log po odstranění TSR.BOOT

Zpráva

pespes · #1 Příspěvek od **pespes** » 27 úno 2012 21:56

dobrý den, prosím o kontrolu logu a radu. Nod našel TSR.BOOT . Našla jsem tu návodna řešení problému (SDFix) a prosím o kontrolu zda se problém vyřešil. Předem děkuji

Logfile of random's system information tool 1.09 (written by random/random)
Run by Vlastník at 2012-02-27 21:52:02
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 1 GB (12%) free of 10 GB
Total RAM: 511 MB (23% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:52:36, on 27.2.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\WTClient.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Adobe\Acrobat 6.0 CE\Distillr\acrotray.exe
C:\Program Files\Common Files\VideoMate\ComproRemote.exe
C:\Program Files\Common Files\VideoMate\ComproSchedulerDTV.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Program files\Compro\VideoMate Vista U1xx\IR_SERVER.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\ICQ6Toolbar\ICQ Service.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Pen_Tablet.exe
C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
C:\WINDOWS\System32\Drivers\WTSRV.EXE
C:\WINDOWS\system32\WTablet\Pen_TabletUser.exe
C:\WINDOWS\system32\Pen_Tablet.exe
C:\Program Files\Skype\Plugin Manager\SkypePM.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\VideoMate\ComproDTV 4\ComproDTV.exe
C:\Documents and Settings\Vlastník\Plocha\RSIT.exe
C:\Program Files\trend micro\Vlastník.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.crawler.com/search/dispatche ... tbid=60747
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.crawler.com/homepage.aspx?tbid=60747
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60747
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=60747
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60747
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=60747
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: &Crawler Toolbar Helper - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0 CE\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: &Crawler Toolbar Helper - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O2 - BHO: (no name) - {201f27d4-3704-41d6-89c1-aa35e39143ed} - (no file)
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 6.0 CE\Acrobat\AcroIEFavClient.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 6.0 CE\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: &Crawler lišta - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [WTClient] WTClient.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [IR_SERVER] C:\Program Files\Compro\VideoMate Vista U1xx\IR_SERVER.exe
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: OpenOffice.org 3.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: Acrobat Assistant.lnk = C:\Program Files\Adobe\Acrobat 6.0 CE\Distillr\acrotray.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: ComproRemote.lnk = C:\Program Files\Common Files\VideoMate\ComproRemote.exe
O4 - Global Startup: ComproSchedulerDTV.lnk = C:\Program Files\Common Files\VideoMate\ComproSchedulerDTV.exe
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O9 - Extra button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} - http://www.eset.cz/buxus/docs/OnlineScanner.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: TabletServicePen - Wacom Technology, Corp. - C:\WINDOWS\system32\Pen_Tablet.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: WinTab Service (WinTabService) - Tablet Driver - C:\WINDOWS\System32\Drivers\WTSRV.EXE

--
End of file - 8394 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\MP Scheduled Scan.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default

prefs.js - "browser.startup.homepage" - "www.seznam.cz"
prefs.js - "extensions.enabledItems" - "{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11, {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13, jqs@sun.com:1.0, {E9A1DEE0-C623-4439-8932-001E7D17607D}:2.1.0.5, {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}:6.0.17, {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.9, {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}:6.0.19, {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.22"
prefs.js - "keyword.URL" - "http://search.icq.com/search/afe_result ... r=1.4.3&q="

"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
"{4B3803EA-5230-4DC3-A7FC-33638F3D3542}"=C:\Program Files\Crawler\Toolbar\firefox\

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

C:\Program Files\Mozilla Firefox\extensions\
{800b5000-a755-47e1-992b-48a1c1357f07}
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npdeployJava1.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files\Mozilla Firefox\searchplugins\
crawlersrch.xml
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\extensions\
{800b5000-a755-47e1-992b-48a1c1357f07}
{E9A1DEE0-C623-4439-8932-001E7D17607D}

C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\
icqplugin-1.xml
icqplugin-10.xml
icqplugin-11.xml
icqplugin-12.xml
icqplugin-13.xml
icqplugin-14.xml
icqplugin-15.xml
icqplugin-16.xml
icqplugin-17.xml
icqplugin-18.xml
icqplugin-19.xml
icqplugin-2.xml
icqplugin-20.xml
icqplugin-21.xml
icqplugin-22.xml
icqplugin-23.xml
icqplugin-24.xml
icqplugin-25.xml
icqplugin-26.xml
icqplugin-27.xml
icqplugin-28.xml
icqplugin-29.xml
icqplugin-3.xml
icqplugin-30.xml
icqplugin-31.xml
icqplugin-32.xml
icqplugin-33.xml
icqplugin-34.xml
icqplugin-4.xml
icqplugin-5.xml
icqplugin-6.xml
icqplugin-7.xml
icqplugin-8.xml
icqplugin-9.xml
icqplugin.gif
icqplugin.src
icqplugin.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 6.0 CE\Acrobat\ActiveX\AcroIEHelper.dll [2003-05-12 50376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}]
&Crawler Toolbar Helper - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll [2011-09-12 1237240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
AcroIEToolbarHelper Class - C:\Program Files\Adobe\Acrobat 6.0 CE\Acrobat\AcroIEFavClient.dll [2003-05-12 147456]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-04-12 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-04-12 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{855F3B16-6D32-4fe6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2010-11-21 1054520]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Adobe\Acrobat 6.0 CE\Acrobat\AcroIEFavClient.dll [2003-05-12 147456]
{4B3803EA-5230-4DC3-A7FC-33638F3D3542} - &Crawler lišta - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll [2011-09-12 1237240]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2006-10-22 86016]
"WTClient"=C:\WINDOWS\system32\WTClient.exe [2007-04-11 40960]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2010-02-26 2140880]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2006-10-22 7700480]
"IR_SERVER"=C:\Program Files\Compro\VideoMate Vista U1xx\IR_SERVER.exe [2007-12-20 159744]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2006-11-03 866584]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2007-02-22 25388584]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
[]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Acrobat Assistant.lnk - C:\Program Files\Adobe\Acrobat 6.0 CE\Distillr\acrotray.exe
Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
Adobe Gamma.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
ComproRemote.lnk - C:\Program Files\Common Files\VideoMate\ComproRemote.exe
ComproSchedulerDTV.lnk - C:\Program Files\Common Files\VideoMate\ComproSchedulerDTV.exe

C:\Documents and Settings\Vlastník\Nabídka Start\Programy\Po spuštění
OpenOffice.org 3.1.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2007-02-15 236928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}"=C:\PROGRA~1\WINDOW~4\MpShHook.dll [2006-11-03 83224]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDrives"=0
"NoDriveAutoRun"=67108863
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\APC\APC Back-UPS HS\CFGUtil.exe"="C:\Program Files\APC\APC Back-UPS HS\CFGUtil.exe:*:Enabled:CFGUtil"
"C:\Program Files\ICQ6.5\ICQ.exe"="C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"C:\Program Files\totalcmd\TOTALCMD.EXE"="C:\Program Files\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"C:\Program Files\ICQ7.5\ICQ.exe"="C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5"
"C:\Documents and Settings\Vlastník\Dokumenty\ftp\ftp\ftp\clearftp.exe"="C:\Documents and Settings\Vlastník\Dokumenty\ftp\ftp\ftp\clearftp.exe:*:Enabled:clearftp"
"D:\weby_09_11\ftp\ftp\clearftp.exe"="D:\weby_09_11\ftp\ftp\clearftp.exe:*:Enabled:clearftp"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ICQ7.5\ICQ.exe"="C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"midi"=wdmaud.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer"=wdmaud.drv
"vidc.tscc"=tsccvid.dll
"wave1"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv

======List of files/folders created in the last 1 month======

2012-02-27 14:33:43 ----ASH---- C:\hiberfil.sys
2012-02-27 14:21:44 ----D---- C:\WINDOWS\ERUNT
2012-02-27 14:18:03 ----A---- C:\WINDOWS\ntbtlog.txt
2012-02-27 14:15:17 ----D---- C:\SDFix
2012-02-14 22:34:00 ----HDC---- C:\WINDOWS\$NtUninstallKB2660465$
2012-02-14 22:25:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2661637$
2012-02-14 22:21:44 ----N---- C:\WINDOWS\system32\iacenc.dll

======List of files/folders modified in the last 1 month======

2012-02-27 21:52:15 ----D---- C:\Program Files\Trend Micro
2012-02-27 21:50:24 ----D---- C:\WINDOWS\temp
2012-02-27 21:08:00 ----D---- C:\Documents and Settings\Vlastník\Data aplikací\Skype
2012-02-27 18:08:05 ----D---- C:\Documents and Settings\Vlastník\Data aplikací\WTablet
2012-02-27 16:48:31 ----A---- C:\WINDOWS\SchedLgU.Txt
2012-02-27 16:21:41 ----D---- C:\WINDOWS\system32\CatRoot2
2012-02-27 14:39:49 ----D---- C:\WINDOWS\Prefetch
2012-02-27 14:36:53 ----SD---- C:\WINDOWS\Tasks
2012-02-27 14:25:22 ----D---- C:\WINDOWS\system32\drivers\etc
2012-02-27 14:23:44 ----RSHDC---- C:\WINDOWS\system32\dllcache
2012-02-27 14:21:44 ----D---- C:\WINDOWS
2012-02-26 22:21:17 ----D---- C:\WINDOWS\Minidump
2012-02-20 18:03:00 ----HD---- C:\WINDOWS\inf
2012-02-19 14:28:51 ----D---- C:\Program Files\Mozilla Firefox
2012-02-15 06:32:55 ----D---- C:\WINDOWS\system32
2012-02-15 06:32:55 ----D---- C:\Program Files\Internet Explorer
2012-02-14 22:28:27 ----A---- C:\WINDOWS\system32\MRT.exe
2012-02-14 22:27:57 ----A---- C:\WINDOWS\imsins.BAK
2012-02-14 22:26:57 ----D---- C:\WINDOWS\ie8updates
2012-02-14 22:26:13 ----HD---- C:\WINDOWS\$hf_mig$
2012-02-05 14:08:57 ----RD---- C:\Program Files
2012-01-29 05:10:42 ----N---- C:\WINDOWS\system32\MpSigStub.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 uagp35;Filtr Microsoft AGPv3.5; C:\WINDOWS\system32\DRIVERS\uagp35.sys [2008-04-13 44672]
R1 AmdK7;Ovladač procesoru AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2008-04-14 41600]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2010-02-26 114984]
R1 epfwtdi;epfwtdi; C:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2010-02-26 55232]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2010-02-26 139192]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2010-02-26 134488]
R2 MASPINT;MASPINT; C:\WINDOWS\system32\drivers\MASPINT.sys [2000-03-29 8096]
R3 ComproHID;VideoMate Root Enumerated Hid Device; C:\WINDOWS\system32\DRIVERS\ComproHID.sys [2008-02-27 7040]
R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2010-02-26 32584]
R3 FETNDIS;VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-17 27165]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 ms_mpu401;Microsoft MPU-401 MIDI UART Driver; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-17 2944]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2006-10-22 3994624]
R3 RTL2831UBDA;REALTEK 2831U BDA Driver; C:\WINDOWS\system32\drivers\RTL2831UBDA.sys [2008-08-21 94112]
R3 RTL2831UUSB;REALTEK 2831U USB Driver; C:\WINDOWS\System32\Drivers\RTL2831UUSB.sys [2008-08-21 32800]
R3 ULCDRHlp;ULCDRHlp; C:\WINDOWS\System32\Drivers\ULCDRHlp.sys [2004-12-23 27392]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 VIAudio;Vinyl AC'97 Audio Controller (WDM); C:\WINDOWS\system32\drivers\vinyl97.sys [2006-10-09 203648]
R3 wacommousefilter;Wacom Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\wacommousefilter.sys [2007-02-16 11312]
R3 wacomvhid;Wacom Virtual Hid Driver; C:\WINDOWS\system32\DRIVERS\wacomvhid.sys [2007-02-16 12848]
R3 WacomVKHid;Virtual Keyboard Driver; C:\WINDOWS\system32\DRIVERS\WacomVKHid.sys [2007-02-15 11440]
S3 catchme;catchme; \??\C:\DOCUME~1\VLASTN~1\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 HidBatt;Ovladač baterie zdroje UPS standardu HID; C:\WINDOWS\system32\DRIVERS\HidBatt.sys [2008-04-13 20352]
S3 MPE;Filtr MPE BDA; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-13 15232]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 ndiscm;Motorola USB Cable Modem Windows Driver; C:\WINDOWS\system32\DRIVERS\NetMotCM.sys [2003-08-10 14336]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 ovt519;PS2 EyeToy SLEH-00031 Webcam; C:\WINDOWS\System32\Drivers\ov519vid.sys [2010-05-02 163072]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 Tablet2k;Serial Tablet Port Driver; C:\WINDOWS\System32\Drivers\Tablet2k.sys [2007-04-23 17920]
S3 TClass2k;Tablet Class Driver; C:\WINDOWS\system32\DRIVERS\TClass2k.sys [2007-04-23 18432]
S3 UCTblHid;HID Tablet Port Driver; C:\WINDOWS\system32\DRIVERS\UCTblHid.sys [2007-05-31 12800]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 USBCM;Scientific-Atlanta USB Cable Modem Driver; C:\WINDOWS\system32\DRIVERS\Sacm2A.sys [2004-06-10 15429]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S4 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2006-03-02 12032]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2010-02-26 810120]
R2 ICQ Service;ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2010-11-21 247608]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-04-12 153376]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2006-10-22 159810]
R2 TabletServicePen;TabletServicePen; C:\WINDOWS\system32\Pen_Tablet.exe [2007-09-07 1373480]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2005-01-31 49152]
R2 WinDefend;Windows Defender; C:\Program Files\Windows Defender\MsMpEng.exe [2006-11-03 13592]
R2 WinTabService;WinTab Service; C:\WINDOWS\System32\Drivers\WTSRV.EXE [2007-05-31 53248]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2010-02-26 33560]

