Prosím o prevenci

[ervussus]

Dobrý den.

Jsem u kámoše na PC (nejde se mu zaregistrovat) Chtěl bych pozadat, aby mi nekdo udelal kontrolu pc. (prevence) Ale ma ho dost zpomaleny. Tak jestli by nekdo mel cas.

Dekuji.

[ervussus]

Zde je log:

Logfile of random's system information tool 1.06 (written by random/random)
Run by Fridrich at 2010-04-18 15:44:24
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 7 GB (20%) free of 33 GB
Total RAM: 2047 MB (66% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:44:44, on 18.4.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Microsoft ActiveSync\Wcescomm.exe
C:\Program Files\DAEMON Tools Lite\daemon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\PROGRA~1\MICROS~4\rapimgr.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\ICQ6Toolbar\ICQ Service.exe
C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Fridrich\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\Fridrich.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://google.icq.com/search/search_frame.php
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://google.icq.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.centrum.cz/skinit/icq/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60076
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=60076
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60076
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=60076
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\ctbr.dll
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\ctbr.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: &Crawler lišta - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\ctbr.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\Wcescomm.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: PowerReg Scheduler.exe
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/pub/s ... wflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{DB4EBDFD-9D7F-4E3D-AFDC-FFEE70BE7E66}: NameServer = 192.168.25.100
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\ctbr.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Google Update Service (gupdate1c9ffdecc62b8a) (gupdate1c9ffdecc62b8a) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe

--
End of file - 10411 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{2E1FC1ED-20DB-49DB-A644-0F03934EDEBB}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
Yahoo! Toolbar Helper - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2006-10-26 440384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}]
C:\PROGRA~1\Crawler\ctbr.dll [2008-06-05 1188864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll [2008-03-25 509328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-02-21 279664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll [2010-02-21 812528]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{855F3B16-6D32-4fe6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2008-12-09 958200]
{4B3803EA-5230-4DC3-A7FC-33638F3D3542} - &Crawler lišta - C:\PROGRA~1\Crawler\ctbr.dll [2008-06-05 1188864]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2006-10-26 440384]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-02-21 279664]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-04-10 16126464]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2006-01-12 155648]
"CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2009-03-24 1983816]
"CanonSolutionMenu"=C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe [2009-03-18 767312]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072]
"nwiz"=nwiz.exe /installquiet []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-11-20 110184]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-11-20 12669544]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2009-09-29 2054360]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
""= []
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-04-13 68856]
"NBJ"=C:\Program Files\Ahead\Nero BackItUp\NBJ.exe [2006-09-15 2048000]
"H/PC Connection Agent"=C:\Program Files\Microsoft ActiveSync\Wcescomm.exe [2006-11-13 1289000]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\daemon.exe [2009-04-23 691656]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2010-03-09 26100520]

C:\Documents and Settings\Fridrich\Nabídka Start\Programy\Po spuštění
PowerReg Scheduler.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2007-03-14 110592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll, digiwet.dll

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Counter-Strike Source\hl2.exe"="C:\Program Files\Counter-Strike Source\hl2.exe:*:Enabled:hl2"
"C:\Program Files\ICQLite\ICQLite.exe"="C:\Program Files\ICQLite\ICQLite.exe:*:Enabled:ICQ Lite"
"C:\Program Files\Winamp Remote\bin\Orb.exe"="C:\Program Files\Winamp Remote\bin\Orb.exe:*:Enabled:Orb"
"C:\Program Files\Winamp Remote\bin\OrbTray.exe"="C:\Program Files\Winamp Remote\bin\OrbTray.exe:*:Enabled:OrbTray"
"C:\Program Files\Winamp Remote\bin\OrbStreamerClient.exe"="C:\Program Files\Winamp Remote\bin\OrbStreamerClient.exe:*:Enabled:Orb Stream Client"
"E:\UT2004\System\UT2004.exe"="E:\UT2004\System\UT2004.exe:*:Enabled:UT2004"
"C:\Program Files\MTA San Andreas\server\MTA Server.exe"="C:\Program Files\MTA San Andreas\server\MTA Server.exe:*:Enabled:MTA Server"
"C:\Program Files\Graffiti Studio 2.0\Graffiti Studio.exe"="C:\Program Files\Graffiti Studio 2.0\Graffiti Studio.exe:*:Enabled:Macromedia Projector"
"C:\Program Files\3DO\Heroes3\HEROES3.EXE"="C:\Program Files\3DO\Heroes3\HEROES3.EXE:*:Disabled:Heroes of Might and Magic® III"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Documents and Settings\Fridrich\Plocha\Kopie - World of Warcraft\Repair.exe"="C:\Documents and Settings\Fridrich\Plocha\Kopie - World of Warcraft\Repair.exe:*:Enabled:Blizzard Repair Utility"
"C:\Program Files\ICQ6\ICQ.exe"="C:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6"
"C:\Program Files\Counter-Strike 1.6\hl.exe"="C:\Program Files\Counter-Strike 1.6\hl.exe:*:Enabled:Half-Life Launcher"
"E:\Program Files\metin2.bin"="E:\Program Files\metin2.bin:*:Enabled:metin2"
"C:\Documents and Settings\Fridrich\Plocha\WoW\Repair.exe"="C:\Documents and Settings\Fridrich\Plocha\WoW\Repair.exe:*:Enabled:Blizzard Repair Utility"
"C:\Documents and Settings\Fridrich\Plocha\WoW\BackgroundDownloader.exe"="C:\Documents and Settings\Fridrich\Plocha\WoW\BackgroundDownloader.exe:*:Enabled:Blizzard Downloader"
"E:\CoD2MP_s.exe"="E:\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\WINDOWS\Explorer.EXE"="C:\WINDOWS\Explorer.EXE:*:Enabled:ENABLE"
"C:\WINDOWS\system32\userinit.exe"="C:\WINDOWS\system32\userinit.exe:*:Enabled:ENABLE"
"C:\Program Files\Quake III Arena\quake3.exe"="C:\Program Files\Quake III Arena\quake3.exe:*:Enabled:quake3"
"D:\QUAKE 3\QUAKE3\QUAKE3.EXE"="D:\QUAKE 3\QUAKE3\QUAKE3.EXE:*:Enabled:QUAKE3"
"C:\Program Files\ICQ6.5\ICQ.exe"="C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"C:\Program Files\Ares\Ares.exe"="C:\Program Files\Ares\Ares.exe:*:Enabled:Ares p2p for windows"
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"E:\Program Files\World of Warcraft\WoW-3.2.0-enUS-downloader.exe"="E:\Program Files\World of Warcraft\WoW-3.2.0-enUS-downloader.exe:*:Enabled:Blizzard Downloader"
"E:\Program Files\World of Warcraft\Launcher.exe"="E:\Program Files\World of Warcraft\Launcher.exe:*:Enabled:Blizzard Launcher"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"E:\Program Files\WoW-WOTLK\WoW-3.1.3.9947-to-3.2.0.10192-enGB-downloader.exe"="E:\Program Files\WoW-WOTLK\WoW-3.1.3.9947-to-3.2.0.10192-enGB-downloader.exe:*:Enabled:Blizzard Downloader"
"E:\Program Files\WoW-WOTLK\WoW-3.2.0.10314-to-3.2.2.10482-enGB-downloader.exe"="E:\Program Files\WoW-WOTLK\WoW-3.2.0.10314-to-3.2.2.10482-enGB-downloader.exe:*:Enabled:Blizzard Downloader"
"E:\Program Files\WoW-WOTLK\WoW-3.2.2.10482-to-3.2.2.10505-enGB-downloader.exe"="E:\Program Files\WoW-WOTLK\WoW-3.2.2.10482-to-3.2.2.10505-enGB-downloader.exe:*:Enabled:Blizzard Downloader"
"E:\Program Files\WoW-WOTLK\BackgroundDownloader.exe"="E:\Program Files\WoW-WOTLK\BackgroundDownloader.exe:*:Enabled:Blizzard Downloader"
"E:\Binaries\FFOW.exe"="E:\Binaries\FFOW.exe:*:Enabled:Frontlines Game"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{7632045c-f869-11de-99a7-0019dbd868d9}]
shell\AutoRun\command - K:\Startme.exe


======List of files/folders created in the last 1 months======

2010-04-18 15:44:24 ----D---- C:\rsit
2010-04-18 15:44:24 ----D---- C:\Program Files\trend micro
2010-04-15 14:34:55 ----HDC---- C:\WINDOWS\$NtUninstallKB979683$
2010-04-15 14:34:42 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$
2010-04-15 14:34:30 ----HDC---- C:\WINDOWS\$NtUninstallKB979402_WM9$
2010-04-15 14:32:19 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2010-04-15 14:32:12 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2010-04-15 14:32:02 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2010-04-15 14:31:17 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2010-03-29 16:59:42 ----D---- C:\Program Files\Common Files\Skype
2010-03-21 20:36:09 ----RHD---- C:\Documents and Settings\Fridrich\Data aplikací\SecuROM
2010-03-21 20:10:39 ----HDC---- C:\WINDOWS\$NtUninstall_Xbox_360_CC_Driver$
2010-03-21 20:04:01 ----D---- C:\Program Files\Counter-Strike 1.6
2010-03-21 09:01:03 ----D---- C:\Program Files\ESET
2010-03-20 16:39:46 ----A---- C:\WINDOWS\setuplog.txt
2010-03-19 20:03:43 ----D---- C:\Documents and Settings\Fridrich\Data aplikací\Leadertech
2010-03-19 20:01:33 ----D---- C:\Program Files\NovaLogic
2010-03-19 19:53:22 ----D---- C:\WINDOWS\system32\AGEIA
2010-03-19 19:53:18 ----D---- C:\Program Files\AGEIA Technologies
2010-03-19 19:52:46 ----D---- C:\Program Files\Common Files\Wise Installation Wizard

======List of files/folders modified in the last 1 months======

2010-04-18 15:44:32 ----D---- C:\WINDOWS\Prefetch
2010-04-18 15:44:25 ----D---- C:\WINDOWS\Temp
2010-04-18 15:44:24 ----RD---- C:\Program Files
2010-04-18 15:28:28 ----D---- C:\Documents and Settings\Fridrich\Data aplikací\Skype
2010-04-18 15:26:43 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-04-18 14:38:25 ----D---- C:\Documents and Settings\Fridrich\Data aplikací\skypePM
2010-04-17 23:07:20 ----D---- C:\WINDOWS\system32\CatRoot2
2010-04-17 23:03:11 ----D---- C:\Documents and Settings\Fridrich\Data aplikací\ICQ
2010-04-17 12:53:14 ----SHD---- C:\WINDOWS\Installer
2010-04-17 12:52:51 ----D---- C:\Program Files\Google
2010-04-15 20:53:45 ----D---- C:\Documents and Settings\All Users\Data aplikací\CanonIJPLM
2010-04-15 14:37:03 ----D---- C:\WINDOWS
2010-04-15 14:36:45 ----D---- C:\WINDOWS\system32
2010-04-15 14:35:29 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2010-04-15 14:35:03 ----HD---- C:\WINDOWS\inf
2010-04-15 14:35:02 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-04-15 14:34:53 ----HD---- C:\WINDOWS\$hf_mig$
2010-04-15 14:34:50 ----A---- C:\WINDOWS\imsins.BAK
2010-04-15 14:34:46 ----D---- C:\WINDOWS\system32\drivers
2010-04-15 14:27:42 ----SHD---- C:\WINDOWS\CSC
2010-04-13 18:19:15 ----D---- C:\Program Files\Crawler
2010-04-06 19:52:54 ----A---- C:\WINDOWS\system32\MRT.exe
2010-04-02 17:13:36 ----D---- C:\Program Files\Mozilla Firefox
2010-03-31 12:07:47 ----D---- C:\Program Files\Internet Explorer
2010-03-29 16:59:42 ----D---- C:\Program Files\Common Files
2010-03-28 09:41:27 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-03-21 20:21:00 ----SD---- C:\Documents and Settings\Fridrich\Data aplikací\Microsoft
2010-03-21 20:10:41 ----SD---- C:\WINDOWS\system32\Microsoft
2010-03-21 20:10:12 ----D---- C:\WINDOWS\system32\DirectX
2010-03-21 13:18:06 ----A---- C:\WINDOWS\NeroDigital.ini
2010-03-20 19:26:30 ----D---- C:\Program Files\EA Games
2010-03-20 17:16:09 ----A---- C:\WINDOWS\system32\PnkBstrB.exe
2010-03-20 16:53:03 ----HD---- C:\Program Files\InstallShield Installation Information
2010-03-20 16:53:00 ----D---- C:\WINDOWS\WinSxS
2010-03-20 16:09:26 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-03-19 19:54:12 ----A---- C:\WINDOWS\system32\CmdLineExt.dll
2010-03-19 19:53:34 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-03-19 18:05:50 ----A---- C:\WINDOWS\system32\wmp.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-07-01 43008]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2009-09-29 108792]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2009-09-29 96408]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2006-06-05 30556]
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-09-29 116008]
R2 NwlnkIpx;Transportní protokol kompatibilní s NWLink IPX/SPX/NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2008-04-13 88320]
R2 NwlnkNb;Služba NWLink pro rozhraní NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2001-09-20 63232]
R2 NwlnkSpx;Protokol NWLink SPX/SPXII; C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2001-09-20 55936]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-04-10 4397568]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-11-21 10235968]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2007-02-06 90880]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 a0keo932;a0keo932; C:\WINDOWS\system32\drivers\a0keo932.sys []
S3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2007-03-14 1972736]
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2008-02-26 25280]
S3 npkcrypt;npkcrypt; \??\E:\Program Files\Lineage II\system\npkcrypt.sys []
S3 NTACCESS;NTACCESS; \??\D:\NTACCESS.sys []
S3 s1018bus;Sony Ericsson Device 1018 driver (WDM); C:\WINDOWS\system32\DRIVERS\s1018bus.sys [2009-03-25 86824]
S3 s1018mdfl;Sony Ericsson Device 1018 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s1018mdfl.sys [2009-03-25 15016]
S3 s1018mdm;Sony Ericsson Device 1018 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s1018mdm.sys [2009-03-25 114728]
S3 s1018mgmt;Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s1018mgmt.sys [2009-03-25 106208]
S3 s1018nd5;Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS); C:\WINDOWS\system32\DRIVERS\s1018nd5.sys [2009-03-25 26024]
S3 s1018obex;Sony Ericsson Device 1018 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s1018obex.sys [2009-03-25 104744]
S3 s1018unic;Sony Ericsson Device 1018 USB Ethernet Emulation (WDM); C:\WINDOWS\system32\DRIVERS\s1018unic.sys [2009-03-25 109864]
S3 SetupNTGLM7X;SetupNTGLM7X; \??\D:\NTGLM7X.sys []
S3 usb_rndisx;Adaptér USB RNDIS; C:\WINDOWS\system32\DRIVERS\usb8023x.sys [2008-04-13 12800]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 wceusbsh;Windows CE USB Serial Host Driver; C:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2006-11-06 28672]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2009-09-29 735960]
R2 ICQ Service;ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2008-10-19 222456]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [2009-02-10 116104]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-11-20 154216]
R2 NwSapAgent;Agent SAP; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2010-03-11 75064]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2007-03-14 446464]
S2 gupdate1c9ffdecc62b8a;Google Update Service (gupdate1c9ffdecc62b8a); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-07-08 133104]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2009-09-29 20680]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-05-08 182768]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

[Caroprd111]

Zdravím


Doporučuji odinstalovat (pokud nepoužíváte) toolbary (lišty) v Přidat nebo odebrat programy.


Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe

• Spusťte program, poté klikněte na Prohledat
• Po dokončení, sem vložte logy OTL.Txt a Extras.txt

K čemu používáte jednotku K:

[ervussus]

Jednotku K?? Tu tady ani nemam. Ale pokud ji tam vydite smazat

[ervussus]

OTL.Txt
LOG


OTL logfile created on: 18.4.2010 15:52:52 - Run 1
OTL by OldTimer - Version 3.2.1.2 Folder = C:\Documents and Settings\Fridrich\Dokumenty\Stažené soubory
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 38,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 75,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 31,85 Gb Total Space | 6,36 Gb Free Space | 19,98% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 117,19 Gb Total Space | 93,46 Gb Free Space | 79,75% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: POCITAC
Current User Name: Fridrich
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010.04.18 15:50:25 | 000,562,176 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Fridrich\Dokumenty\Stažené soubory\OTL.exe
PRC - [2010.04.02 17:13:27 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010.03.13 23:25:41 | 007,359,640 | ---- | M] (Blizzard Entertainment) -- E:\Program Files\WoW-WOTLK\Wow.exe
PRC - [2009.09.29 14:03:46 | 000,735,960 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2009.09.29 14:02:52 | 002,054,360 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
PRC - [2009.04.23 15:51:38 | 000,691,656 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\daemon.exe
PRC - [2009.03.24 04:00:00 | 001,983,816 | ---- | M] (CANON INC.) -- C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
PRC - [2009.02.10 18:01:49 | 000,116,104 | ---- | M] () -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe
PRC - [2008.10.19 14:30:02 | 000,222,456 | ---- | M] () -- C:\Program Files\ICQ6Toolbar\ICQ Service.exe
PRC - [2008.04.14 05:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006.11.13 13:39:52 | 001,289,000 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft ActiveSync\wcescomm.exe
PRC - [2006.11.13 13:39:34 | 000,199,464 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft ActiveSync\rapimgr.exe


========== Modules (SafeList) ==========

MOD - [2010.04.18 15:50:25 | 000,562,176 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Fridrich\Dokumenty\Stažené soubory\OTL.exe


========== Win32 Services (SafeList) ==========

SRV - [2009.09.29 14:11:10 | 000,020,680 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV - [2009.09.29 14:03:46 | 000,735,960 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2009.02.10 18:01:49 | 000,116,104 | ---- | M] () [Auto | Running] -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC)
SRV - [2008.10.19 14:30:02 | 000,222,456 | ---- | M] () [Auto | Running] -- C:\Program Files\ICQ6Toolbar\ICQ Service.exe -- (ICQ Service)
SRV - [2008.07.29 19:16:38 | 000,132,096 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing)


========== Driver Services (SafeList) ==========

DRV - [2009.11.21 04:34:54 | 010,235,968 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2009.09.29 14:05:54 | 000,096,408 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir)
DRV - [2009.09.29 14:02:58 | 000,108,792 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2009.09.29 13:56:32 | 000,116,008 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2009.08.11 19:17:20 | 000,721,904 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009.03.25 17:48:00 | 000,114,728 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018mdm.sys -- (s1018mdm)
DRV - [2009.03.25 17:48:00 | 000,109,864 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018unic.sys -- (s1018unic) Sony Ericsson Device 1018 USB Ethernet Emulation (WDM)
DRV - [2009.03.25 17:48:00 | 000,106,208 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018mgmt.sys -- (s1018mgmt) Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM)
DRV - [2009.03.25 17:48:00 | 000,104,744 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018obex.sys -- (s1018obex)
DRV - [2009.03.25 17:48:00 | 000,086,824 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018bus.sys -- (s1018bus) Sony Ericsson Device 1018 driver (WDM)
DRV - [2009.03.25 17:48:00 | 000,026,024 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018nd5.sys -- (s1018nd5) Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS)
DRV - [2009.03.25 17:48:00 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1018mdfl.sys -- (s1018mdfl)
DRV - [2008.04.13 20:56:06 | 000,088,320 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkipx.sys -- (NwlnkIpx)
DRV - [2008.02.26 16:48:07 | 000,025,280 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2007.04.10 13:04:40 | 004,397,568 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2007.03.14 03:57:50 | 001,972,736 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2007.02.06 18:43:26 | 000,090,880 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2006.07.01 23:42:58 | 000,043,008 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2006.06.05 16:08:33 | 000,030,556 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2005.01.07 18:07:18 | 000,138,752 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Hdaudbus.sys -- (HDAudBus)
DRV - [2001.09.20 14:00:00 | 000,063,232 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnknb.sys -- (NwlnkNb)
DRV - [2001.09.20 14:00:00 | 000,055,936 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkspx.sys -- (NwlnkSpx)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=60076
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60076

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://google.icq.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchT ... f8&oe=utf8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.centrum.cz/skinit/icq/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKCU\..\URLSearchHook: {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\Program Files\Crawler\ctbr.dll (Crawler.com)
IE - HKCU\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.selectedEngine: "ICQ Search"
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz"
FF - prefs.js..extensions.enabledItems: battlefieldheroespatcher@ea.com:4.0.53.0
FF - prefs.js..extensions.enabledItems: DTToolbar@toolbarnet.com:1.0.8.0552
FF - prefs.js..extensions.enabledItems: {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.4.1
FF - prefs.js..extensions.enabledItems: {d122ad80-ff45-11dd-87af-0800200c9a66}:3.6.29.01.10
FF - prefs.js..keyword.URL: "http://search.icq.com/search/afe_result ... id=afex&q="

FF - HKLM\software\mozilla\Firefox\Extensions\\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}: C:\Program Files\Crawler\firefox\ [2008.06.13 18:47:01 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.04.02 17:13:31 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.04.02 17:13:31 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2010.03.21 09:04:10 | 000,000,000 | ---D | M]

[2008.09.20 10:36:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Extensions
[2010.04.16 20:29:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Firefox\Profiles\dwaw6i97.default\extensions
[2009.09.02 22:00:31 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Firefox\Profiles\dwaw6i97.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2008.08.20 20:59:06 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Firefox\Profiles\dwaw6i97.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2010.02.12 15:45:08 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Firefox\Profiles\dwaw6i97.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2010.04.01 12:54:00 | 000,000,000 | ---D | M] (Green Fox) -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Firefox\Profiles\dwaw6i97.default\extensions\{d122ad80-ff45-11dd-87af-0800200c9a66}
[2010.03.11 16:51:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Firefox\Profiles\dwaw6i97.default\extensions\battlefieldheroespatcher@ea.com
[2009.04.26 12:38:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Firefox\Profiles\dwaw6i97.default\extensions\DTToolbar@toolbarnet.com
[2009.04.26 12:38:31 | 000,000,523 | ---- | M] () -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Firefox\Profiles\dwaw6i97.default\searchplugins\daemon-search.xml
[2010.04.16 18:59:23 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Firefox\Profiles\dwaw6i97.default\searchplugins\icqplugin-1.xml
[2009.06.13 09:05:36 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Firefox\Profiles\dwaw6i97.default\searchplugins\icqplugin-10.xml
[2009.07.23 10:49:18 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Firefox\Profiles\dwaw6i97.default\searchplugins\icqplugin-11.xml
[2009.08.05 13:25:13 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Firefox\Profiles\dwaw6i97.default\searchplugins\icqplugin-12.xml
[2009.09.11 14:06:52 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Firefox\Profiles\dwaw6i97.default\searchplugins\icqplugin-13.xml
[2009.10.28 18:17:48 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Firefox\Profiles\dwaw6i97.default\searchplugins\icqplugin-14.xml
[2009.12.19 19:53:48 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Firefox\Profiles\dwaw6i97.default\searchplugins\icqplugin-15.xml
[2010.01.06 21:24:18 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Firefox\Profiles\dwaw6i97.default\searchplugins\icqplugin-16.xml
[2010.01.07 10:35:52 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Firefox\Profiles\dwaw6i97.default\searchplugins\icqplugin-17.xml
[2010.02.19 22:44:59 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Firefox\Profiles\dwaw6i97.default\searchplugins\icqplugin-18.xml
[2010.03.20 16:24:47 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Firefox\Profiles\dwaw6i97.default\searchplugins\icqplugin-19.xml
[2008.10.01 07:29:02 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Firefox\Profiles\dwaw6i97.default\searchplugins\icqplugin-2.xml
[2010.03.27 08:34:24 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Firefox\Profiles\dwaw6i97.default\searchplugins\icqplugin-20.xml
[2010.04.02 17:13:44 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Firefox\Profiles\dwaw6i97.default\searchplugins\icqplugin-21.xml
[2008.11.15 17:07:55 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Firefox\Profiles\dwaw6i97.default\searchplugins\icqplugin-3.xml
[2008.12.19 13:35:24 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Firefox\Profiles\dwaw6i97.default\searchplugins\icqplugin-4.xml
[2009.02.08 10:58:16 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Firefox\Profiles\dwaw6i97.default\searchplugins\icqplugin-5.xml
[2009.03.07 20:30:09 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Firefox\Profiles\dwaw6i97.default\searchplugins\icqplugin-6.xml
[2009.03.28 14:49:37 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Firefox\Profiles\dwaw6i97.default\searchplugins\icqplugin-7.xml
[2009.04.26 11:13:51 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Firefox\Profiles\dwaw6i97.default\searchplugins\icqplugin-8.xml
[2009.04.28 18:29:12 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Firefox\Profiles\dwaw6i97.default\searchplugins\icqplugin-9.xml
[2008.03.31 10:52:00 | 000,000,168 | ---- | M] () -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Firefox\Profiles\dwaw6i97.default\searchplugins\icqplugin.gif
[2008.03.31 10:52:00 | 000,000,618 | ---- | M] () -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Firefox\Profiles\dwaw6i97.default\searchplugins\icqplugin.src
[2009.03.25 12:49:20 | 000,000,944 | ---- | M] () -- C:\Documents and Settings\Fridrich\Data aplikací\Mozilla\Firefox\Profiles\dwaw6i97.default\searchplugins\icqplugin.xml
[2010.04.16 20:29:23 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2009.06.03 20:17:56 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2008.02.04 18:49:18 | 000,663,072 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\plugins\npOGAPlugin.dll
[2007.07.26 12:05:16 | 000,001,329 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\crawlersrch.xml
[2010.03.20 16:24:34 | 000,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2010.03.20 16:24:35 | 000,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2010.03.20 16:24:35 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010.03.20 16:24:35 | 000,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2010.03.20 16:24:35 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: ([2008.05.07 19:20:56 | 000,236,672 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.1001-search.info
O1 - Hosts: 127.0.0.1 1001-search.info
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.123topsearch.com
O1 - Hosts: 127.0.0.1 123topsearch.com
O1 - Hosts: 127.0.0.1 www.132.com
O1 - Hosts: 127.0.0.1 132.com
O1 - Hosts: 127.0.0.1 www.136136.net
O1 - Hosts: 127.0.0.1 136136.net
O1 - Hosts: 8286 more lines...
O2 - BHO: (Yahoo! Toolbar Helper) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: () - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\Program Files\Crawler\ctbr.dll (Crawler.com)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (&Crawler lišta) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\Program Files\Crawler\ctbr.dll (Crawler.com)
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKCU\..\Toolbar\ShellBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\ShellBrowser: (&Crawler lišta) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\Program Files\Crawler\ctbr.dll (Crawler.com)
O3 - HKCU\..\Toolbar\ShellBrowser: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (&Crawler lišta) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\Program Files\Crawler\ctbr.dll (Crawler.com)
O3 - HKCU\..\Toolbar\WebBrowser: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4 - HKLM..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [KernelFaultCheck] File not found
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] File not found
O4 - HKCU..\Run: [] File not found
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
O4 - HKCU..\Run: [H/PC Connection Agent] C:\Program Files\Microsoft ActiveSync\Wcescomm.exe (Microsoft Corporation)
O4 - HKCU..\Run: [NBJ] C:\Program Files\Ahead\Nero BackItUp\NBJ.exe (Ahead Software AG)
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - Startup: C:\Documents and Settings\Fridrich\Nabídka Start\Programy\Po spuštění\PowerReg Scheduler.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll (Google Inc.)
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\npjpi160_06.dll (Sun Microsystems, Inc.)
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra 'Tools' menuitem : ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/ ... ontrol.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_06)
O16 - DPF: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_06)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_06)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.macromedia.com/pub/s ... wflash.cab (Shockwave Flash Object)
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\tbr {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\Program Files\Crawler\ctbr.dll (Crawler.com)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Nebe.bmp
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (digiwet.dll) - File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007.12.13 22:04:51 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{7632045c-f869-11de-99a7-0019dbd868d9}\Shell - "" = AutoRun
O33 - MountPoints2\{7632045c-f869-11de-99a7-0019dbd868d9}\Shell\AutoRun\command - "" = K:\Startme.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010.04.18 15:44:24 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2010.04.18 15:44:24 | 000,000,000 | ---D | C] -- C:\rsit
[2010.03.29 16:59:42 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2010.03.21 20:37:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fridrich\Local Settings\Data aplikací\Aspyr
[2010.03.21 20:37:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fridrich\Dokumenty\Aspyr
[2010.03.21 20:36:09 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Fridrich\Data aplikací\SecuROM
[2010.03.21 20:04:01 | 000,000,000 | ---D | C] -- C:\Program Files\Counter-Strike 1.6
[2010.03.21 09:01:03 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2010.03.19 20:03:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fridrich\Data aplikací\Leadertech
[2010.03.19 20:01:33 | 000,000,000 | ---D | C] -- C:\Program Files\NovaLogic
[2010.03.19 19:54:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fridrich\Dokumenty\My Games
[2010.03.19 19:53:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\AGEIA
[2010.03.19 19:53:18 | 000,000,000 | ---D | C] -- C:\Program Files\AGEIA Technologies
[2010.03.19 19:52:46 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard
[2010.01.03 15:20:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Microsoft
[2009.12.04 15:36:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Microsoft
[2009.07.08 17:26:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Google
[2009.07.08 17:09:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Google
[2008.12.16 21:32:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\ESET
[2008.11.03 16:38:08 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Data aplikací\Microsoft
[2008.02.02 08:11:20 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Data aplikací\Microsoft
[2008.01.17 18:25:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\AVG7
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010.04.18 15:53:07 | 008,126,464 | ---- | M] () -- C:\Documents and Settings\Fridrich\ntuser.dat
[2010.04.18 15:51:00 | 000,000,472 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{2E1FC1ED-20DB-49DB-A644-0F03934EDEBB}.job
[2010.04.18 15:45:00 | 000,000,940 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010.04.18 15:28:25 | 000,002,262 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.04.18 15:28:11 | 000,272,291 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml
[2010.04.18 15:28:08 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010.04.18 15:28:08 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.04.18 15:28:06 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.04.17 14:56:31 | 000,057,828 | ---- | M] () -- C:\Documents and Settings\Fridrich\Plocha\bf2b13082f_375697_o2.jpg
[2010.04.17 14:40:18 | 000,026,640 | ---- | M] () -- C:\Documents and Settings\Fridrich\Plocha\4a732debbbc7124510680000.jpg
[2010.04.17 14:39:28 | 000,098,341 | ---- | M] () -- C:\Documents and Settings\Fridrich\Plocha\4a9589fe0b8ab28825800100.jpg
[2010.04.17 14:34:37 | 000,045,285 | ---- | M] () -- C:\Documents and Settings\Fridrich\Plocha\18859_1280723350704_1608678228_709550_6688300_n.jpg
[2010.04.17 14:34:27 | 000,049,240 | ---- | M] () -- C:\Documents and Settings\Fridrich\Plocha\18859_1280723390705_1608678228_709551_6497998_n.jpg
[2010.04.17 14:31:33 | 000,068,457 | ---- | M] () -- C:\Documents and Settings\Fridrich\Plocha\18859_1280721870667_1608678228_709514_5722444_n.jpg
[2010.04.17 14:28:28 | 000,062,366 | ---- | M] () -- C:\Documents and Settings\Fridrich\Plocha\13318_1351768846797_1608678228_857847_1099247_n.jpg
[2010.04.17 13:00:19 | 000,040,887 | ---- | M] () -- C:\Documents and Settings\Fridrich\Plocha\kontrafakt-prosia.jpg
[2010.04.17 13:00:09 | 000,030,614 | ---- | M] () -- C:\Documents and Settings\Fridrich\Plocha\rytmus-so-siltovkou.jpg
[2010.04.17 12:58:58 | 000,025,219 | ---- | M] () -- C:\Documents and Settings\Fridrich\Plocha\rytmus.jpg
[2010.04.17 12:53:09 | 000,001,915 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Google Earth.lnk
[2010.04.17 12:47:09 | 000,064,140 | ---- | M] () -- C:\Documents and Settings\Fridrich\Plocha\23515_104947166212937_100000929635340_42067_6969701_n.jpg
[2010.04.15 20:42:16 | 000,033,280 | ---- | M] () -- C:\Documents and Settings\Fridrich\Plocha\protokol c.11.doc
[2010.04.15 14:34:50 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010.04.09 23:35:16 | 002,110,438 | -H-- | M] () -- C:\Documents and Settings\Fridrich\Local Settings\Data aplikací\IconCache.db
[2010.04.01 22:45:51 | 000,001,813 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
[2010.03.28 12:46:43 | 000,002,319 | ---- | M] () -- C:\Documents and Settings\Fridrich\Plocha\images.jpeg
[2010.03.28 12:46:11 | 000,003,352 | ---- | M] () -- C:\Documents and Settings\Fridrich\Plocha\imgres.htm
[2010.03.28 09:41:28 | 000,435,260 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010.03.28 09:41:28 | 000,432,004 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2010.03.28 09:41:28 | 000,079,062 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2010.03.28 09:41:28 | 000,068,156 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010.03.28 09:41:27 | 001,028,848 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010.03.24 21:39:45 | 000,691,977 | ---- | M] () -- C:\Documents and Settings\Fridrich\Plocha\IMG.pdf
[2010.03.21 20:36:05 | 000,000,662 | ---- | M] () -- C:\Documents and Settings\Fridrich\Plocha\Zástupce - GH3.lnk
[2010.03.21 20:25:11 | 000,057,856 | ---- | M] () -- C:\Documents and Settings\Fridrich\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.03.21 20:07:11 | 000,000,747 | ---- | M] () -- C:\Documents and Settings\Fridrich\Plocha\Counter-Strike 1.6.lnk
[2010.03.21 13:18:06 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010.03.20 17:16:37 | 000,139,456 | ---- | M] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2010.03.20 17:16:09 | 000,190,160 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.xtr
[2010.03.20 16:41:23 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF
[2010.03.19 20:13:16 | 000,256,000 | ---- | M] () -- C:\Documents and Settings\Fridrich\Nabídka Start\Programy\Po spuštění\PowerReg Scheduler.exe
[2010.03.19 19:54:12 | 000,107,888 | ---- | M] (Sony DADC Austria AG.) -- C:\WINDOWS\System32\CmdLineExt.dll
[2010.03.19 18:05:50 | 004,874,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmp.dll
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010.04.17 14:56:31 | 000,057,828 | ---- | C] () -- C:\Documents and Settings\Fridrich\Plocha\bf2b13082f_375697_o2.jpg
[2010.04.17 14:40:17 | 000,026,640 | ---- | C] () -- C:\Documents and Settings\Fridrich\Plocha\4a732debbbc7124510680000.jpg
[2010.04.17 14:39:27 | 000,098,341 | ---- | C] () -- C:\Documents and Settings\Fridrich\Plocha\4a9589fe0b8ab28825800100.jpg
[2010.04.17 14:34:36 | 000,045,285 | ---- | C] () -- C:\Documents and Settings\Fridrich\Plocha\18859_1280723350704_1608678228_709550_6688300_n.jpg
[2010.04.17 14:34:27 | 000,049,240 | ---- | C] () -- C:\Documents and Settings\Fridrich\Plocha\18859_1280723390705_1608678228_709551_6497998_n.jpg
[2010.04.17 14:31:33 | 000,068,457 | ---- | C] () -- C:\Documents and Settings\Fridrich\Plocha\18859_1280721870667_1608678228_709514_5722444_n.jpg
[2010.04.17 14:28:26 | 000,062,366 | ---- | C] () -- C:\Documents and Settings\Fridrich\Plocha\13318_1351768846797_1608678228_857847_1099247_n.jpg
[2010.04.17 13:00:19 | 000,040,887 | ---- | C] () -- C:\Documents and Settings\Fridrich\Plocha\kontrafakt-prosia.jpg
[2010.04.17 13:00:09 | 000,030,614 | ---- | C] () -- C:\Documents and Settings\Fridrich\Plocha\rytmus-so-siltovkou.jpg
[2010.04.17 12:58:57 | 000,025,219 | ---- | C] () -- C:\Documents and Settings\Fridrich\Plocha\rytmus.jpg
[2010.04.17 12:53:09 | 000,001,915 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Google Earth.lnk
[2010.04.17 12:47:07 | 000,064,140 | ---- | C] () -- C:\Documents and Settings\Fridrich\Plocha\23515_104947166212937_100000929635340_42067_6969701_n.jpg
[2010.04.15 20:42:16 | 000,033,280 | ---- | C] () -- C:\Documents and Settings\Fridrich\Plocha\protokol c.11.doc
[2010.03.28 12:46:42 | 000,002,319 | ---- | C] () -- C:\Documents and Settings\Fridrich\Plocha\images.jpeg
[2010.03.28 12:46:11 | 000,003,352 | ---- | C] () -- C:\Documents and Settings\Fridrich\Plocha\imgres.htm
[2010.03.24 21:41:09 | 000,691,977 | ---- | C] () -- C:\Documents and Settings\Fridrich\Plocha\IMG.pdf
[2010.03.21 20:36:05 | 000,000,662 | ---- | C] () -- C:\Documents and Settings\Fridrich\Plocha\Zástupce - GH3.lnk
[2010.03.21 20:07:11 | 000,000,747 | ---- | C] () -- C:\Documents and Settings\Fridrich\Plocha\Counter-Strike 1.6.lnk
[2010.03.20 16:41:22 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF
[2010.03.19 20:04:57 | 000,256,000 | ---- | C] () -- C:\Documents and Settings\Fridrich\Nabídka Start\Programy\Po spuštění\PowerReg Scheduler.exe
[2009.09.26 19:52:09 | 000,000,262 | ---- | C] () -- C:\WINDOWS\game.ini
[2009.08.14 15:47:44 | 000,017,060 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\sajid.ban
[2009.08.14 15:47:43 | 000,017,142 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\cywyg.dat
[2009.08.14 15:47:43 | 000,015,422 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\yhibo.bin
[2009.08.14 15:47:43 | 000,014,864 | ---- | C] () -- C:\Documents and Settings\Fridrich\Data aplikací\leqocugyhy._dl
[2009.08.14 15:47:43 | 000,012,725 | ---- | C] () -- C:\Documents and Settings\Fridrich\Data aplikací\aguh.dl
[2009.08.14 15:40:49 | 000,000,001 | ---- | C] () -- C:\Documents and Settings\Fridrich\oashdihasidhasuidhiasdhiashdiuasdhasd
[2009.08.14 15:39:45 | 000,000,012 | ---- | C] () -- C:\Documents and Settings\Fridrich\Data aplikací\wiaserva.log
[2009.08.13 14:58:55 | 008,126,464 | ---- | C] () -- C:\Documents and Settings\Fridrich\ntuser.dat
[2009.07.24 16:02:26 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\Fridrich\Data aplikací\$_hpcst$.hpc
[2009.06.19 17:09:19 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2009.04.26 14:55:42 | 000,000,525 | ---- | C] () -- C:\WINDOWS\QIII.INI
[2009.04.16 19:07:05 | 000,000,193 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI
[2009.03.30 15:44:30 | 000,139,456 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2009.03.30 15:44:30 | 000,138,056 | ---- | C] () -- C:\Documents and Settings\Fridrich\Data aplikací\PnkBstrK.sys
[2009.02.26 22:56:47 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2008.08.28 19:58:27 | 000,003,376 | ---- | C] () -- C:\WINDOWS\l2.ini
[2008.08.25 19:54:41 | 000,000,632 | ---- | C] () -- C:\WINDOWS\CoD.INI
[2008.02.21 16:39:42 | 000,057,856 | ---- | C] () -- C:\Documents and Settings\Fridrich\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008.02.20 17:35:38 | 000,000,083 | ---- | C] () -- C:\WINDOWS\wwp.INI
[2008.01.31 18:45:08 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\ezsid.dat
[2008.01.19 16:00:55 | 000,000,382 | ---- | C] () -- C:\WINDOWS\level.ini
[2008.01.17 18:24:17 | 000,721,904 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2008.01.02 17:18:46 | 000,002,652 | ---- | C] () -- C:\WINDOWS\ACROREAD.INI
[2007.12.26 21:17:39 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2007.12.13 23:45:29 | 000,001,779 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2007.12.13 22:12:13 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\Fridrich\ntuser.ini
[2007.12.13 22:12:12 | 000,001,024 | -H-- | C] () -- C:\Documents and Settings\Fridrich\ntuser.dat.LOG
[2007.07.23 10:03:32 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2007.07.23 10:03:32 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2007.07.23 10:03:32 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2007.07.23 10:03:30 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2007.07.23 10:03:30 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2007.07.23 10:03:30 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2007.07.23 10:03:30 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2007.07.23 10:03:30 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2007.07.23 10:03:30 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2002.10.03 14:42:27 | 000,000,034 | ---- | C] () -- C:\WINDOWS\Q3version.ini
< End of report >

[ervussus]

Extras.Txt
Log

OTL Extras logfile created on: 18.4.2010 15:52:52 - Run 1
OTL by OldTimer - Version 3.2.1.2 Folder = C:\Documents and Settings\Fridrich\Dokumenty\Stažené soubory
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 38,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 75,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 31,85 Gb Total Space | 6,36 Gb Free Space | 19,98% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 117,19 Gb Total Space | 93,46 Gb Free Space | 79,75% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: POCITAC
Current User Name: Fridrich
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
http [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
https [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~3\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 1
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"26675:TCP" = 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"3724:TCP" = 3724:TCP:*:Enabled:Blizzard Downloader: 3724
"26675:TCP" = 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe" = C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager -- (Microsoft Corporation)
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe" = C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager -- (Microsoft Corporation)
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe" = C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Counter-Strike Source\hl2.exe" = C:\Program Files\Counter-Strike Source\hl2.exe:*:Enabled:hl2 -- File not found
"C:\Program Files\ICQLite\ICQLite.exe" = C:\Program Files\ICQLite\ICQLite.exe:*:Enabled:ICQ Lite -- File not found
"C:\Program Files\Winamp Remote\bin\Orb.exe" = C:\Program Files\Winamp Remote\bin\Orb.exe:*:Enabled:Orb -- (Orb Networks, Inc.)
"C:\Program Files\Winamp Remote\bin\OrbTray.exe" = C:\Program Files\Winamp Remote\bin\OrbTray.exe:*:Enabled:OrbTray -- File not found
"C:\Program Files\Winamp Remote\bin\OrbStreamerClient.exe" = C:\Program Files\Winamp Remote\bin\OrbStreamerClient.exe:*:Enabled:Orb Stream Client -- (Orb Networks)
"E:\UT2004\System\UT2004.exe" = E:\UT2004\System\UT2004.exe:*:Enabled:UT2004 -- File not found
"C:\Program Files\MTA San Andreas\server\MTA Server.exe" = C:\Program Files\MTA San Andreas\server\MTA Server.exe:*:Enabled:MTA Server -- File not found
"C:\Program Files\Graffiti Studio 2.0\Graffiti Studio.exe" = C:\Program Files\Graffiti Studio 2.0\Graffiti Studio.exe:*:Enabled:Macromedia Projector -- File not found
"C:\Program Files\3DO\Heroes3\HEROES3.EXE" = C:\Program Files\3DO\Heroes3\HEROES3.EXE:*:Disabled:Heroes of Might and Magic® III -- File not found
"C:\Documents and Settings\Fridrich\Plocha\Kopie - World of Warcraft\Repair.exe" = C:\Documents and Settings\Fridrich\Plocha\Kopie - World of Warcraft\Repair.exe:*:Enabled:Blizzard Repair Utility -- File not found
"C:\Program Files\ICQ6\ICQ.exe" = C:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6 -- File not found
"C:\Program Files\Counter-Strike 1.6\hl.exe" = C:\Program Files\Counter-Strike 1.6\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
"E:\Program Files\metin2.bin" = E:\Program Files\metin2.bin:*:Enabled:metin2 -- File not found
"C:\Documents and Settings\Fridrich\Plocha\WoW\Repair.exe" = C:\Documents and Settings\Fridrich\Plocha\WoW\Repair.exe:*:Enabled:Blizzard Repair Utility -- File not found
"C:\Documents and Settings\Fridrich\Plocha\WoW\BackgroundDownloader.exe" = C:\Documents and Settings\Fridrich\Plocha\WoW\BackgroundDownloader.exe:*:Enabled:Blizzard Downloader -- File not found
"E:\CoD2MP_s.exe" = E:\CoD2MP_s.exe:*:Enabled:CoD2MP_s -- File not found
"C:\WINDOWS\Explorer.EXE" = C:\WINDOWS\Explorer.EXE:*:Enabled:ENABLE -- (Microsoft Corporation)
"C:\Program Files\Quake III Arena\quake3.exe" = C:\Program Files\Quake III Arena\quake3.exe:*:Enabled:quake3 -- File not found
"D:\QUAKE 3\QUAKE3\QUAKE3.EXE" = D:\QUAKE 3\QUAKE3\QUAKE3.EXE:*:Enabled:QUAKE3 -- File not found
"C:\Program Files\ICQ6.5\ICQ.exe" = C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6 -- (ICQ, LLC.)
"C:\Program Files\Ares\Ares.exe" = C:\Program Files\Ares\Ares.exe:*:Enabled:Ares p2p for windows -- File not found
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe" = C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager -- (Microsoft Corporation)
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe" = C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager -- (Microsoft Corporation)
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe" = C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application -- (Microsoft Corporation)
"E:\Program Files\World of Warcraft\WoW-3.2.0-enUS-downloader.exe" = E:\Program Files\World of Warcraft\WoW-3.2.0-enUS-downloader.exe:*:Enabled:Blizzard Downloader -- File not found
"E:\Program Files\World of Warcraft\Launcher.exe" = E:\Program Files\World of Warcraft\Launcher.exe:*:Enabled:Blizzard Launcher -- File not found
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" = C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE" = C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" = C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation)
"E:\Program Files\WoW-WOTLK\WoW-3.1.3.9947-to-3.2.0.10192-enGB-downloader.exe" = E:\Program Files\WoW-WOTLK\WoW-3.1.3.9947-to-3.2.0.10192-enGB-downloader.exe:*:Enabled:Blizzard Downloader -- (Blizzard Entertainment)
"E:\Program Files\WoW-WOTLK\WoW-3.2.0.10314-to-3.2.2.10482-enGB-downloader.exe" = E:\Program Files\WoW-WOTLK\WoW-3.2.0.10314-to-3.2.2.10482-enGB-downloader.exe:*:Enabled:Blizzard Downloader -- (Blizzard Entertainment)
"E:\Program Files\WoW-WOTLK\WoW-3.2.2.10482-to-3.2.2.10505-enGB-downloader.exe" = E:\Program Files\WoW-WOTLK\WoW-3.2.2.10482-to-3.2.2.10505-enGB-downloader.exe:*:Enabled:Blizzard Downloader -- (Blizzard Entertainment)
"E:\Program Files\WoW-WOTLK\BackgroundDownloader.exe" = E:\Program Files\WoW-WOTLK\BackgroundDownloader.exe:*:Enabled:Blizzard Downloader -- (Blizzard Entertainment)
"E:\Binaries\FFOW.exe" = E:\Binaries\FFOW.exe:*:Enabled:Frontlines Game -- File not found


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{01B28B7B-EEC6-12D5-5B5A-5A7EBDF5EFBA}" = Catalyst Control Center Localization Dutch
"{01E836B9-843A-42F7-9F10-0F261B3B15DA}" = Catalyst Control Center Localization Japanese
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{06577CC6-34AC-F592-C982-ACA2C6693F4B}" = Catalyst Control Center Localization Turkish
"{08C0729E-3E50-11DF-9D81-005056806466}" = Google Earth
"{09784F06-A9D0-AD2F-9947-4637F8917EED}" = Catalyst Control Center Localization Portuguese
"{0CE1A6C0-F3F7-49E6-8F9D-2431F9827441}" = Guitar Hero III
"{0D499481-22C6-4B25-8AC2-6D3F6C885FB9}" = OpenOffice.org Installer 1.0
"{107409C7-C8DD-E2E6-8B93-DDBA6DC47C65}" = Catalyst Control Center Graphics Full New
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP550_series" = Canon MP550 series MP Drivers
"{13400EBE-5DE5-48E5-FBDC-27CC4E2FB723}" = CCC Help English
"{13F3917B56CD4C25848BDC69916971BB}" = DivX Converter
"{14E01A0E-14CF-A34F-6B02-24710B14E4FB}" = CCC Help French
"{167105DE-14C3-8DC9-5FDE-C0CF8E582EE6}" = Catalyst Control Center Localization Czech
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{19E819FC-E546-8CA8-D3C3-7373436B5CF0}" = Catalyst Control Center Graphics Full Existing
"{1BCAF2AE-302A-515A-12B5-48AF8CCE00FF}" = Catalyst Control Center Localization Norwegian
"{20071984-5EB1-4881-8EDB-082532ACEC6D}" = Heroes of Might and Magic V
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{234054E5-05C3-E7DE-D83F-03F35C0F10E7}" = Skins
"{2BD1F67A-F41E-35FB-75F5-6D1A1D08A478}" = Catalyst Control Center Localization Finnish
"{2F173C40-563E-11D4-89C5-0010ADDAAC33}" = EA.com Matchup
"{3248F0A8-6813-11D6-A77B-00B0D0160060}" = Java(TM) 6 Update 6
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{36CDA33B-909B-4719-97D1-C4B99309BDC7}" = ATI Parental Control & Encoder
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{413A49C0-E43E-FE69-D9D5-DBF6B8F24CA4}" = CCC Help Thai
"{4A106F8A-7C4D-F592-6FA0-71E056236F74}" = CCC Help Danish
"{554597A5-A57A-9592-A28E-3EBDCFFC5516}" = CCC Help German
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{6045FB3F-5CF6-2157-885B-20BC9DBC6B0A}" = Catalyst Control Center Localization Chinese Traditional
"{60DE4033-9503-48D1-A483-7846BD217CA9}" = ICQ6.5
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{788E737C-54C5-0E5B-2C2D-A5AE5E941765}" = Catalyst Control Center Localization Russian
"{7A6B26B5-6872-B3ED-A644-396778046FE4}" = CCC Help Portuguese
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{80BDA494-E9FF-2A4C-209B-AC1F84957A72}" = CCC Help Chinese Traditional
"{851B7934-1CF6-3CF7-7E60-61E74509279A}" = CCC Help Hungarian
"{85C70286-A56F-4834-BD24-B34EB76A93A2}" = ESET NOD32 Antivirus
"{866A523B-36EA-9D14-D5F1-3449BC35A95A}" = Catalyst Control Center Localization Danish
"{8795CBED-55E2-4693-9F14-84EC446935BE}" = SpeechRedist
"{89C9ECA1-6FCF-CA48-FCB4-E6AD3D2E812E}" = CCC Help Chinese Standard
"{89D17E48-B25A-A15D-9CAB-96E4BAC6CADC}" = ccc-core-static
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
"{8AA18701-9EFA-6B5D-E199-D55EA27DBC83}" = CCC Help Czech
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8CE62CBA-6D7E-B810-20CE-D8159427295A}" = CCC Help Italian
"{8D5C20A6-5CBF-4D0F-7193-4703DC2F27DF}" = CCC Help Greek
"{8DC910CD-8EE3-4ffc-A4EB-9B02701059C4}" = Battlefield Heroes
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"{95FC26FB-19FD-4A96-BBB1-B1062E8648F5}" = AGEIA PhysX v7.11.13
"{99052DB7-9592-4522-A558-5417BBAD48EE}" = Microsoft ActiveSync
"{9AB97F52-512B-43EF-AAEC-4825C17B32ED}" = EA.com Update
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A96E97134CA649888820BCDE5E300BBD}" = H.264 Decoder
"{A9759B20-7D00-5BBF-031C-D35B297D3D19}" = CCC Help Korean
"{AAC389499AEF40428987B3D30CFC76C9}" = MKV Splitter
"{ABFB9EA8-2B03-6470-39BD-0535DB3021FC}" = Catalyst Control Center Localization Hungarian
"{AE7363A2-B18A-1C20-E91A-8D31230A78C7}" = Catalyst Control Center Localization Swedish
"{AEF9DC35ADDF4825B049ACBFD1C6EB37}" = AAC Decoder
"{B01AB1B5-85AB-1091-1ED5-01CCCCF422B4}" = Catalyst Control Center Core Implementation
"{B0E062C5-21A4-ADDF-759C-4852A9507AC4}" = CCC Help Swedish
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B38B8FCF-200E-9829-782F-3C47B2629B6F}" = Catalyst Control Center Localization Chinese Standard
"{B68521B4-5BCA-E327-E0F0-FA5E0704F1B9}" = Catalyst Control Center Localization Thai
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Plus Web Player
"{B969515D-747E-1831-B8FC-9BFEF6590F9E}" = CCC Help Dutch
"{BE5C71FE-D9F0-9EC8-041C-CC4D7BF5DDF0}" = CCC Help Russian
"{BF2E75D1-E386-E496-D7B7-92C47FD28B4C}" = CCC Help Japanese
"{BF707D69-A99C-3D43-F408-266177F59C95}" = Catalyst Control Center Localization German
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C5B66459-7020-E809-13A9-B7401550B1D0}" = CCC Help Turkish
"{C60A4D74-4922-872B-C801-DFEA30557817}" = CCC Help Polish
"{C6F58E1D-EB38-08F6-76A5-568553A2BA66}" = Catalyst Control Center Localization Greek
"{C941F1F1-25B3-4DF5-83E6-888C51A1AAB6}" = AVIVO Codecs
"{C9D1D844-9AE6-B208-19B1-71967A62DEFC}" = Catalyst Control Center Localization Spanish
"{CB803548-1B13-B505-A6BF-2F20B951D0C3}" = CCC Help Spanish
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D09B05A7-714E-55F2-D9F8-4797641E961D}" = Catalyst Control Center Localization Polish
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}" = GTA San Andreas
"{D9DD35C3-0967-1F19-8024-4C2E9202729B}" = Catalyst Control Center Localization Italian
"{D9DEC396-7414-AC0C-EACC-F6D1F29D587E}" = Catalyst Control Center Graphics Light
"{DBB581E4-5483-4F6A-74D0-B1D3A40B70CB}" = ccc-utility
"{DF8195AF-8E6F-4487-A0EE-196F7E3F4B8A}" = jetAudio Basic
"{EA117E9A-586E-A80E-FB01-D34FE9F1E61F}" = CCC Help Finnish
"{EFCF2EC0-39B9-CF5C-73DA-07DC33F91599}" = Catalyst Control Center Localization French
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F8D32782-613E-7076-4AFD-E7232A23515D}" = CCC Help Norwegian
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"{FFF14D52-BE57-EA38-DEA9-B0101D14B1A2}" = Catalyst Control Center Localization Korean
"3FA1705966809259F916AF817C59B4F389F4572C" = Balíček ovladače systému Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)
"Adobe Acrobat 4.0" = Adobe Acrobat 4.0
"Adobe Acrobat Reader 3.02" = Adobe Acrobat Reader 3.02
"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"All ATI Software" = Softarová utilita ATI - Odinstalovat
"ATI Display Driver" = ATI Display Driver
"CANONIJPLM100" = Canon Inkjet Printer/Scanner/Fax Extended Survey Program
"CanonMyPrinter" = Canon Utilities My Printer
"CanonSolutionMenu" = Canon Utilities Solution Menu
"CCleaner" = CCleaner (remove only)
"Counter-Strike 1.6" = Counter-Strike 1.6
"CToolbar_UNINSTALL" = Crawler Toolbar with Web Security Guard
"DAEMON Tools Toolbar" = DAEMON Tools Toolbar
"Delta Force - Black Hawk Down" = Delta Force - Black Hawk Down
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"Easy-PhotoPrint EX" = Canon Utilities Easy-PhotoPrint EX
"ENTERPRISE" = Microsoft Office Enterprise 2007
"Google Chrome" = Google Chrome
"HijackThis" = HijackThis 2.0.2
"ICQToolbar" = ICQ Toolbar
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"InstallShield_{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
"InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"Kreslení 2-01" = Kreslení 2-01
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox (3.6.3)" = Mozilla Firefox (3.6.3)
"MP Navigator EX 3.0" = Canon MP Navigator EX 3.0
"Nero - Burning Rom!UninstallKey" = Nero 6 Ultra Edition
"Network Play System (Patching)" = Network Play System (Patching)
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA Display Control Panel" = NVIDIA Display Control Panel
"NVIDIA Drivers" = NVIDIA Drivers
"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager
"Orb" = Winamp Remote
"PowerISO" = PowerISO
"PunkBusterSvc" = PunkBuster Services
"Quake III Arena Point Release 1.32" = Quake III Arena Point Release 1.32
"Registrace uživatele zařízení Canon MP550 series" = Registrace uživatele zařízení Canon MP550 series
"Scorpions WinCheater 2.07 (s databází 98)_is1" = Scorpions WinCheater
"Totalcmd" = Total Commander (Remove or Repair)
"Winamp" = Winamp
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"Xbox_360_CC_Driver" = Xbox 360 Controller for Windows
"Yahoo! Companion" = Yahoo! Toolbar
"Yahoo! Toolbar" = Yahoo! Toolbar

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Facebook Plug-In" = Facebook Plug-In
"Wordmaster XP" = Překladač Wordmaster XP

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 20.3.2010 10:19:23 | Computer Name = POCITAC | Source = MsiInstaller | ID = 10005
Description = Product: Windows 7 USB/DVD Download Tool -- This application requires
the Image Mastering API v2. Please install the Image Mastering API then run this
installer again.

Error - 20.3.2010 10:26:07 | Computer Name = POCITAC | Source = MsiInstaller | ID = 10005
Description = Product: Windows 7 USB/DVD Download Tool -- This application requires
the Image Mastering API v2. Please install the Image Mastering API then run this
installer again.

Error - 20.3.2010 11:00:27 | Computer Name = POCITAC | Source = Application Error | ID = 1000
Description = Chybující aplikace gta_sa.exe, verze 0.0.0.0, chybující modul gta_sa.exe,
verze 0.0.0.0, adresa chyby 0x000dd5a3.

Error - 20.3.2010 11:02:27 | Computer Name = POCITAC | Source = Application Error | ID = 1000
Description = Chybující aplikace gta_sa.exe, verze 0.0.0.0, chybující modul gta_sa.exe,
verze 0.0.0.0, adresa chyby 0x000dd5a3.

Error - 20.3.2010 11:05:45 | Computer Name = POCITAC | Source = Application Error | ID = 1000
Description = Chybující aplikace gta_sa.exe, verze 0.0.0.0, chybující modul gta_sa.exe,
verze 0.0.0.0, adresa chyby 0x000dd5a3.

Error - 21.3.2010 3:01:31 | Computer Name = POCITAC | Source = MsiInstaller | ID = 10005
Description = Product: ESET NOD32 Antivirus -- Error 5001. The computer has not
been restarted after a program uninstallation. Please restart the computer and run
the installer again.

Error - 21.3.2010 14:33:28 | Computer Name = POCITAC | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace IALauncherUpdater.exe, verze 1.0.0.0, zablokovaný
modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 23.3.2010 9:11:20 | Computer Name = POCITAC | Source = Application Error | ID = 1000
Description = Chybující aplikace egui.exe, verze 4.0.468.0, chybující modul eguiupdate.dll,
verze 4.0.468.0, adresa chyby 0x000084e7.

Error - 25.3.2010 10:15:51 | Computer Name = POCITAC | Source = Application Error | ID = 1000
Description = Chybující aplikace egui.exe, verze 4.0.468.0, chybující modul eguiupdate.dll,
verze 4.0.468.0, adresa chyby 0x000084e7.

Error - 27.3.2010 8:37:37 | Computer Name = POCITAC | Source = Application Error | ID = 1000
Description = Chybující aplikace winamp.exe, verze 5.5.2.1800, chybující modul oleaut32.dll,
verze 5.1.2600.5512, adresa chyby 0x00004958.

[ System Events ]
Error - 16.4.2010 7:40:33 | Computer Name = POCITAC | Source = NetBT | ID = 4321
Description = Název POCITAC :20 nelze zaregistrovat v rozhraní s adresou
IP 192.168.25.51. Počítač s adresou IP 192.168.25.59 nepovolil získání názvu tímto
počítačem.

Error - 16.4.2010 10:26:12 | Computer Name = POCITAC | Source = NetBT | ID = 4321
Description = Název POCITAC :0 nelze zaregistrovat v rozhraní s adresou IP
192.168.25.51. Počítač s adresou IP 192.168.25.59 nepovolil získání názvu tímto
počítačem.

Error - 16.4.2010 10:26:19 | Computer Name = POCITAC | Source = NetBT | ID = 4321
Description = Název POCITAC :20 nelze zaregistrovat v rozhraní s adresou
IP 192.168.25.51. Počítač s adresou IP 192.168.25.59 nepovolil získání názvu tímto
počítačem.

Error - 16.4.2010 10:26:19 | Computer Name = POCITAC | Source = Server | ID = 2505
Description = Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{DB4EBDFD-9D7F-4E3D-AFDC-FFEE70BE7E66},
protože jiný počítač v síti má stejný název. Server nelze spustit.

Error - 17.4.2010 6:19:47 | Computer Name = POCITAC | Source = NetBT | ID = 4321
Description = Název POCITAC :0 nelze zaregistrovat v rozhraní s adresou IP
192.168.25.51. Počítač s adresou IP 192.168.25.59 nepovolil získání názvu tímto
počítačem.

Error - 17.4.2010 6:19:55 | Computer Name = POCITAC | Source = Server | ID = 2505
Description = Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{DB4EBDFD-9D7F-4E3D-AFDC-FFEE70BE7E66},
protože jiný počítač v síti má stejný název. Server nelze spustit.

Error - 17.4.2010 6:19:55 | Computer Name = POCITAC | Source = NetBT | ID = 4321
Description = Název POCITAC :20 nelze zaregistrovat v rozhraní s adresou
IP 192.168.25.51. Počítač s adresou IP 192.168.25.59 nepovolil získání názvu tímto
počítačem.

Error - 17.4.2010 8:19:40 | Computer Name = POCITAC | Source = NetBT | ID = 4321
Description = Název POCITAC :0 nelze zaregistrovat v rozhraní s adresou IP
192.168.25.51. Počítač s adresou IP 192.168.25.59 nepovolil získání názvu tímto
počítačem.

Error - 17.4.2010 8:19:46 | Computer Name = POCITAC | Source = Server | ID = 2505
Description = Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{DB4EBDFD-9D7F-4E3D-AFDC-FFEE70BE7E66},
protože jiný počítač v síti má stejný název. Server nelze spustit.

Error - 17.4.2010 8:19:46 | Computer Name = POCITAC | Source = NetBT | ID = 4321
Description = Název POCITAC :20 nelze zaregistrovat v rozhraní s adresou
IP 192.168.25.51. Počítač s adresou IP 192.168.25.59 nepovolil získání názvu tímto
počítačem.


< End of report >

[Caroprd111]

Spusťte OTL a do spodního okna vložte následující skript.

Kód: Vybrat vše

:OTL
O4 - HKLM..\Run: [KernelFaultCheck] File not found
O4 - HKCU..\Run: [] File not found
O9 - Extra Button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra 'Tools' menuitem : ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O33 - MountPoints2\{7632045c-f869-11de-99a7-0019dbd868d9}\Shell - "" = AutoRun
O33 - MountPoints2\{7632045c-f869-11de-99a7-0019dbd868d9}\Shell\AutoRun\command - "" = K:\Startme.exe -- File not found
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2009.08.14 15:47:44 | 000,017,060 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\sajid.ban
[2009.08.14 15:47:43 | 000,017,142 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\cywyg.dat
[2009.08.14 15:47:43 | 000,015,422 | ---- | C] () -- C:\Documents and Settings\All Users\Data aplikací\yhibo.bin
[2009.08.14 15:47:43 | 000,014,864 | ---- | C] () -- C:\Documents and Settings\Fridrich\Data aplikací\leqocugyhy._dl
[2009.08.14 15:47:43 | 000,012,725 | ---- | C] () -- C:\Documents and Settings\Fridrich\Data aplikací\aguh.dl
[2009.08.14 15:40:49 | 000,000,001 | ---- | C] () -- C:\Documents and Settings\Fridrich\oashdihasidhasuidhiasdhiashdiuasdhasd

:Reg
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"="msapsspc.dll,schannel.dll,digest.dll,msnsspc.dll"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Ares\Ares.exe" =-

:Commands
[PURITY] 
[EMPTYTEMP] 
[EMPTYFLASH]
[CLEARALLRESTOREPOINTS]
[RESETHOSTS] 
[CREATERESTOREPOINT]

Poté klikněte na Opravit, PC se restartuje, log vložte sem.

[ervussus]

Log Zde:

All processes killed
========== OTL ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\KernelFaultCheck not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{B863453A-26C3-4e1f-A54D-A2CD196348E9}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B863453A-26C3-4e1f-A54D-A2CD196348E9}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{B863453A-26C3-4e1f-A54D-A2CD196348E9}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B863453A-26C3-4e1f-A54D-A2CD196348E9}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7632045c-f869-11de-99a7-0019dbd868d9}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7632045c-f869-11de-99a7-0019dbd868d9}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7632045c-f869-11de-99a7-0019dbd868d9}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7632045c-f869-11de-99a7-0019dbd868d9}\ not found.
File K:\Startme.exe not found.
C:\WINDOWS\002910_.tmp deleted successfully.
C:\WINDOWS\SET3.tmp deleted successfully.
C:\WINDOWS\SET4.tmp deleted successfully.
C:\WINDOWS\SET8.tmp deleted successfully.
C:\WINDOWS\System32\CONFIG.TMP deleted successfully.
C:\Documents and Settings\All Users\Data aplikací\sajid.ban moved successfully.
C:\Documents and Settings\All Users\Data aplikací\cywyg.dat moved successfully.
C:\Documents and Settings\All Users\Data aplikací\yhibo.bin moved successfully.
C:\Documents and Settings\Fridrich\Data aplikací\leqocugyhy._dl moved successfully.
C:\Documents and Settings\Fridrich\Data aplikací\aguh.dl moved successfully.
C:\Documents and Settings\Fridrich\oashdihasidhasuidhiasdhiashdiuasdhasd moved successfully.
========== REGISTRY ==========
HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders\\"SecurityProviders"|"msapsspc.dll,schannel.dll,digest.dll,msnsspc.dll" /E : value set successfully!
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files\Ares\Ares.exe not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temporary Internet Files folder emptied: 0 bytes
->FireFox cache emptied: 0 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Fridrich
->Temp folder emptied: 588252 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 6452030 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 564 bytes

User: Guest
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 1609545 bytes
->FireFox cache emptied: 49330358 bytes
->Flash cache emptied: 1774 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 49822 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 194268 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 121346612 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 23910800 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 194,00 mb


[EMPTYFLASH]

User: Administrator

User: All Users

User: Default User
->Flash cache emptied: 0 bytes

User: Fridrich
->Flash cache emptied: 0 bytes

User: Guest
->Flash cache emptied: 0 bytes

User: LocalService

User: NetworkService

Total Flash Files Cleaned = 0,00 mb

Restore points cleared and new OTL Restore Point set!
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
Error starting restore point: System Restore is disabled.
Error closing restore point: System Restore is disabled.

OTL by OldTimer - Version 3.2.1.2 log created on 04182010_161952

Files\Folders moved on Reboot...
File\Folder C:\WINDOWS\temp\Perflib_Perfdata_44c.dat not found!

Registry entries deleted on Reboot...

[Caroprd111]

Jak to vypadá s PC

[ervussus]

Nwm nic moc sem zatím nepostřehl..

[Caroprd111]

OK, otestujte to a potom se ozvěte.

[ervussus]

Co bys mi doporucil za Antivirak??? Mam Windows XP

[Caroprd111]

Pokud zdarma, tak Aviru nebo Avast + firewall. V případě placeného řešení Kaspersky nebo Norton (nejlépe celý security balík s firewallem).