pls potřeboval bych zkontrolovat log

[O.P.i]

Ahoj potřeboval bych zkontorlovat log pls, měl jsem viry v kompu tak jestli už tam nic neni


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:43:37, on 14.11.2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Firebird\Firebird_1_5\bin\fbguard.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Firebird\Firebird_1_5\bin\fbserver.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Picasa2\PicasaMediaDetector.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\Program Files\PIXELA\ImageMixer3\HDDCameraMonitor.exe
C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
C:\Program Files\Common Files\Nokia\MPAPI\MPAPI3s.exe
C:\Program Files\Skype\Plugin Manager\SkypePM.exe
C:\WINDOWS\msagent\agentsvr.exe
C:\Documents and Settings\Petr a Lenka\Dokumenty\Hijack This\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: XTTBPos00 - {055FD26D-3A88-4e15-963D-DC8493744B1D} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: MSVPS System - {D5375315-6567-4DCA-8344-C78AA4B89C11} - C:\WINDOWS\oprevfqv.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O3 - Toolbar: &Crawler lišta - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O3 - Toolbar: The bonsws - {E3ED01B7-EAF2-4A33-989C-B95E65DA0415} - C:\WINDOWS\bonsws.dll
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [PcSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe
O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: ImageMixer HDD Camera Monitor.lnk = ?
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Add To Print List - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint High Speed Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Preview - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Easy-WebPrint Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: Vytvořit mobilní oblíbenou položku - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll
O9 - Extra 'Tools' menuitem: Vytvořit mobilní oblíbenou položku… - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/200 ... plugin.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {E8F628B5-259A-4734-97EE-BA914D7BE941} (Driver Agent ActiveX Control) - http://driveragent.com/files/driveragent.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{7B50CCC2-D40E-4338-A237-17FDE63D6825}: NameServer = 192.168.6.1,82.100.50.2
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O21 - SSODL: ddkret - {33ED8328-116E-487D-92FC-E1F36CA86C4B} - C:\WINDOWS\ddkret.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - The Firebird Project - C:\Program Files\Firebird\Firebird_1_5\bin\fbguard.exe
O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - The Firebird Project - C:\Program Files\Firebird\Firebird_1_5\bin\fbserver.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Firebird Guardian Service (InterBaseGuardian) - FirebirdSQL Project - C:\Program Files\Borland\InterBase\bin\ibguard.exe
O23 - Service: Firebird Server (InterBaseServer) - FirebirdSQL Project - C:\Program Files\Borland\InterBase\bin\ibserver.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe

--
End of file - 10903 bytes


Díky

[Reklama]

[fredik]

Stáhni si SDFix
- Spusť ho a rozbalí se ti na disk kde je nainstalovaný Windows (typicky to je C:\SDfix)
- Pak restartuj PC do nouzového režimu (zvol možnost: Stav nouze, ne Stav nouze s práci v síti)
- Otevři adresář kde je vybalený SDFix a spusť soubor RunThis.bat tím spustíš program.
* Pak stiskni klávesu Y a pak Enter pro zahájení čistícího procesu.
* Pro dokončení kontroly budeš vyzván ke stisknoutí libovolné klávesy a počítač se restartuje.
* Při nabíhání operačního systému se program spustí znovu a dokončí čistící proces. Až se objeví Finish, budeš muset po vyzvání stisknout libovolnou klávesu, tim se ukončí program a zobrazí se ti ikony na ploše
- Když se skončí načítání ikon na ploše, otevře se ti na obrazovce log z SDFix a zároveň ho uloží do adresáře kde je rozbalený SDFix jako soubor Report.txt
Pak sem zkopíruj jeho obsah + nový log z HJT

[O.P.i]

Tady je log z SDFix

SDFix: Version 1.114

Run by Petr a Lenka on st 14.11.2007 at 21:24

Microsoft Windows XP [Verze 5.1.2600]

Running From: C:\SDFix

Safe Mode:
Checking Services:


Restoring Windows Registry Values
Restoring Windows Default Hosts File
Restoring Default HomePage Value
Restoring Default Desktop Components Value

Rebooting...


Normal Mode:
Checking Files:

Trojan Files Found:

C:\WINDOWS\bndsrkfq.dll - Deleted
C:\WINDOWS\bonsws.dll - Deleted
C:\WINDOWS\dat.txt - Deleted
C:\WINDOWS\ddkret.dll - Deleted
C:\WINDOWS\oprevfqv.dll - Deleted
C:\WINDOWS\rs.txt - Deleted
C:\WINDOWS\sawkip.exe - Deleted
C:\WINDOWS\search_res.txt - Deleted


Folder C:\Program Files\RichVideoCodec - Removed

Removing Temp Files...

ADS Check:

C:\WINDOWS
No streams found.

C:\WINDOWS\system32
No streams found.

C:\WINDOWS\system32\svchost.exe
No streams found.

C:\WINDOWS\system32\ntoskrnl.exe
No streams found.



Final Check:

catchme 0.3.1262.1 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-11-14 21:30:23
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden services & system hive ...

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"p0"="C:\Program Files\DAEMON Tools\"
"h0"=dword:00000000
"khjeh"=hex:1d,14,2c,95,c6,68,c4,8d,b3,1e,f0,2b,00,0f,e7,ea,0c,6e,b5,fd,20,..

