.0.7028.0, chybující
modul shippingpc-stormgame.exe, verze 1.0.7028.0, adresa chyby 0x00a1432b.

Error - 18.7.2011 8:43:04 | Computer Name = MATMIK-D179D564 | Source = Application Error | ID = 1000
Description = Chybující aplikace crysis2.exe, verze 1.0.0.5858, chybující modul
crysis2.exe, verze 1.0.0.5858, adresa chyby 0x00065e83.

Error - 19.7.2011 3:10:32 | Computer Name = MATMIK-D179D564 | Source = MsiInstaller | ID = 1013
Description = Produkt: NVIDIA PhysX -- Installation terminated

[ System Events ]
Error - 13.7.2011 12:29:02 | Computer Name = MATMIK-D179D564 | Source = Dhcp | ID = 1002
Description = Zapůjčení adresy IP 10.0.0.1 pro síťovou kartu s adresou 001BFC84690F
byla serverem DHCP 10.0.0.138 odmítnuta. (Server DHCP odeslal zprávu DHCPNACK).

Error - 13.7.2011 12:30:51 | Computer Name = MATMIK-D179D564 | Source = Service Control Manager | ID = 7022
Description = Služba Služba HP CUE DeviceDiscovery přestala během spouštění reagovat.

Error - 15.7.2011 11:43:22 | Computer Name = MATMIK-D179D564 | Source = W32Time | ID = 39452689
Description = Klient NTP zprostředkovatele časových údajů: Při vyhledávání DNS ručně
nakonfigurovaného partnera time.windows.com,0x1 došlo k chybě. Klient NTP se pokusí
o vyhledání pomocí služby DNS znovu za 15 minut. Chyba: Došlo k pokusu o operaci
se soketem v okamžiku nedosažitelnosti hostitele. (0x80072751)

Error - 15.7.2011 11:43:22 | Computer Name = MATMIK-D179D564 | Source = W32Time | ID = 39452701
Description = Klient NTP zprostředkovatele časových údajů je konfigurován pro získávání
časových údajů z jednoho nebo více zdrojů času. Žádný z těchto zdrojů však není
aktuálně k dispozici. Po dobu 14 minut nebude proveden žádný pokus o kontaktování
zdroje. Klient NTP nemá k dispozici žádný zdroj času.

Error - 15.7.2011 12:13:28 | Computer Name = MATMIK-D179D564 | Source = Service Control Manager | ID = 7022
Description = Služba Služba HP CUE DeviceDiscovery přestala během spouštění reagovat.


< End of report >

Re: pc se sám zapíná a další problémy

Napsal: 19 črc 2011 12:17
od motji
Ještě ten mbam. :)

Re: pc se sám zapíná a další problémy

Napsal: 19 črc 2011 13:16
od [ACze]miky
Malwarebytes' Anti-Malware
www.malwarebytes.org

Verze databáze:

Windows 5.1.2600 Service Pack 3
Internet Explorer 6.0.2900.5512

19.7.2011 14:16:26
mbam-log-2011-07-19 (14-16-21).txt

Typ: Úplná kontrola (C:\|D:\|)
Kontrolované objekty: 318187
Uplynulý čas: 2 hodin, 3 minut, 30 sekund

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 1
Infikované složky: 0
Infikované soubory: 1

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky v registru:
HKEY_CURRENT_USER\SOFTWARE\Policies\Microsoft\Internet Explorer\control panel\HomePage (PUM.Hijack.HomePageControl) -> Bad: (1) Good: (0) -> No action taken.

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
d:\documents and settings\matmik\dokumenty\downloads\bulletstorm-kaos\d3drm.dll (Malware.Packer.Gen) -> No action taken.

Re: pc se sám zapíná a další problémy

Napsal: 19 črc 2011 18:38
od [ACze]miky
Stále se mi často stává, že když se připojím na nějakou stránku tak mě misto ní vyskočí nějaká stranka Metasearch. Docela už mě to otravuje :(. Sem z toho už docela vytočenej.

