Pls kontrolu logu Vyřešeno

[svasik]

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:08:16, on 16.8.2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
E:\WINDOWS\System32\smss.exe
E:\WINDOWS\system32\winlogon.exe
E:\WINDOWS\system32\services.exe
E:\WINDOWS\system32\lsass.exe
E:\WINDOWS\system32\svchost.exe
E:\WINDOWS\System32\svchost.exe
E:\WINDOWS\system32\svchost.exe
E:\WINDOWS\system32\spoolsv.exe
E:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
E:\Program Files\Bonjour\mDNSResponder.exe
E:\Program Files\Java\jre6\bin\jqs.exe
E:\Program Files\MySQL\MySQL Server 5.0\bin\mysqld-nt.exe
E:\PROGRA~1\AVG\AVG8\avgrsx.exe
E:\PROGRA~1\AVG\AVG8\avgnsx.exe
E:\WINDOWS\system32\nvsvc32.exe
E:\WINDOWS\system32\PnkBstrA.exe
E:\WINDOWS\system32\PnkBstrB.exe
E:\Program Files\CyberLink\Shared Files\RichVideo.exe
E:\WINDOWS\system32\svchost.exe
E:\WINDOWS\system32\wbem\wmiapsrv.exe
E:\WINDOWS\Explorer.EXE
E:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
E:\Program Files\Synaptics\SynTP\SynTPStart.exe
E:\WINDOWS\BisonCam\BisonHK.exe
E:\WINDOWS\BisonCam\DeLay.exe
E:\Program Files\Synaptics\SynTP\SynTPEnh.exe
E:\WINDOWS\System32\svchost.exe
E:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
E:\Program Files\Protector Suite QL\psqltray.exe
E:\WINDOWS\RTHDCPL.EXE
E:\WINDOWS\system32\rundll32.exe
E:\Program Files\VibrateGameDeviceDriver\RFPIcon.exe
E:\Program Files\Java\jre6\bin\jusched.exe
E:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
E:\PROGRA~1\AVG\AVG8\avgtray.exe
E:\WINDOWS\system32\ctfmon.exe
E:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
E:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.0.21210\stbapp.exe
E:\Program Files\HotKey_Driver\HotKeyDriver.exe
E:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.0.21210\stbappHelper.exe
E:\WINDOWS\system32\wbem\unsecapp.exe
E:\Program Files\Realtek\RTL8185 Wireless LAN Utility\RtWLan.exe
E:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = start.qip.ru
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = Root: HKCU; Subkey: Software\Microsoft\Internet Explorer\SearchUrl; ValueType: string; ValueName: '; ValueData: '; Flags: createvalueifdoesntexist noerror; Tasks: AddSearchQip
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: QIPBHO Class - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - E:\Documents and Settings\Kluci\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll
R3 - URLSearchHook: (no name) - - (no file)
O1 - Hosts: 78.102.215.163 l2authd.lineage2.com
O2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - E:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Media Access Startup - {25B8D58C-B0CB-46b0-BA64-05B3804E4E86} - E:\Program Files\Media Access Startup\1.5.4.880\HPIEAddOn.dll
O2 - BHO: NP Helper Class - {35B8D58C-B0CB-46b0-BA64-05B3804E4E86} - E:\Program Files\Internet Saving Optimizer\3.6.1.4490\NPIEAddOn.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - E:\Program Files\BitComet\tools\BitCometBHO_1.2.8.7.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - E:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - E:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: QIPBHO - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - E:\Documents and Settings\Kluci\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - E:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - E:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - E:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll
O2 - BHO: System Search Dispatcher - {CDBFB47B-58A8-4111-BF95-06178DCE326D} - E:\Program Files\System Search Dispatcher\1.3.4.940\ssd.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - E:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - E:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: GamingHarbor Toolbar - {5617ECA9-488D-4BA2-8562-9710B9AB78D2} - E:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.0.21210\stb0.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE E:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [SMSERIAL] E:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
O4 - HKLM\..\Run: [SynTPStart] E:\Program Files\Synaptics\SynTP\SynTPStart.exe
O4 - HKLM\..\Run: [BisonHK] E:\WINDOWS\BisonCam\BisonHK.exe
O4 - HKLM\..\Run: [DeLay] E:\WINDOWS\BisonCam\DeLay.exe
O4 - HKLM\..\Run: [PSQLLauncher] "E:\Program Files\Protector Suite QL\launcher.exe" /startup
O4 - HKLM\..\Run: [RemoteControl] "E:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [RTBatteryMeter] E:\Program Files\VibrateGameDeviceDriver\RFPIcon.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "E:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "E:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "E:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [AVG8_TRAY] E:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [QuickTime Task] "E:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "E:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "E:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [QIP2005] E:\Program Files\QIP\qip.exe
O4 - HKCU\..\Run: [Steam] "E:\Program Files\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [Google Update] "E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [DAEMON Tools Lite] "E:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [SmileyApp] E:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.0.21210\stbapp.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: WinMySQLadmin.lnk = E:\xampp\mysql\bin\winmysqladmin.exe
O4 - Global Startup: HotKeyDriver.lnk = ?
O4 - Global Startup: InterVideo WinCinema Manager.lnk = E:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
O4 - Global Startup: REALTEK RTL8185 Wireless LAN Utility.lnk = E:\Program Files\Realtek\RTL8185 Wireless LAN Utility\RtWLan.exe
O4 - Global Startup: Temporary Shortcut.lnk = D:\autorun.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://E:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout odkaz s použitím BitCometu - res://E:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: Stáhnout všechna videa s použitím BitCometu - res://E:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: Stáhnout všechny odkazy s použitím BitCometu - res://E:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - E:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - E:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - E:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://E:\Program Files\BitComet\tools\BitCometBHO_1.2.8.7.dll/206 (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - E:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - E:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: QIP 2005 - {1EF681F7-A04B-4D6D-9012-A307CCA55610} - E:\Program Files\QIP\qip.exe (HKCU)
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/200 ... oader5.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - E:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - E:\Program Files\AVG\AVG8\avgpp.dll
O20 - Winlogon Notify: avgrsstarter - E:\WINDOWS\SYSTEM32\avgrsstx.dll
O23 - Service: Apache2.2 - Apache Software Foundation - e:\xampp\apache\bin\apache.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - E:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - E:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - E:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Desktop Manager 5.7.806.10245 (GoogleDesktopManager-061008-081103) - Google - E:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - E:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - E:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - E:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - E:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: MySQL - Unknown owner - E:\Program.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - E:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - E:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - E:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - E:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: ServiceLayer - Nokia. - E:\Program Files\PC Connectivity Solution\ServiceLayer.exe

--
End of file - 12768 bytes

[Reklama]

[pitimir]

Nazdar, navyskakuju ti nahodou nejake reklamne stranky? :)

Stiahni OTL. Uloz na plochu a spust dvojklikom subor "OTL.exe". Otvori sa okno programu, v nom zaskrtni "Scan All Users" -> "Run Scan". Zacne scan pocitaca, po jeho ukonceni sa otvoria dva reporty - obsah oboch potrebujem vidiet.

[svasik]

OTL logfile created on: 16.8.2009 14:15:43 - Run 1
OTL by OldTimer - Version 3.0.10.7 Folder = E:\Documents and Settings\Kluci\Dokumenty\Downloads
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1021,10 Mb Total Physical Memory | 392,86 Mb Available Physical Memory | 38,47% Memory free
2,40 Gb Paging File | 1,47 Gb Available in Paging File | 61,33% Paging File free
Paging file location(s): E:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = E: | %SystemRoot% = E:\WINDOWS | %ProgramFiles% = E:\Program Files
Drive C: | 19,53 Gb Total Space | 12,36 Gb Free Space | 63,28% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 129,51 Gb Total Space | 20,01 Gb Free Space | 15,45% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: KLUCINOTEBOOK
Current User Name: Kluci
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2009.06.30 08:22:55 | 00,298,776 | ---- | M] (AVG Technologies CZ, s.r.o.) -- E:\Program Files\AVG\AVG8\avgwdsvc.exe
PRC - [2006.02.28 13:42:38 | 00,229,376 | ---- | M] (Apple Computer, Inc.) -- E:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2009.03.09 05:19:15 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) -- E:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2008.08.04 15:45:16 | 05,779,456 | ---- | M] () -- E:\Program Files\MySQL\MySQL Server 5.0\bin\mysqld-nt.exe
PRC - [2009.06.30 08:23:06 | 00,486,680 | ---- | M] (AVG Technologies CZ, s.r.o.) -- E:\Program Files\AVG\AVG8\avgrsx.exe
PRC - [2009.05.09 08:44:31 | 00,594,712 | ---- | M] (AVG Technologies CZ, s.r.o.) -- E:\Program Files\AVG\AVG8\avgnsx.exe
PRC - [2008.03.28 12:04:00 | 00,155,716 | ---- | M] (NVIDIA Corporation) -- E:\WINDOWS\System32\nvsvc32.exe
PRC - [2009.07.31 11:51:11 | 00,075,064 | ---- | M] () -- E:\WINDOWS\System32\PnkBstrA.exe
PRC - [2009.08.05 12:25:18 | 00,189,768 | ---- | M] () -- E:\WINDOWS\System32\PnkBstrB.exe
PRC - [2005.08.08 07:54:00 | 00,167,936 | ---- | M] () -- E:\Program Files\CyberLink\Shared Files\RichVideo.exe
PRC - [2008.04.14 05:22:54 | 00,218,112 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\System32\wbem\wmiprvse.exe
PRC - [2008.04.14 05:22:22 | 01,034,240 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\Explorer.EXE
PRC - [2006.11.21 04:31:26 | 00,630,784 | R--- | M] (Motorola Inc.) -- E:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
PRC - [2007.08.17 07:40:30 | 00,102,400 | ---- | M] (Synaptics, Inc.) -- E:\Program Files\Synaptics\SynTP\SynTPStart.exe
PRC - [2008.03.25 15:46:32 | 00,077,824 | ---- | M] (mychat) -- E:\WINDOWS\BisonCam\BisonHK.exe
PRC - [2008.03.11 17:08:50 | 00,053,248 | ---- | M] (Bison Inc.) -- E:\WINDOWS\BisonCam\DeLay.exe
PRC - [2007.08.17 07:36:30 | 01,015,808 | ---- | M] (Synaptics, Inc.) -- E:\Program Files\Synaptics\SynTP\SynTPEnh.exe
PRC - [2006.11.23 15:10:42 | 00,056,928 | ---- | M] (Cyberlink Corp.) -- E:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
PRC - [2007.03.28 19:30:18 | 00,053,776 | ---- | M] (UPEK Inc.) -- E:\Program Files\Protector Suite QL\psqltray.exe
PRC - [2008.10.28 18:18:26 | 17,331,200 | ---- | M] (Realtek Semiconductor Corp.) -- E:\WINDOWS\RTHDCPL.EXE
PRC - [2003.01.16 12:32:40 | 00,049,152 | ---- | M] (Ruling Tec Pte Ltd) -- E:\Program Files\VibrateGameDeviceDriver\RFPIcon.exe
PRC - [2009.03.09 05:19:17 | 00,148,888 | ---- | M] (Sun Microsystems, Inc.) -- E:\Program Files\Java\jre6\bin\jusched.exe
PRC - [2007.08.24 07:00:48 | 00,033,648 | ---- | M] (Microsoft Corporation) -- E:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
PRC - [2009.06.30 08:23:00 | 01,948,440 | ---- | M] (AVG Technologies CZ, s.r.o.) -- E:\Program Files\AVG\AVG8\avgtray.exe
PRC - [2006.12.23 18:05:20 | 00,143,360 | ---- | M] (Nero AG) -- E:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
PRC - [2009.08.04 07:58:15 | 00,602,112 | ---- | M] () -- E:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.0.21210\stbapp.exe
PRC - [2008.03.14 18:54:06 | 03,641,344 | ---- | M] () -- E:\Program Files\HotKey_Driver\HotKeyDriver.exe
PRC - [2009.08.04 07:59:27 | 00,090,112 | ---- | M] () -- E:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.0.21210\stbappHelper.exe
PRC - [2006.03.02 14:00:00 | 00,016,896 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\System32\wbem\unsecapp.exe
PRC - [2008.02.19 19:25:00 | 00,843,776 | ---- | M] (Realtek Semiconductor Corp.) -- E:\Program Files\Realtek\RTL8185 Wireless LAN Utility\RtWLan.exe
PRC - [2009.08.16 14:05:04 | 00,396,288 | ---- | M] (Trend Micro Inc.) -- E:\Program Files\Trend Micro\HijackThis\HijackThis.exe
PRC - [2009.07.29 00:32:22 | 00,830,960 | ---- | M] (Google Inc.) -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2009.07.29 00:32:22 | 00,830,960 | ---- | M] (Google Inc.) -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2009.07.29 00:32:22 | 00,830,960 | ---- | M] (Google Inc.) -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2009.07.29 00:32:22 | 00,830,960 | ---- | M] (Google Inc.) -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2009.07.29 00:32:22 | 00,830,960 | ---- | M] (Google Inc.) -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2009.07.29 00:32:22 | 00,830,960 | ---- | M] (Google Inc.) -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2009.07.29 00:32:22 | 00,830,960 | ---- | M] (Google Inc.) -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2009.07.29 00:32:22 | 00,830,960 | ---- | M] (Google Inc.) -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2009.07.29 00:32:22 | 00,830,960 | ---- | M] (Google Inc.) -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2009.07.29 00:32:22 | 00,830,960 | ---- | M] (Google Inc.) -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2009.07.29 00:32:22 | 00,830,960 | ---- | M] (Google Inc.) -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2009.06.11 22:56:48 | 00,427,668 | ---- | M] () -- E:\Program Files\Lineage II GRACIA\system\l2.exe
PRC - [2009.08.16 14:15:22 | 00,514,048 | ---- | M] (OldTimer Tools) -- E:\Documents and Settings\Kluci\Dokumenty\Downloads\OTL.exe

========== Win32 Services (SafeList) ==========

SRV - [2008.01.18 01:37:26 | 00,024,635 | ---- | M] (Apache Software Foundation) -- e:\xampp\apache\bin\apache.exe -- (Apache2.2 [Auto | Stopped])
SRV - [2007.10.24 01:47:22 | 00,033,800 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe -- (aspnet_state [On_Demand | Stopped])
SRV - [2009.06.30 08:22:55 | 00,298,776 | ---- | M] (AVG Technologies CZ, s.r.o.) -- E:\Program Files\AVG\AVG8\avgwdsvc.exe -- (avg8wd [Auto | Running])
SRV - [2006.02.28 13:42:38 | 00,229,376 | ---- | M] (Apple Computer, Inc.) -- E:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service [Auto | Running])
SRV - [2007.10.24 01:47:40 | 00,070,144 | ---- | M] (Microsoft Corporation) -- e:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])
SRV - [2008.11.28 23:47:14 | 00,654,848 | ---- | M] (Macrovision Europe Ltd.) -- E:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service [On_Demand | Stopped])
SRV - [2007.10.09 12:58:12 | 00,036,864 | ---- | M] (Microsoft Corporation) -- e:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped])
SRV - [2008.10.23 21:06:05 | 00,029,744 | ---- | M] (Google) -- E:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe -- (GoogleDesktopManager-061008-081103 [On_Demand | Stopped])
SRV - [2009.01.09 22:26:29 | 00,137,200 | ---- | M] (Google) -- E:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc [On_Demand | Stopped])
SRV - [2008.04.14 05:21:53 | 00,038,400 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -- (helpsvc [Auto | Running])
SRV - [2005.11.14 01:06:04 | 00,069,632 | ---- | M] (Macrovision Corporation) -- E:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe -- (IDriverT [On_Demand | Stopped])
SRV - [2007.10.11 09:55:10 | 00,864,256 | ---- | M] (Microsoft Corporation) -- e:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc [Unknown | Stopped])
SRV - [2009.03.09 05:19:15 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) -- E:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService [Auto | Running])
SRV - [2008.09.26 22:26:12 | 00,068,096 | ---- | M] () -- E:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe -- (Macromedia Licensing Service [On_Demand | Stopped])
SRV - [2007.08.24 06:59:20 | 00,068,464 | ---- | M] (Microsoft Corporation) -- E:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service [On_Demand | Stopped])
SRV - [2008.08.04 15:45:16 | 05,779,456 | ---- | M] () -- E:\Program Files\MySQL\MySQL Server 5.0\bin\mysqld-nt.exe -- (MySQL [Auto | Running])
SRV - [2007.10.11 09:55:14 | 00,122,880 | ---- | M] (Microsoft Corporation) -- e:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped])
SRV - [2006.12.23 17:54:04 | 00,262,144 | ---- | M] (Nero AG) -- E:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService [Disabled | Stopped])
SRV - [2008.03.28 12:04:00 | 00,155,716 | ---- | M] (NVIDIA Corporation) -- E:\WINDOWS\System32\nvsvc32.exe -- (NVSvc [Auto | Running])
SRV - [2007.08.24 03:19:12 | 00,443,776 | ---- | M] (Microsoft Corporation) -- E:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv [On_Demand | Stopped])
SRV - [2006.10.26 14:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) -- E:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose [On_Demand | Stopped])
SRV - [2009.07.31 11:51:11 | 00,075,064 | ---- | M] () -- E:\WINDOWS\System32\PnkBstrA.exe -- (PnkBstrA [Auto | Running])
SRV - [2009.08.05 12:25:18 | 00,189,768 | ---- | M] () -- E:\WINDOWS\System32\PnkBstrB.exe -- (PnkBstrB [Auto | Running])
SRV - [2005.08.08 07:54:00 | 00,167,936 | ---- | M] () -- E:\Program Files\CyberLink\Shared Files\RichVideo.exe -- (RichVideo [Auto | Running])
SRV - [2008.08.07 12:17:30 | 00,575,488 | ---- | M] (Nokia.) -- E:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer [On_Demand | Stopped])
SRV - [2007.01.05 20:57:30 | 00,913,920 | ---- | M] (Microsoft Corporation) -- E:\Program Files\Windows Media Player\WMPNetwk.exe -- (WMPNetworkSvc [On_Demand | Stopped])