-----------------EOF-----------------

#2 Příspěvek od **vyosek** » 27 úno 2012 22:00

Zdravim a pekny vecer preji

Detekce ESS kuk sem http://forum.viry.cz/viewtopic.php?f=64&t=119963

SDFix je uz davno po smrti a neaktualizovany

Doporucuji odinstalovat (pokud nepouzivate) toolbary (listy prohlizecu) v Přidat nebo odebrat programy

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
Zaskrtnete okenko Pro vsechny uzivatele
Zaskrtnete okenko Kontrola na havet "LOP"
Zaskrtnete okenko Kontrola na havet "Purity"
Stari souboru zmente z 30 dnu na 7 dnu
Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s

%PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
%PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
%PROGRAMFILES%\Opera\opera.exe /md5
%PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5

%SystemDrive%\PhysicalMBR.bin /md5 

*crack* /s
*keygen* /s
*loader* /s

Kliknete na tlacitko Prohledat
Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte

pespes · #3 Příspěvek od **pespes** » 02 bře 2012 14:53

OTL Extras logfile created on: 27.2.2012 22:06:33 - Run 1
OTL by OldTimer - Version 3.2.33.2 Folder = C:\Documents and Settings\Vlastník\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

511,48 Mb Total Physical Memory | 91,94 Mb Available Physical Memory | 17,98% Memory free
1,22 Gb Paging File | 0,59 Gb Available in Paging File | 48,55% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 9,77 Gb Total Space | 1,17 Gb Free Space | 11,98% Space Free | Partition Type: NTFS
Drive D: | 64,75 Gb Total Space | 58,28 Gb Free Space | 90,00% Space Free | Partition Type: NTFS
Drive G: | 7,46 Gb Total Space | 2,12 Gb Free Space | 28,42% Space Free | Partition Type: FAT32

Computer Name: PETRA | User Name: Vlastník | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = All Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = Opera.HTML] -- C:\Program Files\Opera\opera.exe (Opera Software)

[HKEY_USERS\S-1-5-21-746137067-2111687655-1801674531-1004\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
http [open] -- Reg Error: Key error.
https [open] -- "C:\Program Files\Opera\opera.exe" (Opera Software)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"UpdatesDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\ICQ7.5\ICQ.exe" = C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5 -- (ICQ, LLC.)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\APC\APC Back-UPS HS\CFGUtil.exe" = C:\Program Files\APC\APC Back-UPS HS\CFGUtil.exe:*:Enabled:CFGUtil -- ()
"C:\Program Files\ICQ6.5\ICQ.exe" = C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6
"C:\Program Files\totalcmd\TOTALCMD.EXE" = C:\Program Files\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows
"C:\Program Files\ICQ7.5\ICQ.exe" = C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5 -- (ICQ, LLC.)
"C:\Documents and Settings\Vlastník\Dokumenty\ftp\ftp\ftp\clearftp.exe" = C:\Documents and Settings\Vlastník\Dokumenty\ftp\ftp\ftp\clearftp.exe:*:Enabled:clearftp -- ()
"D:\weby_09_11\ftp\ftp\clearftp.exe" = D:\weby_09_11\ftp\ftp\clearftp.exe:*:Enabled:clearftp

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{02E89EFC-7B07-4D5A-AA03-9EC0902914EE}" = VC 9.0 Runtime
"{07224AA9-2F2F-46A2-9A56-3B7B603B5E6C}" = Ulead Straight-to-Disc SDK
"{1BC4026B-1957-4514-9058-2B542557F143}" = Opera 9.63
"{2390A2AB-D96E-400E-90A8-1BBD8D680159}" = VideoMate Vista U1xx
"{26A24AE4-039D-4CA4-87B4-2F83216011FF}" = Java(TM) 6 Update 20
"{3248F0A8-6813-11D6-A77B-00B0D0160010}" = Java(TM) SE Runtime Environment 6 Update 1
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3B2ABF54-299A-46E4-B4C5-A8879DF6EE72}" = ESET Smart Security
"{3D5E5C0A-5B36-4F98-99A7-287F7DBDCE03}" = Skype Plugin Manager
"{41A9E703-0DAE-48DB-BFFD-4C0864CD78AE}" = VideoMate TV
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{58EAED3C-1704-4F9A-BB7B-B8D31F5762C5}" = Hot Potatoes
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7578ADEA-D65F-4C89-A249-B1C88B6FFC20}" = ICQ7.5
"{786C5747-1437-443D-B06E-79A00FE45110}" = Adobe Stock Photos 1.0
"{824BADF8-9A1B-4D07-8817-8DDDC8543F23}" = OpenOffice.org 3.1
"{85906B1C-FD0E-417A-BE43-C3A4E10CFAA0}" = Adobe Illustrator 10 CE
"{8CA8415F-8D77-44A4-9D59-C258D6FB5155}" = ComproDTV 4
"{9E976BE0-B8C1-4DF2-AA84-7048F3075158}" = VideoMate Pure DVB-T USB Driver
"{A06275F4-324B-4E85-95E6-87B2CD729401}" = Windows Defender
"{AC76BA86-1033-C470-7760-CE0000000001}" = Adobe Acrobat 6.0 CE Professional
"{AC76BA86-7AD7-1033-7B44-000000000001}" = Adobe Reader 6.0
"{E9787678-1033-0000-8E67-000000000001}" = Adobe Help Center 1.0
"{F1A1FA1C-5973-4355-A7DC-FED4AEA7D1BC}" = APC Back-UPS HS
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe InDesign 2.0 CE" = Adobe InDesign 2.0.2 CE
"B991B020-2968-11D8-AF23-444553540000_is1" = FreeMind
"CCleaner" = CCleaner
"CToolbar_UNINSTALL" = Web Security Guard with Crawler Toolbar
"DemoStudio" = DemoStudio
"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
"HijackThis" = HijackThis 2.0.2
"ICQToolbar" = ICQ Toolbar
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"Mozilla Firefox 10.0.2 (x86 cs)" = Mozilla Firefox 10.0.2 (x86 cs)
"MWASPI" = MicroStaff WINASPI
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA Drivers" = NVIDIA Drivers
"Pen Tablet Driver" = Pen Tablet
"PS2 EyeToy SLEH-00031 Webcam" = PS2 EyeToy SLEH-00031 Webcam
"PSPad editor_is1" = PSPad editor
"rajče.net_is1" = rajče průvodce verze 1.59.36.251
"ShockwaveFlash" = Adobe Flash Player 9 ActiveX
"Skype_is1" = Skype 3.0
"Spybot - Search & Destroy_is1" = Spybot - Search & Destroy 1.4
"WebSTAR DPC2100 Uninstall" = Scientific-Atlanta WebSTAR 2000 series Cable Modem
"Windows XP Service Pack" = Windows XP Service Pack 3

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 23.2.2012 16:36:57 | Computer Name = PETRA | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace ComproDTV.exe, verze 4.5.6.6, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 23.2.2012 16:39:15 | Computer Name = PETRA | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace ComproDTV.exe, verze 4.5.6.6, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 23.2.2012 16:39:27 | Computer Name = PETRA | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace ComproDTV.exe, verze 4.5.6.6, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 23.2.2012 17:00:06 | Computer Name = PETRA | Source = MPSampleSubmission | ID = 5000
Description =

Error - 24.2.2012 5:33:03 | Computer Name = PETRA | Source = Application Error | ID = 1004
Description = Chybující aplikace MsMpEng.exe, verze 1.1.1593.0, chybující modul
mpengine.dll, verze 1.1.7903.0, adresa chyby 0x000c94a9.

Error - 24.2.2012 5:33:35 | Computer Name = PETRA | Source = Application Error | ID = 1004
Description = Chybující aplikace Pen_Tablet.exe, verze 5.0.5.7, chybující modul
Pen_Tablet.exe, verze 5.0.5.7, adresa chyby 0x0004a263.

Error - 24.2.2012 18:28:51 | Computer Name = PETRA | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace ComproDTV.exe, verze 4.5.6.6, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 26.2.2012 3:38:27 | Computer Name = PETRA | Source = Application Error | ID = 1000
Description = Chybující aplikace MsMpEng.exe, verze 1.1.1593.0, chybující modul
mpengine.dll, verze 1.1.8101.0, adresa chyby 0x001f6f17.

Error - 26.2.2012 16:41:40 | Computer Name = PETRA | Source = Application Error | ID = 1000
Description = Chybující aplikace MsMpEng.exe, verze 1.1.1593.0, chybující modul
mpengine.dll, verze 1.1.8101.0, adresa chyby 0x001f5f69.

Error - 27.2.2012 15:49:28 | Computer Name = PETRA | Source = Application Error | ID = 1000
Description = Chybující aplikace comprodtv.exe, verze 4.5.6.6, chybující modul comprodtv.exe,
verze 4.5.6.6, adresa chyby 0x0007ad45.

========== Last 10 Event Log Errors ==========

Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!

< End of report >

#4 Příspěvek od **vyosek** » 02 bře 2012 18:46

Jeste poprosim o log OTL.txt

pespes · #5 Příspěvek od **pespes** » 08 bře 2012 14:35

omlouvám se, log byl moc dlouhý - posílám odkaz:
http://www.uschovna.cz/zasilka/H5JX8P4AZAZICWJK-KGI
předem děkuji

#6 Příspěvek od **vyosek** » 08 bře 2012 14:39

Jste tam dala spatny parametr na ty dny stari souboru

Ja si sem log dam, bez casti Files/Folders - Created Within All Days a Files - Modified Within All Days

OTL logfile created on: 27.2.2012 22:06:33 - Run 1
OTL by OldTimer - Version 3.2.33.2 Folder = C:\Documents and Settings\Vlastník\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

511,48 Mb Total Physical Memory | 91,94 Mb Available Physical Memory | 17,98% Memory free
1,22 Gb Paging File | 0,59 Gb Available in Paging File | 48,55% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 9,77 Gb Total Space | 1,17 Gb Free Space | 11,98% Space Free | Partition Type: NTFS
Drive D: | 64,75 Gb Total Space | 58,28 Gb Free Space | 90,00% Space Free | Partition Type: NTFS
Drive G: | 7,46 Gb Total Space | 2,12 Gb Free Space | 28,42% Space Free | Partition Type: FAT32

Computer Name: PETRA | User Name: Vlastník | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = All Days