Re: pc se sám zapíná a další problémy

Napsal: 19 črc 2011 20:12
od motji
:arrow: V mbamu vše smažte

:arrow: Odinstalujte AVG


:arrow: Spusťte combofix podle tohoto návodu
http://www.bleepingcomputer.com/combofi ... t-combofix

Re: pc se sám zapíná a další problémy

Napsal: 20 črc 2011 08:16
od [ACze]miky
Ten už mám dávno odinstalovanej... :D Na každou kravinu mě to upozorňovalo. Jako kdybych si ten počítač měl kontrolovat sám.

Re: pc se sám zapíná a další problémy

Napsal: 20 črc 2011 08:19
od motji
:D tak můžete spustit combofix :)

Re: pc se sám zapíná a další problémy

Napsal: 20 črc 2011 08:40
od [ACze]miky
Ok tady je log:


ComboFix 11-07-20.01 - matmik 20.07.2011 9:22.9.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.3070.2549 [GMT 2:00]
Spuštěný z: d:\audio svms\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: AVG Firewall *Disabled* {8decf618-9569-4340-b34a-d78d28969b66}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\ResultUrl
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-06-20 do 2011-07-20 )))))))))))))))))))))))))))))))
.
.
2011-07-18 10:31 . 2011-07-18 10:31 -------- d-----w- c:\windows\8A809006C25A4A3A9DAB94659BCDB107.TMP
2011-07-18 09:54 . 2011-07-18 09:54 -------- dc-h--w- c:\documents and settings\All Users\Data aplikací\{74CA62F1-AA45-46D5-944A-D4996B69B253}
2011-07-18 09:50 . 2011-07-18 09:50 -------- dc-h--w- c:\documents and settings\All Users\Data aplikací\{E3AE4A9C-391C-4205-93BA-8EA0631205F2}
2011-07-17 00:30 . 2011-07-17 00:30 -------- d-----w- c:\documents and settings\All Users\Data aplikací\PC Auto Shutdown
2011-07-01 15:40 . 2011-07-04 11:36 309848 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-07-01 15:40 . 2011-07-04 11:32 19544 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-07-01 15:40 . 2011-07-04 11:36 441176 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-07-01 15:40 . 2011-07-04 11:35 43608 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-07-01 15:40 . 2011-07-04 11:32 25432 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-07-01 15:40 . 2011-07-04 11:35 102616 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2011-07-01 15:40 . 2011-07-04 11:35 96344 ----a-w- c:\windows\system32\drivers\aswmon.sys
2011-07-01 15:40 . 2011-07-04 11:32 30808 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2011-07-01 15:40 . 2011-07-04 11:43 40112 ----a-w- c:\windows\avastSS.scr
2011-07-01 15:40 . 2011-07-04 11:43 199304 ----a-w- c:\windows\system32\aswBoot.exe
2011-07-01 15:39 . 2011-07-01 15:39 -------- d-----w- c:\documents and settings\All Users\Data aplikací\AVAST Software
2011-06-28 14:11 . 2011-06-28 14:14 -------- d-----w- c:\documents and settings\matmik\Local Settings\Data aplikací\Ubisoft Game Launcher
2011-06-27 11:05 . 2011-06-27 11:05 -------- d-----w- c:\documents and settings\Mich.Mik\Local Settings\Data aplikací\AVG Security Toolbar
2011-06-26 16:20 . 2011-06-26 16:20 -------- d-----w- c:\documents and settings\Mich.Mik\Data aplikací\AVG10
2011-06-26 09:19 . 2011-07-01 15:51 -------- d-----w- c:\windows\system32\drivers\AVG
2011-06-26 07:59 . 2011-06-26 07:59 -------- d-----w- c:\documents and settings\All Users\Data aplikací\ATI
2011-06-26 07:54 . 2011-06-26 07:54 -------- d-----w- c:\program files\AMD APP
2011-06-26 07:15 . 2011-06-26 07:15 -------- d-----w- C:\$AVG
2011-06-26 06:37 . 2011-06-26 06:37 -------- d-----w- c:\documents and settings\matmik\Data aplikací\AVG10
