Nastavení Eset 4 Vyřešeno

[josefinka]

Dej si Automatický režim, taky to tak mám a jede v poho...mám tu samou verzi

[Reklama]

[josefinka]

omlouvám se za opakovačku, myslel jsem že se to neodeslalo, sorry...

[jaro3]

Comp je odvirován, zkus přeinstalovat ESS.

Stahni si SREng
- rozbal na plochu a spust ho
- zvol "zvol Smart Scan", nech nastaveni tak jak je
- zvol "Verify the digital signature of process modules"
- klik na "Scan"
- klik na Save Reports, uloz log na plochu a cely obsah logu zkopirujt sem
- rozbal na plochu a spust ho
+
- Spusť ho a zvol možnost System Repair
- Na první záložce File Associations pokud bude zatrhnutý/vybraný některý čtvereček z výpisu, tak klikni dole na tlačítko Repair

[Pavel Salák]

Log ze SREng:



2009-03-21,10:21:13

System Repair Engineer 2.7.1.1261
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 3 (Build 2600) - Administrative User - Completed Functions Allowed

Follow item(s) have been selected:
All Boot Items (Including Registry, Startup Folders, Services and so on)
Browser Add-ons
Running Processes (Including process model information)
File Associations
Winsock Provider
Autorun.Inf
HOSTS File
Process Privileges Scan
Scheduled Tasks
API HOOK
Hidden Process


Boot Items
Registry
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<EPSON Stylus C40 Series><C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /A "C:\WINDOWS\system32\E_S1E6.tmp"> [File is missing]
<Active Desktop Calendar><C:\Program Files\XemiComputers\Active Desktop Calendar\ADC.exe> [XemiComputers ltd.]
<ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe> [(Verified)Microsoft Windows Component Publisher]
<OEXPRESS><C:\Documents and Settings\All Users\Data aplikací\LangSoft\OETRN.EXE> []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<OODefragTray><C:\WINDOWS\system32\oodtray.exe> [(Verified)O an]
<WinFastDTV><C:\Program Files\WinFast\WFDTV\DTVSchdl.exe> [Leadtek Research Inc.]
<NvCplDaemon><RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe> [(Verified)Microsoft Windows Component Publisher]
<Userinit><C:\WINDOWS\system32\userinit.exe,> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<UIHost><logonui.exe> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
<{AEB6717E-7E19-11d0-97EE-00C04FD91972}><shell32.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
<PostBootReminder><%SystemRoot%\system32\SHELL32.dll> [(Verified)Microsoft Windows Component Publisher]
<CDBurn><%SystemRoot%\system32\SHELL32.dll> [(Verified)Microsoft Windows Component Publisher]
<WebCheck><C:\WINDOWS\system32\webcheck.dll> [(Verified)Microsoft Windows Component Publisher]
<SysTray><%systemroot%\system32\stobject.dll> [(Verified)Microsoft Windows Component Publisher]
<WPDShServiceObj><C:\WINDOWS\system32\WPDShServiceObj.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
<WinlogonNotify: crypt32chain><crypt32.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
<WinlogonNotify: cryptnet><cryptnet.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
<WinlogonNotify: cscdll><cscdll.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dimsntfy]
<WinlogonNotify: dimsntfy><%SystemRoot%\System32\dimsntfy.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
<WinlogonNotify: ScCertProp><wlnotify.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
<WinlogonNotify: Schedule><wlnotify.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
<WinlogonNotify: sclgntfy><sclgntfy.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
<WinlogonNotify: SensLogn><WlNotify.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
<WinlogonNotify: termsrv><wlnotify.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
<WinlogonNotify: WgaLogon><WgaLogon.dll> [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
<WinlogonNotify: wlballoon><wlnotify.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
<{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\system32\browseui.dll> [(Verified)Microsoft Windows Component Publisher]
<{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\system32\browseui.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}]
<IE7 Uninstall Stub><C:\WINDOWS\system32\ieudinit.exe> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
<Microsoft Windows Media Player><C:\WINDOWS\inf\unregmp2.exe /ShowWMP> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
<Internet Explorer><C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
<Browser Customizations><RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS]
<Vlastní nastavení prohlížeče><RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
<Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
<LightScribe Control Panel><"C:\Program Files\Common Files\LightScribe\LSRunOnce.exe"> [(Verified)Hewlett-Packard Company]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
<Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
<Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
<NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
<Windows Messenger 4.7><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
<Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp11.inf,PerUserStub> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
<Adresář 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
<Aktualizace plochy systému Windows><regsvr32.exe /s /n /i:U shell32.dll> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
<Internet Explorer><C:\WINDOWS\system32\ie4uinit.exe -BaseSettings> [(Verified)Microsoft Windows Component Publisher]

==================================
Startup Folders
[EPSON Status Monitor 3 Environment Check 2]
<C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\EPSON Status Monitor 3 Environment Check 2.lnk --> C:\WINDOWS\system32\spool\drivers\w32x86\3\E_SRCV02.EXE [SEIKO EPSON CORPORATION]><N>
[PopTray]
<C:\Documents and Settings\Pavel\Nabídka Start\Programy\Po spuštění\PopTray.lnk --> C:\PROGRA~1\PopTray\PopTray.exe [Renier Crause]><N>

==================================
Services
[ArcSoft Connect Daemon / ACDaemon][Running/Auto Start]
<C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe><ArcSoft Inc.>
[ATK Keyboard Service / ATKKeyboardService][Running/Auto Start]
<C:\WINDOWS\ATKKBService.exe><ASUSTeK COMPUTER INC.>
[EPSON Printer Status Agent2 / EPSONStatusAgent2][Running/Auto Start]
<C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe><SEIKO EPSON CORPORATION>
[Přístup k zařízením standardu HID / HidServ][Stopped/Disabled]
<C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
[InstallDriver Table Manager / IDriverT][Stopped/Manual Start]
<"C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe"><Macrovision Corporation>
[Java Quick Starter / JavaQuickStarterService][Running/Auto Start]
<"C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf"><Sun Microsystems, Inc.>
[LightScribeService Direct Disc Labeling Service / LightScribeService][Running/Auto Start]
<"C:\Program Files\Common Files\LightScribe\LSSrvc.exe"><Hewlett-Packard Company>
[Nero BackItUp Scheduler 4.0 / Nero BackItUp Scheduler 4.0][Running/Auto Start]
<C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe><Nero AG>
[NVIDIA Display Driver Service / NVSvc][Running/Auto Start]
<C:\WINDOWS\system32\nvsvc32.exe><NVIDIA Corporation>
[O&O Defrag / O&O Defrag][Running/Auto Start]
<C:\WINDOWS\system32\oodag.exe><O&O Software GmbH>
[Ulead Burning Helper / UleadBurningHelper][Running/Auto Start]
<C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe><Ulead Systems, Inc.>