========== Processes (SafeList) ==========

PRC - [2012.02.27 22:05:23 | 000,583,680 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Vlastník\Plocha\OTL.exe
PRC - [2012.02.19 14:28:35 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010.11.21 10:49:24 | 000,247,608 | ---- | M] () -- C:\Program Files\ICQ6Toolbar\ICQ Service.exe
PRC - [2010.02.26 06:41:12 | 000,810,120 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe
PRC - [2010.02.26 06:40:58 | 002,140,880 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\egui.exe
PRC - [2010.02.04 15:25:28 | 006,135,808 | ---- | M] (Compro Technology, Inc.) -- C:\Program Files\VideoMate\ComproDTV 4\ComproDTV.exe
PRC - [2010.02.03 19:11:32 | 013,279,232 | ---- | M] (Compro Technology, Inc.) -- C:\Program Files\Common Files\VideoMate\ComproRemote.exe
PRC - [2010.02.02 08:40:40 | 000,372,736 | ---- | M] (Compro Technology, Inc.) -- C:\Program Files\Common Files\VideoMate\ComproSchedulerDTV.exe
PRC - [2009.09.17 20:11:40 | 007,418,368 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin
PRC - [2009.09.17 20:11:38 | 007,424,000 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe
PRC - [2008.04.14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007.12.20 14:00:30 | 000,159,744 | ---- | M] (Realtek) -- C:\Program Files\Compro\VideoMate Vista U1xx\IR_SERVER.exe
PRC - [2007.09.07 11:16:50 | 000,132,392 | ---- | M] (Wacom Technology, Corp.) -- C:\WINDOWS\system32\WTablet\Pen_TabletUser.exe
PRC - [2007.09.07 11:16:18 | 001,373,480 | ---- | M] (Wacom Technology, Corp.) -- C:\WINDOWS\system32\Pen_Tablet.exe
PRC - [2007.05.31 14:38:48 | 000,053,248 | ---- | M] (Tablet Driver) -- C:\WINDOWS\system32\drivers\WTSrv.exe
PRC - [2007.04.11 17:27:00 | 000,040,960 | ---- | M] (Tablet Driver) -- C:\WINDOWS\system32\WTClient.exe
PRC - [2006.11.03 18:20:12 | 000,866,584 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe
PRC - [2006.11.03 18:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MsMpEng.exe
PRC - [2005.01.31 08:45:20 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
PRC - [2003.07.17 21:50:42 | 000,217,180 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\Adobe\Acrobat 6.0 CE\Distillr\acrotray.exe

========== Modules (No Company Name) ==========

MOD - [2012.02.19 14:28:34 | 001,911,768 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2011.09.03 19:21:20 | 006,277,280 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
MOD - [2010.11.21 10:49:24 | 000,247,608 | ---- | M] () -- C:\Program Files\ICQ6Toolbar\ICQ Service.exe
MOD - [2009.09.17 20:11:16 | 000,139,264 | ---- | M] () -- C:\Program Files\OpenOffice.org 3\Basis\program\nsldap32v50.dll
MOD - [2009.09.16 14:57:32 | 000,166,400 | ---- | M] () -- C:\Program Files\OpenOffice.org 3\Basis\program\libxslt.dll
MOD - [2009.09.11 16:03:14 | 000,970,752 | ---- | M] () -- C:\Program Files\OpenOffice.org 3\program\libxml2.dll
MOD - [2008.04.14 04:22:56 | 000,148,992 | ---- | M] () -- C:\WINDOWS\system32\mpg2splt.ax
MOD - [2008.04.14 04:22:56 | 000,056,832 | ---- | M] () -- C:\WINDOWS\system32\MSDvbNP.ax
MOD - [2008.04.14 04:22:56 | 000,033,280 | ---- | M] () -- C:\WINDOWS\system32\PsisRndr.ax
MOD - [2008.04.14 04:21:54 | 000,363,520 | ---- | M] () -- C:\WINDOWS\system32\PsisDecd.dll
MOD - [2008.04.14 04:21:47 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2007.08.29 14:53:56 | 000,077,824 | ---- | M] () -- C:\WINDOWS\U100 Driver\BdaExtenPropPlugIn.ax
MOD - [2006.10.22 12:22:00 | 000,466,944 | ---- | M] () -- C:\WINDOWS\system32\nvshell.dll
MOD - [2006.10.22 12:22:00 | 000,212,992 | ---- | M] () -- C:\WINDOWS\system32\nvapi.dll
MOD - [2003.07.19 13:14:14 | 000,028,672 | ---- | M] () -- C:\Program Files\Adobe\Acrobat 6.0 CE\Distillr\AcroTray.CZE

========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2010.11.21 10:49:24 | 000,247,608 | ---- | M] () [Auto | Running] -- C:\Program Files\ICQ6Toolbar\ICQ Service.exe -- (ICQ Service)
SRV - [2010.02.26 06:42:34 | 000,033,560 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe -- (EhttpSrv)
SRV - [2010.02.26 06:41:12 | 000,810,120 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe -- (ekrn)
SRV - [2007.09.07 11:16:18 | 001,373,480 | ---- | M] (Wacom Technology, Corp.) [Auto | Running] -- C:\WINDOWS\system32\Pen_Tablet.exe -- (TabletServicePen)
SRV - [2007.05.31 14:38:48 | 000,053,248 | ---- | M] (Tablet Driver) [Auto | Running] -- C:\WINDOWS\System32\Drivers\WTSRV.EXE -- (WinTabService)
SRV - [2006.11.03 18:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV - [2005.01.31 08:45:20 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper)

========== Driver Services (SafeList) ==========

DRV - [2010.05.02 19:10:13 | 000,163,072 | ---- | M] (OmniVision Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ov519vid.sys -- (ovt519)
DRV - [2010.02.26 06:41:36 | 000,055,232 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdi.sys -- (epfwtdi)
DRV - [2010.02.26 06:41:34 | 000,032,584 | ---- | M] (ESET) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\epfwndis.sys -- (Epfwndis)
DRV - [2010.02.26 06:41:32 | 000,134,488 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\epfw.sys -- (epfw)
DRV - [2010.02.26 06:41:06 | 000,114,984 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2010.02.26 06:39:24 | 000,139,192 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2008.08.21 16:15:50 | 000,032,800 | ---- | M] (REALTEK SEMICONDUCTOR Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL2831UUSB.sys -- (RTL2831UUSB)
DRV - [2008.08.21 16:15:44 | 000,094,112 | ---- | M] (REALTEK SEMICONDUCTOR Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL2831UBDA.sys -- (RTL2831UBDA)
DRV - [2008.04.13 19:46:22 | 000,015,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\MPE.sys -- (MPE)
DRV - [2008.04.13 19:45:29 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2008.02.27 00:22:00 | 000,007,040 | ---- | M] (Compro Tech., Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ComproHID.sys -- (ComproHID)
DRV - [2007.05.31 18:33:44 | 000,012,800 | ---- | M] (Tablet Driver) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\UCTblHid.sys -- (UCTblHid)
DRV - [2007.04.23 16:28:56 | 000,018,432 | ---- | M] (Tablet Driver) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\TClass2k.sys -- (TClass2k)
DRV - [2007.04.23 16:28:56 | 000,017,920 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\Drivers\Tablet2k.sys -- (Tablet2k)
DRV - [2007.02.16 11:12:36 | 000,011,312 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\wacommousefilter.sys -- (wacommousefilter)
DRV - [2007.02.16 10:30:12 | 000,012,848 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\wacomvhid.sys -- (wacomvhid)
DRV - [2007.02.15 16:11:28 | 000,011,440 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WacomVKHid.sys -- (WacomVKHid)
DRV - [2006.10.09 12:58:00 | 000,203,648 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\vinyl97.sys -- (VIAudio) Vinyl AC'97 Audio Controller (WDM)
DRV - [2004.12.23 16:27:56 | 000,027,392 | ---- | M] (Ulead Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ULCDRHlp.sys -- (ULCDRHlp)
DRV - [2004.06.10 00:42:38 | 000,015,429 | R--- | M] ( ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Sacm2A.sys -- (USBCM)
DRV - [2003.08.10 01:32:14 | 000,014,336 | R--- | M] (Motorola Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\NetMotCM.sys -- (ndiscm)
DRV - [2001.08.17 23:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)
DRV - [2000.03.29 17:11:20 | 000,008,096 | ---- | M] (MicroStaff Co.,Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\MASPINT.SYS -- (MASPINT)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=60747
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60747
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)

IE - HKU\.DEFAULT\..\URLSearchHook: - No CLSID value found
IE - HKU\.DEFAULT\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-18\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Prev Search Bar = http://google.icq.com/search/search_frame.php
IE - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.crawler.com/search/dispatche ... tbid=60747
IE - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.crawler.com/homepage.aspx?tbid=60747
IE - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\..\URLSearchHook: {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\Program Files\Crawler\Toolbar\ctbr.dll (Crawler.com)
IE - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "www.seznam.cz"
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {E9A1DEE0-C623-4439-8932-001E7D17607D}:2.1.0.5
FF - prefs.js..extensions.enabledItems: {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.9
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..keyword.URL: "http://search.icq.com/search/afe_result ... r=1.4.3&q="

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}: C:\Program Files\Crawler\Toolbar\firefox\ [2011.10.12 11:55:24 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.02.19 14:28:35 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.09.30 22:35:19 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2010.03.22 23:36:50 | 000,000,000 | ---D | M]

[2008.09.15 20:00:14 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Extensions
[2012.01.05 11:31:12 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\extensions
[2012.01.05 11:31:12 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2009.03.31 20:59:27 | 000,000,000 | ---D | M] ("Ask Toolbar for Firefox") -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}
[2012.02.18 00:18:22 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-1.xml
[2009.04.24 19:33:00 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-10.xml
[2009.04.29 18:22:18 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-11.xml
[2009.06.13 12:59:35 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-12.xml
[2009.07.23 18:13:45 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-13.xml
[2009.08.05 20:36:57 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-14.xml
[2009.09.12 22:54:38 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-15.xml
[2009.09.14 19:42:07 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-16.xml
[2009.11.02 23:08:42 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-17.xml
[2009.12.19 20:13:59 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-18.xml
[2010.01.08 20:45:40 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-19.xml
[2008.09.25 19:20:37 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-2.xml
[2010.02.18 21:55:14 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-20.xml
[2010.03.15 21:26:18 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-21.xml
[2010.03.24 14:55:11 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-22.xml
[2011.06.21 21:07:43 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-23.xml
[2011.08.20 12:57:36 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-24.xml
[2011.09.02 11:29:03 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-25.xml
[2011.09.08 22:35:10 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-26.xml
[2011.10.01 12:05:40 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-27.xml
[2011.10.10 22:23:55 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-28.xml
[2011.11.08 21:42:09 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-29.xml
[2008.09.27 20:23:11 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-3.xml
[2011.11.16 10:39:51 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-30.xml
[2012.01.09 11:14:30 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-31.xml
[2012.02.02 14:03:38 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-32.xml
[2012.02.12 13:52:20 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-33.xml
[2012.02.18 09:28:30 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-34.xml
[2009.01.24 22:18:12 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-4.xml
[2009.02.04 23:10:24 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-5.xml
[2009.02.05 20:57:35 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-6.xml
[2009.03.07 15:39:40 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-7.xml
[2009.03.29 12:37:42 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-8.xml
[2009.04.23 20:08:58 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-9.xml
[2012.01.04 14:54:58 | 000,000,168 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin.gif
[2012.01.04 14:54:58 | 000,000,618 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin.src
[2011.03.30 14:14:34 | 000,001,042 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin.xml
[2011.11.10 11:46:37 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2009.03.11 09:53:43 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\VLASTNĂK\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\WTS774JB.DEFAULT\EXTENSIONS\{800B5000-A755-47E1-992B-48A1C1357F07}
[2009.01.23 20:22:14 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2012.02.19 14:28:35 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2010.04.12 16:29:19 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2009.09.21 11:24:16 | 000,001,329 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\crawlersrch.xml
[2012.02.02 14:00:34 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2012.02.02 14:00:34 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2012.02.02 14:00:34 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2012.02.02 14:00:34 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2012.02.02 14:00:34 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml

========== Chrome ==========

CHR - default_search_provider: Google ()
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?client=chrome&hl={language}&q={searchTerms}
CHR - Extension: AT_HedgehogInTheFog_v2 = C:\Documents and Settings\Vlastník\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\haocganpkafanhkfldbbmhcpaelmkejg\3\