2011-06-26 06:36 . 2011-06-26 06:36 -------- d--h--w- c:\documents and settings\All Users\Data aplikací\Common Files
2011-06-26 06:34 . 2011-07-13 16:28 -------- d-----w- c:\documents and settings\All Users\Data aplikací\AVG10
2011-06-26 06:26 . 2011-07-01 15:57 -------- d-----w- c:\documents and settings\All Users\Data aplikací\MFAData
2011-06-23 14:47 . 2011-06-23 14:47 -------- d-----w- C:\rsit
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-07-18 13:42 . 2011-06-05 09:33 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-07-17 09:27 . 2010-05-03 13:47 22328 -c--a-w- c:\documents and settings\matmik\Data aplikací\PnkBstrK.sys
2011-07-17 09:27 . 2009-03-15 16:08 22328 -c--a-w- c:\windows\system32\drivers\PnkBstrK.sys
2011-07-17 09:26 . 2009-03-15 16:08 107832 -c--a-w- c:\windows\system32\PnkBstrB.exe
2011-07-17 09:26 . 2010-05-13 13:17 2250024 -c--a-w- c:\windows\system32\pbsvc.exe
2011-07-17 09:26 . 2009-03-15 16:08 66872 ----a-w- c:\windows\system32\PnkBstrA.exe
2011-06-06 11:35 . 2004-08-17 13:44 1858944 ----a-w- c:\windows\system32\win32k.sys
2011-05-29 07:11 . 2010-12-05 09:59 39984 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-05-29 07:11 . 2010-12-05 09:59 22712 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-05-25 04:21 . 2007-03-15 01:57 6554624 ----a-w- c:\windows\system32\drivers\ati2mtag.sys
2011-05-25 04:15 . 2008-02-06 17:06 311296 ----a-w- c:\windows\system32\atiiiexx.dll
2011-05-25 03:53 . 2010-02-11 04:23 57344 ----a-w- c:\windows\system32\aticalrt.dll
2011-05-25 03:53 . 2010-02-11 04:22 53248 ----a-w- c:\windows\system32\aticalcl.dll
2011-05-25 03:47 . 2007-03-15 01:19 17989632 ----a-w- c:\windows\system32\atioglxx.dll
2011-05-25 03:42 . 2010-02-11 04:21 5922816 ----a-w- c:\windows\system32\aticaldd.dll
2011-05-25 03:14 . 2007-03-15 01:40 4059328 ----a-w- c:\windows\system32\ati3duag.dll
2011-05-25 03:07 . 2011-02-16 10:58 956160 ----a-w- c:\windows\system32\ativvamv.dll
2011-05-25 03:05 . 2010-02-11 04:37 503808 ----a-w- c:\windows\system32\atiok3x2.dll
2011-05-25 02:58 . 2007-03-15 01:14 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2011-05-25 02:56 . 2008-02-06 17:06 462848 ----a-w- c:\windows\system32\ATIDEMGX.dll
2011-05-25 02:55 . 2007-03-15 01:57 302592 ----a-w- c:\windows\system32\ati2dvag.dll
2011-05-25 02:54 . 2007-03-15 01:29 3152384 ----a-w- c:\windows\system32\ativvaxx.dll
2011-05-25 02:39 . 2007-03-15 01:50 212992 ----a-w- c:\windows\system32\atipdlxx.dll
2011-05-25 02:39 . 2007-03-15 01:50 155648 ----a-w- c:\windows\system32\Oemdspif.dll
2011-05-25 02:39 . 2007-03-15 01:50 26112 ----a-w- c:\windows\system32\Ati2mdxx.exe
2011-05-25 02:39 . 2007-03-15 01:50 43520 ----a-w- c:\windows\system32\ati2edxx.dll
2011-05-25 02:38 . 2010-02-11 03:59 64512 ----a-w- c:\windows\system32\amdpcom32.dll
2011-05-25 02:38 . 2009-11-24 13:26 64512 ----a-w- c:\windows\system32\atimpc32.dll
2011-05-25 02:38 . 2007-03-15 01:49 188416 ----a-w- c:\windows\system32\ati2evxx.dll
2011-05-25 02:37 . 2007-03-15 01:48 643072 ----a-w- c:\windows\system32\ati2evxx.exe
2011-05-25 02:36 . 2007-03-15 01:47 53248 ----a-w- c:\windows\system32\ATIDDC.DLL
2011-05-25 02:34 . 2010-12-24 18:39 151552 ----a-w- c:\windows\system32\atiapfxx.exe
2011-05-25 02:31 . 2007-03-15 01:16 651264 ----a-w- c:\windows\system32\atikvmag.dll