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,ff,a5,81,dc,14,0c,77,4c,83,b4,86,ae,c1,dc,15,8d,61,..
"khjeh"=hex:2b,48,68,d9,61,65,20,55,b5,fd,d1,15,9b,16,4b,a8,06,a2,45,e9,2b,..

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:d0,bb,f2,dc,01,3b,0c,33,7c,2f,f2,44,3c,b9,9e,34,42,cd,a5,b8,92,..

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf41]
"khjeh"=hex:29,53,30,22,14,c9,46,7b,fb,7a,82,7a,50,dd,dd,d0,21,d3,fe,bc,ae,..

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf42]
"khjeh"=hex:29,46,ea,71,06,98,56,b6,d2,3f,00,2f,c0,a0,0f,1c,7c,3a,42,93,de,..

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf43]
"khjeh"=hex:95,04,cc,b8,75,f8,35,9f,a1,0a,79,1d,13,02,bd,62,02,01,2c,1d,ec,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"p0"="C:\Program Files\DAEMON Tools\"
"h0"=dword:00000000
"khjeh"=hex:1d,14,2c,95,c6,68,c4,8d,b3,1e,f0,2b,00,0f,e7,ea,0c,6e,b5,fd,20,..

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,ff,a5,81,dc,14,0c,77,4c,83,b4,86,ae,c1,dc,15,8d,61,..
"khjeh"=hex:2b,48,68,d9,61,65,20,55,b5,fd,d1,15,9b,16,4b,a8,06,a2,45,e9,2b,..

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:d0,bb,f2,dc,01,3b,0c,33,7c,2f,f2,44,3c,b9,9e,34,42,cd,a5,b8,92,..

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf41]
"khjeh"=hex:29,53,30,22,14,c9,46,7b,fb,7a,82,7a,50,dd,dd,d0,21,d3,fe,bc,ae,..

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf42]
"khjeh"=hex:29,46,ea,71,06,98,56,b6,d2,3f,00,2f,c0,a0,0f,1c,7c,3a,42,93,de,..

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf43]
"khjeh"=hex:95,04,cc,b8,75,f8,35,9f,a1,0a,79,1d,13,02,bd,62,02,01,2c,1d,ec,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\BTHPORT\Parameters\Keys\000272d1af5b]
"00180f9ab474"=hex:4c,78,56,f7,43,04,f0,9f,61,9c,11,5a,b1,38,38,c3
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000001
"ujdew"=hex:2b,03,cc,00,61,0a,63,6e,44,df,8f,33,3f,8c,60,3d,f5,3e,77,62,bd,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"p0"="C:\Program Files\DAEMON Tools\"
"h0"=dword:00000000
"khjeh"=hex:1d,14,2c,95,c6,68,c4,8d,b3,1e,f0,2b,00,0f,e7,ea,0c,6e,b5,fd,20,..

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,ff,a5,81,dc,14,0c,77,4c,83,b4,86,ae,c1,dc,15,8d,61,..
"khjeh"=hex:b7,f6,68,ca,13,32,0f,b6,62,ea,c5,e5,f1,94,a4,b8,a0,2c,5e,34,bd,..

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:ee,c7,b1,4e,fb,fa,66,72,81,52,81,e6,e9,fa,22,90,5c,0e,40,fb,eb,..

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf41]
"khjeh"=hex:3b,93,84,76,e6,e3,6a,87,49,02,6c,05,36,53,1e,54,9d,c9,d4,6f,7b,..

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf42]
"khjeh"=hex:f4,27,ec,a7,2d,28,24,46,70,e1,dc,4e,18,53,b7,94,1f,92,26,f7,db,..

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf43]
"khjeh"=hex:54,67,2f,af,bb,07,32,6b,e4,73,d7,97,48,64,74,d0,d4,ff,cb,25,9f,..
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\000272d1af5b]
"00180f9ab474"=hex:4c,78,56,f7,43,04,f0,9f,61,9c,11,5a,b1,38,38,c3
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\ESENT]
"EventMessageFile"=str(2):"c:\windows\system32\ESENT.dll"
"CategoryMessageFile"=str(2):"c:\windows\system32\ESENT.dll"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg]
"s1"=dword:d54e9cd1
"s2"=dword:193c6032
"h0"=dword:00000002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000001
"ujdew"=hex:2b,03,cc,00,61,0a,63,6e,44,df,8f,33,3f,8c,60,3d,f5,3e,77,62,bd,..

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000000
"khjeh"=hex:55,81,b0,1d,ab,b2,15,3f,20,3a,8b,18,4a,15,db,37,e1,11,53,e9,03,..
"p0"="C:\Program Files\DAEMON Tools\"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,57,ea,78,b9,4c,76,0f,16,eb,fc,0a,9a,09,6f,26,80,09,..
"khjeh"=hex:d3,5e,4b,e7,79,47,ea,6d,46,ca,ce,8d,2b,2b,40,e4,a5,52,df,d4,5e,..

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:92,cd,e5,f6,9c,f1,4a,3e,b3,a0,a9,2d,1d,09,be,d4,57,0d,8e,a0,4a,..

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf41]
"khjeh"=hex:a0,44,c8,51,f8,78,e0,7b,84,e1,de,de,32,ab,13,c8,56,f6,3e,41,e3,..