========== Driver Services (SafeList) ==========

DRV - [2009.01.08 18:49:01 | 00,021,035 | ---- | M] (Meetinghouse Data Communications) -- E:\WINDOWS\System32\DRIVERS\AegisP.sys -- (AegisP [Auto | Running])
DRV - [2009.07.29 10:26:14 | 00,335,752 | ---- | M] (AVG Technologies CZ, s.r.o.) -- E:\WINDOWS\System32\Drivers\avgldx86.sys -- (AvgLdx86 [System | Running])
DRV - [2009.06.30 08:23:05 | 00,027,784 | ---- | M] (AVG Technologies CZ, s.r.o.) -- E:\WINDOWS\System32\Drivers\avgmfx86.sys -- (AvgMfx86 [System | Running])
DRV - [2009.05.09 08:44:33 | 00,108,552 | ---- | M] (AVG Technologies CZ, s.r.o.) -- E:\WINDOWS\System32\Drivers\avgtdix.sys -- (AvgTdiX [System | Running])
DRV - [2008.04.30 18:07:10 | 01,073,320 | ---- | M] (Bison Electronics. Inc. ) -- E:\WINDOWS\System32\Drivers\BisonC07.sys -- (Cam5607 [On_Demand | Running])
DRV - [2005.09.26 16:47:46 | 00,008,576 | ---- | M] (Windows (R) Server 2003 DDK provider) -- E:\WINDOWS\System32\drivers\Dyncal.sys -- (DynCal [On_Demand | Running])
DRV - [2007.10.09 14:13:00 | 00,038,144 | ---- | M] (Realtek) -- E:\WINDOWS\System32\DRIVERS\EAPPkt.sys -- (EAPPkt [Auto | Running])
DRV - [2007.04.10 18:50:04 | 00,066,432 | R--- | M] (ENE Technology Inc.) -- E:\WINDOWS\System32\DRIVERS\EMS7SK.sys -- (EMSCR [On_Demand | Running])
DRV - [2007.04.10 18:50:12 | 00,046,080 | R--- | M] (ENE Technology Inc.) -- E:\WINDOWS\System32\DRIVERS\ESD7SK.sys -- (ESDCR [On_Demand | Running])
DRV - [2008.12.07 21:39:02 | 00,017,480 | ---- | M] (LogMeIn, Inc.) -- E:\WINDOWS\System32\DRIVERS\hamachi.sys -- (hamachi [On_Demand | Running])
DRV - [2008.04.13 18:36:05 | 00,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) -- E:\WINDOWS\System32\DRIVERS\HDAudBus.sys -- (HDAudBus [On_Demand | Running])
DRV - [2004.03.23 15:24:14 | 00,016,908 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\System32\Drivers\HDUSB_XP.sys -- (HDUSB [Auto | Stopped])
DRV - [2008.10.31 12:38:08 | 04,942,336 | ---- | M] (Realtek Semiconductor Corp.) -- E:\WINDOWS\System32\drivers\RtkHDAud.sys -- (IntcAzAudAddService [On_Demand | Running])
DRV - [2003.10.15 11:07:38 | 00,012,288 | ---- | M] (Matsushita Electric Industrial Co., Ltd.) -- E:\WINDOWS\System32\DRIVERS\mtdv2ku2.sys -- (MTDVC2 [On_Demand | Stopped])
DRV - [2003.10.11 02:39:52 | 00,011,648 | ---- | M] (Matsushita Electric Industrial Co., Ltd.) -- E:\WINDOWS\System32\DRIVERS\mtdv2ks2.sys -- (MTDVC2_ENUM [On_Demand | Stopped])
DRV - [2008.05.07 08:38:20 | 00,017,536 | ---- | M] (Nokia) -- E:\WINDOWS\System32\drivers\ccdcmb.sys -- (nmwcd [On_Demand | Stopped])
DRV - [2008.05.07 08:38:20 | 00,020,864 | ---- | M] (Nokia) -- E:\WINDOWS\System32\drivers\ccdcmbo.sys -- (nmwcdc [On_Demand | Stopped])
DRV - [2009.04.15 17:12:11 | 00,023,217 | ---- | M] (INCA Internet Co., Ltd.) -- E:\Program Files\Lineage II GRACIA\system\npkcrypt.sys -- (npkcrypt [On_Demand | Stopped])
DRV - [2008.03.28 12:04:00 | 06,551,008 | ---- | M] (NVIDIA Corporation) -- E:\WINDOWS\System32\DRIVERS\nv4_mini.sys -- (nv [On_Demand | Running])
DRV - [2007.09.17 16:53:26 | 00,021,632 | ---- | M] (Nokia) -- E:\WINDOWS\System32\DRIVERS\pccsmcfd.sys -- (pccsmcfd [On_Demand | Stopped])
DRV - [2003.09.19 02:47:00 | 00,010,368 | ---- | M] (Padus, Inc.) -- E:\WINDOWS\System32\drivers\pfc.sys -- (pfc [On_Demand | Running])
DRV - [2006.03.02 14:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- E:\WINDOWS\System32\DRIVERS\ptilink.sys -- (Ptilink [On_Demand | Running])
DRV - [2006.09.27 23:53:22 | 00,036,560 | ---- | M] (Sonic Solutions) -- E:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20 [Boot | Running])
DRV - [2007.12.25 12:20:20 | 00,288,000 | R--- | M] (Realtek Semiconductor Corporation ) -- E:\WINDOWS\System32\DRIVERS\RTL8187B.sys -- (RTL8187B [On_Demand | Running])
DRV - [2008.04.13 18:39:14 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- E:\WINDOWS\System32\DRIVERS\secdrv.sys -- (Secdrv [On_Demand | Stopped])
DRV - [2006.07.05 14:46:06 | 00,063,352 | ---- | M] (Protection Technology (StarForce)) -- E:\WINDOWS\System32\drivers\sfdrv01a.sys -- (sfdrv01a [Boot | Running])
DRV - [2006.06.14 16:56:56 | 00,013,680 | ---- | M] (Protection Technology (StarForce)) -- E:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02 [Boot | Running])
DRV - [2006.08.11 15:47:13 | 00,059,776 | ---- | M] (Protection Technology (StarForce)) -- E:\WINDOWS\System32\drivers\sfsync04.sys -- (sfsync04 [Boot | Running])
DRV - [2007.10.14 14:00:00 | 00,043,264 | R--- | M] (Silicon Integrated Systems Corp.) -- E:\WINDOWS\System32\DRIVERS\SiSGbeXP.sys -- (SiSGbeXP [On_Demand | Running])
DRV - [2006.11.21 04:35:00 | 00,982,272 | R--- | M] (Motorola Inc.) -- E:\WINDOWS\System32\DRIVERS\smserial.sys -- (smserial [On_Demand | Running])
DRV - [2008.09.17 16:09:50 | 00,717,296 | ---- | M] () -- E:\WINDOWS\System32\Drivers\sptd.sys -- (sptd [Boot | Running])
DRV - [2007.08.17 07:05:00 | 00,212,704 | ---- | M] (Synaptics, Inc.) -- E:\WINDOWS\System32\DRIVERS\SynTP.sys -- (SynTP [On_Demand | Running])
DRV - [2007.03.28 19:15:36 | 00,046,992 | ---- | M] (UPEK Inc.) -- E:\WINDOWS\System32\Drivers\tcusb.sys -- (TcUsb [On_Demand | Running])
DRV - [2008.06.06 10:24:44 | 00,008,064 | ---- | M] (Windows (R) Codename Longhorn DDK provider) -- E:\WINDOWS\System32\DRIVERS\usbser_lowerflt.sys -- (upperdev [On_Demand | Stopped])
DRV - [2008.04.13 21:45:36 | 00,026,112 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\System32\drivers\usbser.sys -- (usbser [On_Demand | Stopped])
DRV - [2008.05.07 08:38:36 | 00,008,064 | ---- | M] (Windows (R) Codename Longhorn DDK provider) -- E:\WINDOWS\System32\DRIVERS\usbser_lowerfltj.sys -- (UsbserFilt [On_Demand | Stopped])

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = E:\WINDOWS\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm


IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-789336058-764733703-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.qip.ru
IE - HKU\S-1-5-21-789336058-764733703-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
IE - HKU\S-1-5-21-789336058-764733703-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = E:\WINDOWS\system32\blank.htm
IE - HKU\S-1-5-21-789336058-764733703-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions = 1
IE - HKU\S-1-5-21-789336058-764733703-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
IE - HKU\S-1-5-21-789336058-764733703-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = start.qip.ru
IE - HKU\S-1-5-21-789336058-764733703-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
IE - URLSearchHook: - Reg Error: Key error. File not found
IE - URLSearchHook: {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - E:\Documents and Settings\Kluci\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
IE - HKU\S-1-5-21-789336058-764733703-725345543-1003\S-1-5-21-789336058-764733703-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-789336058-764733703-725345543-1003\S-1-5-21-789336058-764733703-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "QIP Search"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "http://www.centrum.cz/"
FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:8.5
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.6
FF - prefs.js..extensions.enabledItems: firebug@software.joehewitt.com:1.4.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}:6.0.12
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: dave2x@download:0.5.8
FF - prefs.js..extensions.enabledItems: {ea614400-e918-4741-9a97-7a972ff7c30b}:1.0.6
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.13
FF - prefs.js..keyword.URL: "http://search.qip.ru/search?from=FF&query="
FF - prefs.js..network.proxy.no_proxies_on: "*.local"

FF - HKLM\software\mozilla\Firefox\extensions\\jqs@sun.com: E:\Program Files\Java\jre6\lib\deploy\jqs\ff [2009.02.20 11:22:58 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: E:\Program Files\AVG\AVG8\Firefox [2009.06.30 08:24:09 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\{872A1C39-DF0B-4c8b-AD84-12BA24A3B781}: E:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.0.21210\FFToolbar [2009.08.11 15:29:50 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\{2224E955-00E9-4613-A844-CE69FCCAAE91}: E:\Program Files\Internet Saving Optimizer\3.6.1.4490\FF [2009.08.11 15:30:27 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\{0BA0192D-94A5-45e3-B2B8-3EC5A1A0B5EC}: E:\Program Files\Media Access Startup\1.5.4.880\FF [2009.08.11 15:30:39 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.13\extensions\\Components: E:\Program Files\Mozilla Firefox\components [2009.08.11 13:11:42 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.13\extensions\\Plugins: E:\Program Files\Mozilla Firefox\plugins [2009.08.11 13:11:42 | 00,000,000 | ---D | M]

[2008.11.17 22:33:58 | 00,000,000 | ---D | M] -- E:\Documents and Settings\Kluci\Data aplikací\mozilla\Extensions
[2008.11.17 22:33:58 | 00,000,000 | ---D | M] -- E:\Documents and Settings\Kluci\Data aplikací\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009.08.16 12:42:31 | 00,000,000 | ---D | M] -- E:\Documents and Settings\Kluci\Data aplikací\mozilla\Firefox\Profiles\48cqj7hq.default\extensions
[2009.07.30 22:33:49 | 00,000,000 | ---D | M] -- E:\Documents and Settings\Kluci\Data aplikací\mozilla\Firefox\Profiles\48cqj7hq.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2009.06.04 15:34:10 | 00,000,000 | ---D | M] -- E:\Documents and Settings\Kluci\Data aplikací\mozilla\Firefox\Profiles\48cqj7hq.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2009.03.19 19:46:52 | 00,000,000 | ---D | M] -- E:\Documents and Settings\Kluci\Data aplikací\mozilla\Firefox\Profiles\48cqj7hq.default\extensions\dave2x@download
[2009.07.30 22:33:46 | 00,000,000 | ---D | M] -- E:\Documents and Settings\Kluci\Data aplikací\mozilla\Firefox\Profiles\48cqj7hq.default\extensions\firebug@software.joehewitt.com
[2009.08.03 10:32:06 | 00,002,061 | ---- | M] () -- E:\Documents and Settings\Kluci\Data aplikací\Mozilla\FireFox\Profiles\48cqj7hq.default\searchplugins\qipsearch.xml
[2009.08.14 11:16:39 | 00,000,000 | ---D | M] -- E:\Program Files\mozilla firefox\extensions
[2009.08.11 13:11:42 | 00,000,000 | ---D | M] -- E:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2009.02.20 11:23:14 | 00,000,000 | ---D | M] -- E:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}
[2009.04.01 15:18:18 | 00,000,000 | ---D | M] -- E:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
[2009.08.11 13:11:36 | 00,023,032 | ---- | M] (Mozilla Foundation) -- E:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2009.08.11 13:11:36 | 00,134,648 | ---- | M] (Mozilla Foundation) -- E:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2007.04.10 18:21:08 | 00,163,256 | ---- | M] (Microsoft Corporation) -- E:\Program Files\mozilla firefox\plugins\np-mswmp.dll
[2008.11.04 11:15:38 | 00,114,688 | ---- | M] (Adobe Systems, Inc.) -- E:\Program Files\mozilla firefox\plugins\np32dsw.dll
[2009.03.09 05:19:09 | 00,410,984 | ---- | M] (Sun Microsystems, Inc.) -- E:\Program Files\mozilla firefox\plugins\npdeploytk.dll
[2009.08.11 13:11:37 | 00,065,528 | ---- | M] (mozilla.org) -- E:\Program Files\mozilla firefox\plugins\npnul32.dll
[2009.02.27 13:13:42 | 00,103,792 | ---- | M] (Adobe Systems Inc.) -- E:\Program Files\mozilla firefox\plugins\nppdf32.dll
[2009.07.31 15:38:26 | 00,143,360 | ---- | M] (Apple Inc.) -- E:\Program Files\mozilla firefox\plugins\npqtplugin.dll
[2009.07.31 15:38:26 | 00,143,360 | ---- | M] (Apple Inc.) -- E:\Program Files\mozilla firefox\plugins\npqtplugin2.dll
[2009.07.31 15:38:26 | 00,143,360 | ---- | M] (Apple Inc.) -- E:\Program Files\mozilla firefox\plugins\npqtplugin3.dll
[2009.07.31 15:38:26 | 00,143,360 | ---- | M] (Apple Inc.) -- E:\Program Files\mozilla firefox\plugins\npqtplugin4.dll
[2009.07.31 15:38:26 | 00,143,360 | ---- | M] (Apple Inc.) -- E:\Program Files\mozilla firefox\plugins\npqtplugin5.dll
[2009.07.31 15:38:26 | 00,143,360 | ---- | M] (Apple Inc.) -- E:\Program Files\mozilla firefox\plugins\npqtplugin6.dll
[2009.07.31 15:38:26 | 00,143,360 | ---- | M] (Apple Inc.) -- E:\Program Files\mozilla firefox\plugins\npqtplugin7.dll
[2009.06.23 07:35:04 | 00,001,619 | ---- | M] () -- E:\Program Files\mozilla firefox\searchplugins\FFToolbar.xml
[2008.12.08 08:31:19 | 00,001,706 | ---- | M] () -- E:\Program Files\mozilla firefox\searchplugins\google.xml
[2008.12.08 08:31:19 | 00,000,638 | ---- | M] () -- E:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2008.12.08 08:31:19 | 00,001,687 | ---- | M] () -- E:\Program Files\mozilla firefox\searchplugins\mall-cz.xml
[2008.12.08 08:31:19 | 00,001,367 | ---- | M] () -- E:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2008.12.08 08:31:19 | 00,000,654 | ---- | M] () -- E:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2008.12.08 08:31:19 | 00,001,179 | ---- | M] () -- E:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: (35 bytes) - E:\WINDOWS\System32\drivers\etc\Hosts
O1 - Hosts: 78.102.215.163 l2authd.lineage2.com
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - E:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Media Access Startup) - {25B8D58C-B0CB-46b0-BA64-05B3804E4E86} - E:\Program Files\Media Access Startup\1.5.4.880\HPIEAddOn.dll ()
O2 - BHO: (NP Helper Class) - {35B8D58C-B0CB-46b0-BA64-05B3804E4E86} - E:\Program Files\Internet Saving Optimizer\3.6.1.4490\NPIEAddOn.dll ()
O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - E:\Program Files\BitComet\tools\BitCometBHO_1.2.8.7.dll (BitComet)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - E:\Program Files\AVG\AVG8\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - E:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (QIPBHO Class) - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - E:\Documents and Settings\Kluci\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - E:\Program Files\Google\Google Toolbar\GoogleToolbar.dll ()
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - E:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll (Google Inc.)
O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - E:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll (Google Inc.)
O2 - BHO: (System Search Dispatcher) - {CDBFB47B-58A8-4111-BF95-06178DCE326D} - E:\Program Files\System Search Dispatcher\1.3.4.940\ssd.dll ()
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - E:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (&Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - E:\Program Files\Google\Google Toolbar\GoogleToolbar.dll ()
O3 - HKLM\..\Toolbar: (GamingHarbor Toolbar) - {5617ECA9-488D-4BA2-8562-9710B9AB78D2} - E:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.0.21210\stb0.dll ()
O3 - HKU\S-1-5-21-789336058-764733703-725345543-1003\..\Toolbar\WebBrowser: (&Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - E:\Program Files\Google\Google Toolbar\GoogleToolbar.dll ()
O3 - HKU\S-1-5-21-789336058-764733703-725345543-1003\..\Toolbar\WebBrowser: (GamingHarbor Toolbar) - {5617ECA9-488D-4BA2-8562-9710B9AB78D2} - E:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.0.21210\stb0.dll ()
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] E:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AVG8_TRAY] E:\Program Files\AVG\AVG8\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [BisonHK] E:\WINDOWS\BisonCam\BisonHK.exe (mychat)
O4 - HKLM..\Run: [BluetoothAuthenticationAgent] E:\WINDOWS\System32\bthprops.CPL (Microsoft Corporation)
O4 - HKLM..\Run: [DeLay] E:\WINDOWS\BisonCam\DeLay.exe (Bison Inc.)
O4 - HKLM..\Run: [GrooveMonitor] E:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NvCplDaemon] E:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] E:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [PSQLLauncher] E:\Program Files\Protector Suite QL\launcher.exe (UPEK Inc.)
O4 - HKLM..\Run: [QuickTime Task] E:\Program Files\QuickTime\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [RemoteControl] E:\Program Files\CyberLink\PowerDVD\PDVDServ.exe (Cyberlink Corp.)
O4 - HKLM..\Run: [RTBatteryMeter] E:\Program Files\VibrateGameDeviceDriver\RFPIcon.exe (Ruling Tec Pte Ltd)
O4 - HKLM..\Run: [RTHDCPL] E:\WINDOWS\RTHDCPL.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SMSERIAL] E:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe (Motorola Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] E:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SynTPStart] E:\Program Files\Synaptics\SynTP\SynTPStart.exe (Synaptics, Inc.)
O4 - HKU\S-1-5-21-789336058-764733703-725345543-1003..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] E:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKU\S-1-5-21-789336058-764733703-725345543-1003..\Run: [DAEMON Tools Lite] E:\Program Files\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-789336058-764733703-725345543-1003..\Run: [Google Update] E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe (Google Inc.)
O4 - HKU\S-1-5-21-789336058-764733703-725345543-1003..\Run: [MSMSGS] E:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-789336058-764733703-725345543-1003..\Run: [QIP2005] E:\Program Files\QIP\qip.exe (The Author of QIP)
O4 - HKU\S-1-5-21-789336058-764733703-725345543-1003..\Run: [SmileyApp] E:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.0.21210\stbapp.exe ()
O4 - HKU\S-1-5-21-789336058-764733703-725345543-1003..\Run: [Steam] E:\Program Files\Steam\Steam.exe (Valve Corporation)
O4 - Startup: E:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\HotKeyDriver.lnk = E:\Program Files\HotKey_Driver\HotKeyDriver.exe ()
O4 - Startup: E:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\InterVideo WinCinema Manager.lnk = E:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe (InterVideo Inc.)
O4 - Startup: E:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\REALTEK RTL8185 Wireless LAN Utility.lnk = E:\Program Files\Realtek\RTL8185 Wireless LAN Utility\RtWLan.exe (Realtek Semiconductor Corp.)
O4 - Startup: E:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Temporary Shortcut.lnk = D:\autorun.exe File not found
O4 - Startup: E:\Documents and Settings\Kluci\Nabídka Start\Programy\Po spuštění\WinMySQLadmin.lnk = E:\xampp\mysql\bin\winmysqladmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-789336058-764733703-725345543-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-789336058-764733703-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-789336058-764733703-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-789336058-764733703-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-789336058-764733703-725345543-1003_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - E:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Stáhnout odkaz s použitím BitCometu - E:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: Stáhnout všechna videa s použitím BitCometu - E:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: Stáhnout všechny odkazy s použitím BitCometu - E:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - E:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - E:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - E:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - E:\Program Files\BitComet\tools\BitCometBHO_1.2.8.7.dll (BitComet)
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\WINDOWS\Network Diagnostic\xpnetdiag.exe (Microsoft Corporation)
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - E:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - E:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - E:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - E:\WINDOWS\System32\wshbth.dll (Microsoft Corporation)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebook.com/controls/200 ... oader5.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - E:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - E:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - E:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - E:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - E:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - E:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - E:\Program Files\AVG\AVG8\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - E:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - E:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - E:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Filter: - text/xml - E:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - E:\WINDOWS\Explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - E:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - Winlogon\Notify\psfus: DllName - E:\WINDOWS\system32\psqlpwd.dll - E:\WINDOWS\System32\psqlpwd.dll (UPEK Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - E:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008.09.16 20:24:19 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{5816f2a4-32f2-11de-8627-0022430fe429}\Shell\AutoRun\command - "" = wd_windows_tools\WDSetup.exe
O33 - MountPoints2\{5b038be8-79fa-11de-8670-0022430fe429}\Shell - "" = AutoRun
O33 - MountPoints2\{5c6f1230-8a51-11dd-847a-0015afcd8d32}\Shell\AutoRun\command - "" = H:\setupSNK.exe -- File not found
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - E:\WINDOWS\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found