2011-05-25 02:27 . 2010-02-11 03:54 200704 ----a-w- c:\windows\system32\atiadlxx.dll
2011-05-25 02:27 . 2007-03-15 01:14 17408 ----a-w- c:\windows\system32\atitvo32.dll
2011-05-25 02:22 . 2007-03-15 01:10 856064 ----a-w- c:\windows\system32\ati2cqag.dll
2011-05-24 21:44 . 2011-05-24 21:44 59904 ----a-w- c:\windows\system32\OVDecode.dll
2011-05-24 21:43 . 2011-05-24 21:43 12798976 ----a-w- c:\windows\system32\amdocl.dll
2011-05-02 15:32 . 2008-01-26 14:19 692736 ----a-w- c:\windows\system32\inetcomm.dll
2011-04-29 17:25 . 2004-08-17 13:49 151552 ----a-w- c:\windows\system32\schannel.dll
2011-04-29 16:19 . 2004-08-03 21:15 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-04-26 11:07 . 2004-08-17 13:49 293376 ----a-w- c:\windows\system32\winsrv.dll
2011-04-26 11:07 . 2004-08-17 13:49 33280 ----a-w- c:\windows\system32\csrsrv.dll
2011-04-25 14:47 . 2004-08-17 13:49 668160 ----a-w- c:\windows\system32\wininet.dll
2011-04-25 14:47 . 2004-08-03 20:59 61952 ----a-w- c:\windows\system32\tdc.ocx
2011-04-25 14:47 . 2004-08-17 13:49 81920 ----a-w- c:\windows\system32\ieencode.dll
2011-04-25 14:43 . 2004-08-17 13:44 370176 ----a-w- c:\windows\system32\html.iec
2011-04-21 13:37 . 2004-08-03 21:15 105472 ----a-w- c:\windows\system32\drivers\mup.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-07-04 11:43 122512 ----a-w- d:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-04-16 68856]
"uTorrent"="d:\program files\uTorrent\uTorrent.exe" [2011-04-08 399736]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"hpqSRMon"="c:\program files\HP\Digital Imaging\bin\hpqSRMon.exe" [2007-08-22 80896]
"QuickTime Task"="c:\windows\system32\qttask.exe" [2008-06-29 98304]
"StartCCC"="d:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-05-24 98304]
"avast"="d:\program files\AVAST Software\Avast\avastUI.exe" [2011-07-04 3493720]
"PC Auto Shutdown"="d:\program files\PC Auto Shutdown\AutoShutdown.exe" [2011-07-03 1431552]
.
c:\documents and settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
avast! Free Antivirus.lnk - c:\program files\Alwil Software\Avast5\AvastUI.exe [N/A]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"EnableLUA"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"UIHost"="c:\windows\system32\logonuiX.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\MCPClient]
2005-01-31 13:13 49152 ----a-w- c:\progra~1\COMMON~1\Stardock\MCPStub.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\WB]
2001-12-20 21:34 24576 ----a-w- d:\program files\Stardock\Object Desktop\ThemeManager\fastload.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\system32\wbsys.dll
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^HP Digital Imaging Monitor.lnk]
backup=c:\windows\pss\HP Digital Imaging Monitor.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^ImageMixer 3 SE Camera Monitor for SD.lnk]
backup=c:\windows\pss\ImageMixer 3 SE Camera Monitor for SD.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^matmik^Nabídka Start^Programy^Po spuštění^BluetoothPCDialer.lnk]
backup=c:\windows\pss\BluetoothPCDialer.lnkStartup
.
[HKLM\~\startupfolder\C:^Documents and Settings^matmik^Nabídka Start^Programy^Po spuštění^OpenOffice.org 2.3.lnk]
path=c:\documents and settings\matmik\Nabídka Start\Programy\Po spuštění\OpenOffice.org 2.3.lnk
backup=c:\windows\pss\OpenOffice.org 2.3.lnkStartup
.
[HKLM\~\startupfolder\C:^Documents and Settings^matmik^Nabídka Start^Programy^Po spuštění^Xfire.lnk]