O1 HOSTS File: ([2012.02.27 14:25:22 | 000,000,686 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\HOSTS
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0 CE\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (&Crawler Toolbar Helper) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\Program Files\Crawler\Toolbar\ctbr.dll (Crawler.com)
O2 - BHO: (no name) - {201f27d4-3704-41d6-89c1-aa35e39143ed} - No CLSID value found.
O2 - BHO: (AcroIEToolbarHelper Class) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 6.0 CE\Acrobat\AcroIEFavClient.dll ()
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 6.0 CE\Acrobat\AcroIEFavClient.dll ()
O3 - HKLM\..\Toolbar: (&Crawler lišta) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\Program Files\Crawler\Toolbar\ctbr.dll (Crawler.com)
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 6.0 CE\Acrobat\AcroIEFavClient.dll ()
O3 - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\..\Toolbar\WebBrowser: (&Crawler lišta) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\Program Files\Crawler\Toolbar\ctbr.dll (Crawler.com)
O3 - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\..\Toolbar\WebBrowser: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
O4 - HKLM..\Run: [IR_SERVER] C:\Program Files\Compro\VideoMate Vista U1xx\IR_SERVER.exe (Realtek)
O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKLM..\Run: [WTClient] C:\WINDOWS\System32\WTClient.exe (Tablet Driver)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Acrobat Assistant.lnk = C:\Program Files\Adobe\Acrobat 6.0 CE\Distillr\acrotray.exe (Adobe Systems Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\ComproRemote.lnk = C:\Program Files\Common Files\VideoMate\ComproRemote.exe (Compro Technology, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\ComproSchedulerDTV.lnk = C:\Program Files\Common Files\VideoMate\ComproSchedulerDTV.exe (Compro Technology, Inc.)
O4 - Startup: C:\Documents and Settings\Vlastník\Nabídka Start\Programy\Po spuštění\OpenOffice.org 3.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O8 - Extra context menu item: Crawler Search - tbr:iemenu File not found
O8 - Extra context menu item: Převést cíl vazby do Adobe PDF - Reg Error: Value error. File not found
O8 - Extra context menu item: Převést cíl vazby do existujícího PDF - Reg Error: Value error. File not found
O8 - Extra context menu item: Převést do Adobe PDF - Reg Error: Value error. File not found
O8 - Extra context menu item: Převést do existujícího PDF - Reg Error: Value error. File not found
O8 - Extra context menu item: Převést výběr do Adobe PDF - Reg Error: Value error. File not found
O8 - Extra context menu item: Převést výběr do existujícího PDF - Reg Error: Value error. File not found
O8 - Extra context menu item: Převést vybrané vazby do Adobe PDF - Reg Error: Value error. File not found
O8 - Extra context menu item: Převést vybrané vazby do existujícího PDF - Reg Error: Value error. File not found
O9 - Extra Button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra 'Tools' menuitem : ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} http://www.eset.cz/buxus/docs/OnlineScanner.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/sh ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.46.172.36 213.46.172.37
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{CEF8DF36-BBA2-47E8-BAB9-A6DB37E3CFDC}: DhcpNameServer = 213.46.172.36 213.46.172.37
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\tbr {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\Program Files\Crawler\Toolbar\ctbr.dll (Crawler.com)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O28 - HKLM ShellExecuteHooks: {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007.03.04 14:14:34 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2011.11.21 09:41:36 | 000,000,000 | ---D | M] - G:\auto1 -- [ FAT32 ]
O32 - AutoRun File - [2011.12.02 00:47:20 | 000,000,000 | ---D | M] - G:\auto -- [ FAT32 ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.tscc - C:\WINDOWS\System32\tsccvid.dll (TechSmith Corporation)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== LOP Check ==========

[2010.03.22 23:36:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2011.06.09 11:21:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ICQ
[2010.03.22 23:40:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\ESET
[2009.02.01 22:19:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\FUJIFILM
[2012.01.11 19:09:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\ICQ
[2007.03.12 19:51:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\ICQ Toolbar
[2007.03.04 18:02:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\ICQLite
[2010.01.09 21:36:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\OpenOffice.org
[2007.03.04 14:32:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\Opera
[2011.04.25 21:28:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\Reviversoft
[2012.02.27 22:00:30 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job

========== Purity Check ==========

========== Custom Scans ==========

< >

< >

< MD5 for: ATAPI.SYS >
[2006.03.02 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.08.27 06:49:38 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.08.27 06:49:38 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008.04.13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ERDNT\cache\atapi.sys
[2008.04.13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008.04.13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2006.03.02 13:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2008.04.14 04:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\cmdcons\autochk.exe
[2008.04.14 04:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe
[2008.04.14 04:22:10 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=C7A9FF12C63E2E448722B02C71A8C431 -- C:\WINDOWS\system32\autochk.exe
[2006.03.02 13:00:00 | 000,601,088 | ---- | M] (Microsoft Corporation) MD5=CEA8636EC12F062C1ED8A7CB4E75324F -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe

< MD5 for: CDROM.SYS >
[2006.03.02 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008.08.27 06:49:38 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008.08.27 06:49:38 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008.04.13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008.04.13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2006.03.02 13:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2008.04.14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ERDNT\cache\explorer.exe
[2008.04.14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\explorer.exe
[2008.04.14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) MD5=27AFD587C462E280EE046B8CCA3C2CD1 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[2006.03.02 13:00:00 | 001,032,704 | ---- | M] (Microsoft Corporation) MD5=53114D57AB73A406AC7F602227781A99 -- C:\WINDOWS\$NtUninstallKB938828$\explorer.exe
[2007.06.13 14:11:59 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=9B32416BD5988C97B6397CE0B02CAF97 -- C:\WINDOWS\$hf_mig$\KB938828\SP2QFE\explorer.exe
[2007.06.13 14:23:39 | 001,033,728 | ---- | M] (Microsoft Corporation) MD5=ED7B460B142A32097B8A8F6ECC941815 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe

< MD5 for: HAL.DLL >
[2006.03.02 13:00:00 | 018,786,869 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:hal.dll
[2008.08.27 06:49:38 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:hal.dll
[2008.08.27 06:49:38 | 023,890,583 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:hal.dll
[2008.04.13 19:31:32 | 000,105,344 | ---- | M] (Microsoft Corporation) MD5=6DB1E72AD3B372DFC451B7F54BA08AA7 -- C:\WINDOWS\ServicePackFiles\i386\hal.dll
[2008.04.13 19:31:28 | 000,131,840 | ---- | M] (Microsoft Corporation) MD5=6F61D3287A6A15A08A9433222C09D17F -- C:\WINDOWS\system32\HAL.DLL
[2006.03.02 13:00:00 | 000,131,968 | ---- | M] (Microsoft Corporation) MD5=F9A0F579FC18036FFDD9E26E0D268CCD -- C:\WINDOWS\$NtServicePackUninstall$\hal.dll

< MD5 for: SCECLI.DLL >
[2006.03.02 13:00:00 | 000,184,832 | ---- | M] (Microsoft Corporation) MD5=07119058D451CB7EA4317BCFDA8599A6 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008.04.14 04:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ERDNT\cache\scecli.dll
[2008.04.14 04:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008.04.14 04:21:54 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll

< MD5 for: SVCHOST.EXE >
[2008.04.14 04:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ERDNT\cache\svchost.exe
[2008.04.14 04:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe
[2008.04.14 04:22:48 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=BE4A520E29B6391F49E79CCC52044D93 -- C:\WINDOWS\system32\svchost.exe
[2006.03.02 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=DFBA2915B0BF58ABB288CD4C9318CB3F -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe

< MD5 for: TCPIP.SYS >
[2006.04.20 12:51:50 | 000,359,808 | ---- | M] (Microsoft Corporation) MD5=1DBF125862891817F374F407626967F4 -- C:\WINDOWS\$NtUninstallKB941644$\tcpip.sys
[2008.06.20 11:45:13 | 000,360,320 | ---- | M] (Microsoft Corporation) MD5=2A5554FC5B1E04E131230E3CE035C3F9 -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2007.10.30 17:53:32 | 000,360,832 | ---- | M] (Microsoft Corporation) MD5=64798ECFA43D78C7178375FCDD16D8C8 -- C:\WINDOWS\$hf_mig$\KB941644\SP2QFE\tcpip.sys
[2008.06.20 11:44:42 | 000,360,960 | ---- | M] (Microsoft Corporation) MD5=744E57C99232201AE98C49168B918F48 -- C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip.sys
[2007.10.30 18:20:55 | 000,360,064 | ---- | M] (Microsoft Corporation) MD5=90CAFF4B094573449A0872A0F919B178 -- C:\WINDOWS\$NtUninstallKB951748_0$\tcpip.sys
[2008.04.13 20:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[2008.04.13 20:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\ERDNT\cache\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008.06.20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2006.03.02 13:00:00 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtUninstallKB917953$\tcpip.sys
[2008.06.20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[2008.06.20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[2006.04.20 13:18:35 | 000,360,576 | ---- | M] (Microsoft Corporation) MD5=B2220C618B42A2212A59D91EBD6FC4B4 -- C:\WINDOWS\$hf_mig$\KB917953\SP2QFE\tcpip.sys

< MD5 for: USERINIT.EXE >
[2008.04.14 04:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ERDNT\cache\userinit.exe
[2008.04.14 04:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008.04.14 04:22:50 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=7DC1830F22E7D275B438127B68030239 -- C:\WINDOWS\system32\userinit.exe
[2006.03.02 13:00:00 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=836F7960362FF95C5D49E40B891F2CFC -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe

< MD5 for: WINLOGON.EXE >
[2006.03.02 13:00:00 | 000,502,272 | ---- | M] (Microsoft Corporation) MD5=221C29AE1B4CC61D11D8B27DE78B2307 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008.04.14 04:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ERDNT\cache\winlogon.exe
[2008.04.14 04:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008.04.14 04:22:53 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CDDB1F8E1AEA356F3AD106F2CF9B7FEA -- C:\WINDOWS\system32\winlogon.exe

< >

< %systemroot%*.* /U /s >
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[4 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\0783c10a579f70073d252071361483dd\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\0783c10a579f70073d252071361483dd\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\1f0acb22904f0ed8db4a7796ddd37134\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\1f0acb22904f0ed8db4a7796ddd37134\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\1f860ef81f81a48257979242c614316e\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\1f860ef81f81a48257979242c614316e\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\272d4989b9bb46e1cd3cfc6bf5328937\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\272d4989b9bb46e1cd3cfc6bf5328937\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\2984890ab80f8cfb10c124428a0c1d15\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\2984890ab80f8cfb10c124428a0c1d15\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\485180e5e1183576a617417955aaa437\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\485180e5e1183576a617417955aaa437\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\4ddec568044c829f6f5e7c941a5ad7cf\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\4ddec568044c829f6f5e7c941a5ad7cf\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\6186e4eff5d96f21f009ada261e88e06\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\6186e4eff5d96f21f009ada261e88e06\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\ac89b27ecf0eb910daa366ddf993a703\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\ac89b27ecf0eb910daa366ddf993a703\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\ff9ada23639ea51cceb28163bd4b2172\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\ff9ada23639ea51cceb28163bd4b2172\*.tmp -> ]
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >
[2009.02.01 20:49:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Agnitum

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2010.01.17 21:33:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\Adobe
[2007.03.08 23:19:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\AdobeUM
[2008.07.02 20:45:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\Apple Computer
[2010.03.22 23:40:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\ESET
[2009.02.01 22:19:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\FUJIFILM
[2007.09.24 19:42:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\Google
[2008.04.09 22:59:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\Help
[2012.01.11 19:09:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\ICQ
[2007.03.12 19:51:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\ICQ Toolbar
[2007.03.04 18:02:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\ICQLite
[2007.03.04 14:23:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\Identities
[2011.09.12 21:09:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\InstallShield
[2007.03.04 14:35:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\Macromedia
[2011.10.06 21:46:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\Malwarebytes
[2010.01.08 21:56:14 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Vlastník\Data aplikací\Microsoft
[2008.09.15 20:00:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla
[2010.01.09 21:36:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\OpenOffice.org
[2010.01.08 22:07:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\OpenOffice.org2
[2007.03.04 14:32:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\Opera
[2007.10.13 14:35:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\PSpad
[2011.04.25 21:28:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\Reviversoft
[2012.02.27 22:08:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\Skype
[2007.06.13 21:46:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\Sun
[2007.12.07 20:07:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\WinRAR
[2012.02.27 18:08:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\WTablet

< %APPDATA%\*.exe /s >
[2011.11.30 23:53:44 | 003,763,360 | ---- | M] (Adobe Systems, Inc.) -- C:\Documents and Settings\Vlastník\Data aplikací\Macromedia\Flash Player\www.macromedia.com\bin\fpupdatepl\fpupdatepl.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job >
[2012.02.27 22:00:30 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >
[2007.03.04 14:59:58 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2007.03.04 14:59:58 | 000,638,976 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2007.03.04 14:59:58 | 000,458,752 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav

< %systemroot%\system32\*.dll /lockedfiles >
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2012.02.27 18:07:53 | 000,088,566 | ---- | M] () -- C:\WINDOWS\system32\nvapps.xml
[2012.02.27 18:10:43 | 000,013,646 | ---- | M] () -- C:\WINDOWS\system32\wpa.dbl
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Skype" = "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized -- [2007.02.22 23:31:40 | 025,388,584 | ---- | M] (Skype Technologies S.A.)
"ctfmon.exe" = C:\WINDOWS\system32\ctfmon.exe -- [2008.04.14 04:22:17 | 000,015,360 | ---- | M] (Microsoft Corporation)
"MSMSGS" = "C:\Program Files\Messenger\msmsgs.exe" /background -- [2008.04.14 04:22:36 | 001,695,232 | ---- | M] (Microsoft Corporation)

< >

< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >
[2012.02.19 14:28:35 | 000,924,632 | ---- | M] (Mozilla Corporation) MD5=5AC757AE411CBC603C33C85F81F8657D -- C:\Program Files\Mozilla Firefox\firefox.exe

< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2009.03.08 14:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation) MD5=B60DDDD2D63CE41CB8C487FCFBB6419E -- C:\Program Files\Internet Explorer\iexplore.exe

< %PROGRAMFILES%\Opera\opera.exe /md5 >
[2008.12.10 22:32:46 | 000,098,816 | ---- | M] (Opera Software) MD5=D818069A8707E7FA5B0598EF80A1668B -- C:\Program Files\Opera\opera.exe

< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >

< >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2012.02.27 22:09:31 | 000,000,512 | ---- | M] () MD5=047B4F413162DD37BE6ABCA6D0410218 -- C:\PhysicalMBR.bin

< >

< *crack* /s >

< *keygen* /s >

< *loader* /s >
[2010.03.13 00:03:24 | 000,000,890 | ---- | M] () -- \Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Gamma Loader.lnk
[2012.02.10 00:56:20 | 000,000,391 | ---- | M] () -- \Documents and Settings\Vlastník\Recent\loader.lnk
[2002.11.25 17:05:52 | 000,110,592 | ---- | M] () -- \Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
[2011.06.09 11:19:33 | 000,005,795 | ---- | M] () -- \Program Files\ICQ7.5\imApp\theme\IMAGES\XtraPreloader\loader.jpg
[2011.06.09 11:19:34 | 000,004,180 | ---- | M] () -- \Program Files\ICQ7.5\imApp\theme\IMAGES\XtraPreloader\zlango-preloader.png
[2011.06.09 11:19:33 | 000,005,520 | ---- | M] () -- \Program Files\ICQ7.5\imApp\theme\MUICoreLib\xtraLoader.swf
[2011.06.09 11:22:27 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.5\Xtraz\icq\content\icq_profile\preloader.html
[2011.06.09 11:22:28 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.5\Xtraz\icq\content\profile_forms\preloader.html
[2011.06.09 11:22:28 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.5\Xtraz\icq\content\profile_lightboxs\preloader.html
[2009.09.16 22:33:50 | 000,006,308 | ---- | M] () -- \Program Files\OpenOffice.org 3\Basis\program\pythonloader.py
[2010.03.28 20:46:56 | 000,005,437 | ---- | M] () -- \Program Files\OpenOffice.org 3\Basis\program\pythonloader.pyc
[2009.09.16 15:22:08 | 000,022,528 | ---- | M] () -- \Program Files\OpenOffice.org 3\Basis\program\pythonloader.uno.dll
[2009.09.17 20:12:18 | 000,000,171 | ---- | M] () -- \Program Files\OpenOffice.org 3\Basis\program\pythonloader.uno.ini
[2009.09.11 16:36:38 | 000,029,696 | ---- | M] () -- \Program Files\OpenOffice.org 3\URE\bin\javaloader.uno.dll
[2009.09.16 15:00:48 | 000,003,872 | ---- | M] () -- \Program Files\OpenOffice.org 3\URE\java\unoloader.jar
[2006.03.02 13:00:00 | 000,035,840 | ---- | M] () -- \WINDOWS\$NtServicePackUninstall$\dmloader.dll
[2008.04.14 04:21:39 | 000,035,840 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\dmloader.dll
[2008.04.13 19:31:47 | 000,230,912 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.exe
[2008.04.13 19:31:48 | 000,278,528 | ---- | M] () -- \WINDOWS\ServicePackFiles\i386\osloader.ntd
[2008.04.14 04:21:39 | 000,035,840 | ---- | M] () -- \WINDOWS\system32\dmloader.dll
[1 \WINDOWS\system32\*.tmp files -> \WINDOWS\system32\*.tmp -> ]

< End of report >

#7 Příspěvek od **vyosek** » 08 bře 2012 14:44

Spustte znovu OTL

Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

Kód: Vybrat vše

:otl
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2010.11.21 10:49:24 | 000,247,608 | ---- | M] () [Auto | Running] -- C:\Program Files\ICQ6Toolbar\ICQ Service.exe -- (ICQ Service)
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=60747
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60747
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKU\.DEFAULT\..\URLSearchHook: - No CLSID value found
IE - HKU\.DEFAULT\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-18\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Prev Search Bar = http://google.icq.com/search/search_frame.php
IE - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.crawler.com/search/dispatche ... p=aus&qkw=%s&tbid=60747
IE - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.crawler.com/homepage.aspx?tbid=60747
IE - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\..\URLSearchHook: {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\Program Files\Crawler\Toolbar\ctbr.dll (Crawler.com)
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..keyword.URL: "http://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.4.3&q="
2012.01.05 11:31:12 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2009.03.31 20:59:27 | 000,000,000 | ---D | M] ("Ask Toolbar for Firefox") -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}
[2012.02.18 00:18:22 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-1.xml
[2009.04.24 19:33:00 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-10.xml
[2009.04.29 18:22:18 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-11.xml
[2009.06.13 12:59:35 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-12.xml
[2009.07.23 18:13:45 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-13.xml
[2009.08.05 20:36:57 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-14.xml
[2009.09.12 22:54:38 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-15.xml
[2009.09.14 19:42:07 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-16.xml
[2009.11.02 23:08:42 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-17.xml
[2009.12.19 20:13:59 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-18.xml
[2010.01.08 20:45:40 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-19.xml
[2008.09.25 19:20:37 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-2.xml
[2010.02.18 21:55:14 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-20.xml
[2010.03.15 21:26:18 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-21.xml
[2010.03.24 14:55:11 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-22.xml
[2011.06.21 21:07:43 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-23.xml
[2011.08.20 12:57:36 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-24.xml
[2011.09.02 11:29:03 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-25.xml
[2011.09.08 22:35:10 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-26.xml
[2011.10.01 12:05:40 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-27.xml
[2011.10.10 22:23:55 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-28.xml
[2011.11.08 21:42:09 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-29.xml
[2008.09.27 20:23:11 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-3.xml
[2011.11.16 10:39:51 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-30.xml
[2012.01.09 11:14:30 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-31.xml
[2012.02.02 14:03:38 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-32.xml
[2012.02.12 13:52:20 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-33.xml
[2012.02.18 09:28:30 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-34.xml
[2009.01.24 22:18:12 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-4.xml
[2009.02.04 23:10:24 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-5.xml
[2009.02.05 20:57:35 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-6.xml
[2009.03.07 15:39:40 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-7.xml
[2009.03.29 12:37:42 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-8.xml
[2009.04.23 20:08:58 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-9.xml
[2012.01.04 14:54:58 | 000,000,168 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin.gif
[2012.01.04 14:54:58 | 000,000,618 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin.src
[2011.03.30 14:14:34 | 000,001,042 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin.xml
[2009.03.11 09:53:43 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\VLASTNĂK\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\WTS774JB.DEFAULT\EXTENSIONS\{800B5000-A755-47E1-992B-48A1C1357F07}
O2 - BHO: (&Crawler Toolbar Helper) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\Program Files\Crawler\Toolbar\ctbr.dll (Crawler.com)
O2 - BHO: (no name) - {201f27d4-3704-41d6-89c1-aa35e39143ed} - No CLSID value found.
O3 - HKLM\..\Toolbar: (&Crawler lišta) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\Program Files\Crawler\Toolbar\ctbr.dll (Crawler.com)
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\..\Toolbar\WebBrowser: (&Crawler lišta) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\Program Files\Crawler\Toolbar\ctbr.dll (Crawler.com)
O3 - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\..\Toolbar\WebBrowser: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O8 - Extra context menu item: Crawler Search - tbr:iemenu File not found
O8 - Extra context menu item: Převést cíl vazby do Adobe PDF - Reg Error: Value error. File not found
O8 - Extra context menu item: Převést cíl vazby do existujícího PDF - Reg Error: Value error. File not found
O8 - Extra context menu item: Převést do Adobe PDF - Reg Error: Value error. File not found
O8 - Extra context menu item: Převést do existujícího PDF - Reg Error: Value error. File not found
O8 - Extra context menu item: Převést výběr do Adobe PDF - Reg Error: Value error. File not found
O8 - Extra context menu item: Převést výběr do existujícího PDF - Reg Error: Value error. File not found
O8 - Extra context menu item: Převést vybrané vazby do Adobe PDF - Reg Error: Value error. File not found
O8 - Extra context menu item: Převést vybrané vazby do existujícího PDF - Reg Error: Value error. File not found
O9 - Extra Button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra 'Tools' menuitem : ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} http://www.eset.cz/buxus/docs/OnlineScanner.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
[2007.03.12 19:51:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\ICQ Toolbar
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[4 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\0783c10a579f70073d252071361483dd\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\0783c10a579f70073d252071361483dd\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\1f0acb22904f0ed8db4a7796ddd37134\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\1f0acb22904f0ed8db4a7796ddd37134\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\1f860ef81f81a48257979242c614316e\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\1f860ef81f81a48257979242c614316e\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\272d4989b9bb46e1cd3cfc6bf5328937\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\272d4989b9bb46e1cd3cfc6bf5328937\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\2984890ab80f8cfb10c124428a0c1d15\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\2984890ab80f8cfb10c124428a0c1d15\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\485180e5e1183576a617417955aaa437\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\485180e5e1183576a617417955aaa437\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\4ddec568044c829f6f5e7c941a5ad7cf\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\4ddec568044c829f6f5e7c941a5ad7cf\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\6186e4eff5d96f21f009ada261e88e06\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\6186e4eff5d96f21f009ada261e88e06\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\ac89b27ecf0eb910daa366ddf993a703\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\ac89b27ecf0eb910daa366ddf993a703\*.tmp -> ]
[1 C:\WINDOWS\SoftwareDistribution\Download\ff9ada23639ea51cceb28163bd4b2172\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\ff9ada23639ea51cceb28163bd4b2172\*.tmp -> ]
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

:reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"KernelFaultCheck"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=-
"ctfmon.exe"=-]
"MSMSGS"=-
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]

:files
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Acrobat Assistant.lnk
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Gamma Loader.lnk
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštěníAdobe Gamma.lnk
C:\Program Files\ICQ6Toolbar
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp

:commands
[RESETHOSTS]
[EMPTYTEMP]
[EMPTYFLASH]

Nasledne kliknete na Opravit
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

pespes · #8 Příspěvek od **pespes** » 08 bře 2012 15:07

Mám jej tedy vygenerovat znovu?

#9 Příspěvek od **vyosek** » 08 bře 2012 15:10

NeNe, jen proto byl tak dlouhy, OTL skenovalo vsechny soubory co byly vytvoreny\modifikovany za celou dobu a pote je vypsal, ja chtel jen za poslednich 7 dni...ale nevadi...

Udelejte ten tu opravu co jsem psal

pespes · #10 Příspěvek od **pespes** » 08 bře 2012 15:16

OTL logfile created on: 8.3.2012 15:09:49 - Run 2
OTL by OldTimer - Version 3.2.33.2 Folder = C:\Documents and Settings\Vlastník\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

511,48 Mb Total Physical Memory | 165,54 Mb Available Physical Memory | 32,36% Memory free
1,22 Gb Paging File | 0,76 Gb Available in Paging File | 62,32% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 9,77 Gb Total Space | 0,74 Gb Free Space | 7,56% Space Free | Partition Type: NTFS
Drive D: | 64,75 Gb Total Space | 58,28 Gb Free Space | 90,00% Space Free | Partition Type: NTFS

Computer Name: PETRA | User Name: Vlastník | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2012.02.27 22:05:23 | 000,583,680 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Vlastník\Plocha\OTL.exe
PRC - [2012.02.19 14:28:35 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010.11.21 10:49:24 | 000,247,608 | ---- | M] () -- C:\Program Files\ICQ6Toolbar\ICQ Service.exe
PRC - [2010.02.26 06:41:12 | 000,810,120 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe
PRC - [2010.02.26 06:40:58 | 002,140,880 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\egui.exe
PRC - [2010.02.03 19:11:32 | 013,279,232 | ---- | M] (Compro Technology, Inc.) -- C:\Program Files\Common Files\VideoMate\ComproRemote.exe
PRC - [2010.02.02 08:40:40 | 000,372,736 | ---- | M] (Compro Technology, Inc.) -- C:\Program Files\Common Files\VideoMate\ComproSchedulerDTV.exe
PRC - [2009.09.17 20:11:40 | 007,418,368 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin
PRC - [2009.09.17 20:11:38 | 007,424,000 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe
PRC - [2008.04.14 04:22:22 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007.12.20 14:00:30 | 000,159,744 | ---- | M] (Realtek) -- C:\Program Files\Compro\VideoMate Vista U1xx\IR_SERVER.exe
PRC - [2007.09.07 11:16:50 | 000,132,392 | ---- | M] (Wacom Technology, Corp.) -- C:\WINDOWS\system32\WTablet\Pen_TabletUser.exe
PRC - [2007.09.07 11:16:18 | 001,373,480 | ---- | M] (Wacom Technology, Corp.) -- C:\WINDOWS\system32\Pen_Tablet.exe
PRC - [2007.05.31 14:38:48 | 000,053,248 | ---- | M] (Tablet Driver) -- C:\WINDOWS\system32\drivers\WTSrv.exe
PRC - [2007.04.11 17:27:00 | 000,040,960 | ---- | M] (Tablet Driver) -- C:\WINDOWS\system32\WTClient.exe
PRC - [2006.11.03 18:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MsMpEng.exe
PRC - [2005.01.31 08:45:20 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
PRC - [2003.07.17 21:50:42 | 000,217,180 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\Adobe\Acrobat 6.0 CE\Distillr\acrotray.exe

========== Modules (No Company Name) ==========

MOD - [2012.02.19 14:28:34 | 001,911,768 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2011.09.03 19:21:20 | 006,277,280 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
MOD - [2010.11.21 10:49:24 | 000,247,608 | ---- | M] () -- C:\Program Files\ICQ6Toolbar\ICQ Service.exe
MOD - [2009.09.17 20:11:16 | 000,139,264 | ---- | M] () -- C:\Program Files\OpenOffice.org 3\Basis\program\nsldap32v50.dll
MOD - [2009.09.16 14:57:32 | 000,166,400 | ---- | M] () -- C:\Program Files\OpenOffice.org 3\Basis\program\libxslt.dll
MOD - [2009.09.11 16:03:14 | 000,970,752 | ---- | M] () -- C:\Program Files\OpenOffice.org 3\program\libxml2.dll
MOD - [2008.04.14 04:21:47 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2007.08.29 14:53:56 | 000,077,824 | ---- | M] () -- C:\WINDOWS\U100 Driver\BdaExtenPropPlugIn.ax
MOD - [2006.10.22 12:22:00 | 000,466,944 | ---- | M] () -- C:\WINDOWS\system32\nvshell.dll
MOD - [2006.10.22 12:22:00 | 000,212,992 | ---- | M] () -- C:\WINDOWS\system32\nvapi.dll
MOD - [2003.07.19 13:14:14 | 000,028,672 | ---- | M] () -- C:\Program Files\Adobe\Acrobat 6.0 CE\Distillr\AcroTray.CZE

========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2010.11.21 10:49:24 | 000,247,608 | ---- | M] () [Auto | Running] -- C:\Program Files\ICQ6Toolbar\ICQ Service.exe -- (ICQ Service)
SRV - [2010.02.26 06:42:34 | 000,033,560 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe -- (EhttpSrv)
SRV - [2010.02.26 06:41:12 | 000,810,120 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe -- (ekrn)
SRV - [2007.09.07 11:16:18 | 001,373,480 | ---- | M] (Wacom Technology, Corp.) [Auto | Running] -- C:\WINDOWS\system32\Pen_Tablet.exe -- (TabletServicePen)
SRV - [2007.05.31 14:38:48 | 000,053,248 | ---- | M] (Tablet Driver) [Auto | Running] -- C:\WINDOWS\System32\Drivers\WTSRV.EXE -- (WinTabService)
SRV - [2006.11.03 18:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV - [2005.01.31 08:45:20 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper)

========== Driver Services (SafeList) ==========

DRV - [2010.05.02 19:10:13 | 000,163,072 | ---- | M] (OmniVision Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ov519vid.sys -- (ovt519)
DRV - [2010.02.26 06:41:36 | 000,055,232 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdi.sys -- (epfwtdi)
DRV - [2010.02.26 06:41:34 | 000,032,584 | ---- | M] (ESET) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\epfwndis.sys -- (Epfwndis)
DRV - [2010.02.26 06:41:32 | 000,134,488 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\epfw.sys -- (epfw)
DRV - [2010.02.26 06:41:06 | 000,114,984 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2010.02.26 06:39:24 | 000,139,192 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2008.08.21 16:15:50 | 000,032,800 | ---- | M] (REALTEK SEMICONDUCTOR Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL2831UUSB.sys -- (RTL2831UUSB)
DRV - [2008.08.21 16:15:44 | 000,094,112 | ---- | M] (REALTEK SEMICONDUCTOR Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL2831UBDA.sys -- (RTL2831UBDA)
DRV - [2008.04.13 19:46:22 | 000,015,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\MPE.sys -- (MPE)
DRV - [2008.04.13 19:45:29 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2008.02.27 00:22:00 | 000,007,040 | ---- | M] (Compro Tech., Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ComproHID.sys -- (ComproHID)
DRV - [2007.05.31 18:33:44 | 000,012,800 | ---- | M] (Tablet Driver) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\UCTblHid.sys -- (UCTblHid)
DRV - [2007.04.23 16:28:56 | 000,018,432 | ---- | M] (Tablet Driver) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\TClass2k.sys -- (TClass2k)
DRV - [2007.04.23 16:28:56 | 000,017,920 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\Drivers\Tablet2k.sys -- (Tablet2k)
DRV - [2007.02.16 11:12:36 | 000,011,312 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\wacommousefilter.sys -- (wacommousefilter)
DRV - [2007.02.16 10:30:12 | 000,012,848 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\wacomvhid.sys -- (wacomvhid)
DRV - [2007.02.15 16:11:28 | 000,011,440 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WacomVKHid.sys -- (WacomVKHid)
DRV - [2006.10.09 12:58:00 | 000,203,648 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\vinyl97.sys -- (VIAudio) Vinyl AC'97 Audio Controller (WDM)
DRV - [2004.12.23 16:27:56 | 000,027,392 | ---- | M] (Ulead Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ULCDRHlp.sys -- (ULCDRHlp)
DRV - [2004.06.10 00:42:38 | 000,015,429 | R--- | M] ( ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Sacm2A.sys -- (USBCM)
DRV - [2003.08.10 01:32:14 | 000,014,336 | R--- | M] (Motorola Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\NetMotCM.sys -- (ndiscm)
DRV - [2001.08.17 23:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)
DRV - [2000.03.29 17:11:20 | 000,008,096 | ---- | M] (MicroStaff Co.,Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\MASPINT.SYS -- (MASPINT)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=60747
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60747
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)

IE - HKU\.DEFAULT\..\URLSearchHook: - No CLSID value found
IE - HKU\.DEFAULT\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-18\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Prev Search Bar = http://google.icq.com/search/search_frame.php
IE - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.crawler.com/search/dispatche ... tbid=60747
IE - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.crawler.com/homepage.aspx?tbid=60747
IE - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\..\URLSearchHook: {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\Program Files\Crawler\Toolbar\ctbr.dll (Crawler.com)
IE - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "www.seznam.cz"
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {E9A1DEE0-C623-4439-8932-001E7D17607D}:2.1.0.5
FF - prefs.js..extensions.enabledItems: {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.9
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..keyword.URL: "http://search.icq.com/search/afe_result ... r=1.4.3&q="

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}: C:\Program Files\Crawler\Toolbar\firefox\ [2011.10.12 11:55:24 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.02.19 14:28:35 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.09.30 22:35:19 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2010.03.22 23:36:50 | 000,000,000 | ---D | M]

[2008.09.15 20:00:14 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Extensions
[2012.01.05 11:31:12 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\extensions
[2012.01.05 11:31:12 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2009.03.31 20:59:27 | 000,000,000 | ---D | M] ("Ask Toolbar for Firefox") -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}
[2012.02.18 00:18:22 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-1.xml
[2009.04.24 19:33:00 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-10.xml
[2009.04.29 18:22:18 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-11.xml
[2009.06.13 12:59:35 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-12.xml
[2009.07.23 18:13:45 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-13.xml
[2009.08.05 20:36:57 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-14.xml
[2009.09.12 22:54:38 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-15.xml
[2009.09.14 19:42:07 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-16.xml
[2009.11.02 23:08:42 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-17.xml
[2009.12.19 20:13:59 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-18.xml
[2010.01.08 20:45:40 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-19.xml
[2008.09.25 19:20:37 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-2.xml
[2010.02.18 21:55:14 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-20.xml
[2010.03.15 21:26:18 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-21.xml
[2010.03.24 14:55:11 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-22.xml
[2011.06.21 21:07:43 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-23.xml
[2011.08.20 12:57:36 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-24.xml
[2011.09.02 11:29:03 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-25.xml
[2011.09.08 22:35:10 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-26.xml
[2011.10.01 12:05:40 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-27.xml
[2011.10.10 22:23:55 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-28.xml
[2011.11.08 21:42:09 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-29.xml
[2008.09.27 20:23:11 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-3.xml
[2011.11.16 10:39:51 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-30.xml
[2012.01.09 11:14:30 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-31.xml
[2012.02.02 14:03:38 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-32.xml
[2012.02.12 13:52:20 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-33.xml
[2012.02.18 09:28:30 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-34.xml
[2009.01.24 22:18:12 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-4.xml
[2009.02.04 23:10:24 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-5.xml
[2009.02.05 20:57:35 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-6.xml
[2009.03.07 15:39:40 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-7.xml
[2009.03.29 12:37:42 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-8.xml
[2009.04.23 20:08:58 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-9.xml
[2012.01.04 14:54:58 | 000,000,168 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin.gif
[2012.01.04 14:54:58 | 000,000,618 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin.src
[2011.03.30 14:14:34 | 000,001,042 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin.xml
[2011.11.10 11:46:37 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2009.03.11 09:53:43 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\VLASTNĂK\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\WTS774JB.DEFAULT\EXTENSIONS\{800B5000-A755-47E1-992B-48A1C1357F07}
[2009.01.23 20:22:14 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2012.02.19 14:28:35 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2010.04.12 16:29:19 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2009.09.21 11:24:16 | 000,001,329 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\crawlersrch.xml
[2012.02.02 14:00:34 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2012.02.02 14:00:34 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2012.02.02 14:00:34 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2012.02.02 14:00:34 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2012.02.02 14:00:34 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml

========== Chrome ==========

CHR - default_search_provider: Google ()
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?client=chrome&hl={language}&q={searchTerms}
CHR - Extension: AT_HedgehogInTheFog_v2 = C:\Documents and Settings\Vlastník\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\haocganpkafanhkfldbbmhcpaelmkejg\3\

O1 HOSTS File: ([2012.02.27 14:25:22 | 000,000,686 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\HOSTS
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0 CE\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (&Crawler Toolbar Helper) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\Program Files\Crawler\Toolbar\ctbr.dll (Crawler.com)
O2 - BHO: (no name) - {201f27d4-3704-41d6-89c1-aa35e39143ed} - No CLSID value found.
O2 - BHO: (AcroIEToolbarHelper Class) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 6.0 CE\Acrobat\AcroIEFavClient.dll ()
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 6.0 CE\Acrobat\AcroIEFavClient.dll ()
O3 - HKLM\..\Toolbar: (&Crawler lišta) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\Program Files\Crawler\Toolbar\ctbr.dll (Crawler.com)
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 6.0 CE\Acrobat\AcroIEFavClient.dll ()
O3 - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\..\Toolbar\WebBrowser: (&Crawler lišta) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\Program Files\Crawler\Toolbar\ctbr.dll (Crawler.com)
O3 - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\..\Toolbar\WebBrowser: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
O4 - HKLM..\Run: [IR_SERVER] C:\Program Files\Compro\VideoMate Vista U1xx\IR_SERVER.exe (Realtek)
O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u File not found
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKLM..\Run: [WTClient] C:\WINDOWS\System32\WTClient.exe (Tablet Driver)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Acrobat Assistant.lnk = C:\Program Files\Adobe\Acrobat 6.0 CE\Distillr\acrotray.exe (Adobe Systems Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\ComproRemote.lnk = C:\Program Files\Common Files\VideoMate\ComproRemote.exe (Compro Technology, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\ComproSchedulerDTV.lnk = C:\Program Files\Common Files\VideoMate\ComproSchedulerDTV.exe (Compro Technology, Inc.)
O4 - Startup: C:\Documents and Settings\Vlastník\Nabídka Start\Programy\Po spuštění\OpenOffice.org 3.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O8 - Extra context menu item: Crawler Search - tbr:iemenu File not found
O8 - Extra context menu item: Převést cíl vazby do Adobe PDF - Reg Error: Value error. File not found
O8 - Extra context menu item: Převést cíl vazby do existujícího PDF - Reg Error: Value error. File not found
O8 - Extra context menu item: Převést do Adobe PDF - Reg Error: Value error. File not found
O8 - Extra context menu item: Převést do existujícího PDF - Reg Error: Value error. File not found
O8 - Extra context menu item: Převést výběr do Adobe PDF - Reg Error: Value error. File not found
O8 - Extra context menu item: Převést výběr do existujícího PDF - Reg Error: Value error. File not found
O8 - Extra context menu item: Převést vybrané vazby do Adobe PDF - Reg Error: Value error. File not found
O8 - Extra context menu item: Převést vybrané vazby do existujícího PDF - Reg Error: Value error. File not found
O9 - Extra Button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra 'Tools' menuitem : ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} http://www.eset.cz/buxus/docs/OnlineScanner.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/sh ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.46.172.36 213.46.172.37
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{CEF8DF36-BBA2-47E8-BAB9-A6DB37E3CFDC}: DhcpNameServer = 213.46.172.36 213.46.172.37
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\tbr {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\Program Files\Crawler\Toolbar\ctbr.dll (Crawler.com)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O28 - HKLM ShellExecuteHooks: {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007.03.04 14:14:34 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 7 Days ==========

[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 7 Days ==========

[2012.03.08 14:23:53 | 000,000,195 | ---- | M] () -- C:\Documents and Settings\Vlastník\Plocha\uvod_do_zpracovani_udalosti.url
[2012.03.08 14:22:56 | 000,000,182 | ---- | M] () -- C:\Documents and Settings\Vlastník\Plocha\uprava_krivek_editor_pohybu.url
[2012.03.08 14:22:20 | 000,000,195 | ---- | M] () -- C:\Documents and Settings\Vlastník\Plocha\zakladni_zpracovani_udalosti.url
[2012.03.08 14:21:38 | 000,000,237 | ---- | M] () -- C:\Documents and Settings\Vlastník\Plocha\nacteni_externiho_swf_loader.url
[2012.03.08 10:30:11 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012.03.08 10:29:01 | 000,088,566 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2012.03.08 10:28:51 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.03.08 10:28:49 | 536,399,872 | -HS- | M] () -- C:\hiberfil.sys
[2012.03.08 01:17:46 | 000,335,085 | ---- | M] () -- C:\Documents and Settings\Vlastník\Plocha\flash_nakresfunkce.ai
[2012.03.07 23:31:18 | 000,004,354 | ---- | M] () -- C:\Documents and Settings\Vlastník\Plocha\PSPad.INI
[2012.03.07 23:31:18 | 000,001,355 | ---- | M] () -- C:\Documents and Settings\Vlastník\Plocha\Recent.INI
[2012.03.07 23:29:10 | 000,002,335 | ---- | M] () -- C:\Documents and Settings\Vlastník\Plocha\Adobe Acrobat 6.0 CE Professional.lnk
[2012.03.07 22:57:59 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Vlastník\Plocha\PSPad_MU.INI
[2012.03.07 22:01:48 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2012.03.02 00:01:59 | 000,480,470 | ---- | M] () -- C:\Documents and Settings\Vlastník\Plocha\editor pohybu.ai
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012.03.08 14:23:40 | 000,000,195 | ---- | C] () -- C:\Documents and Settings\Vlastník\Plocha\uvod_do_zpracovani_udalosti.url
[2012.03.08 14:22:43 | 000,000,182 | ---- | C] () -- C:\Documents and Settings\Vlastník\Plocha\uprava_krivek_editor_pohybu.url
[2012.03.08 14:21:59 | 000,000,195 | ---- | C] () -- C:\Documents and Settings\Vlastník\Plocha\zakladni_zpracovani_udalosti.url
[2012.03.08 14:21:16 | 000,000,237 | ---- | C] () -- C:\Documents and Settings\Vlastník\Plocha\nacteni_externiho_swf_loader.url
[2012.03.08 00:23:59 | 000,335,085 | ---- | C] () -- C:\Documents and Settings\Vlastník\Plocha\flash_nakresfunkce.ai
[2012.02.14 22:21:44 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2011.10.12 11:54:55 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\drivers\sp_rsdrv2.sys
[2011.06.01 19:49:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2010.09.22 19:20:22 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\PsisDecd.dll
[2010.05.02 19:14:07 | 000,200,704 | R--- | C] () -- C:\WINDOWS\sel3110.exe
[2010.05.02 19:14:06 | 000,040,960 | R--- | C] () -- C:\WINDOWS\CleanDev.exe

========== LOP Check ==========

[2010.03.22 23:36:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ESET
[2011.06.09 11:21:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ICQ
[2010.03.22 23:40:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\ESET
[2009.02.01 22:19:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\FUJIFILM
[2012.01.11 19:09:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\ICQ
[2007.03.12 19:51:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\ICQ Toolbar
[2007.03.04 18:02:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\ICQLite
[2010.01.09 21:36:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\OpenOffice.org
[2007.03.04 14:32:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\Opera
[2011.04.25 21:28:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\Reviversoft
[2012.03.07 22:01:48 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job

========== Purity Check ==========

========== Custom Scans ==========

< :otl >

< SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt) >

< SRV - [2010.11.21 10:49:24 | 000,247,608 | ---- | M] () [Auto | Running] -- C:\Program Files\ICQ6Toolbar\ICQ Service.exe -- (ICQ Service) >

< IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=60747 >
Invalid Switch: sa_custo ... TbId=60747

< IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60747 >
Invalid Switch: ie.aspx?tb_id=60747

< IE - HKLM\..\URLSearchHook: - No CLSID value found >

< IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ) >

< IE - HKU\.DEFAULT\..\URLSearchHook: - No CLSID value found >

< IE - HKU\.DEFAULT\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ) >

< IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 >

< IE - HKU\S-1-5-18\..\URLSearchHook: - No CLSID value found >

< IE - HKU\S-1-5-18\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ) >

< IE - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Prev Search Bar = http://google.icq.com/search/search_frame.php >
Invalid Switch: search_frame.php

< IE - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.crawler.com/search/dispatche ... p=aus&qkw=%s&tbid=60747 >
Invalid Switch: dispatche ... p=aus&qkw=%s&tbid=60747

< IE - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.crawler.com/homepage.aspx?tbid=60747 >
Invalid Switch: homepage.aspx?tbid=60747

< IE - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\..\URLSearchHook: {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\Program Files\Crawler\Toolbar\ctbr.dll (Crawler.com) >

< FF - prefs.js..browser.search.defaultenginename: "ICQ Search" >

< FF - prefs.js..keyword.URL: "http://search.icq.com/search/afe_result ... r=1.4.3&q=" >

< 2012.01.05 11:31:12 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} >

< [2009.03.31 20:59:27 | 000,000,000 | ---D | M] ("Ask Toolbar for Firefox") -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D} >

< [2012.02.18 00:18:22 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-1.xml >

< [2009.04.24 19:33:00 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-10.xml >

< [2009.04.29 18:22:18 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-11.xml >

< [2009.06.13 12:59:35 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-12.xml >

< [2009.07.23 18:13:45 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-13.xml >

< [2009.08.05 20:36:57 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-14.xml >

< [2009.09.12 22:54:38 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-15.xml >

< [2009.09.14 19:42:07 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-16.xml >

< [2009.11.02 23:08:42 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-17.xml >

< [2009.12.19 20:13:59 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-18.xml >

< [2010.01.08 20:45:40 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-19.xml >

< [2008.09.25 19:20:37 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-2.xml >

< [2010.02.18 21:55:14 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-20.xml >

< [2010.03.15 21:26:18 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-21.xml >

< [2010.03.24 14:55:11 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-22.xml >

< [2011.06.21 21:07:43 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-23.xml >

< [2011.08.20 12:57:36 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-24.xml >

< [2011.09.02 11:29:03 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-25.xml >

< [2011.09.08 22:35:10 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-26.xml >

< [2011.10.01 12:05:40 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-27.xml >

< [2011.10.10 22:23:55 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-28.xml >

< [2011.11.08 21:42:09 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-29.xml >

< [2008.09.27 20:23:11 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-3.xml >

< [2011.11.16 10:39:51 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-30.xml >

< [2012.01.09 11:14:30 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-31.xml >

< [2012.02.02 14:03:38 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-32.xml >

< [2012.02.12 13:52:20 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-33.xml >

< [2012.02.18 09:28:30 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-34.xml >

< [2009.01.24 22:18:12 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-4.xml >

< [2009.02.04 23:10:24 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-5.xml >

< [2009.02.05 20:57:35 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-6.xml >

< [2009.03.07 15:39:40 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-7.xml >

< [2009.03.29 12:37:42 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-8.xml >

< [2009.04.23 20:08:58 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-9.xml >

< [2012.01.04 14:54:58 | 000,000,168 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin.gif >

< [2012.01.04 14:54:58 | 000,000,618 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin.src >

< [2011.03.30 14:14:34 | 000,001,042 | ---- | M] () -- C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin.xml >

< [2009.03.11 09:53:43 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} >

< File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\VLASTNĂK\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\WTS774JB.DEFAULT\EXTENSIONS\{800B5000-A755-47E1-992B-48A1C1357F07} >

< O2 - BHO: (&Crawler Toolbar Helper) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\Program Files\Crawler\Toolbar\ctbr.dll (Crawler.com) >

< O2 - BHO: (no name) - {201f27d4-3704-41d6-89c1-aa35e39143ed} - No CLSID value found. >

< O3 - HKLM\..\Toolbar: (&Crawler lišta) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\Program Files\Crawler\Toolbar\ctbr.dll (Crawler.com) >

< O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ) >

< O3 - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\..\Toolbar\WebBrowser: (&Crawler lišta) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\Program Files\Crawler\Toolbar\ctbr.dll (Crawler.com) >

< O3 - HKU\S-1-5-21-746137067-2111687655-1801674531-1004\..\Toolbar\WebBrowser: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ) >

< O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present >

< O8 - Extra context menu item: Crawler Search - tbr:iemenu File not found >

< O8 - Extra context menu item: Převést cíl vazby do Adobe PDF - Reg Error: Value error. File not found >

< O8 - Extra context menu item: Převést cíl vazby do existujícího PDF - Reg Error: Value error. File not found >

< O8 - Extra context menu item: Převést do Adobe PDF - Reg Error: Value error. File not found >

< O8 - Extra context menu item: Převést do existujícího PDF - Reg Error: Value error. File not found >

< O8 - Extra context menu item: Převést výběr do Adobe PDF - Reg Error: Value error. File not found >

< O8 - Extra context menu item: Převést výběr do existujícího PDF - Reg Error: Value error. File not found >

< O8 - Extra context menu item: Převést vybrané vazby do Adobe PDF - Reg Error: Value error. File not found >

< O8 - Extra context menu item: Převést vybrané vazby do existujícího PDF - Reg Error: Value error. File not found >

< O9 - Extra Button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found >

< O9 - Extra 'Tools' menuitem : ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found >

< O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} http://www.eset.cz/buxus/docs/OnlineScanner.cab (Reg Error: Key error.) >
Invalid Switch: OnlineScanner.cab (Reg Error: Key error.)

< O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.) >
Invalid Switch: jinsta ... s-i586.cab (Reg Error: Key error.)

< [2007.03.12 19:51:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vlastník\Data aplikací\ICQ Toolbar >

< [6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] >

< [4 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ] >

< [1 C:\WINDOWS\SoftwareDistribution\Download\0783c10a579f70073d252071361483dd\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\0783c10a579f70073d252071361483dd\*.tmp -> ] >

< [1 C:\WINDOWS\SoftwareDistribution\Download\1f0acb22904f0ed8db4a7796ddd37134\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\1f0acb22904f0ed8db4a7796ddd37134\*.tmp -> ] >

< [1 C:\WINDOWS\SoftwareDistribution\Download\1f860ef81f81a48257979242c614316e\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\1f860ef81f81a48257979242c614316e\*.tmp -> ] >

< [1 C:\WINDOWS\SoftwareDistribution\Download\272d4989b9bb46e1cd3cfc6bf5328937\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\272d4989b9bb46e1cd3cfc6bf5328937\*.tmp -> ] >

< [1 C:\WINDOWS\SoftwareDistribution\Download\2984890ab80f8cfb10c124428a0c1d15\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\2984890ab80f8cfb10c124428a0c1d15\*.tmp -> ] >

< [1 C:\WINDOWS\SoftwareDistribution\Download\485180e5e1183576a617417955aaa437\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\485180e5e1183576a617417955aaa437\*.tmp -> ] >

< [1 C:\WINDOWS\SoftwareDistribution\Download\4ddec568044c829f6f5e7c941a5ad7cf\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\4ddec568044c829f6f5e7c941a5ad7cf\*.tmp -> ] >

< [1 C:\WINDOWS\SoftwareDistribution\Download\6186e4eff5d96f21f009ada261e88e06\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\6186e4eff5d96f21f009ada261e88e06\*.tmp -> ] >

< [1 C:\WINDOWS\SoftwareDistribution\Download\ac89b27ecf0eb910daa366ddf993a703\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\ac89b27ecf0eb910daa366ddf993a703\*.tmp -> ] >

< [1 C:\WINDOWS\SoftwareDistribution\Download\ff9ada23639ea51cceb28163bd4b2172\*.tmp files -> C:\WINDOWS\SoftwareDistribution\Download\ff9ada23639ea51cceb28163bd4b2172\*.tmp -> ] >

< [1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ] >

< >

< :reg >

< [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] >

< "KernelFaultCheck"=- >

< [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] >

< "Skype"=- >

< "ctfmon.exe"=-] >

< "MSMSGS"=- >

< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE] >

< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck] >

< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon] >

< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz] >

< [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] >

< >

< :files >

< C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Acrobat Assistant.lnk >
[2010.02.17 17:11:19 | 000,001,841 | ---- | M] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Acrobat Assistant.lnk

< C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Gamma Loader.lnk >
[2010.03.13 00:03:24 | 000,000,890 | ---- | M] () -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Gamma Loader.lnk

< C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštěníAdobe Gamma.lnk >

< C:\Program Files\ICQ6Toolbar >

< %windir%\system32\*.tmp.dll /s >
[2009.12.09 11:11:07 | 002,191,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\_000008_.tmp.dll
[2010.02.17 13:09:02 | 002,192,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\_000009_.tmp.dll
[2010.04.28 19:15:40 | 002,192,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\_000010_.tmp.dll
[2010.12.09 16:14:08 | 002,194,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\_000011_.tmp.dll
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %windir%\system32\SET*.tmp /s >

< %windir%\*.tmp >
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

< >

< :commands >

< [RESETHOSTS] >

< [EMPTYTEMP] >

< [EMPTYFLASH] >

< End of report >

#11 Příspěvek od **vyosek** » 08 bře 2012 15:17

Ctete prosim navody dukladneji, ma se kliknout na Opravit, ne prohledat. Takze prosim znovu

pespes · #12 Příspěvek od **pespes** » 08 bře 2012 15:28

omlouvám se, nerada mařím Váš čas, částěčně jsem použila starý návod
All processes killed
========== OTL ==========
Service AppMgmt stopped successfully!
Service AppMgmt deleted successfully!
Service ICQ Service stopped successfully!
Service ICQ Service deleted successfully!
C:\Program Files\ICQ6Toolbar\ICQ Service.exe moved successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\CustomizeSearch| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully!
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{855F3B16-6D32-4fe6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4fe6-8A56-BBB695989046}\ deleted successfully.
C:\Program Files\ICQ6Toolbar\ICQToolBar.dll moved successfully.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\URLSearchHooks\\{855F3B16-6D32-4fe6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4fe6-8A56-BBB695989046}\ not found.
File C:\Program Files\ICQ6Toolbar\ICQToolBar.dll not found.
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable|dword:0 /E : value set successfully!
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\URLSearchHooks\\ not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\URLSearchHooks\\{855F3B16-6D32-4fe6-8A56-BBB695989046} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4fe6-8A56-BBB695989046}\ not found.
File C:\Program Files\ICQ6Toolbar\ICQToolBar.dll not found.
HKU\S-1-5-21-746137067-2111687655-1801674531-1004\SOFTWARE\Microsoft\Internet Explorer\Main\\Prev Search Bar| /E : value set successfully!
HKU\S-1-5-21-746137067-2111687655-1801674531-1004\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Bar| /E : value set successfully!
HKU\S-1-5-21-746137067-2111687655-1801674531-1004\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
Registry value HKEY_USERS\S-1-5-21-746137067-2111687655-1801674531-1004\Software\Microsoft\Internet Explorer\URLSearchHooks\\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}\ deleted successfully.
C:\Program Files\Crawler\Toolbar\ctbr.dll moved successfully.
Prefs.js: "ICQ Search" removed from browser.search.defaultenginename
Prefs.js: "http://search.icq.com/search/afe_result ... r=1.4.3&q=" removed from keyword.URL
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}\META-INF folder moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}\defaults\preferences folder moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}\defaults folder moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}\chrome folder moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D} folder moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-1.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-10.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-11.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-12.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-13.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-14.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-15.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-16.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-17.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-18.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-19.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-2.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-20.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-21.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-22.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-23.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-24.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-25.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-26.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-27.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-28.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-29.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-3.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-30.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-31.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-32.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-33.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-34.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-4.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-5.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-6.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-7.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-8.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin-9.xml moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin.gif moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin.src moved successfully.
C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\wts774jb.default\searchplugins\icqplugin.xml moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\search_engine folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\META-INF folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults\preferences folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\components folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} folder moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}\ not found.
File C:\Program Files\Crawler\Toolbar\ctbr.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{201f27d4-3704-41d6-89c1-aa35e39143ed}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{4B3803EA-5230-4DC3-A7FC-33638F3D3542} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}\ deleted successfully.
File C:\Program Files\Crawler\Toolbar\ctbr.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{855F3B16-6D32-4fe6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4fe6-8A56-BBB695989046}\ not found.
File C:\Program Files\ICQ6Toolbar\ICQToolBar.dll not found.
Registry value HKEY_USERS\S-1-5-21-746137067-2111687655-1801674531-1004\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4B3803EA-5230-4DC3-A7FC-33638F3D3542} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}\ not found.
File C:\Program Files\Crawler\Toolbar\ctbr.dll not found.
Registry value HKEY_USERS\S-1-5-21-746137067-2111687655-1801674531-1004\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{855F3B16-6D32-4FE6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4FE6-8A56-BBB695989046}\ not found.
File C:\Program Files\ICQ6Toolbar\ICQToolBar.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Crawler Search\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Převést cíl vazby do Adobe PDF\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Převést cíl vazby do existujícího PDF\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Převést do Adobe PDF\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Převést do existujícího PDF\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Převést výběr do Adobe PDF\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Převést výběr do existujícího PDF\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Převést vybrané vazby do Adobe PDF\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Převést vybrané vazby do existujícího PDF\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{B863453A-26C3-4e1f-A54D-A2CD196348E9}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B863453A-26C3-4e1f-A54D-A2CD196348E9}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{B863453A-26C3-4e1f-A54D-A2CD196348E9}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B863453A-26C3-4e1f-A54D-A2CD196348E9}\ not found.
Starting removal of ActiveX control {56762DEC-6B0D-4AB4-A8AD-989993B5D08B}
C:\WINDOWS\Downloaded Program Files\OnlineScanner.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{56762DEC-6B0D-4AB4-A8AD-989993B5D08B}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{56762DEC-6B0D-4AB4-A8AD-989993B5D08B}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{56762DEC-6B0D-4AB4-A8AD-989993B5D08B}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{56762DEC-6B0D-4AB4-A8AD-989993B5D08B}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}\ not found.
C:\Documents and Settings\Vlastník\Data aplikací\ICQ Toolbar folder moved successfully.
C:\WINDOWS\002762_.tmp deleted successfully.
C:\WINDOWS\DUMP41eb.tmp deleted successfully.
C:\WINDOWS\SET21.tmp deleted successfully.
C:\WINDOWS\SET3.tmp deleted successfully.
C:\WINDOWS\SET4.tmp deleted successfully.
C:\WINDOWS\SET8.tmp deleted successfully.
C:\WINDOWS\Installer\MSI22.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3E4.tmp deleted successfully.
C:\WINDOWS\Installer\MSI3EF.tmp deleted successfully.
C:\WINDOWS\Installer\MSI46.tmp deleted successfully.
C:\WINDOWS\SoftwareDistribution\Download\0783c10a579f70073d252071361483dd\BIT31.tmp deleted successfully.
C:\WINDOWS\SoftwareDistribution\Download\1f0acb22904f0ed8db4a7796ddd37134\BIT30.tmp deleted successfully.
C:\WINDOWS\SoftwareDistribution\Download\1f860ef81f81a48257979242c614316e\BIT30.tmp deleted successfully.
C:\WINDOWS\SoftwareDistribution\Download\272d4989b9bb46e1cd3cfc6bf5328937\BIT7C.tmp deleted successfully.
C:\WINDOWS\SoftwareDistribution\Download\2984890ab80f8cfb10c124428a0c1d15\BIT17C.tmp deleted successfully.
C:\WINDOWS\SoftwareDistribution\Download\485180e5e1183576a617417955aaa437\BIT109.tmp deleted successfully.
C:\WINDOWS\SoftwareDistribution\Download\4ddec568044c829f6f5e7c941a5ad7cf\BIT21.tmp deleted successfully.
C:\WINDOWS\SoftwareDistribution\Download\6186e4eff5d96f21f009ada261e88e06\BIT3F.tmp deleted successfully.
C:\WINDOWS\SoftwareDistribution\Download\ac89b27ecf0eb910daa366ddf993a703\BIT2B.tmp deleted successfully.
C:\WINDOWS\SoftwareDistribution\Download\ff9ada23639ea51cceb28163bd4b2172\BITF7.tmp deleted successfully.
C:\WINDOWS\system32\CONFIG.TMP deleted successfully.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\KernelFaultCheck deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Skype deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\"ctfmon.exe"|-] /E : value set successfully!
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\MSMSGS deleted successfully.
========== FILES ==========
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Acrobat Assistant.lnk moved successfully.
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Gamma Loader.lnk moved successfully.
File\Folder C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštěníAdobe Gamma.lnk not found.
C:\Program Files\ICQ6Toolbar folder moved successfully.
C:\WINDOWS\system32\_000008_.tmp.dll moved successfully.
C:\WINDOWS\system32\_000009_.tmp.dll moved successfully.
C:\WINDOWS\system32\_000010_.tmp.dll moved successfully.
C:\WINDOWS\system32\_000011_.tmp.dll moved successfully.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 776456 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Vlastník
->Temp folder emptied: 51151501 bytes
->Temporary Internet Files folder emptied: 7494282 bytes
->Java cache emptied: 39980647 bytes
->FireFox cache emptied: 276853366 bytes
->Google Chrome cache emptied: 57926801 bytes
->Opera cache emptied: 995905 bytes
->Flash cache emptied: 3767901 bytes

User: VlastnÝk
->Temporary Internet Files folder emptied: 33170 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 318472 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 131870525 bytes

Total Files Cleaned = 545,00 mb

[EMPTYFLASH]

User: All Users

User: LocalService

User: NetworkService

User: Vlastník
->Flash cache emptied: 0 bytes

User: VlastnÝk

Total Flash Files Cleaned = 0,00 mb

OTL by OldTimer - Version 3.2.33.2 log created on 03082012_152008

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...

#13 Příspěvek od **vyosek** » 08 bře 2012 15:49

Muj cas nemarite, ale vam to bude dele trvat

Nyni jiz OK, jak se chova PC

pespes · #14 Příspěvek od **pespes** » 08 bře 2012 15:53

Velice děkuji, určitě Vaše forum podpořím

pespes · #15 Příspěvek od **pespes** » 08 bře 2012 15:53

a pc se chová standartně

VIRY.CZ

log po odstranění TSR.BOOT

log po odstranění TSR.BOOT

Re: log po odstranění TSR.BOOT

Re: log po odstranění TSR.BOOT

Re: log po odstranění TSR.BOOT

Re: log po odstranění TSR.BOOT

Re: log po odstranění TSR.BOOT

Re: log po odstranění TSR.BOOT

Re: log po odstranění TSR.BOOT

Re: log po odstranění TSR.BOOT

Re: log po odstranění TSR.BOOT

Re: log po odstranění TSR.BOOT

Re: log po odstranění TSR.BOOT

Re: log po odstranění TSR.BOOT

Re: log po odstranění TSR.BOOT

Re: log po odstranění TSR.BOOT