==================================
Drivers
[ASUS Virtual Video Capture Device Driver / asusgsb][Running/Manual Start]
<system32\drivers\asusgsb.sys><ASUSTeK Computer Inc.>
[Enhanced Display Driver Helper Service / asuskbnt][Running/System Start]
<system32\drivers\atkkbnt.sys><ASUSTeK COMPUTER INC.>
[easdrv / easdrv][Running/System Start]
<system32\DRIVERS\easdrv.sys><ESET>
[EIO / EIO][Running/System Start]
<\??\C:\WINDOWS\system32\drivers\EIO.sys><ASUSTeK Computer Inc.>
[ElbyCDFL / ElbyCDFL][Running/Manual Start]
<System32\Drivers\ElbyCDFL.sys><SlySoft, Inc.>
[ElbyCDIO Driver / ElbyCDIO][Running/Auto Start]
<System32\Drivers\ElbyCDIO.sys><Elaborate Bytes AG>
[ElbyDelay / ElbyDelay][Running/Manual Start]
<System32\Drivers\ElbyDelay.sys><Elaborate Bytes AG>
[ENTECH / ENTECH][Stopped/Manual Start]
<\??\C:\WINDOWS\system32\DRIVERS\ENTECH.sys><EnTech Taiwan>
[epfwtdir / epfwtdir][Running/System Start]
<system32\DRIVERS\epfwtdir.sys><N/A>
[Ovladač Microsoft UAA pro sběrnici High Definition Audio / HDAudBus][Running/Manual Start]
<system32\DRIVERS\HDAudBus.sys><Windows (R) Server 2003 DDK provider>
[Service for Realtek HD Audio (WDM) / IntcAzAudAddService][Running/Manual Start]
<system32\drivers\RtkHDAud.sys><Realtek Semiconductor Corp.>
[JRAID / JRAID][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\jraid.sys><JMicron Technology Corp.>
[nv / nv][Running/Manual Start]
<system32\DRIVERS\nv4_mini.sys><NVIDIA Corporation>
[O&O DiskImage Snapshot/Restore Driver / oodisr][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\oodisr.sys><O&O Software GmbH>
[oodisrh / oodisrh][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\oodisrh.sys><O&O Software GmbH>
[O&O DiskImage VirtualDisk Driver / oodivd][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\oodivd.sys><O&O Software GmbH>
[oodivdh / oodivdh][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\oodivdh.sys><O&O Software GmbH>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
<system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[PxHelp20 / PxHelp20][Running/Boot Start]
<\SystemRoot\System32\Drivers\PxHelp20.sys><Sonic Solutions>
[Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver / RTLE8023xp][Running/Manual Start]
<system32\DRIVERS\Rtenicxp.sys><Realtek Semiconductor Corporation>
[Secdrv / Secdrv][Stopped/Manual Start]
<system32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>
[ULCDRHlp / ULCDRHlp][Running/Manual Start]
<System32\Drivers\ULCDRHlp.sys><Ulead Systems, Inc.>
[VClone / VClone][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\VClone.sys><Elaborate Bytes AG>
[ASUS Video3D Service / Video3D][Running/Manual Start]
<System32\Drivers\Video3D32.sys><ASUSTeK COMPUTER INC.>
[WinFast TV2000/DV2000 WDM Video Capture. / WF23880][Running/Auto Start]
<system32\drivers\wf88vcap.sys><Copyright @2000-2006 Leadtek Research Inc.>
[WinFast TV2000/DV2000 WDM Crossbar. / WF88XBAR][Running/Auto Start]
<system32\drivers\WF88XBAR.sys><Copyright @2000-2006 Leadtek Research Inc.>
[WinFast TV2000/DV2000 WDM Tuner. / WFTUNE][Running/Auto Start]
<system32\drivers\WF88TUNE.sys><Copyright @2000-2006 Leadtek Research Inc.>

==================================
Browser Add-ons
[WebTransBHO Class]
{2DB66063-BB98-466A-AA0D-3E7ACF5ED853} <C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll, >
[Java(tm) Plug-In SSV Helper]
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre6\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[Java(tm) Plug-In 2 SSV Helper]
{DBC80044-A445-435b-BC74-9C25C1C588A9} <C:\Program Files\Java\jre6\bin\jp2ssv.dll, Sun Microsystems, Inc.>
[JQSIEStartDetectorImpl Class]
{E7E6F031-17CE-4C07-BC86-EABFE594F69C} <C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll, Sun Microsystems, Inc.>
[ToolBarButton Class]
{7E6A20FB-153F-402c-A84B-1A64E1955D3D} <C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll, >
[&Zdroje informací]
{92780B25-18CC-41C8-B9BE-3C9C571A8263} <C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL, (Signed) Microsoft Corporation>
[MenuItem3 Class]
{CC963627-B1DC-40E0-B52A-CF21EE748449} <C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll, >
[MenuItem4 Class]
{CC963627-B1DC-40E0-B52A-CF21EE748450} <C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll, >
[MenuItem2 Class]
{CC963627-B1DC-40E0-B52A-CF21EE748451} <C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll, >
[MenuItem1 Class]
{CC963627-B1DC-40E0-B52A-CF21EE748452} <C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll, >
[]
{e2e2dd38-d088-4134-82b7-f2ba38496583} <%windir%\Network Diagnostic\xpnetdiag.exe, (Signed) N/A>
[ICQ6]
{E59EB121-F339-4851-A3BA-FE49C35617C2} <C:\Program Files\ICQ6.5\ICQ.exe, (Signed) ICQ, LLC.>
[Messenger]
{FB5F1910-F110-11d2-BB9E-00C04F795683} <C:\Program Files\Messenger\msmsgs.exe, (Signed) Microsoft Corporation>
[WebTranslator]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} <C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll, >
[Java Plug-in 1.6.0_11]
{8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, >
[Java Plug-in 1.6.0_11]
{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, >
[Java Plug-in 1.6.0_11]
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\npjpi160_11.dll, (Signed) Sun Microsystems, Inc.>
[]
{055FD26D-3A88-4E15-963D-DC8493744B1D} <, >
[Windows Genuine Advantage Validation Tool]
{17492023-C23A-453E-A040-C7C580BBF700} <C:\WINDOWS\system32\legitcheckcontrol.dll, (Signed) Microsoft Corporation>
[WebTransBHO Class]
{2DB66063-BB98-466A-AA0D-3E7ACF5ED853} <C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll, >
[WUWebControl Class]
{6414512B-B978-451D-A0D8-FCFDF33E833C} <C:\WINDOWS\system32\wuweb.dll, (Signed) Microsoft Corporation>
[Windows Media Player]
{6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[Java(tm) Plug-In SSV Helper]
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre6\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[ToolBarButton Class]
{7E6A20FB-153F-402C-A84B-1A64E1955D3D} <C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll, >
[]
{855F3B16-6D32-4FE6-8A56-BBB695989046} <, >
[]
{92780B25-18CC-41C8-B9BE-3C9C571A8263} <, >
[WebTranslator]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} <C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll, >
[MenuItem3 Class]
{CC963627-B1DC-40E0-B52A-CF21EE748449} <C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll, >
[MenuItem4 Class]
{CC963627-B1DC-40E0-B52A-CF21EE748450} <C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll, >
[MenuItem2 Class]
{CC963627-B1DC-40E0-B52A-CF21EE748451} <C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll, >
[MenuItem1 Class]
{CC963627-B1DC-40E0-B52A-CF21EE748452} <C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll, >
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash6.ocx, (Signed) Macromedia, Inc.>
[Java(tm) Plug-In 2 SSV Helper]
{DBC80044-A445-435B-BC74-9C25C1C588A9} <C:\Program Files\Java\jre6\bin\jp2ssv.dll, Sun Microsystems, Inc.>
[]
{E2E2DD38-D088-4134-82B7-F2BA38496583} <, >
[]
{E59EB121-F339-4851-A3BA-FE49C35617C2} <, >
[JQSIEStartDetectorImpl Class]
{E7E6F031-17CE-4C07-BC86-EABFE594F69C} <C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll, Sun Microsystems, Inc.>
[XML HTTP Request]
{ED8C108E-4349-11D2-91A4-00C04F7969E8} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[]
{FB5F1910-F110-11D2-BB9E-00C04F795683} <, >
[Analyzovat LeechGetem]
<file://C:\Program Files\LeechGet 2007\\Parser.html, N/A>
[Download LeechGetem]
<file://C:\Program Files\LeechGet 2007\\AddUrl.html, N/A>
[Download s průvodcem LeechGetu]
<file://C:\Program Files\LeechGet 2007\\Wizard.html, N/A>
[E&xportovat do aplikace Microsoft Office Excel]
<res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A>