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf42]
"khjeh"=hex:92,cd,e5,f6,9c,f1,4a,3e,b3,a0,a9,2d,1d,09,be,d4,57,0d,8e,a0,4a,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet005\Services\BTHPORT\Parameters\Keys\000272d1af5b]
"00180f9ab474"=hex:4c,78,56,f7,43,04,f0,9f,61,9c,11,5a,b1,38,38,c3
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet005\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000001
"ujdew"=hex:2b,03,cc,00,61,0a,63,6e,44,df,8f,33,3f,8c,60,3d,f5,3e,77,62,bd,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet005\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000000
"khjeh"=hex:55,81,b0,1d,ab,b2,15,3f,20,3a,8b,18,4a,15,db,37,e1,11,53,e9,03,..
"p0"="C:\Program Files\DAEMON Tools\"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet005\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,57,ea,78,b9,4c,76,0f,16,eb,fc,0a,9a,09,6f,26,80,09,..
"khjeh"=hex:d3,5e,4b,e7,79,47,ea,6d,46,ca,ce,8d,2b,2b,40,e4,a5,52,df,d4,5e,..

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet005\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:92,cd,e5,f6,9c,f1,4a,3e,b3,a0,a9,2d,1d,09,be,d4,57,0d,8e,a0,4a,..

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet005\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf41]
"khjeh"=hex:a0,44,c8,51,f8,78,e0,7b,84,e1,de,de,32,ab,13,c8,56,f6,3e,41,e3,..

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet005\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf42]
"khjeh"=hex:92,cd,e5,f6,9c,f1,4a,3e,b3,a0,a9,2d,1d,09,be,d4,57,0d,8e,a0,4a,..

scanning hidden registry entries ...

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Control Panel\Cursors\Schemes]
"\f\1e?r?n?\xe9? ?u?k?a?z?a?t?e?l?e? ?"="C:\WINDOWS\cursors\arrow_r.cur,C:\WINDOWS\cursors\help_r.cur,C:\WINDOWS\cursors\wait_r.cur,C:\WINDOWS\cursors\busy_r.cur,C:\WINDOWS\cursors\cross_r.cur,C:\WINDOWS\cursors\beam_r.cur,C:\WINDOWS\cursors\pen_r.cur,C:\WINDOWS\cursors\no_r.cur,C:\WINDOWS\cursors\size4_r.cur,C:\WINDOWS\cursors\size3_r.cur,C:\WINDOWS\cursors\size2_r.cur,C:\WINDOWS\cursors\size1_r.cur,C:\WINDOWS\cursors\move_r.cur,C:\WINDOWS\cursors\up_r.cur"
"\f\1e?r?n?\xe9? ?u?k?a?z?a?t?e?l?e? ?(?v?e?l?k?\xe9?)?"="C:\WINDOWS\cursors\arrow_rm.cur,C:\WINDOWS\cursors\help_rm.cur,C:\WINDOWS\cursors\wait_rm.cur,C:\WINDOWS\cursors\busy_rm.cur,C:\WINDOWS\cursors\cross_rm.cur,C:\WINDOWS\cursors\beam_rm.cur,C:\WINDOWS\cursors\pen_rm.cur,C:\WINDOWS\cursors\no_rm.cur,C:\WINDOWS\cursors\size4_rm.cur,C:\WINDOWS\cursors\size3_rm.cur,C:\WINDOWS\cursors\size2_rm.cur,C:\WINDOWS\cursors\size1_rm.cur,C:\WINDOWS\cursors\move_rm.cur,C:\WINDOWS\cursors\up_rm.cur"
"\f\1e?r?n?\xe9? ?u?k?a?z?a?t?e?l?e? ?(?n?e?j?v?\e\1t?a\1\xed?)?"="C:\WINDOWS\cursors\arrow_rl.cur,C:\WINDOWS\cursors\help_rl.cur,C:\WINDOWS\cursors\wait_rl.cur,C:\WINDOWS\cursors\busy_rl.cur,C:\WINDOWS\cursors\cross_rl.cur,C:\WINDOWS\cursors\beam_rl.cur,C:\WINDOWS\cursors\pen_rl.cur,C:\WINDOWS\cursors\no_rl.cur,C:\WINDOWS\cursors\size4_rl.cur,C:\WINDOWS\cursors\size3_rl.cur,C:\WINDOWS\cursors\size2_rl.cur,C:\WINDOWS\cursors\size1_rl.cur,C:\WINDOWS\cursors\move_rl.cur,C:\WINDOWS\cursors\up_rl.cur"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\ComputerDescriptions]
"`\1V?E?C?O?V?I?"=""
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Nero 7 Essentials\`\1t]
"Order"=hex:08,00,00,00,02,00,00,00,b0,00,00,00,01,00,00,00,01,00,00,00,a4,..

scanning hidden files ...