========== Files/Folders - Created Within 30 Days ==========

[2009.08.11 15:35:15 | 00,000,697 | ---- | C] () -- E:\Documents and Settings\Kluci\Plocha\Metin2 CZ.lnk
[2009.08.11 15:31:31 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Internet Saving Optimizer
[2009.08.11 15:30:41 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Media Access Startup
[2009.08.11 15:30:38 | 00,000,000 | ---D | C] -- E:\Program Files\Media Access Startup
[2009.08.11 15:30:26 | 00,000,000 | ---D | C] -- E:\Program Files\Internet Saving Optimizer
[2009.08.11 15:30:16 | 00,000,000 | ---D | C] -- E:\Program Files\System Search Dispatcher
[2009.08.11 15:30:14 | 00,000,000 | ---D | C] -- E:\Program Files\Metin2_CZ
[2009.08.11 15:29:47 | 00,000,000 | ---D | C] -- E:\Program Files\DoubleD
[2009.08.11 15:29:07 | 00,000,000 | -H-D | C] -- E:\Documents and Settings\All Users\Data aplikací\{AAAE891E-DC50-4DD4-A79D-C19DDB94E30E}
[2009.08.11 15:28:46 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\DoubleD
[2009.08.11 14:11:37 | 45,291,301 | ---- | C] () -- E:\Documents and Settings\Kluci\Dokumenty\surf_fruits.bsp
[2009.08.07 00:09:35 | 00,000,000 | ---D | C] -- E:\Program Files\Simple Sudoku
[2009.08.07 00:09:35 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Kluci\Data aplikací\Simple Sudoku
[2009.08.05 12:55:51 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Kluci\Data aplikací\Apple Computer
[2009.08.04 21:10:20 | 00,001,508 | ---- | C] () -- E:\Documents and Settings\Kluci\Plocha\GamePark.lnk
[2009.08.04 21:10:19 | 00,000,000 | ---D | C] -- E:\Program Files\GamePark
[2009.08.02 19:30:34 | 00,000,847 | ---- | C] () -- E:\Documents and Settings\Kluci\Plocha\Call of Duty(R) 2 Singleplayer.lnk
[2009.08.02 17:45:55 | 00,189,768 | ---- | C] () -- E:\WINDOWS\System32\PnkBstrB.xtr
[2009.08.01 12:17:10 | 00,029,544 | ---- | C] () -- E:\Documents and Settings\All Users\Dokumenty\The Lord Of The Rings Battle For Middle Earth 2 DVD9 V1.1 Crack.torrent
[2009.08.01 12:17:10 | 00,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Dokumenty\The Lord Of The Rings Battle For Middle Earth 2 DVD9 V1.1 Crack
[2009.07.31 18:01:45 | 00,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Data aplikací\Norton
[2009.07.31 18:01:10 | 00,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Data aplikací\Symantec
[2009.07.31 18:01:04 | 00,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Data aplikací\NortonInstaller
[2009.07.31 15:37:47 | 00,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Data aplikací\Apple Computer
[2009.07.31 15:37:10 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Apple
[2009.07.31 15:36:55 | 00,000,000 | ---D | C] -- E:\Program Files\Apple Software Update
[2009.07.31 15:36:55 | 00,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Data aplikací\Apple
[2009.07.31 15:36:40 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Apple Computer
[2009.07.31 11:45:47 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\PunkBuster
[2009.07.30 23:34:24 | 00,000,031 | ---- | C] () -- E:\WINDOWS\game.ini
[2009.07.29 21:51:14 | 00,069,850 | ---- | C] () -- E:\Documents and Settings\Kluci\Dokumenty\cc_20090729_215112.reg
[2009.07.29 12:57:48 | 00,015,563 | ---- | C] () -- E:\Documents and Settings\All Users\Dokumenty\Left 4 Dead No-Steam Patch 1.0.1.4.torrent
[2009.07.29 12:57:48 | 00,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Dokumenty\Left 4 Dead No-Steam Patch 1.0.1.4
[2009.07.26 20:02:39 | 00,041,942 | ---- | C] () -- E:\Documents and Settings\Kluci\Dokumenty\rec_vlc_20-02-34.mp3
[2009.07.26 19:58:35 | 00,053,836 | ---- | C] () -- E:\Documents and Settings\Kluci\Dokumenty\rec_vlc_19-58-28.mp3
[2009.07.26 19:58:25 | 00,080,128 | ---- | C] () -- E:\Documents and Settings\Kluci\Dokumenty\rec_vlc_19-58-18.mp3
[2009.07.25 15:33:41 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Temp
[2009.05.22 00:50:38 | 00,041,808 | ---- | C] () -- E:\WINDOWS\System32\xfcodec.dll
[2009.03.19 23:57:09 | 00,000,476 | ---- | C] () -- E:\WINDOWS\my.ini
[2009.03.05 18:56:44 | 00,137,928 | ---- | C] () -- E:\WINDOWS\System32\drivers\PnkBstrK.sys
[2009.02.19 16:31:04 | 00,069,632 | R--- | C] () -- E:\WINDOWS\System32\xmltok.dll
[2009.02.19 16:31:04 | 00,036,864 | R--- | C] () -- E:\WINDOWS\System32\xmlparse.dll
[2009.02.19 16:30:45 | 00,185,344 | ---- | C] () -- E:\WINDOWS\patchw32.dll
[2009.02.19 14:52:53 | 00,204,800 | ---- | C] () -- E:\WINDOWS\System32\IVIresizeW7.dll
[2009.02.19 14:52:53 | 00,200,704 | ---- | C] () -- E:\WINDOWS\System32\IVIresizeA6.dll
[2009.02.19 14:52:53 | 00,192,512 | ---- | C] () -- E:\WINDOWS\System32\IVIresizeP6.dll
[2009.02.19 14:52:53 | 00,192,512 | ---- | C] () -- E:\WINDOWS\System32\IVIresizeM6.dll
[2009.02.19 14:52:53 | 00,188,416 | ---- | C] () -- E:\WINDOWS\System32\IVIresizePX.dll
[2009.02.19 14:52:53 | 00,020,480 | ---- | C] () -- E:\WINDOWS\System32\IVIresize.dll
[2008.11.15 20:07:10 | 00,000,017 | ---- | C] () -- E:\WINDOWS\HostsUpdaterConfig.ini
[2008.10.08 16:49:04 | 00,000,227 | ---- | C] () -- E:\WINDOWS\System32\l2host.ini
[2008.09.17 18:13:57 | 00,000,069 | ---- | C] () -- E:\WINDOWS\NeroDigital.ini
[2008.09.17 16:09:50 | 00,717,296 | ---- | C] () -- E:\WINDOWS\System32\drivers\sptd.sys
[2008.09.16 21:12:08 | 00,015,190 | ---- | C] () -- E:\WINDOWS\M3000Twn.ini
[2008.09.16 21:12:02 | 00,000,189 | R--- | C] () -- E:\WINDOWS\OEM.ini
[2008.09.16 20:46:18 | 00,356,352 | R--- | C] () -- E:\WINDOWS\EMCRI.dll
[2008.03.28 12:04:00 | 01,703,936 | ---- | C] () -- E:\WINDOWS\System32\nvwdmcpl.dll
[2008.03.28 12:04:00 | 01,482,752 | ---- | C] () -- E:\WINDOWS\System32\nview.dll
[2008.03.28 12:04:00 | 01,019,904 | ---- | C] () -- E:\WINDOWS\System32\nvwimg.dll
[2008.03.28 12:04:00 | 00,466,944 | ---- | C] () -- E:\WINDOWS\System32\nvshell.dll
[2007.03.30 00:00:40 | 00,203,264 | R--- | C] () -- E:\WINDOWS\System32\CddbCdda.dll
[2006.03.02 14:00:00 | 00,001,024 | ---- | C] () -- E:\WINDOWS\win.ini
[2006.03.02 14:00:00 | 00,000,227 | ---- | C] () -- E:\WINDOWS\system.ini

========== Files - Modified Within 30 Days ==========

[1 E:\WINDOWS\System32\*.tmp files]
[6 E:\WINDOWS\*.tmp files]
[2009.08.16 14:05:07 | 00,001,734 | ---- | M] () -- E:\Documents and Settings\Kluci\Plocha\HijackThis.lnk
[2009.08.16 13:57:04 | 00,001,026 | ---- | M] () -- E:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-789336058-764733703-725345543-1003UA.job
[2009.08.16 11:15:10 | 00,000,466 | -H-- | M] () -- E:\WINDOWS\tasks\User_Feed_Synchronization-{9F7E2BAB-CA3B-4EC4-96A6-2C662B988496}.job
[2009.08.16 11:13:30 | 39,893,964 | ---- | M] () -- E:\WINDOWS\System32\drivers\Avg\incavi.avm
[2009.08.16 11:12:32 | 00,001,024 | ---- | M] () -- E:\WINDOWS\win.ini
[2009.08.16 11:11:50 | 00,176,628 | ---- | M] () -- E:\WINDOWS\System32\nvapps.xml
[2009.08.16 11:11:44 | 00,013,714 | ---- | M] () -- E:\WINDOWS\System32\wpa.dbl
[2009.08.16 11:11:00 | 00,000,006 | -H-- | M] () -- E:\WINDOWS\tasks\SA.DAT
[2009.08.16 11:10:58 | 00,002,048 | --S- | M] () -- E:\WINDOWS\bootstat.dat
[2009.08.16 11:10:53 | 10,707,72224 | -HS- | M] () -- E:\hiberfil.sys
[2009.08.16 00:24:42 | 00,435,760 | ---- | M] () -- E:\WINDOWS\System32\perfh009.dat
[2009.08.16 00:24:42 | 00,432,454 | ---- | M] () -- E:\WINDOWS\System32\perfh005.dat
[2009.08.16 00:24:42 | 00,079,324 | ---- | M] () -- E:\WINDOWS\System32\perfc005.dat
[2009.08.16 00:24:42 | 00,068,404 | ---- | M] () -- E:\WINDOWS\System32\perfc009.dat
[2009.08.16 00:24:41 | 01,030,340 | ---- | M] () -- E:\WINDOWS\System32\PerfStringBackup.INI
[2009.08.15 23:38:42 | 00,000,069 | ---- | M] () -- E:\WINDOWS\NeroDigital.ini
[2009.08.15 22:26:44 | 00,065,360 | ---- | M] () -- E:\WINDOWS\System32\drivers\Avg\microavi.avg
[2009.08.14 16:06:17 | 05,329,798 | -H-- | M] () -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\IconCache.db
[2009.08.14 12:43:30 | 00,148,992 | ---- | M] () -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.08.13 23:36:15 | 00,000,104 | ---- | M] () -- E:\WINDOWS\System32\drivers\etc\hosts.rar
[2009.08.13 19:08:15 | 00,002,283 | ---- | M] () -- E:\Documents and Settings\All Users\Plocha\Skype.lnk
[2009.08.13 16:57:00 | 00,000,974 | ---- | M] () -- E:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-789336058-764733703-725345543-1003Core.job
[2009.08.13 14:19:17 | 00,000,035 | ---- | M] () -- E:\WINDOWS\System32\drivers\etc\hosts
[2009.08.13 13:45:51 | 00,002,563 | ---- | M] () -- E:\Documents and Settings\Kluci\Plocha\Microsoft Office Word 2007.lnk
[2009.08.11 15:35:17 | 00,000,697 | ---- | M] () -- E:\Documents and Settings\Kluci\Plocha\Metin2 CZ.lnk
[2009.08.06 10:44:31 | 01,570,920 | ---- | M] () -- E:\WINDOWS\System32\FNTCACHE.DAT
[2009.08.05 12:55:48 | 00,076,512 | ---- | M] () -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
[2009.08.05 12:25:32 | 00,137,928 | ---- | M] () -- E:\WINDOWS\System32\drivers\PnkBstrK.sys
[2009.08.05 12:25:18 | 00,189,768 | ---- | M] () -- E:\WINDOWS\System32\PnkBstrB.xtr
[2009.08.05 12:25:18 | 00,189,768 | ---- | M] () -- E:\WINDOWS\System32\PnkBstrB.exe
[2009.08.04 21:47:00 | 00,000,810 | ---- | M] () -- E:\Documents and Settings\Kluci\Plocha\srcds.exe.lnk
[2009.08.04 21:10:20 | 00,001,508 | ---- | M] () -- E:\Documents and Settings\Kluci\Plocha\GamePark.lnk
[2009.08.02 19:30:34 | 00,000,847 | ---- | M] () -- E:\Documents and Settings\Kluci\Plocha\Call of Duty(R) 2 Singleplayer.lnk
[2009.08.01 12:17:10 | 00,029,544 | ---- | M] () -- E:\Documents and Settings\All Users\Dokumenty\The Lord Of The Rings Battle For Middle Earth 2 DVD9 V1.1 Crack.torrent
[2009.07.31 18:35:09 | 00,463,779 | ---- | M] () -- E:\WINDOWS\System32\drivers\Avg\miniavi.avg
[2009.07.31 18:35:08 | 06,061,540 | ---- | M] () -- E:\WINDOWS\System32\drivers\Avg\avi7.avg
[2009.07.31 11:51:11 | 00,075,064 | ---- | M] () -- E:\WINDOWS\System32\PnkBstrA.exe
[2009.07.30 23:34:24 | 00,000,031 | ---- | M] () -- E:\WINDOWS\game.ini
[2009.07.30 21:17:41 | 00,022,328 | ---- | M] () -- E:\Documents and Settings\Kluci\Data aplikací\PnkBstrK.sys
[2009.07.30 21:17:18 | 00,682,280 | ---- | M] () -- E:\WINDOWS\System32\pbsvc.exe
[2009.07.29 21:51:17 | 00,069,850 | ---- | M] () -- E:\Documents and Settings\Kluci\Dokumenty\cc_20090729_215112.reg
[2009.07.29 12:57:48 | 00,015,563 | ---- | M] () -- E:\Documents and Settings\All Users\Dokumenty\Left 4 Dead No-Steam Patch 1.0.1.4.torrent
[2009.07.29 10:26:14 | 00,335,752 | ---- | M] (AVG Technologies CZ, s.r.o.) -- E:\WINDOWS\System32\drivers\avgldx86.sys
[2009.07.27 09:12:56 | 00,614,403 | ---- | M] () -- E:\WINDOWS\BsSnap.pre
[2009.07.26 20:02:42 | 00,041,942 | ---- | M] () -- E:\Documents and Settings\Kluci\Dokumenty\rec_vlc_20-02-34.mp3
[2009.07.26 19:58:38 | 00,053,836 | ---- | M] () -- E:\Documents and Settings\Kluci\Dokumenty\rec_vlc_19-58-28.mp3
[2009.07.26 19:58:28 | 00,080,128 | ---- | M] () -- E:\Documents and Settings\Kluci\Dokumenty\rec_vlc_19-58-18.mp3
[2009.07.26 19:39:39 | 00,052,608 | ---- | M] () -- E:\Documents and Settings\Kluci\Dokumenty\rec_Vcs6Core_12-14-34.mp3
[2009.07.26 19:39:31 | 00,255,936 | ---- | M] () -- E:\Documents and Settings\Kluci\Dokumenty\rec_Vcs4Core_11-57-02.mp3
[2009.07.26 19:39:20 | 00,139,584 | ---- | M] () -- E:\Documents and Settings\Kluci\Dokumenty\rec_Vcs4Core_11-56-50.mp3
[2009.07.26 11:24:29 | 00,001,795 | ---- | M] () -- E:\Documents and Settings\All Users\Plocha\Play Stronghold 2.lnk
< End of report >

[svasik]

OTL Extras logfile created on: 16.8.2009 14:15:43 - Run 1
OTL by OldTimer - Version 3.0.10.7 Folder = E:\Documents and Settings\Kluci\Dokumenty\Downloads
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1021,10 Mb Total Physical Memory | 392,86 Mb Available Physical Memory | 38,47% Memory free
2,40 Gb Paging File | 1,47 Gb Available in Paging File | 61,33% Paging File free
Paging file location(s): E:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = E: | %SystemRoot% = E:\WINDOWS | %ProgramFiles% = E:\Program Files
Drive C: | 19,53 Gb Total Space | 12,36 Gb Free Space | 63,28% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 129,51 Gb Total Space | 20,01 Gb Free Space | 15,45% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: KLUCINOTEBOOK
Current User Name: Kluci
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- E:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-789336058-764733703-725345543-1003\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"12732:TCP" = 12732:TCP:*:Enabled:BitComet 12732 TCP
"12732:UDP" = 12732:UDP:*:Enabled:BitComet 12732 UDP