backup=c:\windows\pss\Xfire.lnkStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATICustomerCare]
2010-05-04 15:05 311296 ----a-r- c:\program files\ATI\ATICustomerCare\ATICustomerCare.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BitTorrent]
2007-09-07 23:01 43008 ----a-w- d:\documents and settings\matmik\Plocha\bittorrent.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Desura]
2011-06-11 12:10 2482496 ----a-w- d:\program files\Desura\desura.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FixCamera]
2007-02-12 13:50 20480 ----a-w- c:\windows\FixCamera.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Game Fire]
2011-03-08 11:26 46592 ----a-w- c:\program files\Smart PC Utilities\Game Fire\GFTray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Auto Shutdown]
2011-07-03 18:39 1431552 ----a-w- d:\program files\PC Auto Shutdown\AutoShutdown.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
2010-12-30 13:17 19972712 ----a-w- c:\windows\RTHDCPL.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\snp325]
2006-10-10 13:11 827392 ----a-w- c:\windows\vsnp325.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
2008-04-16 05:00 68856 ----a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\tsnp325]
2006-10-10 14:49 270336 ----a-w- c:\windows\tsnp325.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
2011-04-08 12:46 399736 ----a-w- d:\program files\uTorrent\uTorrent.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"d:\\Documents and Settings\\matmik\\Plocha\\bittorrent.exe"=
"c:\\Program Files\\DNA\\btdna.exe"=
"d:\\Program Files\\Steam\\Steam.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"c:\\Program Files\\TeamViewer\\Version5\\TeamViewer.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"d:\\Program Files\\Rockstar Games\\Rockstar Games Social Club\\RGSCLauncher.exe"=
"d:\\Program Files\\uTorrent\\uTorrent.exe"=
"d:\\Program Files\\Team JPN\\SpiderMan Web of Shadows\\image\\pc\\Spider-Man Web of Shadows.exe"=
"d:\\Program Files\\ICQ7.2\\ICQ.exe"=
"d:\\Program Files\\ICQ7.2\\aolload.exe"=
"d:\\Program Files\\Steam\\steamapps\\common\\zero gear\\Server\\ZeroGearServer.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"d:\\Program Files\\Valve\\csstrike\\hl.exe"=
"d:\\Program Files\\Electronic Arts\\Battlefield Bad Company 2\\BFBC2Updater.exe"=
"d:\\Program Files\\Xfire\\xfire.exe"=
"d:\\Program Files\\Steam\\steamapps\\common\\zero gear\\ZeroGear.bat"=
"d:\\Program Files\\Steam\\steamapps\\common\\aliens vs predator\\AvP_Launcher.exe"=
"d:\\Program Files\\Steam\\steamapps\\common\\aliens vs predator\\AvP_DX11.exe"=
"d:\\Program Files\\Steam\\steamapps\\common\\aliens vs predator\\AvP.exe"=
"d:\\Program Files\\Steam\\steamapps\\common\\aliens vs predator dedicated server\\AvP_CLI.exe"=
"d:\\Program Files\\Electronic Arts\\Crytek\\Crysis 2\\bin32\\Crysis2.exe"=
"d:\\Program Files\\Steam\\steamapps\\common\\call of duty modern warfare 2\\iw4sp.exe"=
"d:\\Program Files\\Steam\\steamapps\\common\\call of duty modern warfare 2\\iw4mp.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"d:\\Program Files\\LucasArts\\KotF Jedi Academy Expansion Pack\\GameData\\jamp.exe"=
"d:\\Program Files\\LucasArts\\Star Wars Jedi Knight Jedi Academy\\GameData\\jamp.exe"=
"d:\\Program Files\\LucasArts\\Star Wars Jedi Knight Jedi Academy\\GameData\\EoC-S-EDed.exe"=