C:\WINDOWS\Temp\_av_proI.tm~a03532

scan completed successfully
hidden processes: 0
hidden services: 0
hidden files: 39


Remaining Services:
------------------



Authorized Application Key Export:

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\ICQLite\\ICQLite.exe"="C:\\Program Files\\ICQLite\\ICQLite.exe:*:Enabled:ICQ Lite"
"C:\\Program Files\\BitLord\\BitLord.exe"="C:\\Program Files\\BitLord\\BitLord.exe:*:Enabled:BitLord"
"C:\\Program Files\\Sports Interactive\\Football Manager 2007\\fm.exe"="C:\\Program Files\\Sports Interactive\\Football Manager 2007\\fm.exe:*:Enabled:Football Manager 2007"
"C:\\Program Files\\Vietcong\\vietcong.exe"="C:\\Program Files\\Vietcong\\vietcong.exe:*:Enabled:vietcong"
"C:\\WINDOWS\\system32\\dpnsvr.exe"="C:\\WINDOWS\\system32\\dpnsvr.exe:*:Enabled:Microsoft DirectPlay8 Server"
"C:\\WINDOWS\\system32\\sm.exe"="C:\\WINDOWS\\system32\\sm.exe:*:Enabled:enable"
"C:\\WINDOWS\\system32\\dd.exe"="C:\\WINDOWS\\system32\\dd.exe:*:Enabled:enable"
"C:\\WINDOWS\\system32\\lnwin.exe"="C:\\WINDOWS\\system32\\lnwin.exe:*:Enabled:enable"
"C:\\WINDOWS\\system32\\rundll32.exe"="C:\\WINDOWS\\system32\\rundll32.exe:*:Enabled:Run a DLL as an App"
"C:\\WINDOWS\\system32\\dpvsetup.exe"="C:\\WINDOWS\\system32\\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\\Program Files\\Kodak\\KODAK Software Updater\\7288971\\Program\\Kodak Software Updater.exe"="C:\\Program Files\\Kodak\\KODAK Software Updater\\7288971\\Program\\Kodak Software Updater.exe:*:Enabled:Kodak Software Updater"
"C:\\Program Files\\Kodak\\Kodak EasyShare software\\bin\\EasyShare.exe"="C:\\Program Files\\Kodak\\Kodak EasyShare software\\bin\\EasyShare.exe:*:Enabled:EasyShare"
"C:\\Program Files\\ICQ6\\ICQ.exe"="C:\\Program Files\\ICQ6\\ICQ.exe:*:Enabled:ICQ6"
"C:\\Program Files\\KONAMI\\Pro Evolution Soccer 6\\pes6.exe"="C:\\Program Files\\KONAMI\\Pro Evolution Soccer 6\\pes6.exe:*:Enabled:pes6.exe"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\WINDOWS\\system32\\dplaysvr.exe"="C:\\WINDOWS\\system32\\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper"
"C:\\Documents and Settings\\Petr a Lenka\\Local Settings\\Temp\\bulanci.tmp"="C:\\Documents and Settings\\Petr a Lenka\\Local Settings\\Temp\\bulanci.tmp:*:Enabled:bulanci"
"C:\\Program Files\\IVT Corporation\\BlueSoleil\\BlueSoleil.exe"="C:\\Program Files\\IVT Corporation\\BlueSoleil\\BlueSoleil.exe:*:Enabled:BlueSoleil"
"C:\\WINDOWS\\system32\\dxdiag.exe"="C:\\WINDOWS\\system32\\dxdiag.exe:*:Enabled:Microsoft DirectX Diagnostic Tool"
"C:\\Program Files\\Firebird\\Firebird_2_0\\bin\\fbserver.exe"="C:\\Program Files\\Firebird\\Firebird_2_0\\bin\\fbserver.exe:*:Disabled:Firebird SQL Server"
"C:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe"="C:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe:*:Enabled:ActiveSync Connection Manager"
"C:\\Program Files\\Microsoft ActiveSync\\WCESMgr.exe"="C:\\Program Files\\Microsoft ActiveSync\\WCESMgr.exe:*:Enabled:ActiveSync Application"
"C:\\Program Files\\Common Files\\Ahead\\Nero Web\\SetupX.exe"="C:\\Program Files\\Common Files\\Ahead\\Nero Web\\SetupX.exe:*:Enabled:Nero ProductSetup"
"C:\\Program Files\\Sports Interactive\\Football Manager 2008\\fm.exe"="C:\\Program Files\\Sports Interactive\\Football Manager 2008\\fm.exe:*:Enabled:Football Manager 2008"
"C:\\Program Files\\QIP\\qip.exe"="C:\\Program Files\\QIP\\qip.exe:*:Enabled:Quiet Internet Pager"
"C:\\Program Files\\Sunbelt Software\\Personal Firewall\\kpf4gui.exe"="C:\\Program Files\\Sunbelt Software\\Personal Firewall\\kpf4gui.exe:*:Disabled:Sunbelt Kerio Firewall GUI"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

Remaining Files:
---------------

File Backups: - C:\SDFix\backups\backups.zip

Files with Hidden Attributes:

Fri 13 May 2005 217,073 A.SHR --- "C:\WINDOWS\meta4.exe"
Mon 24 Oct 2005 66,560 A.SHR --- "C:\WINDOWS\MOTA113.exe"
Thu 13 Oct 2005 422,400 A.SHR --- "C:\WINDOWS\x2.64.exe"
Sun 28 Oct 2007 5,903,928 A..H. --- "C:\Program Files\Picasa2\setup.exe"
Fri 7 Oct 2005 308,224 A.SHR --- "C:\WINDOWS\system32\avisynth.dll"
Thu 14 Jul 2005 27,648 A.SHR --- "C:\WINDOWS\system32\AVSredirect.dll"
Sun 26 Jun 2005 616,448 A.SHR --- "C:\WINDOWS\system32\cygwin1.dll"
Tue 21 Jun 2005 45,568 A.SHR --- "C:\WINDOWS\system32\cygz.dll"
Sun 25 Jan 2004 70,656 A.SHR --- "C:\WINDOWS\system32\i420vfw.dll"
Thu 27 Apr 2006 2,945,024 A.SHR --- "C:\WINDOWS\system32\Smab.dll"
Mon 28 Feb 2005 240,128 A.SHR --- "C:\WINDOWS\system32\x.264.exe"
Sun 25 Jan 2004 70,656 A.SHR --- "C:\WINDOWS\system32\yv12vfw.dll"
Sun 29 Oct 2006 4,348 A.SH. --- "C:\Documents and Settings\All Users\DRM\DRMv1.bak"
Wed 24 May 2006 72,192 ..SHR --- "C:\Program Files\eRightSoft\SUPER\Setup.exe"
Wed 11 Jan 2006 15,360 A.SHR --- "C:\Program Files\eRightSoft\SUPER\_Setup.dll"
Fri 30 Mar 2007 0 A.SH. --- "C:\Documents and Settings\All Users\DRM\Cache\Indiv01.tmp"
Wed 14 Nov 2007 388,090 A..H. --- "C:\Documents and Settings\Petr a Lenka\Local Settings\Temp\BIT192.tmp"
Wed 14 Nov 2007 0 A..H. --- "C:\Documents and Settings\Petr a Lenka\Local Settings\Temp\BIT193.tmp"
Tue 4 Jun 2002 84,992 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\14_43260.dll"
Tue 4 Jun 2002 44,032 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\28_83260.dll"
Tue 10 Dec 2002 73,766 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\atrc3260.dll"
Tue 10 Dec 2002 65,575 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\cook3260.dll"
Tue 4 Jun 2002 20,480 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\dnet3260.dll"
Tue 10 Dec 2002 176,165 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\drv23260.dll"
Tue 10 Dec 2002 94,208 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\drv33260.dll"
Tue 10 Dec 2002 217,127 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\drv43260.dll"
Sat 3 Nov 2001 225,280 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\ivvideo.dll"
Tue 10 Apr 2001 225,280 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\qtmlClient.dll"
Fri 20 Feb 2004 548,940 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\raac.dll"
Tue 10 Dec 2002 102,439 ...HR --- "C:\Program Files\eRightSoft\SUPER\mencoder\sipr3260.dll"
Wed 10 Jan 2007 878,080 A..H. --- "C:\Documents and Settings\Petr a Lenka\Dokumenty\Word soubory\roźnˇkov  pr ce zbo§ˇ věpoźeetnˇ technika\~WRL0341.tmp"

Finished!


Výpis z HiJackThis

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:42:45, on 14.11.2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Firebird\Firebird_1_5\bin\fbguard.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Firebird\Firebird_1_5\bin\fbserver.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Picasa2\PicasaMediaDetector.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\Program Files\PIXELA\ImageMixer3\HDDCameraMonitor.exe
C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
C:\Program Files\Common Files\Nokia\MPAPI\MPAPI3s.exe
C:\Program Files\Skype\Plugin Manager\SkypePM.exe
C:\Documents and Settings\Petr a Lenka\Dokumenty\Hijack This\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: XTTBPos00 - {055FD26D-3A88-4e15-963D-DC8493744B1D} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O3 - Toolbar: &Crawler lišta - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [PcSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe
O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: ImageMixer HDD Camera Monitor.lnk = ?
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Add To Print List - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint High Speed Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Preview - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Easy-WebPrint Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: Vytvořit mobilní oblíbenou položku - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll
O9 - Extra 'Tools' menuitem: Vytvořit mobilní oblíbenou položku… - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/200 ... plugin.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {E8F628B5-259A-4734-97EE-BA914D7BE941} (Driver Agent ActiveX Control) - http://driveragent.com/files/driveragent.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{7B50CCC2-D40E-4338-A237-17FDE63D6825}: NameServer = 192.168.6.1,82.100.50.2
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - The Firebird Project - C:\Program Files\Firebird\Firebird_1_5\bin\fbguard.exe
O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - The Firebird Project - C:\Program Files\Firebird\Firebird_1_5\bin\fbserver.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Firebird Guardian Service (InterBaseGuardian) - FirebirdSQL Project - C:\Program Files\Borland\InterBase\bin\ibguard.exe
O23 - Service: Firebird Server (InterBaseServer) - FirebirdSQL Project - C:\Program Files\Borland\InterBase\bin\ibserver.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe

--
End of file - 10635 bytes

[Baron Prášil]

podle mě je log v pořádku.

Crawler Toolbar můžeš odinstalovat,jestli nepoužíváš.

jak se chová komp?

(poprosím,příště ty logy jenom černobíle.dík)

[O.P.i]

dobře přiště už to bude jen černobílé

a komp mam s nim problém vždycky naběhne na obrazovku windows jak se načítá ta modrá čárka a sekne se, včera jsem ho nemohl zapnout až na osmé restartování.