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"E:\Program Files\Messenger\msmsgs.exe" = E:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger -- (Microsoft Corporation)
"E:\Program Files\Counter-Strike Source\hl2.exe" = E:\Program Files\Counter-Strike Source\hl2.exe:*:Enabled:hl2 -- ()
"E:\Program Files\Bonjour\mDNSResponder.exe" = E:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour -- (Apple Computer, Inc.)
"E:\Program Files\QIP\qip.exe" = E:\Program Files\QIP\qip.exe:*:Enabled:Quiet Internet Pager -- (The Author of QIP)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"E:\Program Files\Common Files\Ahead\Nero Web\SetupX.exe" = E:\Program Files\Common Files\Ahead\Nero Web\SetupX.exe:*:Enabled:Nero ProductSetup -- (Nero AG)
"E:\Program Files\BitComet\BitComet.exe" = E:\Program Files\BitComet\BitComet.exe:*:Enabled:BitComet - a BitTorrent Client -- (www.BitComet.com)
"E:\Program Files\SEGA\Medieval II Total War\medieval2.exe" = E:\Program Files\SEGA\Medieval II Total War\medieval2.exe:*:Enabled:Medieval 2: Total War -- File not found
"E:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" = E:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation)
"E:\Program Files\Microsoft Office\Office12\GROOVE.EXE" = E:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove -- (Microsoft Corporation)
"E:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" = E:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation)
"E:\Downloads\Half-Life 2\hl2.exe" = E:\Downloads\Half-Life 2\hl2.exe:*:Disabled:hl2 -- ()
"E:\Program Files\Half-Life 2\hl2.exe" = E:\Program Files\Half-Life 2\hl2.exe:*:Enabled:hl2 -- ()
"E:\Program Files\Opera\opera.exe" = E:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software)
"E:\Program Files\Counter-Strike Source\srcds.exe" = E:\Program Files\Counter-Strike Source\srcds.exe:*:Enabled:srcds -- ()
"E:\Program Files\SecondLife\SLVoice.exe" = E:\Program Files\SecondLife\SLVoice.exe:*:Enabled:SLVoice -- ()
"E:\Program Files\Ubi Soft\IL-2 Sturmovik Forgotten Battles\il2fb.exe" = E:\Program Files\Ubi Soft\IL-2 Sturmovik Forgotten Battles\il2fb.exe:*:Enabled:il2fb -- File not found
"E:\WINDOWS\system32\PnkBstrA.exe" = E:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA -- ()
"E:\WINDOWS\system32\PnkBstrB.exe" = E:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB -- ()
"E:\Program Files\FlashGet\flashget.exe" = E:\Program Files\FlashGet\flashget.exe:*:Enabled:Flashget -- File not found
"E:\Program Files\VideoLAN\VLC\vlc.exe" = E:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player -- ()
"E:\Program Files\ICQ6.5\ICQ.exe" = E:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6 -- (ICQ, LLC.)
"E:\xampp\apache\bin\apache.exe" = E:\xampp\apache\bin\apache.exe:*:Enabled:Apache HTTP Server -- (Apache Software Foundation)
"E:\Documents and Settings\Kluci\Plocha\-NeleZ SeM-\stažené\cryingdamson-console\TheForgottenServer.exe" = E:\Documents and Settings\Kluci\Plocha\-NeleZ SeM-\stažené\cryingdamson-console\TheForgottenServer.exe:*:Enabled:The Forgotten Server -- File not found
"E:\Program Files\Left4Dead\hl2.exe" = E:\Program Files\Left4Dead\hl2.exe:*:Enabled:hl2 -- ()
"E:\Documents and Settings\Kluci\Plocha\-NeleZ SeM-\stažené\cryingdamson3-gui\TheForgottenServer.exe" = E:\Documents and Settings\Kluci\Plocha\-NeleZ SeM-\stažené\cryingdamson3-gui\TheForgottenServer.exe:*:Enabled:The Forgotten Server -- ()
"E:\Program Files\AVG\AVG8\avgupd.exe" = E:\Program Files\AVG\AVG8\avgupd.exe:*:Enabled:avgupd.exe -- (AVG Technologies CZ, s.r.o.)
"E:\Program Files\AVG\AVG8\avgnsx.exe" = E:\Program Files\AVG\AVG8\avgnsx.exe:*:Enabled:avgnsx.exe -- (AVG Technologies CZ, s.r.o.)
"E:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe" = E:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe:*:Enabled:CoD2MP_s -- ()
"E:\Program Files\Mozilla Firefox\firefox.exe" = E:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox -- (Mozilla Corporation)
"E:\Program Files\Left4Dead\left4dead.exe" = E:\Program Files\Left4Dead\left4dead.exe:*:Enabled:left4dead -- ()
"E:\Program Files\Garena\Garena.exe" = E:\Program Files\Garena\Garena.exe:*:Enabled:Garena -- (Garena Interactive PTE LTD)
"C:\il2\il2fb.exe" = C:\il2\il2fb.exe:*:Enabled:il2fb -- ()
"E:\Program Files\Xfire\Xfire.exe" = E:\Program Files\Xfire\Xfire.exe:*:Enabled:Xfire -- (Xfire Inc.)
"E:\Program Files\UT2004\System\UT2004.exe" = E:\Program Files\UT2004\System\UT2004.exe:*:Enabled:UT2004 -- ()
"E:\Program Files\Firefly Studios\Stronghold 2\Stronghold2.exe" = E:\Program Files\Firefly Studios\Stronghold 2\Stronghold2.exe:*:Enabled:Stronghold 2 -- (Firefly Studios)
"E:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe" = E:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:iw3mp -- File not found
"E:\Program Files\Metin2_CZ\metin2.bin" = E:\Program Files\Metin2_CZ\metin2.bin:*:Enabled:metin2 -- ()
"E:\Program Files\Skype\Phone\Skype.exe" = E:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00203668-8170-44A0-BE44-B632FA4D780F}" = Adobe AIR
"{0046FA01-C5B9-4985-BACB-398DC480FC05}" = Adobe Photoshop CS3
"{011D0235-589D-4B60-B952-3507C7E8D8D8}" = Multiple Image Resizer .NET
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3
"{0837A661-FEC3-48B3-876C-91E7D32048A9}" = Macromedia Dreamweaver 8
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{129DDEC1-A6A3-3D60-AABE-76E6E5334922}" = Microsoft .NET Framework 2.0 Service Pack 1 Language Pack - CSY
"{16B6279B-9FF5-41fb-8BF9-404324F5DD1F}}_is1" = Media Access Startup
"{16D2C649-CBA8-44EE-B730-12584667D487}" = Stronghold 2 Deluxe
"{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin
"{1A524CFE-DF85-4555-8BC2-0C89DBD8BC2C}" = PC Connectivity Solution
"{1B602410-D983-4947-98FE-EE749073D15E}" = GamingHarbor Toolbar
"{1FB52AB3-5987-45a2-85E0-F3EC30DDDC29}}_is1" = Internet Saving Optimizer
"{212748BB-0DA5-46DE-82A1-403736DC9F27}" = MSVC80_x86
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{24D7346D-D4B4-45E8-98EA-75EC14B42DD8}" = Adobe ExtendScript Toolkit 2
"{24D753CA-6AE9-4E30-8F5F-EFC93E08BF3D}" = Skype™ 4.0
"{26A24AE4-039D-4CA4-87B4-2F83216012FF}" = Java(TM) 6 Update 13
"{27CC6AB1-E72B-4179-AF1A-EAE507EBAF51}_is1" = ConvertHelper 2.2
"{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3
"{2BA00471-0328-3743-93BD-FA813353A783}" = Microsoft .NET Framework 3.0 Service Pack 1
"{2BD5C305-1B27-4D41-B690-7A61172D2FEB}" = Macromedia Flash 8
"{2EFFFC71-1E66-454E-A6E6-CEEC800B96D2}" = Adobe Flash Video Encoder
"{2FC099BD-AC9B-33EB-809C-D332E1B27C40}" = Microsoft .NET Framework 3.5
"{2FCE4FC5-6930-40E7-A4F1-F862207424EF}" = InterVideo WinDVD Creator 2
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{4BB1DCED-84D3-47F9-B718-5947E904593E}" = BisonCam
"{4F3E17F8-F1C8-4A4B-9EB8-1EE2D190CDA9}" = Adobe Setup
"{51846830-E7B2-4218-8968-B77F0FF475B8}" = Adobe Color EU Extra Settings
"{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3
"{5546CDB5-2CE2-498B-B059-5B3BF81FC41F}" = Macromedia Extension Manager
"{60DE4033-9503-48D1-A483-7846BD217CA9}" = ICQ6.5
"{6304CCF6-3343-4DA5-96B6-84B3A644B93B}" = USB Driver for Panasonic DVC
"{63F8286A-601D-4B06-BB21-DB863AF17BFA}" = HotKey_Driver
"{64C1FA9A-FA94-4B6E-B3E4-8573738E4AD1}" = Adobe Setup
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All
"{6B52140A-F189-4945-BFFC-DB3F00B8C589}" = Adobe Flash CS3
"{6D4AC5A4-4CF9-4F90-8111-B9B53CE257BF}" = Adobe Color Common Settings
"{6FE8B722-4D7E-3CD7-BB3A-3AD1684B1295}" = Microsoft .NET Framework 3.0 Service Pack 1 Language Pack - CSY
"{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{74DCC43B-33C9-3389-BD0D-33EB37973657}" = Microsoft .NET Framework 3.5 Language Pack - csy
"{758AF648-0B6C-4593-BDF1-9BF4CB50A359}" = IL-2 Sturmovik 1946
"{77DCDCE3-2DED-62F3-8154-05E745472D07}" = Acrobat.com
"{7B4A5C13-069F-4AFE-AE57-C497B4E33C7E}" = Call of Duty(R) 2 Patch 1.3
"{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3
"{8795CBED-55E2-4693-9F14-84EC446935BE}" = SpeechRedist
"{895722FE-25FE-4854-95AC-B0C42F9DBEDA}" = REALTEK RTL8187B Wireless LAN Driver
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8BF2C401-02CE-424D-BC26-6C4F9FB446B6}" = Macromedia Flash 8 Video Encoder
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{CB5EC6E0-FC8C-469B-A067-DEC8C6D17C59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{CB5EC6E0-FC8C-469B-A067-DEC8C6D17C59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{CB5EC6E0-FC8C-469B-A067-DEC8C6D17C59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{CB5EC6E0-FC8C-469B-A067-DEC8C6D17C59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{CB5EC6E0-FC8C-469B-A067-DEC8C6D17C59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{CB5EC6E0-FC8C-469B-A067-DEC8C6D17C59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{3C3813E1-C370-4F32-9639-8B43C7C780CD}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{3EC77D26-799B-4CD8-914F-C1565E796173}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{F67648A4-713E-4298-BBAD-A83D8283B0F3}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{BEE75E01-DD3F-4D5F-B96C-609E6538D419}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{CB5EC6E0-FC8C-469B-A067-DEC8C6D17C59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{2659571A-3405-4486-B7D8-2F125BC0E3B2}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{CB5EC6E0-FC8C-469B-A067-DEC8C6D17C59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{CB5EC6E0-FC8C-469B-A067-DEC8C6D17C59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{939740B5-0064-4779-854A-8C1086181C05}" = Macromedia FreeHand MXa
"{95655ED4-7CA5-46DF-907F-7144877A32E5}" = Adobe Color NA Recommended Settings
"{9933F0EE-DFCD-4829-B979-3C56C367CB1A}" = InterVideo WinDVD Creator
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{A2289997-10A3-48F2-AA03-99180D761661}" = Protector Suite QL 5.6
"{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps
"{A2D81E70-2A98-4A08-A628-94388B063C5E}" = Adobe Color - Photoshop Specific
"{A8C3710A-0BCA-4F10-9EC3-A302A1F1FA82}" = Nokia PC Suite
"{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}" = PDF Settings
"{AC76BA86-7AD7-1033-7B44-A91000000001}" = Adobe Reader 9.1.1
"{ADD9E56D-2DD8-448A-8887-B3AF76AB1029}" = Nero 7 Essentials
"{AEDDF5A3-29CE-11D5-A8C2-000102246AAE}" = ubi.com
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B3C02EC1-A7B0-4987-9A43-8789426AAA7D}" = Adobe Setup
"{B508B3F1-A24A-32C0-B310-85786919EF28}" = Microsoft .NET Framework 2.0 Service Pack 1
"{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3
"{BC4F8E84-5E29-49EC-B4E7-E6F9CB50986C}" = Adobe Flash Player 9 ActiveX
"{C3F19A5F-35A8-4FDB-A6ED-0F4CE398DA48}" = Nokia Connectivity Cable Driver
"{C5096216-7703-409E-B85A-8A6EE7395128}}_is1" = System Search Dispatcher
"{C6CAA1BA-8D50-438F-8FD1-8AF54D7A93DF}" = Zoner inShop3 Designer
"{C78EAC6F-7A73-452E-8134-DBB2165C5A68}" = QuickTime
"{C9C3F352-C871-4A15-A8FD-4F0F195C461D}" = Remere's Map Editor
"{D0A05794-48C2-4424-A15A-9F20FCFDD374}" = Call of Duty(R) 2
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{D1BB4446-AE9C-4256-9A7F-4D46604D2462}" = Adobe Setup
"{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files
"{DBACBFE4-F79E-4AFB-A7C3-463555B8446B}" = MySQL Server 5.0
"{DBB7F606-0C13-4182-AD7F-427A4773580E}" = VibrateGameDeviceDriver
"{DCF0BF23-1618-41AC-892D-DD8200D13448}" = Hosts Changer
"{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}" = Adobe Color JA Extra Settings
"{de2f2d9c-53e2-40ee-8209-74da63cb060e}" = Python 3.0.1
"{E1BBBAC5-2857-4155-82A6-54492CE88620}" = Opera 9.64
"{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3
"{EF72E0A5-57E8-471F-837E-82BB19771363}" = REALTEK RTL8185 Wireless LAN Driver and Utility
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{FFC1ADE3-944B-4231-894E-3903C37271D2}" = Adobe Setup
"3A5DEFA413DDE699DBA6EBE0A63534ACA524D30F" = Balíček ovladače systému Windows - Nokia pccsmcfd (10/12/2007 6.85.4.0)
"7-Zip" = 7-Zip 4.65
"9CD348AE9C64C4B939B624E8E24F3903EFDFC82B" = Balíček ovladače systému Windows - Nokia Modem (05/22/2008 7.00.0.1)
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player
"Adobe_2ac78060bc5856b0c1cf873bb919b58" = Adobe Photoshop CS3
"Adobe_3e054d2218e7aa282c2369d939e58ff" = Adobe ExtendScript Toolkit 2
"Adobe_6c8e2cb4fd241c55406016127a6ab2e" = Adobe Color Common Settings
"Adobe_a04a925a57548091300ada368235fc6" = Adobe Illustrator CS3
"Adobe_c3c7fe8b09d497ab2b3fd91c9353390" = Adobe Flash CS3 Professional
"AV Voice Changer Software DIAMOND 4.0" = AV Voice Changer Software DIAMOND 4.0
"AVG8Uninstall" = AVG 8.5
"BitComet" = BitComet 1.04
"Blender" = Blender (remove only)
"C5A76DC11BABDA0A881E7BE8DDEB641365A77FFD" = Balíček ovladače systému Windows - Nokia Modem (05/22/2008 3.
"CCleaner" = CCleaner (remove only)
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"Counter-Strike: Source" = Counter-Strike: Source
"DarkNestPatch_2" = DarkNestPatch 1.3
"Dev-C++" = Dev-C++ 5 beta 9 release (4.9.9.2)
"ENTERPRISE" = Microsoft Office Enterprise 2007
"GameParkClient_is1" = GamePark
"GamingHarbor Toolbar" = GamingHarbor Toolbar
"Garena" = Garena
"Google Desktop" = Google Desktop
"Hamachi" = Hamachi 1.0.1.5
"HijackThis" = HijackThis 2.0.2
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"InstallShield_{011D0235-589D-4B60-B952-3507C7E8D8D8}" = Multiple Image Resizer .NET
"InstallShield_{6304CCF6-3343-4DA5-96B6-84B3A644B93B}" = USB Driver for Panasonic DVC
"InstallShield_{758AF648-0B6C-4593-BDF1-9BF4CB50A359}" = IL-2 Sturmovik 1946
"InstallShield_{8DF712DA-D325-4FD0-8DE8-E2D78FC3CDC3}" = IL-2 Sturmovik: Forgotten Battles
"InstallShield_{D0A05794-48C2-4424-A15A-9F20FCFDD374}" = Call of Duty(R) 2
"Left 4 Dead_is1" = Left 4 Dead v1.0.0.5
"Magic ISO Maker v5.5 (build 0272)" = Magic ISO Maker v5.5 (build 0272)
"Microsoft .NET Framework 3.5" = Microsoft .NET Framework 3.5
"Microsoft .NET Framework 3.5 Language Pack - csy" = Microsoft .NET Framework 3.5 Language Pack - CSY
"Mozilla Firefox (3.0.13)" = Mozilla Firefox (3.0.13)
"MP3Resizer_is1" = MP3Resizer 1.9.2
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"Nokia PC Suite" = Nokia PC Suite
"NVIDIA Drivers" = NVIDIA Drivers
"Picasa2" = Picasa 2
"PunkBusterSvc" = PunkBuster Services
"QIP2005" = QIP 2005 Uninstall
"RAR Password Cracker" = RAR Password Cracker 4.12
"SecondLife" = SecondLife (remove only)
"Simple Sudoku_is1" = Simple Sudoku 4.2
"SMSERIAL" = Motorola SM56 Data Fax Modem
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"Tibia_is1" = Tibia
"TMIPC" = Tibia MULTI-ip changer
"USB downloader" = USB downloader
"UT2004" = Unreal Tournament 2004
"VLC media player" = VideoLAN VLC media player 0.8.6i
"VMidi" = vanBasco's Karaoke Player
"Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
"WIC" = Windows Imaging Component
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01005" = Microsoft User-Mode Driver Framework Feature Pack 1.5
"Xfire" = Xfire (remove only)
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0
"YouConvert Classic (Shareware)_is1" = YouConvert Classic
"Zip Password Recovery" = Zip Password Recovery

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-789336058-764733703-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"QIP 2005" = QIP 2005 8094

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 11.5.2009 14:14:08 | Computer Name = KLUCINOTEBOOK | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace iexplore.exe, verze 8.0.6001.18702, zablokovaný
modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 11.5.2009 14:14:34 | Computer Name = KLUCINOTEBOOK | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace left4dead.exe, verze 0.0.0.0, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 12.5.2009 7:53:55 | Computer Name = KLUCINOTEBOOK | Source = Google Update | ID = 20
Description =

Error - 12.5.2009 10:07:24 | Computer Name = KLUCINOTEBOOK | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace left4dead.exe, verze 0.0.0.0, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 12.5.2009 10:11:35 | Computer Name = KLUCINOTEBOOK | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace left4dead.exe, verze 0.0.0.0, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 13.5.2009 1:32:45 | Computer Name = KLUCINOTEBOOK | Source = Apache Service | ID = 3299
Description = The Apache service named reported the following error: >>> apache.exe:
Could not open configuration file E:/xampp/apache/conf/httpd.conf: Syst\xe9m nem\xf9\x9ee
nal\xe9zt uvedenou cestu. .

Error - 15.5.2009 8:54:37 | Computer Name = KLUCINOTEBOOK | Source = Apache Service | ID = 3299
Description = The Apache service named reported the following error: >>> apache.exe:
Could not open configuration file E:/xampp/apache/conf/httpd.conf: Syst\xe9m nem\xf9\x9ee
nal\xe9zt uvedenou cestu. .

Error - 15.5.2009 11:41:23 | Computer Name = KLUCINOTEBOOK | Source = Apache Service | ID = 3299
Description = The Apache service named reported the following error: >>> apache.exe:
Could not open configuration file E:/xampp/apache/conf/httpd.conf: Syst\xe9m nem\xf9\x9ee
nal\xe9zt uvedenou cestu. .

Error - 15.5.2009 18:02:33 | Computer Name = KLUCINOTEBOOK | Source = Apache Service | ID = 3299
Description = The Apache service named reported the following error: >>> apache.exe:
Could not open configuration file E:/xampp/apache/conf/httpd.conf: Syst\xe9m nem\xf9\x9ee
nal\xe9zt uvedenou cestu. .