==================================
Running Processes
[PID: 744 / SYSTEM][\SystemRoot\System32\smss.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 804 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 828 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[PID: 876 / SYSTEM][C:\WINDOWS\system32\services.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 888 / SYSTEM][C:\WINDOWS\system32\lsass.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[PID: 1060 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 1128 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 1224 / SYSTEM][C:\WINDOWS\System32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 1308 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 1396 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 1488 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[C:\WINDOWS\system32\E_SL2340.DLL] [SEIKO EPSON CORPORATION, 2, 15, 0, 0]
[C:\WINDOWS\system32\mdimon.dll] [Microsoft Corporation, 11.3.1897.0]
[C:\WINDOWS\System32\spool\PRTPROCS\W32X86\mdippr.dll] [Microsoft Corporation, 11.3.1897.0]
[PID: 1868 / Pavel][C:\WINDOWS\Explorer.EXE] [(Verified) Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\BROWSEUI.dll] [Společnost Microsoft, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\Documents and Settings\All Users\Data aplikací\LangSoft\TrnOEH.dll] [N/A, ]
[C:\Program Files\XemiComputers\Active Desktop Calendar\MouseHook.dll] [N/A, ]
[C:\Program Files\Common Files\Nero\SMC\NeroDigitalExt.dll] [Nero AG, 6, 2, 10, 31]
[C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\MFC80.DLL] [Microsoft Corporation, 8.00.50727.762]
[C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.762]
[C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCP80.dll] [Microsoft Corporation, 8.00.50727.762]
[C:\Program Files\WinZip\wzshlstb.dll] [WinZip Computing, S.L., 4.1 (32-bit)]
[PID: 2044 / Pavel][C:\WINDOWS\system32\oodtray.exe] [O&O Software GmbH, 11.0.1.1302]
[C:\WINDOWS\system32\OODTRRS.DLL] [O&O Software GmbH, 11.0.213.823]
[C:\Documents and Settings\All Users\Data aplikací\LangSoft\TrnOEH.dll] [N/A, ]
[C:\Program Files\XemiComputers\Active Desktop Calendar\MouseHook.dll] [N/A, ]
[PID: 188 / Pavel][C:\Program Files\WinFast\WFDTV\DTVSchdl.exe] [Leadtek Research Inc., 1, 1, 0, 3]
[C:\Documents and Settings\All Users\Data aplikací\LangSoft\TrnOEH.dll] [N/A, ]
[C:\Program Files\XemiComputers\Active Desktop Calendar\MouseHook.dll] [N/A, ]
[PID: 232 / Pavel][C:\Documents and Settings\All Users\Data aplikací\LangSoft\OETRN.EXE] [, 1.0.0]
[C:\Documents and Settings\All Users\Data aplikací\LangSoft\TrnOEH.dll] [N/A, ]
[C:\Documents and Settings\All Users\Data aplikací\LangSoft\TrnOET.dll] [N/A, ]
[C:\Program Files\XemiComputers\Active Desktop Calendar\MouseHook.dll] [N/A, ]
[PID: 244 / Pavel][C:\Program Files\XemiComputers\Active Desktop Calendar\ADC.exe] [XemiComputers ltd., 7, 7, 0, 0]
[C:\Program Files\XemiComputers\Active Desktop Calendar\MouseHook.dll] [N/A, ]
[C:\Documents and Settings\All Users\Data aplikací\LangSoft\TrnOEH.dll] [N/A, ]
[PID: 256 / Pavel][C:\WINDOWS\system32\ctfmon.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\Documents and Settings\All Users\Data aplikací\LangSoft\TrnOEH.dll] [N/A, ]
[C:\Program Files\XemiComputers\Active Desktop Calendar\MouseHook.dll] [N/A, ]
[PID: 448 / SYSTEM][C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe] [ArcSoft Inc., 1.1.0.29]
[PID: 460 / SYSTEM][C:\WINDOWS\ATKKBService.exe] [ASUSTeK COMPUTER INC., 6, 14, 10, 205]
[C:\WINDOWS\ASMT_CE.dll] [ASMedia Techonology, 1, 4, 1, 0]
[C:\WINDOWS\i2c.dll] [ASMedia Technology, 1, 3, 1, 0]
[C:\WINDOWS\OneTouchVga.dll] [ASUSTek, 1, 1, 3, 0]
[C:\WINDOWS\aticlocklib.dll] [N/A, ]
[C:\WINDOWS\EIO.DLL] [ASUSTek Computer Inc.,, 2, 6, 2, 0]
[C:\WINDOWS\system32\nvapi.dll] [NVIDIA Corporation, 6.14.11.6218]
[C:\WINDOWS\nvgpio.dll] [NVIDIA Corporation, 2.0.0.1]
[C:\WINDOWS\nVGA_i2c.dll] [ASMedia Technology, 1, 1, 2, 0]
[PID: 536 / SYSTEM][C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe] [SEIKO EPSON CORPORATION, 1, 2, 0, 0]
[C:\WINDOWS\system32\EBAPI2.DLL] [SEIKO EPSON CORPORATION, 1, 1, 0, 0]
[C:\Program Files\Common Files\EPSON\EBAPI\EBPLPT.DLL] [SEIKO EPSON CORPORATION, 2, 14, 0, 0]
[PID: 600 / SYSTEM][C:\Program Files\Java\jre6\bin\jqs.exe] [Sun Microsystems, Inc., 6.0.110.3]
[C:\Program Files\Java\jre6\bin\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\Common Files\Microsoft Shared\office11\mso.dll] [Microsoft Corporation, 11.0.5606]
[PID: 612 / Pavel][C:\Program Files\PopTray\PopTray.exe] [Renier Crause, 3.1.0.0]
[C:\Documents and Settings\All Users\Data aplikací\LangSoft\TrnOEH.dll] [N/A, ]
[C:\Program Files\XemiComputers\Active Desktop Calendar\MouseHook.dll] [N/A, ]
[PID: 784 / SYSTEM][C:\Program Files\Common Files\LightScribe\LSSrvc.exe] [Hewlett-Packard Company, 1.14.17.1]
[C:\Program Files\Common Files\LightScribe\LSSProxy.dll] [Hewlett-Packard Company, 1.14.17.1]
[C:\Program Files\Common Files\LightScribe\LSLog.dll] [Hewlett-Packard Company, 1.14.17.1]
[C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.762]
[C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCP80.dll] [Microsoft Corporation, 8.00.50727.762]
[PID: 1252 / Pavel][C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE] [SEIKO EPSON CORPORATION, 3.00]
[C:\Documents and Settings\All Users\Data aplikací\LangSoft\TrnOEH.dll] [N/A, ]
[C:\Program Files\XemiComputers\Active Desktop Calendar\MouseHook.dll] [N/A, ]
[PID: 1328 / SYSTEM][C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE] [Microsoft Corporation, 7.00.9466]
[PID: 1380 / SYSTEM][C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe] [Nero AG, 4.0.1.102]
[C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCP80.dll] [Microsoft Corporation, 8.00.50727.762]
[C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll] [Microsoft Corporation, 8.00.50727.762]
[C:\Program Files\Common Files\Nero\Nero BackItUp 4\NB.dll] [Nero AG, 4.0.1.102]
[C:\Program Files\Common Files\Nero\Nero BackItUp 4\LBFC.dll] [Nero AG, 4.0.1.102]
[C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBBurn.dll] [Nero AG, 4.0.1.102]
[C:\Program Files\Common Files\Nero\Nero BackItUp 4\NeroAPIGlueLayerUnicode.dll] [Nero AG, 9.0.0.100]
[PID: 1720 / SYSTEM][C:\WINDOWS\system32\nvsvc32.exe] [NVIDIA Corporation, 6.14.11.6218]
[C:\WINDOWS\system32\nvapi.dll] [NVIDIA Corporation, 6.14.11.6218]
[PID: 1744 / SYSTEM][C:\WINDOWS\system32\oodag.exe] [O&O Software GmbH, 11.1.3362]
[C:\WINDOWS\system32\OODAGRS.DLL] [O&O Software GmbH, 11.0.3000.248]
[PID: 1836 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 1596 / SYSTEM][C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe] [Ulead Systems, Inc., 1, 0, 0, 4]
[PID: 1680 / SYSTEM][C:\WINDOWS\system32\wbem\wmiapsrv.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2108)]
[PID: 2196 / LOCAL SERVICE][C:\WINDOWS\System32\alg.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[PID: 2268 / SYSTEM][C:\WINDOWS\system32\wbem\wmiprvse.exe] [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2108)]
[PID: 2600 / Pavel][C:\Program Files\Opera\opera.exe] [Opera Software, 10487]
[C:\Program Files\Opera\Opera.dll] [Opera Software, 10487]
[C:\Documents and Settings\All Users\Data aplikací\LangSoft\TrnOEH.dll] [N/A, ]
[C:\Program Files\XemiComputers\Active Desktop Calendar\MouseHook.dll] [N/A, ]
[C:\Program Files\Opera\Program\Plugins\NPSWF32.dll] [, ]
[C:\WINDOWS\system32\browseui.dll] [Společnost Microsoft, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_DU13AE.DLL] [SEIKO EPSON Corporation, 0.3.0.0]
[C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_DMAI13.DLL] [SEIKO EPSON Corporation, 0. 3. 0. 0]
[PID: 3248 / Pavel][C:\Documents and Settings\Pavel\Plocha\SREngLdr.EXE] [Smallfrogs Studio, 2.7.1.1261]
[PID: 3256 / Pavel][C:\Documents and Settings\Pavel\Plocha\SREf737bac6.EXE] [Smallfrogs Studio, 2.7.1.1261]
[C:\Documents and Settings\All Users\Data aplikací\LangSoft\TrnOEH.dll] [N/A, ]
[C:\Program Files\XemiComputers\Active Desktop Calendar\MouseHook.dll] [N/A, ]
[C:\Documents and Settings\Pavel\Plocha\Upload\3rdUpd.DLL] [Smallfrogs Studio, 2, 1, 0, 15]