Tohle jsem měl už jednou a tenkrát to vyřešilo samzaní takovýho souboru, který my našel nějakej ten program na hledání virů myslim že to byl mwav, ale ted jsem dělal ten test a samzalo to pár souborů ale furt to blbne.

Zkouším různé možnosti, protože se mi moc nechce formátovat disk

tak jsem myslel jestli to nebude vydět na těch logách

[Baron Prášil]

mwav nalezené infiltrace mazat neumí (ve free verzi)
takže ten test udělej-program stáhni tady-MWAV a pošli log podle návodu.

[O.P.i]

tady je ten výpis z MWAv

Objekt "sw Spyware/Adware" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "smitfraud Browser Hijacker" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "trojan-downloader.bat.ftp.ab Trojan-Downloader" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "trojan-downloader.bat.ftp.ab Trojan-Downloader" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "trojan-downloader.bat.ftp.ab Trojan-Downloader" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "trojan-downloader.bat.ftp.ab Trojan-Downloader" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "ipinsight Spyware/Adware" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "ipinsight Spyware/Adware" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "whenu.savenow Spyware/Adware" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "sw Spyware/Adware" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "trojan-downloader.bat.ftp.ab Trojan-Downloader" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "trojan-downloader.bat.ftp.ab Trojan-Downloader" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "trojan-downloader.bat.ftp.ab Trojan-Downloader" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "trojan-downloader.bat.ftp.ab Trojan-Downloader" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "ipinsight Spyware/Adware" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "ipinsight Spyware/Adware" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "whenu.savenow Spyware/Adware" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "systemdefender Corrupted Adware/Spyware" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "systemdefender Corrupted Adware/Spyware" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\BackWeb.Client-7288971" odkazuje na neplatný objekt "{034E43C2-36FC-4BDE-97C5-25E6FC4444B6}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\BackWeb.Client.ScriptHelper-7288971" odkazuje na neplatný objekt "{CAEF9D56-0816-4984-BE91-B1B2ED801BE5}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\BackWeb.FileAccess-7288971" odkazuje na neplatný objekt "{BB7CDE7C-5FB0-46E5-A3F4-EF118FACE08B}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\BackWeb.FileAccessViaDir-7288971" odkazuje na neplatný objekt "{CF6067D7-D10C-4767-B04C-148E6EBB1574}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\BackWeb.FileReplication-7288971" odkazuje na neplatný objekt "{2A426D47-51C3-4A79-B064-95FD87DAB5D1}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\BackWeb.FileReplicationCleanup-7288971" odkazuje na neplatný objekt "{1FD8D838-74A9-4DF8-936F-0D87ED49AD3C}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\BackWeb.FileReplicationExtension-7288971" odkazuje na neplatný objekt "{341EE246-3B05-4C23-B21A-17F2D4831FC0}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\BackWeb.VBFileReplicationExtension-7288971" odkazuje na neplatný objekt "{6100E360-BB4A-4025-95FB-69CA629E4180}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\BKMRK.NOKIA.ISYNCHAPPU" odkazuje na neplatný objekt "{5F8F8CF1-96A6-11D3-B183-D2896D000000}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\CCFT.FTPlugin" odkazuje na neplatný objekt "{6A720B9B-F42D-454F-BE97-4D56D69F4FBB}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\CCFT.FTPlugin.1" odkazuje na neplatný objekt "{6A720B9B-F42D-454F-BE97-4D56D69F4FBB}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\CCMPAPI.MPAPIPlugin" odkazuje na neplatný objekt "{F65547E7-C3B7-4840-91C4-182AD928CA2F}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\CCMPAPI.MPAPIPlugin.1" odkazuje na neplatný objekt "{F65547E7-C3B7-4840-91C4-182AD928CA2F}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\CCSML.SMLPlugin" odkazuje na neplatný objekt "{9BF64251-0848-40F5-A8ED-BCB11CCDCA03}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\CCSML.SMLPlugin.1" odkazuje na neplatný objekt "{9BF64251-0848-40F5-A8ED-BCB11CCDCA03}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\CDSAccess.CommonDataStore" odkazuje na neplatný objekt "{3093DC10-2007-4A91-B911-95D17BEC0ADA}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\CDSAccess.CommonDataStore.1" odkazuje na neplatný objekt "{3093DC10-2007-4A91-B911-95D17BEC0ADA}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\CDSAccess.SynchAccess" odkazuje na neplatný objekt "{A677AD3C-5A75-4EEF-9DF3-3F4ED8636ABC}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\CDSAccess.SynchAccess.1" odkazuje na neplatný objekt "{A677AD3C-5A75-4EEF-9DF3-3F4ED8636ABC}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\COMMONDS.NOKIA.ISYNCHAPPU" odkazuje