Error - 15.5.2009 18:18:26 | Computer Name = KLUCINOTEBOOK | Source = Google Update | ID = 20
Description =

[ System Events ]
Error - 10.8.2009 16:00:56 | Computer Name = KLUCINOTEBOOK | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby NMIndexingService
s argumenty za účelem spuštění serveru: {C6A811AB-F8FF-45A4-93E5-FC5CCB650BE7}

Error - 10.8.2009 16:01:16 | Computer Name = KLUCINOTEBOOK | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby NMIndexingService
s argumenty za účelem spuštění serveru: {C6A811AB-F8FF-45A4-93E5-FC5CCB650BE7}

Error - 10.8.2009 16:01:36 | Computer Name = KLUCINOTEBOOK | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby NMIndexingService
s argumenty za účelem spuštění serveru: {C6A811AB-F8FF-45A4-93E5-FC5CCB650BE7}

Error - 10.8.2009 16:01:56 | Computer Name = KLUCINOTEBOOK | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby NMIndexingService
s argumenty za účelem spuštění serveru: {C6A811AB-F8FF-45A4-93E5-FC5CCB650BE7}

Error - 10.8.2009 16:02:16 | Computer Name = KLUCINOTEBOOK | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby NMIndexingService
s argumenty za účelem spuštění serveru: {C6A811AB-F8FF-45A4-93E5-FC5CCB650BE7}

Error - 10.8.2009 16:02:36 | Computer Name = KLUCINOTEBOOK | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby NMIndexingService
s argumenty za účelem spuštění serveru: {C6A811AB-F8FF-45A4-93E5-FC5CCB650BE7}

Error - 10.8.2009 16:02:56 | Computer Name = KLUCINOTEBOOK | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby NMIndexingService
s argumenty za účelem spuštění serveru: {C6A811AB-F8FF-45A4-93E5-FC5CCB650BE7}

Error - 10.8.2009 16:03:16 | Computer Name = KLUCINOTEBOOK | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby NMIndexingService
s argumenty za účelem spuštění serveru: {C6A811AB-F8FF-45A4-93E5-FC5CCB650BE7}

Error - 10.8.2009 16:03:36 | Computer Name = KLUCINOTEBOOK | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby NMIndexingService
s argumenty za účelem spuštění serveru: {C6A811AB-F8FF-45A4-93E5-FC5CCB650BE7}

Error - 10.8.2009 16:03:57 | Computer Name = KLUCINOTEBOOK | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby NMIndexingService
s argumenty za účelem spuštění serveru: {C6A811AB-F8FF-45A4-93E5-FC5CCB650BE7}


< End of report >

[pitimir]

1) Skopiruj do policka pod nazvom "Custom Scans/Fixes":

Kód: Vybrat vše

:otl
PRC - [2008.04.14 05:22:22 | 01,034,240 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\Explorer.EXE
PRC - [2009.08.04 07:58:15 | 00,602,112 | ---- | M] () -- E:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.0.21210\stbapp.exe
PRC - [2009.08.04 07:59:27 | 00,090,112 | ---- | M] () -- E:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.0.21210\stbappHelper.exe
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = E:\WINDOWS\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKU\S-1-5-21-789336058-764733703-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = E:\WINDOWS\system32\blank.htm
IE - URLSearchHook: - Reg Error: Key error. File not found
FF - HKLM\software\mozilla\Firefox\extensions\\{872A1C39-DF0B-4c8b-AD84-12BA24A3B781}: E:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.0.21210\FFToolbar [2009.08.11 15:29:50 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\{2224E955-00E9-4613-A844-CE69FCCAAE91}: E:\Program Files\Internet Saving Optimizer\3.6.1.4490\FF [2009.08.11 15:30:27 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\{0BA0192D-94A5-45e3-B2B8-3EC5A1A0B5EC}: E:\Program Files\Media Access Startup\1.5.4.880\FF [2009.08.11 15:30:39 | 00,000,000 | ---D | M]
O2 - BHO: (Media Access Startup) - {25B8D58C-B0CB-46b0-BA64-05B3804E4E86} - E:\Program Files\Media Access Startup\1.5.4.880\HPIEAddOn.dll ()
O2 - BHO: (NP Helper Class) - {35B8D58C-B0CB-46b0-BA64-05B3804E4E86} - E:\Program Files\Internet Saving Optimizer\3.6.1.4490\NPIEAddOn.dll ()
O2 - BHO: (System Search Dispatcher) - {CDBFB47B-58A8-4111-BF95-06178DCE326D} - E:\Program Files\System Search Dispatcher\1.3.4.940\ssd.dll ()
O3 - HKLM\..\Toolbar: (GamingHarbor Toolbar) - {5617ECA9-488D-4BA2-8562-9710B9AB78D2} - E:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.0.21210\stb0.dll ()
O3 - HKU\S-1-5-21-789336058-764733703-725345543-1003\..\Toolbar\WebBrowser: (GamingHarbor Toolbar) - {5617ECA9-488D-4BA2-8562-9710B9AB78D2} - E:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.0.21210\stb0.dll ()
O4 - Startup: E:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Temporary Shortcut.lnk = D:\autorun.exe File not found
O4 - Startup: E:\Documents and Settings\Kluci\Nabídka Start\Programy\Po spuštění\WinMySQLadmin.lnk = E:\xampp\mysql\bin\winmysqladmin.exe File not found
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebook.com/controls/200 ... oader5.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\msdaipp - No CLSID value found
O33 - MountPoints2\{5c6f1230-8a51-11dd-847a-0015afcd8d32}\Shell\AutoRun\command - "" = H:\setupSNK.exe -- File not found

:files
E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Internet Saving Optimizer
E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Media Access Startup
E:\Program Files\Media Access Startup
E:\Program Files\Internet Saving Optimizer
E:\Program Files\System Search Dispatcher
E:\Program Files\DoubleD
E:\Documents and Settings\Kluci\Local Settings\Data aplikací\DoubleD
E:\Documents and Settings\All Users\Dokumenty\The Lord Of The Rings Battle For Middle Earth 2 DVD9 V1.1 Crack

:commands
[emptytemp]
[resethosts]
[reboot]

Klikni na "Run Fix". Program zacne pracovat, mozny je restart PC. Po nom by sa ti mal objavit log, ten by som rad videl.


2) Otestuj subor(y) na VIRUSTOTALe:

Kód: Vybrat vše

E:\WINDOWS\System32\drivers\etc\hosts.rar

Ak vypise, ze subor uz bol testovany, daj ho otestovat znovu. Vysledok posli ako LINK.


3) Stiahni SystemLook. Uloz na plochu a spust. Do okna skopiruj:

Kód: Vybrat vše

:dir
E:\Program Files\Metin2_CZ

Klikni na "Look" a nechaj program dokoncit scan. Po jeho skonceni sa ti zobrazi log, ktory potrebujem vidiet. V pripade problemov sa nachadza aj na ploche.


Otazka: Co sa instalovalo od Symantecu/Nortona?

[svasik]

https://www.virustotal.com/cs/analisis/ ... 1250427296


log z OTL:
========== OTL ==========
Process Explorer.EXE killed successfully!
Process stbapp.exe killed successfully!
Process stbappHelper.exe killed successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Secondary_Page_URL| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Extensions Off Page| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Local Page| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Security Risk Page| /E : value set successfully!
Unable to set value : HKU\S-1-5-21-789336058-764733703-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main\\Local Page| /E!
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\ not found.
Registry value HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{872A1C39-DF0B-4c8b-AD84-12BA24A3B781} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{872A1C39-DF0B-4c8b-AD84-12BA24A3B781}\ not found.
E:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.0.21210\FFToolbar\searchplugins moved successfully.
E:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.0.21210\FFToolbar\components moved successfully.
E:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.0.21210\FFToolbar\chrome\locale\en-US moved successfully.
E:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.0.21210\FFToolbar\chrome\locale moved successfully.
E:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.0.21210\FFToolbar\chrome moved successfully.
E:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.0.21210\FFToolbar moved successfully.
Registry value HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{2224E955-00E9-4613-A844-CE69FCCAAE91} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2224E955-00E9-4613-A844-CE69FCCAAE91}\ not found.
E:\Program Files\Internet Saving Optimizer\3.6.1.4490\FF\components moved successfully.
E:\Program Files\Internet Saving Optimizer\3.6.1.4490\FF\chrome\content moved successfully.
E:\Program Files\Internet Saving Optimizer\3.6.1.4490\FF\chrome moved successfully.
E:\Program Files\Internet Saving Optimizer\3.6.1.4490\FF moved successfully.
Registry value HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{0BA0192D-94A5-45e3-B2B8-3EC5A1A0B5EC} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0BA0192D-94A5-45e3-B2B8-3EC5A1A0B5EC}\ not found.
E:\Program Files\Media Access Startup\1.5.4.880\FF\components moved successfully.
E:\Program Files\Media Access Startup\1.5.4.880\FF\chrome\content moved successfully.
E:\Program Files\Media Access Startup\1.5.4.880\FF\chrome moved successfully.
E:\Program Files\Media Access Startup\1.5.4.880\FF moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{25B8D58C-B0CB-46b0-BA64-05B3804E4E86}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{25B8D58C-B0CB-46b0-BA64-05B3804E4E86}\ deleted successfully.
LoadLibrary failed for E:\Program Files\Media Access Startup\1.5.4.880\HPIEAddOn.dll
E:\Program Files\Media Access Startup\1.5.4.880\HPIEAddOn.dll NOT unregistered.
E:\Program Files\Media Access Startup\1.5.4.880\HPIEAddOn.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{35B8D58C-B0CB-46b0-BA64-05B3804E4E86}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{35B8D58C-B0CB-46b0-BA64-05B3804E4E86}\ deleted successfully.
LoadLibrary failed for E:\Program Files\Internet Saving Optimizer\3.6.1.4490\NPIEAddOn.dll
E:\Program Files\Internet Saving Optimizer\3.6.1.4490\NPIEAddOn.dll NOT unregistered.
E:\Program Files\Internet Saving Optimizer\3.6.1.4490\NPIEAddOn.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CDBFB47B-58A8-4111-BF95-06178DCE326D}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CDBFB47B-58A8-4111-BF95-06178DCE326D}\ deleted successfully.
E:\Program Files\System Search Dispatcher\1.3.4.940\ssd.dll unregistered successfully.
E:\Program Files\System Search Dispatcher\1.3.4.940\ssd.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{5617ECA9-488D-4BA2-8562-9710B9AB78D2} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\ deleted successfully.
E:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.0.21210\stb0.dll unregistered successfully.
E:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.0.21210\stb0.dll moved successfully.
Registry value HKEY_USERS\S-1-5-21-789336058-764733703-725345543-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{5617ECA9-488D-4BA2-8562-9710B9AB78D2} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\ not found.
File E:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.0.21210\stb0.dll not found.
E:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Temporary Shortcut.lnk moved successfully.
E:\Documents and Settings\Kluci\Nabídka Start\Programy\Po spuštění\WinMySQLadmin.lnk moved successfully.
Starting removal of ActiveX control {0CCA191D-13A6-4E29-B746-314DEE697D83}
E:\WINDOWS\Downloaded Program Files\PhotoUploader5.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{0CCA191D-13A6-4E29-B746-314DEE697D83}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0CCA191D-13A6-4E29-B746-314DEE697D83}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{0CCA191D-13A6-4E29-B746-314DEE697D83}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0CCA191D-13A6-4E29-B746-314DEE697D83}\ not found.
Starting removal of ActiveX control {8AD9C840-044E-11D1-B3E9-00805F499D93}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {D27CDB6E-AE6D-11CF-96B8-444553540000}
E:\WINDOWS\Downloaded Program Files\CONFLICT.1\swflash.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{D27CDB6E-AE6D-11CF-96B8-444553540000}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D27CDB6E-AE6D-11CF-96B8-444553540000}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{D27CDB6E-AE6D-11CF-96B8-444553540000}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D27CDB6E-AE6D-11CF-96B8-444553540000}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ipp\ deleted successfully.
File Protocol\Handler\ipp - No CLSID value found not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msdaipp\ deleted successfully.
File Protocol\Handler\msdaipp - No CLSID value found not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5c6f1230-8a51-11dd-847a-0015afcd8d32}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5c6f1230-8a51-11dd-847a-0015afcd8d32}\ not found.
File H:\setupSNK.exe not found.
========== FILES ==========
E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Internet Saving Optimizer\3.6.1.4490 moved successfully.
E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Internet Saving Optimizer moved successfully.
E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Media Access Startup\1.5.4.880 moved successfully.
E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Media Access Startup moved successfully.
E:\Program Files\Media Access Startup\1.5.4.880\Data moved successfully.
E:\Program Files\Media Access Startup\1.5.4.880 moved successfully.
E:\Program Files\Media Access Startup moved successfully.
E:\Program Files\Internet Saving Optimizer\3.6.1.4490\Data moved successfully.
E:\Program Files\Internet Saving Optimizer\3.6.1.4490 moved successfully.
E:\Program Files\Internet Saving Optimizer moved successfully.
E:\Program Files\System Search Dispatcher\1.3.4.940\Data moved successfully.
E:\Program Files\System Search Dispatcher\1.3.4.940 moved successfully.
E:\Program Files\System Search Dispatcher moved successfully.
E:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.0.21210\Skins moved successfully.
E:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.0.21210\Icons moved successfully.
E:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.0.21210\Data moved successfully.
E:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.0.21210\Cache moved successfully.
E:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.0.21210 moved successfully.
E:\Program Files\DoubleD\GamingHarbor Toolbar moved successfully.
E:\Program Files\DoubleD moved successfully.
E:\Documents and Settings\Kluci\Local Settings\Data aplikací\DoubleD\GamingHarbor Toolbar\4.2.0.21210\Skins moved successfully.
E:\Documents and Settings\Kluci\Local Settings\Data aplikací\DoubleD\GamingHarbor Toolbar\4.2.0.21210\Icons moved successfully.
E:\Documents and Settings\Kluci\Local Settings\Data aplikací\DoubleD\GamingHarbor Toolbar\4.2.0.21210\Data moved successfully.
E:\Documents and Settings\Kluci\Local Settings\Data aplikací\DoubleD\GamingHarbor Toolbar\4.2.0.21210\Cache moved successfully.
E:\Documents and Settings\Kluci\Local Settings\Data aplikací\DoubleD\GamingHarbor Toolbar\4.2.0.21210\bin moved successfully.
E:\Documents and Settings\Kluci\Local Settings\Data aplikací\DoubleD\GamingHarbor Toolbar\4.2.0.21210 moved successfully.
E:\Documents and Settings\Kluci\Local Settings\Data aplikací\DoubleD\GamingHarbor Toolbar moved successfully.
E:\Documents and Settings\Kluci\Local Settings\Data aplikací\DoubleD moved successfully.
E:\Documents and Settings\All Users\Dokumenty\The Lord Of The Rings Battle For Middle Earth 2 DVD9 V1.1 Crack\v1.1 moved successfully.
E:\Documents and Settings\All Users\Dokumenty\The Lord Of The Rings Battle For Middle Earth 2 DVD9 V1.1 Crack moved successfully.

OTL by OldTimer - Version 3.0.10.7 log created on 08162009_145643

Log z SystemLooku :

SystemLook v1.0 by jpshortstuff (22.05.09)
Log created at 14:46 on 16/08/2009 by Kluci (Administrator - Elevation successful)

========== dir ==========

E:\Program Files\Metin2_CZ - Parameters: "(none)"

---Files---
artpclnt.dll --a--- 110592 bytes [13:30 11/08/2009] [08:14 08/05/2009]
channel.inf --a--- 5 bytes [13:30 11/08/2009] [14:52 11/08/2009]
config.exe --a--- 258048 bytes [13:30 11/08/2009] [08:14 08/05/2009]
devil.dll --a--- 269312 bytes [13:30 11/08/2009] [08:14 08/05/2009]
DSETUP.dll --a--- 35328 bytes [13:30 11/08/2009] [08:14 08/05/2009]
errorlog.exe --a--- 81920 bytes [13:30 11/08/2009] [08:14 08/05/2009]
granny2.dll --a--- 369719 bytes [13:30 11/08/2009] [08:14 08/05/2009]
ijl15.dll --a--- 372736 bytes [13:30 11/08/2009] [08:14 08/05/2009]
ilu.dll --a--- 27648 bytes [13:30 11/08/2009] [08:14 08/05/2009]
locale.cfg --a--- 15 bytes [13:30 11/08/2009] [08:11 08/05/2009]
metin2.bin --a--- 812544 bytes [13:30 11/08/2009] [08:14 08/05/2009]
metin2.cfg --a--- 343 bytes [13:38 11/08/2009] [15:09 11/08/2009]
metin2.exe --a--- 593920 bytes [13:30 11/08/2009] [08:14 08/05/2009]
mouse.cfg --a--- 3 bytes [14:27 11/08/2009] [15:09 11/08/2009]
mscoree.dll --a--- 131072 bytes [13:30 11/08/2009] [08:14 08/05/2009]
MSS32.DLL --a--- 349696 bytes [13:30 11/08/2009] [08:14 08/05/2009]
msvcp60.dll --a--- 401462 bytes [13:30 11/08/2009] [08:14 08/05/2009]
MSVCRTD.DLL --a--- 434252 bytes [13:30 11/08/2009] [08:14 08/05/2009]
patch.add --a--- 17 bytes [13:35 11/08/2009] [08:11 08/05/2009]
patch.cfg --a--- 142 bytes [13:35 11/08/2009] [08:11 08/05/2009]
patch.log --a--- 6403 bytes [13:36 11/08/2009] [14:52 11/08/2009]
patch.ver --a--- 7 bytes [13:35 11/08/2009] [08:11 08/05/2009]
PatchUpdater.exe --a--- 131072 bytes [13:35 11/08/2009] [08:14 08/05/2009]
patchw32.dll --a--- 202240 bytes [13:35 11/08/2009] [08:14 08/05/2009]
python22.dll --a--- 843892 bytes [13:35 11/08/2009] [08:14 08/05/2009]
SpeedTreeRT.dll --a--- 1806336 bytes [13:35 11/08/2009] [08:14 08/05/2009]
syserr.txt --a--- 497 bytes [13:37 11/08/2009] [15:09 11/08/2009]

---Folders---
BGM d----- [13:30 11/08/2009]
lib d----- [13:30 11/08/2009]
mark d----- [13:37 11/08/2009]
miles d----- [13:30 11/08/2009]
pack d----- [13:30 11/08/2009]
patchskin d-a--- [13:35 11/08/2009]
upload d----- [13:35 11/08/2009]

-=End Of File=-



O žádné instalaci nevím, nejsem jediný uživatel.

[pitimir]

Stiahni MbAM. Uloz na plochu, otvor "mbam-setup.exe" a nainstaluj. Updatuj. Potom spravis kompletny scan - co program najde, zmaz. Nasledny log vloz sem.

[svasik]

Malwarebytes' Anti-Malware 1.40
Verze databáze: 2551
Windows 5.1.2600 Service Pack 3

17.8.2009 15:32:54
mbam-log-2009-08-17 (15-32-54).txt

Typ skenu: Úplný sken (C:\|E:\|)
Objektu skenováno: 445654
Uplynulý cas: 3 hour(s), 16 minute(s), 42 second(s)

Infikované procesy pameti: 0
Infikované pametové moduly: 0
Infikované klíce registru: 29
Infikované hodnoty registru: 0
Infikované položky dat registru: 0
Infikované složky: 7
Infikované soubory: 96

Infikované procesy pameti:
(Žádné zákerné položky nebyly zjišteny)

Infikované pametové moduly:
(Žádné zákerné položky nebyly zjišteny)

Infikované klíce registru:
HKEY_CLASSES_ROOT\aimactivexdll.aimhelper (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\aimactivexdll.aimhelper.1 (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\oeactivexdll.desktopbuttonhandler (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\oeactivexdll.desktopbuttonhandler.1 (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\oeactivexdll.desktopoeaddin1 (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\oeactivexdll.desktopoeaddin1.1 (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{3fb17508-0bf4-4fde-845a-323a1052957c} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{42c23154-00fa-4a93-9de9-3eb523cffff6} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{6160f76a-1992-4b17-a32d-0c706d159105} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{803e73fe-cb73-4d49-8aff-653fd6f44171} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{877f3eab-4462-44df-8475-6064eafd7fbf} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{0514c9b0-e4c6-4d6b-a3a6-b38bc280b115} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{ac5ab953-ed25-4f9c-87f0-b086b0178ffa} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{c28a0312-c403-417b-a425-a915bc0519cd} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{d335d84d-61d8-4b5f-9c4e-067dc8b27ed5} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{57aba38e-6535-48f3-99fd-efdc62137c78} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{cdbfb47b-58a8-4111-bf95-06178dce326d} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5617eca9-488d-4ba2-8562-9710b9ab78d2} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{25b8d58c-b0cb-46b0-ba64-05b3804e4e86} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{35b8d58c-b0cb-46b0-ba64-05b3804e4e86} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Setup.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\AIMActiveXDLL.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Media Access Startup (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\DoubleD (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Media Access Startup (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\MenuExt\&Funband Serach (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\MenuExt\&Funband Serach (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\Outlook\Addins\OEActiveXDLL.DesktopOEAddin1 (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\{5617ECA9-488D-4BA2-8562-9710B9AB78D2} (Adware.DoubleD) -> Quarantined and deleted successfully.