==================================
File Associations
.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM OK. ["C:\WINDOWS\hh.exe" %1]
.HLP OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock Provider
N/A

==================================
Autorun.Inf
N/A

==================================
HOSTS File
127.0.0.1 localhost

==================================
Process Privileges Scan
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 188, C:\PROGRAM FILES\WINFAST\WFDTV\DTVSCHDL.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 232, C:\DOCUMENTS AND SETTINGS\ALL USERS\DATA APLIKACÍ\LANGSOFT\OETRN.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 244, C:\PROGRAM FILES\XEMICOMPUTERS\ACTIVE DESKTOP CALENDAR\ADC.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 612, C:\PROGRAM FILES\POPTRAY\POPTRAY.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 1252, C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\E_S10IC2.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2600, C:\PROGRAM FILES\OPERA\OPERA.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3248, C:\DOCUMENTS AND SETTINGS\PAVEL\PLOCHA\SRENGLDR.EXE]

==================================
Scheduled Tasks
N/A

==================================
API HOOK
N/A

==================================
Hidden Process
N/A

==================================


/odstraněn kód. memphisto

[Pavel Salák]

- Spusť ho a zvol možnost System Repair
- Na první záložce File Associations pokud bude zatrhnutý/vybraný některý čtvereček z výpisu, tak klikni dole na tlačítko Repair[/quote]


Žádný čtverček zatržený nebyl, tak jsem Repair nespouštěl

[Pavel Salák]

Dej si Automatický režim, taky to tak mám a jede v poho...mám tu samou verzi

Nedám automatickou verzi, protože tam firewall není vidět, viz screen výše

[jaro3]

LOg O.K:
Zkoušel jsi přeinstalovat ESS ( předtím vypni firewall ve win) ?
Ty soubory firewallu ESS tam jsou všechny, takže bych odhadoval na špatnou instalačku (hlavní okno-menu). Zkusil bych stáhnout znovu celý ESS a nainstalovat znovu.

Stáhni si DDS :

a ulož ho na plochu.Zavři všechna spuštěná okna a spusť program, potvrď licenční podmínky a postupuj podle pokynů. Začne scanování.Až skončí, tak by měl vytvořit 2 logy proto se Ti 2krát otevře notepad. Jeden log bude mít název DDS.txt a druhý attach.txt. Tak sem zkopíruj pouze ten DDS.txt

[Pavel Salák]

Přeinstalovával jsem to, že už ani nevím kolikrát. Pokud by byla požkozená instalačka, tak by to zmrvili v Esetu, protože je stažená z jejich stránek, nebo by bylo možný, že se podělala cestou? Výše uvedené jdu hned vyzkoušet

/necituj předchozí příspěvek.memphisto

[jaro3]

Může to být špatně staženo cestou, crc atd. Nic víc mě zatím nenapadá..

[Pavel Salák]

Log DDS:


DDS (Ver_09-03-16.01) - NTFSx86
Run by Pavel at 12:05:16,57 on so 21.03.2009
Internet Explorer: 7.0.5730.13
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2047.1588 [GMT 1:00]

AV: ESET Smart Security 4.0 *On-access scanning enabled* (Updated)
FW: Sunbelt Kerio Personal Firewall *enabled*

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
C:\WINDOWS\ATKKBService.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\oodtray.exe
C:\Program Files\WinFast\WFDTV\DTVSchdl.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\XemiComputers\Active Desktop Calendar\ADC.exe
C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\All Users\Data aplikací\LangSoft\OETRN.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\oodag.exe
C:\Program Files\PopTray\PopTray.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Pavel\Plocha\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.seznam.cz/
BHO: WebTransBHO Class: {2db66063-bb98-466a-aa0d-3e7acf5ed853} - c:\documents and settings\all users\data aplikací\langsoft\WebIE.dll
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: WebTranslator: {bfc32e1d-ee75-4a48-bc60-104e11ee2431} - c:\documents and settings\all users\data aplikací\langsoft\WebIE.dll
TB: {855F3B16-6D32-4FE6-8A56-BBB695989046} - No File
uRun: [EPSON Stylus C40 Series] c:\windows\system32\spool\drivers\w32x86\3\e_s10ic2.exe /a "c:\windows\system32\E_S1E6.tmp"
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [OEXPRESS] c:\documents and settings\all users\data aplikací\langsoft\OETRN.EXE
uRun: [Active Desktop Calendar] c:\program files\xemicomputers\active desktop calendar\ADC.exe
mRun: [OODefragTray] c:\windows\system32\oodtray.exe
mRun: [WinFastDTV] c:\program files\winfast\wfdtv\DTVSchdl.exe
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [egui] "c:\program files\eset\eset smart security\egui.exe" /hide /waitservice
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
StartupFolder: c:\docume~1\pavel\nabdka~1\programy\posput~1\poptray.lnk - c:\program files\poptray\PopTray.exe
StartupFolder: c:\docume~1\alluse~1\nabdka~1\programy\posput~1\epsons~1.lnk - c:\windows\system32\spool\drivers\w32x86\3\E_SRCV02.EXE
uPolicies-explorer: NoStartMenuSubFolders = 0 (0x0)
uPolicies-explorer: NoCommonGroups = 0 (0x0)
uPolicies-explorer: NoPrinters = 0 (0x0)
uPolicies-explorer: NoRecentDocsNetHood = 0 (0x0)
uPolicies-explorer: NoChangeAnimation = 0 (0x0)
uPolicies-explorer: HideClock = 0 (0x0)
uPolicies-explorer: NoThemesTab = 0 (0x0)
uPolicies-system: NoSecCpl = 0 (0x0)
uPolicies-system: NoDispAppearancePage = 0 (0x0)
uPolicies-system: NoDispSettingsPage = 0 (0x0)
uPolicies-system: NoVisualStyleChoice = 0 (0x0)
IE: Analyzovat LeechGetem - file://c:\program files\leechget 2007\\Parser.html
IE: Download LeechGetem - file://c:\program files\leechget 2007\\AddUrl.html
IE: Download s průvodcem LeechGetu - file://c:\program files\leechget 2007\\Wizard.html
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: {BFC32E1D-EE75-4A48-BC60-104E11EE2431}
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {E59EB121-F339-4851-A3BA-FE49C35617C2} - c:\program files\icq6.5\ICQ.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\documents and settings\all users\data aplikací\langsoft\WebIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
IE: {CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748449} - c:\documents and settings\all users\data aplikací\langsoft\WebIE.dll
IE: {CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\documents and settings\all users\data aplikací\langsoft\WebIE.dll
IE: {CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\documents and settings\all users\data aplikací\langsoft\WebIE.dll
IE: {CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\documents and settings\all users\data aplikací\langsoft\WebIE.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\pavel\dataap~1\mozilla\firefox\profiles\dxbz3o4s.default\
FF - prefs.js: browser.startup.homepage - www.seznam.cz
FF - plugin: c:\program files\mozilla firefox\plugins\npFoxitReaderPlugin.dll
FF - plugin: c:\program files\vistacodecpack\rm\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\vistacodecpack\rm\browser\plugins\nprpjplug.dll

---- FIREFOX POLICIES ----
FF - user.js: network.proxy.type - 0
c:\program files\mozilla firefox\greprefs\all.js - pref("capability.policy.mailnews.XMLHttpRequest.channel", "noAccess");
c:\program files\mozilla firefox\greprefs\all.js - pref("capability.policy.mailnews.SOAPEncoding.schemaCollection", "noAccess");
c:\program files\mozilla firefox\greprefs\all.js - pref("capability.policy.default.XMLHttpRequest.channel", "noAccess");
c:\program files\mozilla firefox\greprefs\all.js - pref("security.checkloaduri", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("bidi.characterset", 1);
c:\program files\mozilla firefox\defaults\pref\channel-prefs.js - pref("app.update.channel", "release");
c:\program files\mozilla firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");

============= SERVICES / DRIVERS ===============

R0 oodisr;O&O DiskImage Snapshot/Restore Driver;c:\windows\system32\drivers\oodisr.sys [2009-1-20 95752]
R0 oodisrh;oodisrh;c:\windows\system32\drivers\oodisrh.sys [2009-1-20 28680]
R0 oodivd;O&O DiskImage VirtualDisk Driver;c:\windows\system32\drivers\oodivd.sys [2009-1-20 133640]
R0 oodivdh;oodivdh;c:\windows\system32\drivers\oodivdh.sys [2009-1-20 31240]
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [2009-2-6 106208]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [2007-12-21 33800]
R1 fwdrv;Firewall Driver;c:\windows\system32\drivers\fwdrv.sys [2007-2-20 302000]
R1 khips;Kerio HIPS Driver;c:\windows\system32\drivers\khips.sys [2007-2-20 71088]
R2 ekrn;ESET Service;c:\program files\eset\eset smart security\ekrn.exe [2009-2-6 727720]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0;c:\program files\common files\nero\nero backitup 4\NBService.exe [2008-9-24 935208]
R2 WF23880;WinFast TV2000/DV2000 WDM Video Capture.;c:\windows\system32\drivers\wf88vcap.sys [2009-3-13 208851]
R2 WF88XBAR;WinFast TV2000/DV2000 WDM Crossbar.;c:\windows\system32\drivers\WF88XBAR.sys [2009-3-13 10324]
R2 WFTUNE;WinFast TV2000/DV2000 WDM Tuner.;c:\windows\system32\drivers\wf88tune.sys [2009-3-13 34789]
R3 PSched;Plánovač paketů technologie QoS;c:\windows\system32\drivers\psched.sys [2008-4-13 69120]
R3 Video3D;ASUS Video3D Service;c:\windows\system32\drivers\Video3D32.sys [2009-3-12 10752]

=============== Created Last 30 ================

2009-03-21 11:33 328 a------- c:\windows\system32\drivers\fwdrv.err
2009-03-21 11:07 <DIR> --d----- c:\program files\Sunbelt Software
2009-03-21 11:03 <DIR> --d----- c:\program files\ESET
2009-03-21 10:29 0 a------- c:\windows\XXLGSC
2009-03-20 19:47 <DIR> --d----- c:\program files\Trend Micro
2009-03-19 23:05 <DIR> --d----- c:\docume~1\alluse~1\dataap~1\Easy CD-DA Extractor
2009-03-19 23:05 <DIR> --d----- c:\windows\Easy CD-DA Extractor 12
2009-03-19 23:05 <DIR> --d----- c:\program files\Easy CD-DA Extractor 12
2009-03-19 19:18 184 a------- c:\windows\MyDrivers.ini
2009-03-19 19:15 <DIR> --d----- c:\program files\My Drivers
2009-03-19 17:11 <DIR> --d----- c:\docume~1\pavel\dataap~1\ESET
2009-03-19 00:11 <DIR> --d----- c:\docume~1\alluse~1\dataap~1\MicroWorld
2009-03-18 19:53 <DIR> --d----- c:\program files\ScanButton 3.0
2009-03-18 19:53 172,032 -------- c:\windows\scanusdX.dll
2009-03-18 19:53 53,248 -------- c:\windows\stiaspi.dll
2009-03-18 19:53 5,741 -------- c:\windows\gulp.vxd
2009-03-18 19:53 <DIR> --d----- c:\program files\MiraScan
2009-03-18 19:53 66,560 -------- c:\windows\system32\WNASPI32.DLL
2009-03-18 19:53 151,552 -----r-- c:\windows\UnUSBDrv.exe
2009-03-18 19:53 147,456 -----r-- c:\windows\CHECKING.DLL
2009-03-18 13:19 1,905 a------- c:\windows\diagwrn.xml
2009-03-18 13:19 1,905 a------- c:\windows\diagerr.xml
2009-03-18 08:56 <DIR> --d----- c:\docume~1\pavel\dataap~1\Alawar
2009-03-18 08:55 <DIR> --d----- c:\program files\Roboball
2009-03-17 13:53 <DIR> --d----- c:\program files\Foxit Software
2009-03-17 13:53 <DIR> --d----- c:\docume~1\pavel\dataap~1\Foxit
2009-03-17 12:33 <DIR> --d----- c:\docume~1\pavel\dataap~1\ICQ Toolbar
2009-03-17 11:00 <DIR> --d----- c:\docume~1\alluse~1\dataap~1\TreeCardGames
2009-03-17 11:00 <DIR> --d----- c:\docume~1\pavel\dataap~1\SolSuite
2009-03-17 10:59 <DIR> --d----- c:\program files\SolSuite
2009-03-17 10:52 <DIR> --d-h--- c:\program files\Seznam
2009-03-16 16:31 <DIR> --d----- c:\program files\ABBYY FineReader 7.0 Professional Edition
2009-03-16 15:47 <DIR> --d----- c:\windows\system32\NtmsData
2009-03-16 07:41 <DIR> --d----- c:\docume~1\alluse~1\dataap~1\LightScribe
2009-03-16 07:31 4,767 a------- c:\windows\Irremote.ini
2009-03-16 07:22 <DIR> --d----- c:\program files\Nero
2009-03-16 07:22 <DIR> --d----- c:\docume~1\alluse~1\dataap~1\Nero
2009-03-16 07:02 <DIR> --d----- c:\program files\ICQ6.5
2009-03-16 06:59 <DIR> --d----- c:\program files\ICQToolbar
2009-03-16 06:58 <DIR> --d----- c:\program files\ICQ6
2009-03-15 22:35 2,686 a------- c:\windows\TRNCOM.INI
2009-03-15 22:34 <DIR> --d----- C:\TRANSLAT
2009-03-15 22:34 <DIR> --d----- c:\docume~1\alluse~1\dataap~1\LangSoft
2009-03-15 22:33 <DIR> --d----- c:\docume~1\pavel\dataap~1\LangSoft
2009-03-15 22:22 <DIR> --d----- C:\CloneDVDTemp
2009-03-15 22:17 135,772 ----h--- C:\treeinfo.wc
2009-03-15 14:39 169,472 a------- c:\windows\system32\EBAPI2.dll
2009-03-15 14:39 <DIR> --d----- c:\program files\common files\EPSON
2009-03-15 14:38 <DIR> --d----- c:\program files\EPSON
2009-03-15 14:36 25,856 ac------ c:\windows\system32\dllcache\usbprint.sys
2009-03-15 14:36 25,856 a------- c:\windows\system32\drivers\usbprint.sys
2009-03-15 12:18 61,440 ac------ c:\windows\system32\dllcache\acerscad.dll
2009-03-15 12:18 15,104 ac------ c:\windows\system32\dllcache\usbscan.sys
2009-03-15 12:18 61,440 a------- c:\windows\system32\AcerScaD.dll
2009-03-15 12:18 15,104 a------- c:\windows\system32\drivers\usbscan.sys
2009-03-15 12:18 <DIR> --d----- c:\windows\usbbin
2009-03-15 10:28 <DIR> --d----- c:\program files\LeechGet 2009
2009-03-15 10:26 <DIR> --d----- c:\program files\VistaCodecPack
2009-03-15 10:26 <DIR> --d----- c:\docume~1\alluse~1\dataap~1\VistaCodecs
2009-03-15 09:36 27,672 a----r-- c:\windows\system32\drivers\Entech.sys
2009-03-15 09:36 <DIR> --d----- c:\windows\system32\Futuremark
2009-03-15 09:36 <DIR> --d----- c:\program files\common files\Futuremark Shared
2009-03-13 21:03 221,184 a------- c:\windows\system32\wmpns.dll
2009-03-13 20:11 27,392 a------- c:\windows\system32\drivers\ULCDRHlp.sys
2009-03-13 19:55 245,408 a------- c:\windows\system32\unicows.dll
2009-03-13 19:54 <DIR> --d----- c:\program files\WinFast
2009-03-13 19:50 34,789 a----r-- c:\windows\system32\drivers\wf88tune.sys
2009-03-13 19:49 10,324 a----r-- c:\windows\system32\drivers\WF88XBAR.sys
2009-03-13 19:48 208,851 a----r-- c:\windows\system32\drivers\wf88vcap.sys
2009-03-13 19:41 <DIR> --d----- c:\program files\common files\NacreWare
2009-03-13 19:41 <DIR> --d----- c:\program files\AMC2000
2009-03-13 19:15 <DIR> --d----- C:\OpenCandy
2009-03-13 19:02 <DIR> --d----- c:\program files\Unlocker
2009-03-13 18:52 9,469 a------- c:\windows\system32\drivers\WINFOXIO.sys
2009-03-13 18:52 <DIR> --d----- c:\windows\system32\WinFox
2009-03-13 18:30 <DIR> --d----- C:\WinFast WorkArea
2009-03-13 18:29 <DIR> --d----- c:\docume~1\alluse~1\dataap~1\ArcSoft
2009-03-13 18:29 <DIR> --d----- c:\program files\common files\Ulead Systems
2009-03-13 18:29 <DIR> --d----- c:\windows\system32\WinFast
2009-03-13 18:25 <DIR> --d----- c:\windows\WinFast
2009-03-13 12:08 <DIR> --d----- c:\docume~1\pavel\dataap~1\Zoner
2009-03-13 12:08 <DIR> --d----- c:\program files\Zoner
2009-03-13 11:54 <DIR> --d----- c:\program files\Godlike Developers
2009-03-13 09:23 <DIR> --d----- C:\PPK_CD
2009-03-13 08:55 <DIR> --d----- c:\program files\AutoPlay Menu Builder
2009-03-13 08:39 <DIR> --d----- c:\docume~1\pavel\dataap~1\XemiComputers
2009-03-13 08:38 <DIR> --d----- c:\program files\XemiComputers
2009-03-13 08:35 64,208 a------- c:\windows\system32\oodbs.lor
2009-03-13 08:35 <DIR> --d----- c:\windows\system32\oodag
2009-03-13 08:34 0 a------- c:\windows\oodcnt.INI
2009-03-13 08:29 <DIR> --d----- c:\program files\RegCleaner
2009-03-13 08:28 <DIR> --d----- c:\program files\CCleaner
2009-03-13 08:21 1,247 a------- c:\windows\wincmd.ini
2009-03-13 08:21 545 a------- c:\windows\UC.PIF
2009-03-13 08:21 545 a------- c:\windows\RAR.PIF
2009-03-13 08:21 545 a------- c:\windows\PKZIP.PIF
2009-03-13 08:21 545 a------- c:\windows\PKUNZIP.PIF
2009-03-13 08:21 545 a------- c:\windows\NOCLOSE.PIF
2009-03-13 08:21 545 a------- c:\windows\LHA.PIF
2009-03-13 08:21 545 a------- c:\windows\ARJ.PIF
2009-03-13 08:21 <DIR> --d----- C:\totalcmd
2009-03-13 07:53 <DIR> --d----- c:\program files\OO Software
2009-03-13 07:53 <DIR> --d----- c:\docume~1\alluse~1\dataap~1\OO Software
2009-03-13 07:52 <DIR> --d----- c:\program files\MSECache
2009-03-13 07:51 <DIR> --d----- c:\program files\LeechGet 2007
2009-03-13 07:50 <DIR> --d----- c:\program files\Sun
2009-03-13 07:50 410,984 a------- c:\windows\system32\deploytk.dll
2009-03-13 07:50 73,728 a------- c:\windows\system32\javacpl.cpl
2009-03-13 07:49 <DIR> --d----- c:\program files\EurotelSMS
2009-03-13 07:47 <DIR> --d----- c:\docume~1\alluse~1\dataap~1\Elaborate Bytes
2009-03-13 07:44 <DIR> --d----- c:\program files\Elaborate Bytes
2009-03-13 07:34 48 ---sh--- c:\windows\S2A7B19D4.tmp
2009-03-13 07:33 <DIR> --d----- c:\program files\SlySoft
2009-03-13 07:08 <DIR> --d----- c:\docume~1\pavel\dataap~1\ABBYY
2009-03-13 07:04 <DIR> --d----- c:\docume~1\alluse~1\dataap~1\ABBYY
2009-03-13 07:02 <DIR> --d----- c:\temp\FR90PE
2009-03-13 07:02 <DIR> --d----- C:\temp
2009-03-12 23:47 390 a------- c:\windows\ODBC.INI
2009-03-12 23:47 17,920 a------- c:\windows\system32\mdimon.dll
2009-03-12 23:46 <DIR> --d----- c:\windows\SHELLNEW
2009-03-12 22:39 56 a---h--- c:\windows\system32\ezsidmv.dat
2009-03-12 22:38 <DIR> --d--r-- c:\program files\Skype
2009-03-12 22:35 <DIR> --d----- c:\program files\IrfanView
2009-03-12 22:30 <DIR> --d----- c:\program files\Windows Media Connect 2
2009-03-12 22:22 <DIR> --d----- c:\windows\system32\LogFiles
2009-03-12 22:04 272,128 -c------ c:\windows\system32\dllcache\bthport.sys
2009-03-12 22:04 272,128 -------- c:\windows\system32\drivers\bthport.sys
2009-03-12 22:04 2,147,328 -c------ c:\windows\system32\dllcache\ntkrnlmp.exe
2009-03-12 22:04 2,068,224 -c------ c:\windows\system32\dllcache\ntkrnlpa.exe
2009-03-12 22:04 2,025,984 -c------ c:\windows\system32\dllcache\ntkrpamp.exe
2009-03-12 22:04 2,191,360 -c------ c:\windows\system32\dllcache\ntoskrnl.exe
2009-03-12 22:03 455,296 -c------ c:\windows\system32\dllcache\mrxsmb.sys
2009-03-12 22:01 459,264 -c------ c:\windows\system32\dllcache\msfeeds.dll
2009-03-12 22:01 267,776 -c------ c:\windows\system32\dllcache\iertutil.dll
2009-03-12 22:01 52,224 -c------ c:\windows\system32\dllcache\msfeedsbs.dll
2009-03-12 22:01 13,824 -c------ c:\windows\system32\dllcache\ieudinit.exe
2009-03-12 22:01 1,024,000 -c------ c:\windows\system32\dllcache\ieframe.dll.mui
2009-03-12 22:01 2,455,488 -c------ c:\windows\system32\dllcache\ieapfltr.dat
2009-03-12 22:01 383,488 -c------ c:\windows\system32\dllcache\ieapfltr.dll
2009-03-12 22:01 63,488 -c------ c:\windows\system32\dllcache\icardie.dll
2009-03-12 22:01 6,066,688 -c------ c:\windows\system32\dllcache\ieframe.dll
2009-03-12 21:58 <DIR> --d----- c:\windows\system32\PreInstall
2009-03-12 21:54 <DIR> --d----- c:\windows\system32\SoftwareDistribution
2009-03-12 21:27 <DIR> --d----- c:\program files\Windows Doctor
2009-03-12 21:10 <DIR> --d----- c:\program files\PopTray
2009-03-12 21:08 <DIR> --d----- c:\program files\VS Revo Group
2009-03-12 20:58 4,444 a------- c:\windows\system32\pid.PNF
2009-03-12 20:58 3,072 a------- c:\windows\system32\drivers\audstub.sys
2009-03-12 20:57 58,496 a------- c:\windows\system32\drivers\redbook.sys
2009-03-12 20:57 6,400 a------- c:\windows\system32\drivers\enum1394.sys
2009-03-12 20:56 75,264 ac------ c:\windows\system32\dllcache\usbui.dll
2009-03-12 20:56 75,264 a------- c:\windows\system32\usbui.dll
2009-03-12 20:56 <DIR> --d----- c:\program files\MozBackup
2009-03-12 20:55 <DIR> --d----- c:\program files\common files\ODBC
2009-03-12 20:55 <DIR> --d----- c:\program files\common files\SpeechEngines
2009-03-12 20:55 <DIR> --d-h--- c:\documents and settings\all users\Šablony
2009-03-12 20:55 <DIR> --d--r-- c:\documents and settings\all users\Nabídka Start
2009-03-12 20:55 <DIR> --d--r-- c:\documents and settings\all users\Dokumenty
2009-03-12 20:55 <DIR> --d----- c:\documents and settings\all users\Plocha
2009-03-12 20:55 <DIR> --d----- c:\documents and settings\all users\Oblíbené položky
2009-03-12 20:54 <DIR> --d-hr-- c:\documents and settings\all users\Data aplikací
2009-03-12 20:54 <DIR> --d----- C:\Documents and Settings
2009-03-12 20:53 261 a------- c:\windows\system32\$winnt$.inf
2009-03-12 20:17 <DIR> --d----- c:\program files\Realtek
2009-03-12 20:12 <DIR> --d----- c:\program files\My Company Name
2009-03-12 20:12 <DIR> --d----- c:\program files\ASUS
2009-03-12 20:08 <DIR> --d-hr-- c:\documents and settings\pavel\Data aplikací
2009-03-12 20:08 <DIR> --d-h--- c:\documents and settings\pavel\Okolní tiskárny
2009-03-12 20:08 <DIR> --d-h--- c:\documents and settings\pavel\Okolní síť
2009-03-12 20:08 <DIR> --d-h--- c:\documents and settings\pavel\Šablony
2009-03-12 20:08 <DIR> --d--r-- c:\documents and settings\pavel\Oblíbené položky
2009-03-12 20:08 <DIR> --d--r-- c:\documents and settings\pavel\Nabídka Start
2009-03-12 20:08 <DIR> --d--r-- c:\documents and settings\pavel\Dokumenty
2009-03-12 20:08 <DIR> --d----- c:\documents and settings\pavel\Plocha
2009-03-12 20:04 <DIR> --dsh--- c:\documents and settings\all users\DRM
2009-03-12 20:03 <DIR> --d----- c:\program files\Online Services
2009-03-12 20:03 <DIR> --d----- c:\program files\common files\MSSoap
2009-03-12 20:01 <DIR> --d----- c:\program files\Messenger
2009-03-12 20:01 <DIR> --d----- c:\program files\MSN Gaming Zone
2009-03-12 20:01 <DIR> --d----- c:\program files\Windows NT

==================== Find3M ====================

2009-03-20 17:04 196,608 a------- c:\windows\system32\drivers\nStandard.bin
2009-03-12 23:51 313,244 a------- c:\windows\system32\perfh005.dat
2009-03-12 23:51 47,386 a------- c:\windows\system32\perfc005.dat
2009-03-12 21:55 86,327 a------- c:\windows\pchealth\helpctr\offlinecache\index.dat
2009-03-12 20:17 315,392 a------- c:\windows\HideWin.exe
2009-03-12 20:02 21,812 a------- c:\windows\system32\emptyregdb.dat
2009-02-09 15:07 1,846,784 a------- c:\windows\system32\win32k.sys
2009-02-06 14:24 56,280 a------- c:\windows\system32\drivers\epfwtdi.sys
2009-02-06 14:24 33,096 a------- c:\windows\system32\drivers\epfwndis.sys
2009-02-06 14:24 130,952 a------- c:\windows\system32\drivers\epfw.sys
2009-02-06 14:23 106,208 a------- c:\windows\system32\drivers\ehdrv.sys
2009-02-06 14:19 113,448 a------- c:\windows\system32\drivers\eamon.sys

============= FINISH: 12:06:06,62 ===============

[Pavel Salák]

To Kerio jsem dal, abych měl jakýstakýs firewall, aby mi hlídal alespoň něco

[jaro3]

To Kerio sis nainstaloval tedy až teď? Pokud funguje nevidím jiný důvod než že je špatná instalačka ESS.
Zkus stáhnout znovu , předtím odinstalovat komplet ESS.Vyčistiti registry CCleanerem.
Odinstalovat Total Uninstalem nebo jiným odinstalačním programem, nebo:
http://www.viry.cz/forum/download/file.php?id=756
Je to z virů.cz , nezkoušeno.

Toto otestuj na Virustotal
c:\windows\S2A7B19D4.tmp
Vlož sem pak odkaz výsledku.