na neplatný objekt "{80D4479F-96A6-11D3-B183-D2896D000000}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\EasyShare.EasyShare_AddInHost" odkazuje na neplatný objekt "{09101CBE-D527-11D6-AD30-0050DAD88A02}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\EasyShare.EasyShare_AddInHost.1" odkazuje na neplatný objekt "{09101CBE-D527-11D6-AD30-0050DAD88A02}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\EasyShare.EasyShare_App" odkazuje na neplatný objekt "{09101CAF-D527-11D6-AD30-0050DAD88A02}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\EasyShare.EasyShare_App.1" odkazuje na neplatný objekt "{09101CAF-D527-11D6-AD30-0050DAD88A02}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\EasyShare.EasyShare_Image" odkazuje na neplatný objekt "{00FAE562-DACA-11D6-AD30-0050DAD88A02}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\EasyShare.EasyShare_Image.1" odkazuje na neplatný objekt "{00FAE562-DACA-11D6-AD30-0050DAD88A02}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\EasyShare.EasyShare_ImageCollection" odkazuje na neplatný objekt "{00FAE568-DACA-11D6-AD30-0050DAD88A02}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\EasyShare.EasyShare_ImageCollection.1" odkazuje na neplatný objekt "{00FAE568-DACA-11D6-AD30-0050DAD88A02}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\EasyShare.EasyShare_ImageControl" odkazuje na neplatný objekt "{09101CBA-D527-11D6-AD30-0050DAD88A02}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\EasyShare.EasyShare_ImageControl.1" odkazuje na neplatný objekt "{09101CBA-D527-11D6-AD30-0050DAD88A02}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\EasyShare.EasyShare_WorkOrder" odkazuje na neplatný objekt "{09101CB7-D527-11D6-AD30-0050DAD88A02}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\EasyShare.EasyShare_WorkOrder.1" odkazuje na neplatný objekt "{09101CB7-D527-11D6-AD30-0050DAD88A02}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\esbwclext.bwWebExt" odkazuje na neplatný objekt "{45137563-F598-4574-A987-A25867AB7068}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\esbwclext.bwWebExt.1" odkazuje na neplatný objekt "{45137563-F598-4574-A987-A25867AB7068}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\ESCom.EasyShare_ImageControl2" odkazuje na neplatný objekt "{3A091B81-8FAF-4B7D-85C7-7CB5D3FDD479}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\ESCom.EasyShare_ImageControl2.1" odkazuje na neplatný objekt "{3A091B81-8FAF-4B7D-85C7-7CB5D3FDD479}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\FILECONTROL.FileControlCtrl.1" odkazuje na neplatný objekt "{221002E4-4DB7-4345-9A33-A285B90E53F0}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\FolderView.FolderViewCtrl.71" odkazuje na neplatný objekt "{3AA5EF7B-2CE2-4471-B16E-A86056F58D3F}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\Kodak.ActiveUpdateTargetingManager.1" odkazuje na neplatný objekt "{8DBFE843-D7DF-4cfc-B62C-05A6899139E2}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\Microsoft.ActiveXPlugin" odkazuje na neplatný objekt "{06DD38D3-D187-11CF-A80D-00C04FD74AD8}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\Microsoft.ActiveXPlugin.1" odkazuje na neplatný objekt "{06DD38D3-D187-11CF-A80D-00C04FD74AD8}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\NCCENG.NCCEngine" odkazuje na neplatný objekt "{3E4E8CFC-4464-4f53-B127-D345DB1B719B}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\NCCENG.NCCEngine.1" odkazuje na neplatný objekt "{3E4E8CFC-4464-4f53-B127-D345DB1B719B}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\Nokia.IrDAMM" odkazuje na neplatný objekt "{45DE04A6-22B9-41A4-9883-788B692A1E1F}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\Nokia.IrDAMM.1" odkazuje na neplatný objekt "{45DE04A6-22B9-41A4-9883-788B692A1E1F}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\Nokia.PNAEngine" odkazuje na neplatný objekt "{0259598E-8A6F-11D4-8833-00105ADD07A2}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\Nokia.PNAEngine.1" odkazuje na neplatný objekt "{0259598E-8A6F-11D4-8833-00105ADD07A2}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\Nokia.RS232MM" odkazuje na neplatný objekt "{23399C73-7D90-4EA6-BA20-5435E850F79E}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\Nokia.RS232MM.1" odkazuje na neplatný objekt "{23399C73-7D90-4EA6-BA20-5435E850F79E}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\Nokia.USBMM" odkazuje na neplatný objekt "{9A34CBAD-3DAB-4439-9D6E-FE717F04C224}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\Nokia.USBMM.1" odkazuje na neplatný objekt "{9A34CBAD-3DAB-4439-9D6E-FE717F04C224}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\NokiaCL.NclMSBTMM" odkazuje na neplatný objekt "{7892EA7F-B2EB-4a8f-A52A-AFB9CFC46643}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\NOTES50.NOKIA.ISYNCHAPPU" odkazuje na neplatný objekt "{5F8F8CA1-96A6-11D3-B183-D2896D000000}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\OUTLOOK2.NOKIA.ISYNCHAPPU" odkazuje na neplatný objekt "{5F8F8CE9-96A6-11D3-B183-D2896D000000}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\RegistrationPlugin.DataStoreObj" odkazuje na neplatný objekt "{8cdf6a86-f726-11da-89c2-444553544200}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\RegistrationPlugin.DataStoreObj.1" odkazuje na neplatný objekt "{8cdf6a86-f726-11da-89c2-444553544200}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\RegistrationPlugin.HardwareObj" odkazuje na neplatný objekt "{8cdf6a84-f726-11da-89c2-444553544200}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\RegistrationPlugin.HardwareObj.1" odkazuje na neplatný objekt "{8cdf6a84-f726-11da-89c2-444553544200}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\RegistrationPlugin.RegAtKodakObj" odkazuje na neplatný objekt "{8cdf6a8b-f726-11da-89c2-444553544200}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\RegistrationPlugin.RegAtKodakObj.1" odkazuje na neplatný objekt "{8cdf6a8b-f726-11da-89c2-444553544200}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\RegistrationPlugin.RegistrationObj" odkazuje na neplatný objekt "{8cdf6a8d-f726-11da-89c2-444553544200}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\RegistrationPlugin.RegistrationObj.1" odkazuje na neplatný objekt "{8cdf6a8d-f726-11da-89c2-444553544200}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\RegistrationPlugin.SniffMasterObj" odkazuje na neplatný objekt "{8cdf6a89-f726-11da-89c2-444553544200}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\RegistrationPlugin.SniffMasterObj.1" odkazuje na neplatný objekt "{8cdf6a89-f726-11da-89c2-444553544200}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\ShellViewControls.TreeNode.71" odkazuje na neplatný objekt "{FAD31E4D-FB35-441F-8C11-E049CB7CBB48}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\SniffPlugin.ISniffPlugin" odkazuje na neplatný objekt "{8cdf6a92-f726-11da-89c2-444553544200}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\SniffPlugin.ISniffPlugin.1" odkazuje na neplatný objekt "{8cdf6a92-f726-11da-89c2-444553544200}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\SYNCH.NOKIA.ISYNCH2" odkazuje na neplatný objekt "{5F8F8D8E-96A6-11D3-B183-D2896D000000}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\SYNCH.NOKIA.ISYNCHU" odkazuje na neplatný objekt "{5F8F8C8E-96A6-11D3-B183-D2896D000000}". Provedené akce: Nic nebylo provedeno.
Záznam "HKCR\WADRB.NOKIA.ISYNCHAPPU" odkazuje na neplatný objekt "{5F8F8CDD-96A6-11D3-B183-D2896D000000}". Provedené akce: Nic nebylo provedeno.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\ModuleUsage" odkazuje na neplatný objekt "C:\WINDOWS\Downloaded Program Files\popcaploader.dll". Provedené akce: Nic nebylo provedeno.
Záznam "HKCU\Software\Netscape\Netscape Navigator\User Trusted External Applications" odkazuje na neplatný objekt ""C:\Program Files\Java\jre1.5.0_11\bin\javaws.exe"". Provedené akce: Nic nebylo provedeno.
Záznam "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts" odkazuje na neplatný objekt ".%C4%F83%88jM%28%E52%F2%8Bu%B8hMo%3E%24f%D4%F04%C1%DD%F0%1AI%E8tb%E9p%06G%A6%9D%BDH%3A%FA%DA%29%ACt%28%E9Jp%07%1BK%DD%DC%FE%1A%E8%9F%00%B4%06i%CC4a%F1/%E5%E4%D6m%AA%3C%99%FF%B8b". Provedené akce: Nic nebylo provedeno.
Záznam "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts" odkazuje na neplatný objekt ".mds". Provedené akce: Nic nebylo provedeno.
Soubor C:\Documents and Settings\Petr a Lenka\Dokumenty\SmitfraudFix\Reboot.exe indentifikován jako "not-a-virus:RiskTool.Win32.Reboot.f". Provedené akce: Nic nebylo provedeno.
Soubor C:\Documents and Settings\Petr a Lenka\Dokumenty\SmitfraudFix.exe//data.rar/SmitfraudFix\Reboot.exe indentifikován jako "not-a-virus:RiskTool.Win32.Reboot.f". Provedené akce: Nic nebylo provedeno.
Soubor C:\Documents and Settings\Petr a Lenka\Local Settings\Temporary Internet Files\Content.IE5\IHMGQ307\2[1].htm je infikovaný virem Trojan.HTML.Agent.e !! Provedené akce: Nic nebylo provedeno.
Soubor C:\System Volume Information\_restore{906394D3-D404-423B-B390-88252EC8AD29}\RP304\A0180634.exe je infikovaný virem Trojan-Downloader.Win32.Zlob.gen !! Provedené akce: Nic nebylo provedeno.
Soubor C:\System Volume Information\_restore{906394D3-D404-423B-B390-88252EC8AD29}\RP304\A0180635.ocx je infikovaný virem Trojan.Win32.Agent.chh !! Provedené akce: Nic nebylo provedeno.
Soubor C:\System Volume Information\_restore{906394D3-D404-423B-B390-88252EC8AD29}\RP304\A0180659.dll indentifikován jako "not-a-virus:AdWare.Win32.Vapsup.ho". Provedené akce: Nic nebylo provedeno.
Soubor C:\System Volume Information\_restore{906394D3-D404-423B-B390-88252EC8AD29}\RP304\A0180661.exe indentifikován jako "not-a-virus:AdWare.Win32.Agent.oi". Provedené akce: Nic nebylo provedeno.

[Baron Prášil]

vypni obnovu systému
pravím na Tento počítač>vlastnosti>obnova systému a zaškrtni a ok a potvrdit

najdi a smaž složku
C:\Documents and Settings\Petr a Lenka\Local Settings\Temporary Internet Files\Content.IE5\IHMGQ307\2[1].htm

restartuj a zapni obnovu systému

[O.P.i]

Tak jsem to udělal ono to furt nejde, asi přeinstaluju windows

Díky za pomoc