Infikované hodnoty registru:
(Žádné zákerné položky nebyly zjišteny)

Infikované položky dat registru:
(Žádné zákerné položky nebyly zjišteny)

Infikované složky:
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2} (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\Data (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Cache (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Skins (Adware.DoubleD) -> Quarantined and deleted successfully.

Infikované soubory:
E:\Documents and Settings\Kluci\Plocha\-NeleZ SeM-\stažené\Adobe_ALL\SSG\Dreamweaver CS3 Keygen VLK.exe (Trojan.Crax) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Plocha\-NeleZ SeM-\stažené\Adobe_ALL\X-FORCE\adobe-master-cs3-keygen.exe (Malware.Tool) -> Quarantined and deleted successfully.
E:\Program Files\Lineage II GRACIA\1system\NWindow.dll (Malware.Packer.T) -> Quarantined and deleted successfully.
E:\Program Files\Lineage II GRACIA\system123\engine.dll (Malware.Packer.T) -> Quarantined and deleted successfully.
E:\Program Files\Lineage II GRACIA\system123\nwindow.dll (Malware.Packer.T) -> Quarantined and deleted successfully.
E:\System Volume Information\_restore{DBEB2914-EAA9-4448-A66C-9DD006BBC818}\RP300\A0175364.dll (Malware.Packer.T) -> Quarantined and deleted successfully.
E:\System Volume Information\_restore{DBEB2914-EAA9-4448-A66C-9DD006BBC818}\RP300\A0175370.exe (Malware.Packer.T) -> Quarantined and deleted successfully.
E:\System Volume Information\_restore{DBEB2914-EAA9-4448-A66C-9DD006BBC818}\RP300\A0175375.dll (Malware.Packer.T) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\bg.jpg (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\CurrentVersion.xml (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\ExtractZipFile.zip (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\icon.ico (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\productinfo.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\Setup.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\stbup.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\tdf.dat (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\Data\ProductInfo.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Cache\248d6576afce4ee94af42d7350131106.gif (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Cache\24a70fb875fab686b6b3c217612bc07c.gif (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Cache\2afcf6f3f2e19cc42d7f72f3b18b26ef.gif (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Cache\50bffa6936b3e661971a58e3c8bdf4cb.gif (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Cache\default1.dat (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Cache\loading.dat (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Cache\loading.gif (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\Module_Cursor.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\Module_DailyVideo.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\Module_Game.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\Module_Glitter.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\Module_Logo.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\Module_Option.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\Module_Recipe.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\Module_Ringtone.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\Module_Screensaver.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\Module_Search.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\Module_Smiley.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\Module_Smiley_Config.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\Module_Smiley_TellAFriend.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\Module_Wallpaper.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\Module_Web.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\pixel.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\ProductInfo.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\profile.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\SearchEngineList.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\tbcore.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\ToolbarLayout.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\UpdateCentre.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\UpdateCentreBk.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\URLDynamic.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Data\URLStatic.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\About.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Component_ComboBox.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Module_Cursor.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Module_Cursor.png (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Module_DailyVideo.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Module_Game.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Module_Glitter.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Module_Glitter.png (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Module_Logo.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Module_Option.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Module_Recipe.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Module_Ringtone.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Module_Screensaver.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Module_Search.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Module_Smiley.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Module_Smiley.png (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Module_Wallpaper.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\Module_Web.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnDefault.png (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnDisplay.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnDisplay.png (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnDisplay18.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnDisplay20.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnGlitters.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnGlitters.png (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnGlitters18.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnGlitters20.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnOption.png (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnSmiley.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnSmiley.png (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnSmiley18.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnSmiley20.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnTellFd.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnTellFd.png (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnTellFd18.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnTellFd20.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnWink.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnWink.png (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnWink18.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Icons\TBBtnWink20.bmp (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Skins\myskin1.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Skins\myskin2.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Skins\myskin3.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Skins\myskin4.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Skins\TellafriendSkin.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Skins\TellafriendSkin_s.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
E:\Documents and Settings\Kluci\Local Settings\Temporary Internet Files\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}\TDF\Skins\ToastSkin.skf (Adware.DoubleD) -> Quarantined and deleted successfully.

[pitimir]

Vyborne. Mohol by som vidiet novy log z OTL?

[svasik]

OTL logfile created on: 18.8.2009 11:28:29 - Run 3
OTL by OldTimer - Version 3.0.10.7 Folder = E:\Documents and Settings\Kluci\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1021,10 Mb Total Physical Memory | 307,87 Mb Available Physical Memory | 30,15% Memory free
2,40 Gb Paging File | 1,72 Gb Available in Paging File | 71,80% Paging File free
Paging file location(s): E:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = E: | %SystemRoot% = E:\WINDOWS | %ProgramFiles% = E:\Program Files
Drive C: | 19,53 Gb Total Space | 12,36 Gb Free Space | 63,28% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 129,51 Gb Total Space | 18,24 Gb Free Space | 14,09% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: KLUCINOTEBOOK
Current User Name: Kluci
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2009.08.17 17:12:02 | 00,297,752 | ---- | M] (AVG Technologies CZ, s.r.o.) -- E:\Program Files\AVG\AVG8\avgwdsvc.exe
PRC - [2006.02.28 13:42:38 | 00,229,376 | ---- | M] (Apple Computer, Inc.) -- E:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2009.03.09 05:19:15 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) -- E:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2008.08.04 15:45:16 | 05,779,456 | ---- | M] () -- E:\Program Files\MySQL\MySQL Server 5.0\bin\mysqld-nt.exe
PRC - [2008.03.28 12:04:00 | 00,155,716 | ---- | M] (NVIDIA Corporation) -- E:\WINDOWS\System32\nvsvc32.exe
PRC - [2009.08.17 17:12:31 | 00,486,680 | ---- | M] (AVG Technologies CZ, s.r.o.) -- E:\Program Files\AVG\AVG8\avgrsx.exe
PRC - [2009.08.17 17:12:20 | 00,595,736 | ---- | M] (AVG Technologies CZ, s.r.o.) -- E:\Program Files\AVG\AVG8\avgnsx.exe
PRC - [2009.07.31 11:51:11 | 00,075,064 | ---- | M] () -- E:\WINDOWS\System32\PnkBstrA.exe
PRC - [2009.08.05 12:25:18 | 00,189,768 | ---- | M] () -- E:\WINDOWS\System32\PnkBstrB.exe
PRC - [2005.08.08 07:54:00 | 00,167,936 | ---- | M] () -- E:\Program Files\CyberLink\Shared Files\RichVideo.exe
PRC - [2009.02.06 12:10:02 | 00,227,840 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\System32\wbem\wmiprvse.exe
PRC - [2008.04.14 05:22:22 | 01,034,240 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\Explorer.EXE
PRC - [2006.11.21 04:31:26 | 00,630,784 | R--- | M] (Motorola Inc.) -- E:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
PRC - [2007.08.17 07:40:30 | 00,102,400 | ---- | M] (Synaptics, Inc.) -- E:\Program Files\Synaptics\SynTP\SynTPStart.exe
PRC - [2008.03.25 15:46:32 | 00,077,824 | ---- | M] (mychat) -- E:\WINDOWS\BisonCam\BisonHK.exe
PRC - [2008.03.11 17:08:50 | 00,053,248 | ---- | M] (Bison Inc.) -- E:\WINDOWS\BisonCam\DeLay.exe
PRC - [2007.08.17 07:36:30 | 01,015,808 | ---- | M] (Synaptics, Inc.) -- E:\Program Files\Synaptics\SynTP\SynTPEnh.exe
PRC - [2006.11.23 15:10:42 | 00,056,928 | ---- | M] (Cyberlink Corp.) -- E:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
PRC - [2007.03.28 19:30:18 | 00,053,776 | ---- | M] (UPEK Inc.) -- E:\Program Files\Protector Suite QL\psqltray.exe
PRC - [2008.10.28 18:18:26 | 17,331,200 | ---- | M] (Realtek Semiconductor Corp.) -- E:\WINDOWS\RTHDCPL.EXE
PRC - [2003.01.16 12:32:40 | 00,049,152 | ---- | M] (Ruling Tec Pte Ltd) -- E:\Program Files\VibrateGameDeviceDriver\RFPIcon.exe
PRC - [2009.03.09 05:19:17 | 00,148,888 | ---- | M] (Sun Microsystems, Inc.) -- E:\Program Files\Java\jre6\bin\jusched.exe
PRC - [2007.08.24 07:00:48 | 00,033,648 | ---- | M] (Microsoft Corporation) -- E:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
PRC - [2009.08.17 17:12:10 | 02,007,832 | ---- | M] (AVG Technologies CZ, s.r.o.) -- E:\Program Files\AVG\AVG8\avgtray.exe
PRC - [2008.04.14 05:22:36 | 01,695,232 | ---- | M] (Microsoft Corporation) -- E:\Program Files\Messenger\msmsgs.exe
PRC - [2006.12.23 18:05:20 | 00,143,360 | ---- | M] (Nero AG) -- E:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
PRC - [2009.07.24 17:34:58 | 03,281,408 | ---- | M] (The Author of QIP) -- E:\Program Files\QIP\qip.exe
PRC - [2008.07.24 17:02:06 | 00,490,952 | ---- | M] (DT Soft Ltd) -- E:\Program Files\DAEMON Tools Lite\daemon.exe
PRC - [2008.03.14 18:54:06 | 03,641,344 | ---- | M] () -- E:\Program Files\HotKey_Driver\HotKeyDriver.exe
PRC - [2004.10.18 01:24:50 | 00,184,320 | ---- | M] (InterVideo Inc.) -- E:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
PRC - [2008.02.19 19:25:00 | 00,843,776 | ---- | M] (Realtek Semiconductor Corp.) -- E:\Program Files\Realtek\RTL8185 Wireless LAN Utility\RtWLan.exe
PRC - [2006.03.02 14:00:00 | 00,016,896 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\System32\wbem\unsecapp.exe
PRC - [2009.07.29 00:32:22 | 00,830,960 | ---- | M] (Google Inc.) -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2009.07.29 00:32:22 | 00,830,960 | ---- | M] (Google Inc.) -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2009.07.29 00:32:22 | 00,830,960 | ---- | M] (Google Inc.) -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2009.07.29 00:32:22 | 00,830,960 | ---- | M] (Google Inc.) -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2009.07.29 00:32:22 | 00,830,960 | ---- | M] (Google Inc.) -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2009.07.29 00:32:22 | 00,830,960 | ---- | M] (Google Inc.) -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2009.07.29 00:32:22 | 00,830,960 | ---- | M] (Google Inc.) -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2009.07.29 00:32:22 | 00,830,960 | ---- | M] (Google Inc.) -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2009.07.29 00:32:22 | 00,830,960 | ---- | M] (Google Inc.) -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2009.07.29 00:32:22 | 00,830,960 | ---- | M] (Google Inc.) -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2009.07.29 00:32:22 | 00,830,960 | ---- | M] (Google Inc.) -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2009.07.29 00:32:22 | 00,830,960 | ---- | M] (Google Inc.) -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2009.07.29 00:32:22 | 00,830,960 | ---- | M] (Google Inc.) -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2009.07.29 00:32:22 | 00,830,960 | ---- | M] (Google Inc.) -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2009.07.29 00:32:22 | 00,830,960 | ---- | M] (Google Inc.) -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2009.07.29 00:32:22 | 00,830,960 | ---- | M] (Google Inc.) -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2009.07.29 00:32:22 | 00,830,960 | ---- | M] (Google Inc.) -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2009.07.29 00:32:22 | 00,830,960 | ---- | M] (Google Inc.) -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2009.08.16 14:15:22 | 00,514,048 | ---- | M] (OldTimer Tools) -- E:\Documents and Settings\Kluci\Plocha\OTL.exe

========== Win32 Services (SafeList) ==========

SRV - [2008.01.18 01:37:26 | 00,024,635 | ---- | M] (Apache Software Foundation) -- e:\xampp\apache\bin\apache.exe -- (Apache2.2 [Auto | Stopped])
SRV - [2008.07.25 11:16:40 | 00,034,312 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe -- (aspnet_state [On_Demand | Stopped])
SRV - [2009.08.17 17:12:02 | 00,297,752 | ---- | M] (AVG Technologies CZ, s.r.o.) -- E:\Program Files\AVG\AVG8\avgwdsvc.exe -- (avg8wd [Auto | Running])
SRV - [2006.02.28 13:42:38 | 00,229,376 | ---- | M] (Apple Computer, Inc.) -- E:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service [Auto | Running])
SRV - [2008.07.25 11:17:02 | 00,069,632 | ---- | M] (Microsoft Corporation) -- e:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])
SRV - [2008.11.28 23:47:14 | 00,654,848 | ---- | M] (Macrovision Europe Ltd.) -- E:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service [On_Demand | Stopped])
SRV - [2008.07.29 21:10:04 | 00,046,104 | ---- | M] (Microsoft Corporation) -- e:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped])
SRV - [2008.10.23 21:06:05 | 00,029,744 | ---- | M] (Google) -- E:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe -- (GoogleDesktopManager-061008-081103 [On_Demand | Stopped])
SRV - [2009.01.09 22:26:29 | 00,137,200 | ---- | M] (Google) -- E:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc [On_Demand | Stopped])
SRV - [2008.04.14 05:21:53 | 00,038,400 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -- (helpsvc [Auto | Running])
SRV - [2005.11.14 01:06:04 | 00,069,632 | ---- | M] (Macrovision Corporation) -- E:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe -- (IDriverT [On_Demand | Stopped])
SRV - [2008.07.29 19:24:50 | 00,881,664 | ---- | M] (Microsoft Corporation) -- e:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc [Unknown | Stopped])
SRV - [2009.03.09 05:19:15 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) -- E:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService [Auto | Running])
SRV - [2008.09.26 22:26:12 | 00,068,096 | ---- | M] () -- E:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe -- (Macromedia Licensing Service [On_Demand | Stopped])
SRV - [2007.08.24 06:59:20 | 00,068,464 | ---- | M] (Microsoft Corporation) -- E:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service [On_Demand | Stopped])
SRV - [2008.08.04 15:45:16 | 05,779,456 | ---- | M] () -- E:\Program Files\MySQL\MySQL Server 5.0\bin\mysqld-nt.exe -- (MySQL [Auto | Running])
SRV - [2008.07.29 19:16:38 | 00,132,096 | ---- | M] (Microsoft Corporation) -- e:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped])
SRV - [2006.12.23 17:54:04 | 00,262,144 | ---- | M] (Nero AG) -- E:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService [Disabled | Stopped])
SRV - [2008.03.28 12:04:00 | 00,155,716 | ---- | M] (NVIDIA Corporation) -- E:\WINDOWS\System32\nvsvc32.exe -- (NVSvc [Auto | Running])
SRV - [2007.08.24 03:19:12 | 00,443,776 | ---- | M] (Microsoft Corporation) -- E:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv [On_Demand | Stopped])
SRV - [2006.10.26 14:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) -- E:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose [On_Demand | Stopped])
SRV - [2009.07.31 11:51:11 | 00,075,064 | ---- | M] () -- E:\WINDOWS\System32\PnkBstrA.exe -- (PnkBstrA [Auto | Running])
SRV - [2009.08.05 12:25:18 | 00,189,768 | ---- | M] () -- E:\WINDOWS\System32\PnkBstrB.exe -- (PnkBstrB [Auto | Running])
SRV - [2005.08.08 07:54:00 | 00,167,936 | ---- | M] () -- E:\Program Files\CyberLink\Shared Files\RichVideo.exe -- (RichVideo [Auto | Running])
SRV - [2008.08.07 12:17:30 | 00,575,488 | ---- | M] (Nokia.) -- E:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer [On_Demand | Stopped])
SRV - [2007.01.05 20:57:30 | 00,913,920 | ---- | M] (Microsoft Corporation) -- E:\Program Files\Windows Media Player\WMPNetwk.exe -- (WMPNetworkSvc [On_Demand | Stopped])