"d:\\Documents and Settings\\matmik\\Dokumenty\\Downloads\\Assassins.Creed.Brotherhood.[ENG].RiP.JoeKkerr\\Assassins.Creed.Brotherhood.[ENG].RiP.JoeKkerr\\ACBSP.exe"=
"d:\\Program Files\\UBISOFT\\Assassin's Creed\\AssassinsCreed_Dx9.exe"=
"d:\\Program Files\\UBISOFT\\Assassin's Creed\\AssassinsCreed_Dx10.exe"=
"d:\\Program Files\\UBISOFT\\Assassin's Creed\\AssassinsCreed_Launcher.exe"=
.
R0 d347bus;d347bus;c:\windows\system32\drivers\d347bus.sys [28.5.2008 10:13 155136]
R0 d347prt;d347prt;c:\windows\system32\drivers\d347prt.sys [28.5.2008 10:13 5248]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [1.7.2011 17:40 441176]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [1.7.2011 17:40 309848]
R1 HWiNFO32;HWiNFO32 Kernel Driver;d:\program files\HWiNFO32\HWiNFO32.SYS [2.5.2010 10:12 19064]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [1.7.2011 17:40 19544]
R2 PCAutoShutdown_Service;PCAutoShutdown_Service;d:\program files\PC Auto Shutdown\ShutdownService.exe [17.7.2011 2:30 441624]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [25.3.2010 17:27 135664]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2.5.2010 10:27 1691480]
S3 CFcatchme;CFcatchme;\??\c:\docume~1\matmik\LOCALS~1\Temp\CFcatchme.sys --> c:\docume~1\matmik\LOCALS~1\Temp\CFcatchme.sys [?]
S3 Desura Install Service;Desura Install Service;c:\program files\Common Files\Desura\desura_service.exe [11.6.2011 14:10 130368]
S3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [25.3.2010 17:27 135664]
S3 hhkhlt;{2EB1BFFC-297B-46A2-8F0D-AD9CDA4EE1D4};c:\program files\ophcrack\pwdump\servpw.exe --> c:\program files\ophcrack\pwdump\servpw.exe [?]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [5.12.2010 11:59 39984]
S3 SNP325;USB PC Camera (SNPSTD325);c:\windows\system32\drivers\snp325.sys [20.1.2011 19:27 10251904]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
getPlusHelper REG_MULTI_SZ getPlusHelper
.
Obsah adresáře 'Naplánované úlohy'
.
2011-07-20 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-03-25 15:27]
.
2011-07-19 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-03-25 15:27]
.
2011-07-01 c:\windows\Tasks\UpdateCheck.job
- c:\program files\Smart PC Utilities\Game Fire\UpdateCheck.exe [2011-03-08 13:40]
.
2011-07-20 c:\windows\Tasks\WGASetup.job
- c:\windows\system32\KB905474\wgasetup.exe [2010-09-14 20:18]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://paflikkq.info
uSearch Page = hxxp://www.google.com
uLocal Page = hxxp://www.google.com/
uSearch Bar = hxxp://www.google.com/ie
mStart Page = hxxp://paflikkq.info
mLocal Page = hxxp://www.google.com/
uInternet Settings,ProxyOverride = *.local
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html
IE: {{0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} - {E601996F-E400-41CA-804B-CD6373A7EEE2} -
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\documents and settings\matmik\Data aplikací\Mozilla\Firefox\Profiles\iciim6xk.default\
FF - prefs.js: browser.startup.homepage - google.cz
FF - prefs.js: keyword.URL - hxxp://search.babylon.com/?babsrc=SP_ss&mntrId=70d22ddb000000000000001bfc84690f&tlver=1.4.19.19&instlRef=sst&ss=1&affID=17981&q=
FF - Ext: LoudMo Contextual Ad Assistant: {37b1d48c-6e0a-dfe8-8a74-05116b74c806} - d:\program files\Mozilla Firefox\extensions\{37b1d48c-6e0a-dfe8-8a74-05116b74c806}