========== Driver Services (SafeList) ==========

DRV - [2009.01.08 18:49:01 | 00,021,035 | ---- | M] (Meetinghouse Data Communications) -- E:\WINDOWS\System32\DRIVERS\AegisP.sys -- (AegisP [Auto | Running])
DRV - [2009.08.17 17:12:30 | 00,335,240 | ---- | M] (AVG Technologies CZ, s.r.o.) -- E:\WINDOWS\System32\Drivers\avgldx86.sys -- (AvgLdx86 [System | Running])
DRV - [2009.08.17 17:12:30 | 00,027,784 | ---- | M] (AVG Technologies CZ, s.r.o.) -- E:\WINDOWS\System32\Drivers\avgmfx86.sys -- (AvgMfx86 [System | Running])
DRV - [2009.05.09 08:44:33 | 00,108,552 | ---- | M] (AVG Technologies CZ, s.r.o.) -- E:\WINDOWS\System32\Drivers\avgtdix.sys -- (AvgTdiX [System | Running])
DRV - [2008.04.30 18:07:10 | 01,073,320 | ---- | M] (Bison Electronics. Inc. ) -- E:\WINDOWS\System32\Drivers\BisonC07.sys -- (Cam5607 [On_Demand | Running])
DRV - [2005.09.26 16:47:46 | 00,008,576 | ---- | M] (Windows (R) Server 2003 DDK provider) -- E:\WINDOWS\System32\drivers\Dyncal.sys -- (DynCal [On_Demand | Running])
DRV - [2007.10.09 14:13:00 | 00,038,144 | ---- | M] (Realtek) -- E:\WINDOWS\System32\DRIVERS\EAPPkt.sys -- (EAPPkt [Auto | Running])
DRV - [2007.04.10 18:50:04 | 00,066,432 | R--- | M] (ENE Technology Inc.) -- E:\WINDOWS\System32\DRIVERS\EMS7SK.sys -- (EMSCR [On_Demand | Running])
DRV - [2007.04.10 18:50:12 | 00,046,080 | R--- | M] (ENE Technology Inc.) -- E:\WINDOWS\System32\DRIVERS\ESD7SK.sys -- (ESDCR [On_Demand | Running])
DRV - [2008.12.07 21:39:02 | 00,017,480 | ---- | M] (LogMeIn, Inc.) -- E:\WINDOWS\System32\DRIVERS\hamachi.sys -- (hamachi [On_Demand | Running])
DRV - [2008.04.13 18:36:05 | 00,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) -- E:\WINDOWS\System32\DRIVERS\HDAudBus.sys -- (HDAudBus [On_Demand | Running])
DRV - [2004.03.23 15:24:14 | 00,016,908 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\System32\Drivers\HDUSB_XP.sys -- (HDUSB [Auto | Stopped])
DRV - [2008.10.31 12:38:08 | 04,942,336 | ---- | M] (Realtek Semiconductor Corp.) -- E:\WINDOWS\System32\drivers\RtkHDAud.sys -- (IntcAzAudAddService [On_Demand | Running])
DRV - [2003.10.15 11:07:38 | 00,012,288 | ---- | M] (Matsushita Electric Industrial Co., Ltd.) -- E:\WINDOWS\System32\DRIVERS\mtdv2ku2.sys -- (MTDVC2 [On_Demand | Stopped])
DRV - [2003.10.11 02:39:52 | 00,011,648 | ---- | M] (Matsushita Electric Industrial Co., Ltd.) -- E:\WINDOWS\System32\DRIVERS\mtdv2ks2.sys -- (MTDVC2_ENUM [On_Demand | Stopped])
DRV - [2008.05.07 08:38:20 | 00,017,536 | ---- | M] (Nokia) -- E:\WINDOWS\System32\drivers\ccdcmb.sys -- (nmwcd [On_Demand | Stopped])
DRV - [2008.05.07 08:38:20 | 00,020,864 | ---- | M] (Nokia) -- E:\WINDOWS\System32\drivers\ccdcmbo.sys -- (nmwcdc [On_Demand | Stopped])
DRV - [2009.04.15 17:12:11 | 00,023,217 | ---- | M] (INCA Internet Co., Ltd.) -- E:\Program Files\Lineage II GRACIA\system\npkcrypt.sys -- (npkcrypt [On_Demand | Stopped])
DRV - [2008.03.28 12:04:00 | 06,551,008 | ---- | M] (NVIDIA Corporation) -- E:\WINDOWS\System32\DRIVERS\nv4_mini.sys -- (nv [On_Demand | Running])
DRV - [2007.09.17 16:53:26 | 00,021,632 | ---- | M] (Nokia) -- E:\WINDOWS\System32\DRIVERS\pccsmcfd.sys -- (pccsmcfd [On_Demand | Stopped])
DRV - [2003.09.19 02:47:00 | 00,010,368 | ---- | M] (Padus, Inc.) -- E:\WINDOWS\System32\drivers\pfc.sys -- (pfc [On_Demand | Running])
DRV - [2006.03.02 14:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- E:\WINDOWS\System32\DRIVERS\ptilink.sys -- (Ptilink [On_Demand | Running])
DRV - [2006.09.27 23:53:22 | 00,036,560 | ---- | M] (Sonic Solutions) -- E:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20 [Boot | Running])
DRV - [2007.12.25 12:20:20 | 00,288,000 | R--- | M] (Realtek Semiconductor Corporation ) -- E:\WINDOWS\System32\DRIVERS\RTL8187B.sys -- (RTL8187B [On_Demand | Running])
DRV - [2008.04.13 18:39:14 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- E:\WINDOWS\System32\DRIVERS\secdrv.sys -- (Secdrv [On_Demand | Stopped])
DRV - [2006.07.05 14:46:06 | 00,063,352 | ---- | M] (Protection Technology (StarForce)) -- E:\WINDOWS\System32\drivers\sfdrv01a.sys -- (sfdrv01a [Boot | Running])
DRV - [2006.06.14 16:56:56 | 00,013,680 | ---- | M] (Protection Technology (StarForce)) -- E:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02 [Boot | Running])
DRV - [2006.08.11 15:47:13 | 00,059,776 | ---- | M] (Protection Technology (StarForce)) -- E:\WINDOWS\System32\drivers\sfsync04.sys -- (sfsync04 [Boot | Running])
DRV - [2007.10.14 14:00:00 | 00,043,264 | R--- | M] (Silicon Integrated Systems Corp.) -- E:\WINDOWS\System32\DRIVERS\SiSGbeXP.sys -- (SiSGbeXP [On_Demand | Running])
DRV - [2006.11.21 04:35:00 | 00,982,272 | R--- | M] (Motorola Inc.) -- E:\WINDOWS\System32\DRIVERS\smserial.sys -- (smserial [On_Demand | Running])
DRV - [2008.09.17 16:09:50 | 00,717,296 | ---- | M] () -- E:\WINDOWS\System32\Drivers\sptd.sys -- (sptd [Boot | Running])
DRV - [2007.08.17 07:05:00 | 00,212,704 | ---- | M] (Synaptics, Inc.) -- E:\WINDOWS\System32\DRIVERS\SynTP.sys -- (SynTP [On_Demand | Running])
DRV - [2007.03.28 19:15:36 | 00,046,992 | ---- | M] (UPEK Inc.) -- E:\WINDOWS\System32\Drivers\tcusb.sys -- (TcUsb [On_Demand | Running])
DRV - [2008.06.06 10:24:44 | 00,008,064 | ---- | M] (Windows (R) Codename Longhorn DDK provider) -- E:\WINDOWS\System32\DRIVERS\usbser_lowerflt.sys -- (upperdev [On_Demand | Stopped])
DRV - [2008.04.13 21:45:36 | 00,026,112 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\System32\drivers\usbser.sys -- (usbser [On_Demand | Stopped])
DRV - [2008.05.07 08:38:36 | 00,008,064 | ---- | M] (Windows (R) Codename Longhorn DDK provider) -- E:\WINDOWS\System32\DRIVERS\usbser_lowerfltj.sys -- (UsbserFilt [On_Demand | Stopped])

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL =
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page =
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page =
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page =
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm


IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-789336058-764733703-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.qip.ru
IE - HKU\S-1-5-21-789336058-764733703-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
IE - HKU\S-1-5-21-789336058-764733703-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = E:\WINDOWS\system32\blank.htm
IE - HKU\S-1-5-21-789336058-764733703-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions = 1
IE - HKU\S-1-5-21-789336058-764733703-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
IE - HKU\S-1-5-21-789336058-764733703-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = start.qip.ru
IE - HKU\S-1-5-21-789336058-764733703-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
IE - URLSearchHook: - Reg Error: Key error. File not found
IE - URLSearchHook: {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - E:\Documents and Settings\Kluci\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
IE - HKU\S-1-5-21-789336058-764733703-725345543-1003\S-1-5-21-789336058-764733703-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-789336058-764733703-725345543-1003\S-1-5-21-789336058-764733703-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "QIP Search"
FF - prefs.js..browser.search.selectedEngine: "Wikipedie (cs)"
FF - prefs.js..browser.startup.homepage: "http://www.centrum.cz/"
FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:8.5
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.6
FF - prefs.js..extensions.enabledItems: firebug@software.joehewitt.com:1.4.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}:6.0.12
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: dave2x@download:0.5.8
FF - prefs.js..extensions.enabledItems: {ea614400-e918-4741-9a97-7a972ff7c30b}:1.0.6
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.13
FF - prefs.js..keyword.URL: "http://search.qip.ru/search?from=FF&query="
FF - prefs.js..network.proxy.no_proxies_on: "*.local"

FF - HKLM\software\mozilla\Firefox\extensions\\jqs@sun.com: E:\Program Files\Java\jre6\lib\deploy\jqs\ff [2009.02.20 11:22:58 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: E:\Program Files\AVG\AVG8\Firefox [2009.06.30 08:24:09 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\{20a82645-c095-46ed-80e3-08825760534b}: E:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009.08.18 03:19:09 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.13\extensions\\Components: E:\Program Files\Mozilla Firefox\components [2009.08.11 13:11:42 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.13\extensions\\Plugins: E:\Program Files\Mozilla Firefox\plugins [2009.08.11 13:11:42 | 00,000,000 | ---D | M]

[2008.11.17 22:33:58 | 00,000,000 | ---D | M] -- E:\Documents and Settings\Kluci\Data aplikací\mozilla\Extensions
[2008.11.17 22:33:58 | 00,000,000 | ---D | M] -- E:\Documents and Settings\Kluci\Data aplikací\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009.08.17 13:24:40 | 00,000,000 | ---D | M] -- E:\Documents and Settings\Kluci\Data aplikací\mozilla\Firefox\Profiles\48cqj7hq.default\extensions
[2009.07.30 22:33:49 | 00,000,000 | ---D | M] -- E:\Documents and Settings\Kluci\Data aplikací\mozilla\Firefox\Profiles\48cqj7hq.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2009.06.04 15:34:10 | 00,000,000 | ---D | M] -- E:\Documents and Settings\Kluci\Data aplikací\mozilla\Firefox\Profiles\48cqj7hq.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2009.03.19 19:46:52 | 00,000,000 | ---D | M] -- E:\Documents and Settings\Kluci\Data aplikací\mozilla\Firefox\Profiles\48cqj7hq.default\extensions\dave2x@download
[2009.07.30 22:33:46 | 00,000,000 | ---D | M] -- E:\Documents and Settings\Kluci\Data aplikací\mozilla\Firefox\Profiles\48cqj7hq.default\extensions\firebug@software.joehewitt.com
[2009.08.03 10:32:06 | 00,002,061 | ---- | M] () -- E:\Documents and Settings\Kluci\Data aplikací\Mozilla\FireFox\Profiles\48cqj7hq.default\searchplugins\qipsearch.xml
[2009.08.17 13:24:40 | 00,000,000 | ---D | M] -- E:\Program Files\mozilla firefox\extensions
[2009.08.11 13:11:42 | 00,000,000 | ---D | M] -- E:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2009.02.20 11:23:14 | 00,000,000 | ---D | M] -- E:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}
[2009.04.01 15:18:18 | 00,000,000 | ---D | M] -- E:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
[2009.08.11 13:11:36 | 00,023,032 | ---- | M] (Mozilla Foundation) -- E:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2009.08.11 13:11:36 | 00,134,648 | ---- | M] (Mozilla Foundation) -- E:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2007.04.10 18:21:08 | 00,163,256 | ---- | M] (Microsoft Corporation) -- E:\Program Files\mozilla firefox\plugins\np-mswmp.dll
[2008.11.04 11:15:38 | 00,114,688 | ---- | M] (Adobe Systems, Inc.) -- E:\Program Files\mozilla firefox\plugins\np32dsw.dll
[2009.03.09 05:19:09 | 00,410,984 | ---- | M] (Sun Microsystems, Inc.) -- E:\Program Files\mozilla firefox\plugins\npdeploytk.dll
[2009.08.11 13:11:37 | 00,065,528 | ---- | M] (mozilla.org) -- E:\Program Files\mozilla firefox\plugins\npnul32.dll
[2009.02.27 13:13:42 | 00,103,792 | ---- | M] (Adobe Systems Inc.) -- E:\Program Files\mozilla firefox\plugins\nppdf32.dll
[2009.07.31 15:38:26 | 00,143,360 | ---- | M] (Apple Inc.) -- E:\Program Files\mozilla firefox\plugins\npqtplugin.dll
[2009.07.31 15:38:26 | 00,143,360 | ---- | M] (Apple Inc.) -- E:\Program Files\mozilla firefox\plugins\npqtplugin2.dll
[2009.07.31 15:38:26 | 00,143,360 | ---- | M] (Apple Inc.) -- E:\Program Files\mozilla firefox\plugins\npqtplugin3.dll
[2009.07.31 15:38:26 | 00,143,360 | ---- | M] (Apple Inc.) -- E:\Program Files\mozilla firefox\plugins\npqtplugin4.dll
[2009.07.31 15:38:26 | 00,143,360 | ---- | M] (Apple Inc.) -- E:\Program Files\mozilla firefox\plugins\npqtplugin5.dll
[2009.07.31 15:38:26 | 00,143,360 | ---- | M] (Apple Inc.) -- E:\Program Files\mozilla firefox\plugins\npqtplugin6.dll
[2009.07.31 15:38:26 | 00,143,360 | ---- | M] (Apple Inc.) -- E:\Program Files\mozilla firefox\plugins\npqtplugin7.dll
[2008.12.08 08:31:19 | 00,001,706 | ---- | M] () -- E:\Program Files\mozilla firefox\searchplugins\google.xml
[2008.12.08 08:31:19 | 00,000,638 | ---- | M] () -- E:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2008.12.08 08:31:19 | 00,001,687 | ---- | M] () -- E:\Program Files\mozilla firefox\searchplugins\mall-cz.xml
[2008.12.08 08:31:19 | 00,001,367 | ---- | M] () -- E:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2008.12.08 08:31:19 | 00,000,654 | ---- | M] () -- E:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2008.12.08 08:31:19 | 00,001,179 | ---- | M] () -- E:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: (35 bytes) - E:\WINDOWS\System32\drivers\etc\Hosts
O1 - Hosts: 78.102.215.163 l2authd.lineage2.com
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - E:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - E:\Program Files\BitComet\tools\BitCometBHO_1.2.8.7.dll (BitComet)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - E:\Program Files\AVG\AVG8\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - E:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (QIPBHO Class) - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - E:\Documents and Settings\Kluci\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - E:\Program Files\Google\Google Toolbar\GoogleToolbar.dll ()
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - E:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll (Google Inc.)
O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - E:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll (Google Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - E:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (&Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - E:\Program Files\Google\Google Toolbar\GoogleToolbar.dll ()
O3 - HKU\S-1-5-21-789336058-764733703-725345543-1003\..\Toolbar\WebBrowser: (&Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - E:\Program Files\Google\Google Toolbar\GoogleToolbar.dll ()
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] E:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AVG8_TRAY] E:\Program Files\AVG\AVG8\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [BisonHK] E:\WINDOWS\BisonCam\BisonHK.exe (mychat)
O4 - HKLM..\Run: [BluetoothAuthenticationAgent] E:\WINDOWS\System32\bthprops.CPL (Microsoft Corporation)
O4 - HKLM..\Run: [DeLay] E:\WINDOWS\BisonCam\DeLay.exe (Bison Inc.)
O4 - HKLM..\Run: [GrooveMonitor] E:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NvCplDaemon] E:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] E:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [PSQLLauncher] E:\Program Files\Protector Suite QL\launcher.exe (UPEK Inc.)
O4 - HKLM..\Run: [QuickTime Task] E:\Program Files\QuickTime\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [RemoteControl] E:\Program Files\CyberLink\PowerDVD\PDVDServ.exe (Cyberlink Corp.)
O4 - HKLM..\Run: [RTBatteryMeter] E:\Program Files\VibrateGameDeviceDriver\RFPIcon.exe (Ruling Tec Pte Ltd)
O4 - HKLM..\Run: [RTHDCPL] E:\WINDOWS\RTHDCPL.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SMSERIAL] E:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe (Motorola Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] E:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SynTPStart] E:\Program Files\Synaptics\SynTP\SynTPStart.exe (Synaptics, Inc.)
O4 - HKU\S-1-5-21-789336058-764733703-725345543-1003..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] E:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKU\S-1-5-21-789336058-764733703-725345543-1003..\Run: [DAEMON Tools Lite] E:\Program Files\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-789336058-764733703-725345543-1003..\Run: [Google Update] E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe (Google Inc.)
O4 - HKU\S-1-5-21-789336058-764733703-725345543-1003..\Run: [MSMSGS] E:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-789336058-764733703-725345543-1003..\Run: [QIP2005] E:\Program Files\QIP\qip.exe (The Author of QIP)
O4 - HKU\S-1-5-21-789336058-764733703-725345543-1003..\Run: [Steam] E:\Program Files\Steam\Steam.exe (Valve Corporation)
O4 - Startup: E:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\HotKeyDriver.lnk = E:\Program Files\HotKey_Driver\HotKeyDriver.exe ()
O4 - Startup: E:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\InterVideo WinCinema Manager.lnk = E:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe (InterVideo Inc.)
O4 - Startup: E:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\REALTEK RTL8185 Wireless LAN Utility.lnk = E:\Program Files\Realtek\RTL8185 Wireless LAN Utility\RtWLan.exe (Realtek Semiconductor Corp.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-789336058-764733703-725345543-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-789336058-764733703-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-789336058-764733703-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-789336058-764733703-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-789336058-764733703-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: disableregistrytools = 0
O7 - HKU\S-1-5-21-789336058-764733703-725345543-1003_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - E:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Stáhnout odkaz s použitím BitCometu - E:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: Stáhnout všechna videa s použitím BitCometu - E:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: Stáhnout všechny odkazy s použitím BitCometu - E:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - E:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - E:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - E:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - E:\Program Files\BitComet\tools\BitCometBHO_1.2.8.7.dll (BitComet)
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\WINDOWS\Network Diagnostic\xpnetdiag.exe (Microsoft Corporation)
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - E:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - E:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - E:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - E:\WINDOWS\System32\wshbth.dll (Microsoft Corporation)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - E:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - E:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - E:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - E:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - E:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - E:\Program Files\AVG\AVG8\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - E:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Filter: - text/xml - E:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - E:\WINDOWS\Explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - E:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - Winlogon\Notify\psfus: DllName - E:\WINDOWS\system32\psqlpwd.dll - E:\WINDOWS\System32\psqlpwd.dll (UPEK Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - E:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008.09.16 20:24:19 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{5816f2a4-32f2-11de-8627-0022430fe429}\Shell\AutoRun\command - "" = wd_windows_tools\WDSetup.exe
O33 - MountPoints2\{5b038be8-79fa-11de-8670-0022430fe429}\Shell - "" = AutoRun
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - E:\WINDOWS\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found

========== Files/Folders - Created Within 30 Days ==========

[6 E:\WINDOWS\*.tmp files]
[2009.08.18 11:30:20 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Kluci\Plocha\Nová složka
[2009.08.18 03:16:40 | 00,000,000 | ---D | C] -- E:\672bab012746a3cf17fd74b238ec6d7e
[2009.08.18 03:16:12 | 00,000,000 | ---D | C] -- E:\WINDOWS\SxsCaPendDel
[2009.08.18 03:14:00 | 00,000,000 | -HSD | C] -- E:\Config.Msi
[2009.08.17 20:43:15 | 00,227,840 | ---- | C] (Microsoft Corporation) -- E:\WINDOWS\System32\dllcache\wmiprvse.exe
[2009.08.17 20:43:13 | 00,401,408 | ---- | C] (Microsoft Corporation) -- E:\WINDOWS\System32\dllcache\rpcss.dll
[2009.08.17 20:43:13 | 00,284,160 | ---- | C] (Microsoft Corporation) -- E:\WINDOWS\System32\dllcache\pdh.dll
[2009.08.17 20:43:13 | 00,111,104 | ---- | C] (Microsoft Corporation) -- E:\WINDOWS\System32\dllcache\services.exe
[2009.08.17 20:43:12 | 00,684,032 | ---- | C] (Microsoft Corporation) -- E:\WINDOWS\System32\dllcache\advapi32.dll
[2009.08.17 20:43:12 | 00,473,600 | ---- | C] (Microsoft Corporation) -- E:\WINDOWS\System32\dllcache\fastprox.dll
[2009.08.17 20:43:11 | 00,728,064 | ---- | C] (Microsoft Corporation) -- E:\WINDOWS\System32\dllcache\lsasrv.dll
[2009.08.17 20:43:11 | 00,709,632 | ---- | C] (Microsoft Corporation) -- E:\WINDOWS\System32\dllcache\ntdll.dll
[2009.08.17 20:43:11 | 00,453,120 | ---- | C] (Microsoft Corporation) -- E:\WINDOWS\System32\dllcache\wmiprvsd.dll
[2009.08.17 20:42:55 | 00,128,512 | ---- | C] (Microsoft Corporation) -- E:\WINDOWS\System32\dllcache\dhtmled.ocx
[2009.08.17 20:42:29 | 01,315,328 | ---- | C] (Microsoft Corporation) -- E:\WINDOWS\System32\dllcache\msoe.dll
[2009.08.17 20:42:23 | 00,246,272 | ---- | C] (Microsoft Corporation) -- E:\WINDOWS\System32\dllcache\ieproxy.dll
[2009.08.17 20:42:23 | 00,012,800 | ---- | C] (Microsoft Corporation) -- E:\WINDOWS\System32\dllcache\xpshims.dll
[2009.08.17 20:40:30 | 01,203,922 | ---- | C] () -- E:\WINDOWS\System32\dllcache\sysmain.sdb
[2009.08.17 20:40:30 | 00,216,576 | ---- | C] (Microsoft Corporation) -- E:\WINDOWS\System32\dllcache\wordpad.exe
[2009.08.17 15:46:22 | 00,000,000 | ---D | C] -- E:\ComboFix
[2009.08.17 15:46:21 | 00,390,144 | ---- | C] (Microsoft Corporation) -- E:\WINDOWS\System32\CF14981.exe
[2009.08.17 13:31:20 | 00,390,144 | ---- | C] (Microsoft Corporation) -- E:\WINDOWS\System32\CF21409.exe
[2009.08.17 11:57:20 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Kluci\Data aplikací\Malwarebytes
[2009.08.17 11:57:15 | 00,000,696 | ---- | C] () -- E:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2009.08.17 11:57:11 | 00,038,160 | ---- | C] (Malwarebytes Corporation) -- E:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009.08.17 11:57:09 | 00,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2009.08.17 11:57:08 | 00,019,096 | ---- | C] (Malwarebytes Corporation) -- E:\WINDOWS\System32\drivers\mbam.sys
[2009.08.17 11:57:07 | 00,000,000 | ---D | C] -- E:\Program Files\Malwarebytes' Anti-Malware
[2009.08.17 11:42:50 | 00,073,082 | ---- | C] () -- E:\Documents and Settings\Kluci\Dokumenty\cc_20090817_114245.reg
[2009.08.16 14:56:43 | 00,000,000 | ---D | C] -- E:\_OTL
[2009.08.16 14:42:50 | 00,102,148 | ---- | C] () -- E:\Documents and Settings\Kluci\Plocha\SystemLook.exe
[2009.08.16 14:15:19 | 00,514,048 | ---- | C] (OldTimer Tools) -- E:\Documents and Settings\Kluci\Plocha\OTL.exe
[2009.08.11 15:35:15 | 00,000,697 | ---- | C] () -- E:\Documents and Settings\Kluci\Plocha\Metin2 CZ.lnk
[2009.08.11 15:30:14 | 00,000,000 | ---D | C] -- E:\Program Files\Metin2_CZ
[2009.08.11 14:11:37 | 45,291,301 | ---- | C] () -- E:\Documents and Settings\Kluci\Dokumenty\surf_fruits.bsp
[2009.08.07 00:09:35 | 00,000,000 | ---D | C] -- E:\Program Files\Simple Sudoku
[2009.08.07 00:09:35 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Kluci\Data aplikací\Simple Sudoku
[2009.08.05 12:55:51 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Kluci\Data aplikací\Apple Computer
[2009.08.05 11:01:14 | 00,205,312 | ---- | C] (Microsoft Corporation) -- E:\WINDOWS\System32\dllcache\mswebdvd.dll
[2009.08.04 21:10:20 | 00,001,508 | ---- | C] () -- E:\Documents and Settings\Kluci\Plocha\GamePark.lnk
[2009.08.04 21:10:19 | 00,000,000 | ---D | C] -- E:\Program Files\GamePark
[2009.08.02 19:30:34 | 00,000,847 | ---- | C] () -- E:\Documents and Settings\Kluci\Plocha\Call of Duty(R) 2 Singleplayer.lnk
[2009.08.02 17:45:55 | 00,189,768 | ---- | C] () -- E:\WINDOWS\System32\PnkBstrB.xtr
[2009.08.01 12:17:10 | 00,029,544 | ---- | C] () -- E:\Documents and Settings\All Users\Dokumenty\The Lord Of The Rings Battle For Middle Earth 2 DVD9 V1.1 Crack.torrent
[2009.07.31 18:01:45 | 00,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Data aplikací\Norton
[2009.07.31 18:01:10 | 00,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Data aplikací\Symantec
[2009.07.31 18:01:04 | 00,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Data aplikací\NortonInstaller
[2009.07.31 15:37:47 | 00,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Data aplikací\Apple Computer
[2009.07.31 15:37:10 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Apple
[2009.07.31 15:36:55 | 00,000,000 | ---D | C] -- E:\Program Files\Apple Software Update
[2009.07.31 15:36:55 | 00,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Data aplikací\Apple
[2009.07.31 15:36:40 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Apple Computer
[2009.07.31 11:45:47 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\PunkBuster
[2009.07.30 23:34:24 | 00,000,031 | ---- | C] () -- E:\WINDOWS\game.ini
[2009.07.29 21:51:14 | 00,069,850 | ---- | C] () -- E:\Documents and Settings\Kluci\Dokumenty\cc_20090729_215112.reg
[2009.07.29 12:57:48 | 00,015,563 | ---- | C] () -- E:\Documents and Settings\All Users\Dokumenty\Left 4 Dead No-Steam Patch 1.0.1.4.torrent
[2009.07.29 12:57:48 | 00,000,000 | ---D | C] -- E:\Documents and Settings\All Users\Dokumenty\Left 4 Dead No-Steam Patch 1.0.1.4
[2009.07.29 06:36:48 | 00,119,808 | ---- | C] (Microsoft Corporation) -- E:\WINDOWS\System32\dllcache\t2embed.dll
[2009.07.29 06:36:47 | 00,081,920 | ---- | C] (Microsoft Corporation) -- E:\WINDOWS\System32\dllcache\fontsub.dll
[2009.07.26 20:02:39 | 00,041,942 | ---- | C] () -- E:\Documents and Settings\Kluci\Dokumenty\rec_vlc_20-02-34.mp3
[2009.07.26 19:58:35 | 00,053,836 | ---- | C] () -- E:\Documents and Settings\Kluci\Dokumenty\rec_vlc_19-58-28.mp3
[2009.07.26 19:58:25 | 00,080,128 | ---- | C] () -- E:\Documents and Settings\Kluci\Dokumenty\rec_vlc_19-58-18.mp3
[2009.07.25 15:33:41 | 00,000,000 | ---D | C] -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\Temp
[2009.05.22 00:50:38 | 00,041,808 | ---- | C] () -- E:\WINDOWS\System32\xfcodec.dll
[2009.03.19 23:57:09 | 00,000,476 | ---- | C] () -- E:\WINDOWS\my.ini
[2009.03.05 18:56:44 | 00,137,928 | ---- | C] () -- E:\WINDOWS\System32\drivers\PnkBstrK.sys
[2009.02.19 16:31:04 | 00,069,632 | R--- | C] () -- E:\WINDOWS\System32\xmltok.dll
[2009.02.19 16:31:04 | 00,036,864 | R--- | C] () -- E:\WINDOWS\System32\xmlparse.dll
[2009.02.19 16:30:45 | 00,185,344 | ---- | C] () -- E:\WINDOWS\patchw32.dll
[2009.02.19 14:52:53 | 00,204,800 | ---- | C] () -- E:\WINDOWS\System32\IVIresizeW7.dll
[2009.02.19 14:52:53 | 00,200,704 | ---- | C] () -- E:\WINDOWS\System32\IVIresizeA6.dll
[2009.02.19 14:52:53 | 00,192,512 | ---- | C] () -- E:\WINDOWS\System32\IVIresizeP6.dll
[2009.02.19 14:52:53 | 00,192,512 | ---- | C] () -- E:\WINDOWS\System32\IVIresizeM6.dll
[2009.02.19 14:52:53 | 00,188,416 | ---- | C] () -- E:\WINDOWS\System32\IVIresizePX.dll
[2009.02.19 14:52:53 | 00,020,480 | ---- | C] () -- E:\WINDOWS\System32\IVIresize.dll
[2008.11.15 20:07:10 | 00,000,017 | ---- | C] () -- E:\WINDOWS\HostsUpdaterConfig.ini
[2008.10.08 16:49:04 | 00,000,227 | ---- | C] () -- E:\WINDOWS\System32\l2host.ini
[2008.09.17 18:13:57 | 00,000,069 | ---- | C] () -- E:\WINDOWS\NeroDigital.ini
[2008.09.17 16:09:50 | 00,717,296 | ---- | C] () -- E:\WINDOWS\System32\drivers\sptd.sys
[2008.09.16 21:12:08 | 00,015,190 | ---- | C] () -- E:\WINDOWS\M3000Twn.ini
[2008.09.16 21:12:02 | 00,000,189 | R--- | C] () -- E:\WINDOWS\OEM.ini
[2008.09.16 20:46:18 | 00,356,352 | R--- | C] () -- E:\WINDOWS\EMCRI.dll
[2008.03.28 12:04:00 | 01,703,936 | ---- | C] () -- E:\WINDOWS\System32\nvwdmcpl.dll
[2008.03.28 12:04:00 | 01,482,752 | ---- | C] () -- E:\WINDOWS\System32\nview.dll
[2008.03.28 12:04:00 | 01,019,904 | ---- | C] () -- E:\WINDOWS\System32\nvwimg.dll
[2008.03.28 12:04:00 | 00,466,944 | ---- | C] () -- E:\WINDOWS\System32\nvshell.dll
[2007.03.30 00:00:40 | 00,203,264 | R--- | C] () -- E:\WINDOWS\System32\CddbCdda.dll
[2006.03.02 14:00:00 | 00,001,024 | ---- | C] () -- E:\WINDOWS\win.ini
[2006.03.02 14:00:00 | 00,000,227 | ---- | C] () -- E:\WINDOWS\system.ini

========== Files - Modified Within 30 Days ==========

[1 E:\WINDOWS\System32\*.tmp files]
[6 E:\WINDOWS\*.tmp files]
[2009.08.18 11:33:12 | 00,000,466 | -H-- | M] () -- E:\WINDOWS\tasks\User_Feed_Synchronization-{9F7E2BAB-CA3B-4EC4-96A6-2C662B988496}.job
[2009.08.18 11:27:33 | 00,000,069 | ---- | M] () -- E:\WINDOWS\NeroDigital.ini
[2009.08.18 11:17:53 | 00,176,628 | ---- | M] () -- E:\WINDOWS\System32\nvapps.xml
[2009.08.18 11:17:44 | 00,013,714 | ---- | M] () -- E:\WINDOWS\System32\wpa.dbl
[2009.08.18 11:17:38 | 01,570,920 | ---- | M] () -- E:\WINDOWS\System32\FNTCACHE.DAT
[2009.08.18 11:17:34 | 00,076,512 | ---- | M] () -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
[2009.08.18 11:17:04 | 00,000,006 | -H-- | M] () -- E:\WINDOWS\tasks\SA.DAT
[2009.08.18 11:16:58 | 00,002,048 | --S- | M] () -- E:\WINDOWS\bootstat.dat
[2009.08.18 11:16:51 | 10,707,72224 | -HS- | M] () -- E:\hiberfil.sys
[2009.08.18 03:28:36 | 00,001,374 | ---- | M] () -- E:\WINDOWS\imsins.BAK
[2009.08.18 03:23:17 | 00,986,510 | ---- | M] () -- E:\WINDOWS\System32\PerfStringBackup.INI
[2009.08.18 03:23:17 | 00,435,260 | ---- | M] () -- E:\WINDOWS\System32\perfh009.dat
[2009.08.18 03:23:17 | 00,431,998 | ---- | M] () -- E:\WINDOWS\System32\perfh005.dat
[2009.08.18 03:23:17 | 00,079,040 | ---- | M] () -- E:\WINDOWS\System32\perfc005.dat
[2009.08.18 03:23:17 | 00,068,156 | ---- | M] () -- E:\WINDOWS\System32\perfc009.dat
[2009.08.18 02:57:00 | 00,001,026 | ---- | M] () -- E:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-789336058-764733703-725345543-1003UA.job
[2009.08.17 17:12:32 | 00,011,952 | ---- | M] (AVG Technologies CZ, s.r.o.) -- E:\WINDOWS\System32\avgrsstx.dll
[2009.08.17 17:12:30 | 00,335,240 | ---- | M] (AVG Technologies CZ, s.r.o.) -- E:\WINDOWS\System32\drivers\avgldx86.sys
[2009.08.17 17:12:30 | 00,027,784 | ---- | M] (AVG Technologies CZ, s.r.o.) -- E:\WINDOWS\System32\drivers\avgmfx86.sys
[2009.08.17 16:57:01 | 00,000,974 | ---- | M] () -- E:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-789336058-764733703-725345543-1003Core.job
[2009.08.17 15:45:14 | 00,390,144 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\System32\CF14981.exe
[2009.08.17 13:30:46 | 00,390,144 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\System32\CF21409.exe
[2009.08.17 11:57:15 | 00,000,696 | ---- | M] () -- E:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2009.08.17 11:42:58 | 00,073,082 | ---- | M] () -- E:\Documents and Settings\Kluci\Dokumenty\cc_20090817_114245.reg
[2009.08.17 11:34:07 | 39,918,921 | ---- | M] () -- E:\WINDOWS\System32\drivers\Avg\incavi.avm
[2009.08.16 23:20:20 | 00,148,992 | ---- | M] () -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.08.16 14:42:53 | 00,102,148 | ---- | M] () -- E:\Documents and Settings\Kluci\Plocha\SystemLook.exe
[2009.08.16 14:15:22 | 00,514,048 | ---- | M] (OldTimer Tools) -- E:\Documents and Settings\Kluci\Plocha\OTL.exe
[2009.08.16 14:05:07 | 00,001,734 | ---- | M] () -- E:\Documents and Settings\Kluci\Plocha\HijackThis.lnk
[2009.08.16 11:12:32 | 00,001,024 | ---- | M] () -- E:\WINDOWS\win.ini
[2009.08.15 22:26:44 | 00,065,360 | ---- | M] () -- E:\WINDOWS\System32\drivers\Avg\microavi.avg
[2009.08.14 16:06:17 | 05,329,798 | -H-- | M] () -- E:\Documents and Settings\Kluci\Local Settings\Data aplikací\IconCache.db
[2009.08.13 23:36:15 | 00,000,104 | ---- | M] () -- E:\WINDOWS\System32\drivers\etc\hosts.rar
[2009.08.13 19:08:15 | 00,002,283 | ---- | M] () -- E:\Documents and Settings\All Users\Plocha\Skype.lnk
[2009.08.13 14:19:17 | 00,000,035 | ---- | M] () -- E:\WINDOWS\System32\drivers\etc\hosts
[2009.08.13 13:45:51 | 00,002,563 | ---- | M] () -- E:\Documents and Settings\Kluci\Plocha\Microsoft Office Word 2007.lnk
[2009.08.11 15:35:17 | 00,000,697 | ---- | M] () -- E:\Documents and Settings\Kluci\Plocha\Metin2 CZ.lnk
[2009.08.05 12:25:32 | 00,137,928 | ---- | M] () -- E:\WINDOWS\System32\drivers\PnkBstrK.sys
[2009.08.05 12:25:18 | 00,189,768 | ---- | M] () -- E:\WINDOWS\System32\PnkBstrB.xtr
[2009.08.05 12:25:18 | 00,189,768 | ---- | M] () -- E:\WINDOWS\System32\PnkBstrB.exe
[2009.08.05 11:01:14 | 00,205,312 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\System32\mswebdvd.dll
[2009.08.05 11:01:14 | 00,205,312 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\System32\dllcache\mswebdvd.dll
[2009.08.04 21:47:00 | 00,000,810 | ---- | M] () -- E:\Documents and Settings\Kluci\Plocha\srcds.exe.lnk
[2009.08.04 21:10:20 | 00,001,508 | ---- | M] () -- E:\Documents and Settings\Kluci\Plocha\GamePark.lnk
[2009.08.03 13:36:28 | 00,038,160 | ---- | M] (Malwarebytes Corporation) -- E:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009.08.03 13:36:06 | 00,019,096 | ---- | M] (Malwarebytes Corporation) -- E:\WINDOWS\System32\drivers\mbam.sys
[2009.08.02 19:30:34 | 00,000,847 | ---- | M] () -- E:\Documents and Settings\Kluci\Plocha\Call of Duty(R) 2 Singleplayer.lnk
[2009.08.01 12:17:10 | 00,029,544 | ---- | M] () -- E:\Documents and Settings\All Users\Dokumenty\The Lord Of The Rings Battle For Middle Earth 2 DVD9 V1.1 Crack.torrent
[2009.07.31 18:35:09 | 00,463,779 | ---- | M] () -- E:\WINDOWS\System32\drivers\Avg\miniavi.avg
[2009.07.31 18:35:08 | 06,061,540 | ---- | M] () -- E:\WINDOWS\System32\drivers\Avg\avi7.avg
[2009.07.31 11:51:11 | 00,075,064 | ---- | M] () -- E:\WINDOWS\System32\PnkBstrA.exe
[2009.07.30 23:34:24 | 00,000,031 | ---- | M] () -- E:\WINDOWS\game.ini
[2009.07.30 21:17:41 | 00,022,328 | ---- | M] () -- E:\Documents and Settings\Kluci\Data aplikací\PnkBstrK.sys
[2009.07.30 21:17:18 | 00,682,280 | ---- | M] () -- E:\WINDOWS\System32\pbsvc.exe
[2009.07.29 21:51:17 | 00,069,850 | ---- | M] () -- E:\Documents and Settings\Kluci\Dokumenty\cc_20090729_215112.reg
[2009.07.29 17:49:16 | 24,281,536 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\System32\MRT.exe
[2009.07.29 12:57:48 | 00,015,563 | ---- | M] () -- E:\Documents and Settings\All Users\Dokumenty\Left 4 Dead No-Steam Patch 1.0.1.4.torrent
[2009.07.29 06:36:48 | 00,119,808 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\System32\t2embed.dll
[2009.07.29 06:36:48 | 00,119,808 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\System32\dllcache\t2embed.dll
[2009.07.29 06:36:47 | 00,081,920 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\System32\fontsub.dll
[2009.07.29 06:36:47 | 00,081,920 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\System32\dllcache\fontsub.dll
[2009.07.28 00:27:58 | 00,128,512 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\System32\dllcache\dhtmled.ocx
[2009.07.27 09:12:56 | 00,614,403 | ---- | M] () -- E:\WINDOWS\BsSnap.pre
[2009.07.26 20:02:42 | 00,041,942 | ---- | M] () -- E:\Documents and Settings\Kluci\Dokumenty\rec_vlc_20-02-34.mp3
[2009.07.26 19:58:38 | 00,053,836 | ---- | M] () -- E:\Documents and Settings\Kluci\Dokumenty\rec_vlc_19-58-28.mp3
[2009.07.26 19:58:28 | 00,080,128 | ---- | M] () -- E:\Documents and Settings\Kluci\Dokumenty\rec_vlc_19-58-18.mp3
[2009.07.26 19:39:39 | 00,052,608 | ---- | M] () -- E:\Documents and Settings\Kluci\Dokumenty\rec_Vcs6Core_12-14-34.mp3
[2009.07.26 19:39:31 | 00,255,936 | ---- | M] () -- E:\Documents and Settings\Kluci\Dokumenty\rec_Vcs4Core_11-57-02.mp3
[2009.07.26 19:39:20 | 00,139,584 | ---- | M] () -- E:\Documents and Settings\Kluci\Dokumenty\rec_Vcs4Core_11-56-50.mp3
[2009.07.26 11:24:29 | 00,001,795 | ---- | M] () -- E:\Documents and Settings\All Users\Plocha\Play Stronghold 2.lnk
[2009.07.19 18:46:58 | 11,067,392 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\System32\ieframe.dll
[2009.07.19 18:46:58 | 11,067,392 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\System32\dllcache\ieframe.dll
[2009.07.19 15:16:59 | 05,937,152 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\System32\mshtml.dll
[2009.07.19 15:16:59 | 05,937,152 | ---- | M] (Microsoft Corporation) -- E:\WINDOWS\System32\dllcache\mshtml.dll
< End of report >

[pitimir]

A smiem vediet, preco si spustat ComboFix? Ked si myslis, ze si vies poradim sam a lepsie, tak mna nepotrebujes, ci nie?

V prvom skripte si to pravdepodobne neskopiroval cele, nespravilo to to, co malo. Este raz, tentoraz stacia len commands (cize toto):

Kód: Vybrat vše

:commads
[emptytemp]
[resethosts]
[reboot]

[svasik]

All processes killed
Error: Unable to interpret <:commads> in the current context!
Error: Unable to interpret <[emptytemp]> in the current context!
Error: Unable to interpret <[resethosts]> in the current context!
Error: Unable to interpret <[reboot]> in the current context!

OTL by OldTimer - Version 3.0.10.7 log created on 08182009_191729

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...

... s tim kombofixem zkousel neco bracha... sry jestli te to urazilo