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - d:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: ResultUrl: {C8431CD2-C25A-45F3-BEA9-A9103C31409A} - d:\program files\Mozilla Firefox\extensions\{C8431CD2-C25A-45F3-BEA9-A9103C31409A}
FF - Ext: Conduit Engine : engine@conduit.com - %profile%\extensions\engine@conduit.com
FF - Ext: Babylon: ffxtlbr@babylon.com - %profile%\extensions\ffxtlbr@babylon.com
FF - Ext: GamePlayLabs Plugin: plugin@gameplaylabs.com - %profile%\extensions\plugin@gameplaylabs.com
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: HyperCamToolbar: {75656794-AB59-4712-BFBC-5D816D56F3BC} - %profile%\extensions\{75656794-AB59-4712-BFBC-5D816D56F3BC}
FF - Ext: MyAshampoo Community Toolbar: {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - %profile%\extensions\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}
FF - Ext: kikin plugin: {AA994882-F391-4d2e-806F-8908DA4814ED} - %profile%\extensions\{AA994882-F391-4d2e-806F-8908DA4814ED}
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\Java\jre6\lib\deploy\jqs\ff
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF - Ext: avast! WebRep: wrc@avast.com - d:\program files\AVAST Software\Avast\WebRep\FF
FF - Ext: SpeedBit Toolbar: {EBFCD017-BCAD-42C3-9ED5-89DBDFC59171} - c:\program files\SpeedBit Toolbar\SPFireFox
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
URLSearchHooks-{A3BC75A2-1F87-4686-AA43-5347D756017C} - (no file)
Toolbar-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-07-20 09:29
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
hpqSRMon = c:\program files\HP\Digital Imaging\bin\hpqSRMon.exe???????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-73586283-115176313-725345543-1003\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
"??"=hex:c9,0f,8c,a9,08,b0,de,8d,38,f3,ff,29,76,d6,7f,58,27,8e,71,e0,ac,72,81,
d1,9b,16,1b,79,d8,aa,7a,33,a8,21,ff,8f,89,2b,c6,85,bf,d6,80,ae,26,18,b4,56,\
"??"=hex:92,b0,92,2a,dc,c2,cb,71,6f,15,f8,be,4d,6c,5a,9d
.
[HKEY_USERS\S-1-5-21-73586283-115176313-725345543-1003\Software\SecuROM\License information*]
"datasecu"=hex:19,8f,76,40,c4,33,3d,c0,f9,17,e2,7c,94,57,e3,f2,5c,59,88,d0,5f,
af,e0,7e,13,1b,70,5e,7b,91,40,f1,59,6f,5c,64,49,e9,84,62,16,a0,a5,4e,b2,73,\
"rkeysecu"=hex:29,23,be,84,e1,6c,d6,ae,52,90,49,f1,f1,bb,e9,eb
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(824)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\atiadlxx.dll
c:\progra~1\COMMON~1\Stardock\mcpstub.dll
d:\program files\Stardock\Object Desktop\ThemeManager\fastload.dll
.
- - - - - - - > 'explorer.exe'(3696)
c:\progra~1\COMMON~1\Stardock\MCPCore.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
c:\program files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll
.
Celkový čas: 2011-07-20 09:32:07
ComboFix-quarantined-files.txt 2011-07-20 07:32
ComboFix2.txt 2011-06-24 14:51
.
Před spuštěním: 7 312 404 480
Po spuštění: 7 409 590 272
.
- - End Of File - - 5E6EF00A64ECBF9C893EF10397B5E056

Re: pc se sám zapíná a další problémy

Napsal: 20 črc 2011 09:39
od motji
O tomto programu víte, instaloval jste ho sám?

D:\Program Files\PC Auto Shutdown\AutoShutdown.exe

Re: pc se sám zapíná a další problémy

Napsal: 20 črc 2011 09:48
od [ACze]miky
Ano. To dělá on?

Re: pc se sám zapíná a další problémy

Napsal: 20 črc 2011 09:49
od motji
To já nevím :o , ale zkuste ho odinstalovat a uvidíme :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz