mwav kontrola

Blaža · Příspěvekod **Blaža** » 14 úno 2010 19:59

Ahoj, můžete se mi podívat na viry, který mi našel mwav. ? Hodně se mi zpomalil počítač. Díky

Objekt "prutect Spyware/Adware" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "gain.gator Spyware/Adware" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "gain.gator Spyware/Adware" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "gain.gator Spyware/Adware" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "conducent flexpak Spyware/Adware" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "savenow Adware" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "remacc.multiwebsurv Generic Malware" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "Possible Fujacks-type Worm" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.
Objekt "Possible Fujacks-type Worm" nalezen v souborovém systému! Provedené akce: Nic nebylo provedeno.

Reklama

Příspěvekod **jaro3** » 15 úno 2010 06:09

Vše jen zbytky po odstraněných nákazách..

vyčisti systém CCleanerem

Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Je to vše.

Blaža · Příspěvekod **Blaža** » 15 úno 2010 21:40

Děkuju za radu. Ještě se vyskytnul jeden problém, pokaždé při zapnutí PC se mi spustí chkdsk na dva HDD Když je chci defragmentovat, tak mi to napíše že to nejde kvůli tomu že napánovaná úoha chkdsk. Když to nechám proběhnout, tak se mi to po dalším spuštění ukáže znova. Je možný to někde vypnout ?

Damned · Příspěvekod **Damned** » 15 úno 2010 21:44

Zítra na Železný???? :lol:

Stáhni si OTL na Plochu.
Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Output klikni na minimal Output.Pod Standard Registry změň na All. Zatrhni LOP Check a Purity Check. File age změň na 14 days. Všechny ostatní nastavení ponech jak jsou. Klikni na Run Scan. Sken může trvat dlouho, až skončí otevřou se dva logy:
OTL.Txt
Extras.Txt
Jsou uloženy ve stejném místě jako OTL. Oba logy sem prosím zkopíruj

Blaža · Příspěvekod **Blaža** » 07 bře 2010 18:38

Tak jsem se k tomu konečně dostal.
Extras.txt :

OTL Extras logfile created on: 8.3.2010 18:36:40 - Run 1
OTL by OldTimer - Version 3.1.30.1 Folder = C:\Documents and Settings\VALCANO\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1 023,00 Mb Total Physical Memory | 582,00 Mb Available Physical Memory | 57,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 85,00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 111,76 Gb Total Space | 49,33 Gb Free Space | 44,14% Space Free | Partition Type: NTFS
Drive D: | 233,76 Gb Total Space | 70,17 Gb Free Space | 30,02% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
Drive F: | 39,06 Gb Total Space | 10,17 Gb Free Space | 26,03% Space Free | Partition Type: NTFS
Drive G: | 109,98 Gb Total Space | 3,98 Gb Free Space | 3,62% Space Free | Partition Type: NTFS
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: JARDA
Current User Name: VALCANO
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 14 Days
Output = Minimal

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = Opera.HTML] -- E:\Program Files\Opera\Opera.exe File not found

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = SeaMonkeyHTML] -- C:\Program Files\SeaMonkey\seamonkey.exe (mozilla.org)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "E:\Program Files\Opera\Opera.exe" File not found
https [open] -- "E:\Program Files\Opera\Opera.exe" File not found
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~3\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 1
"FirewallOverride" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" = C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE" = C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" = C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation)
"C:\Program Files\Activision\Wolfenstein\MP\Wolf2MP.exe" = C:\Program Files\Activision\Wolfenstein\MP\Wolf2MP.exe:*:Enabled:Wolfenstein(TM) -- (Activision)
"C:\Program Files\Activision\Wolfenstein\MP\Wolf2MPLite.exe" = C:\Program Files\Activision\Wolfenstein\MP\Wolf2MPLite.exe:*:Enabled:Wolfenstein(TM) -- (Activision)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{0815D55A-5EFF-4E1B-8C04-7035E914D90D}" = OLYMPUS Master 2
"{0C98E73E-D495-CA87-EF1D-50D3A719351E}" = CCC Help Dutch
"{0FF1802B-4FE0-81D5-D28F-5095543CB57B}" = Skins
"{1096C4FA-CC07-4BE1-B73F-77BDFF4916B8}" = Hard Truck 18 Wheels of Steel
"{129DDEC1-A6A3-3D60-AABE-76E6E5334922}" = Microsoft .NET Framework 2.0 Service Pack 1 Language Pack - CSY
"{173A4BD8-B1E5-252A-FE86-C84C7E7B5F2E}" = CCC Help English
"{17986CD6-070C-BE3E-E4D6-C36DDEEAA37C}" = Catalyst Control Center Graphics Previews Common
"{17BD85F9-3B88-4C85-BB47-4AB8DD68F8BB}" = Nokia Software Updater
"{19B72AA9-985A-11D4-9C8A-00D0B75D1498}" = Colin McRae Rally 2
"{20D1D37A-817B-3A45-FDF5-507BD8A79680}" = CCC Help Chinese Traditional
"{21879F6C-52F6-7A6F-6736-A7C912653608}" = CCC Help Danish
"{21E4AB1F-C62E-C5C1-96A3-F4378A763C5B}" = CCC Help Chinese Standard
"{242BCCDC-B37B-4792-A52C-BCDDB1030AF9}" = Zoo Empire
"{272DDF13-3B89-D0D8-B668-CEC4FB34C1E7}" = Catalyst Control Center Localization All
"{2743B5EB-7C1C-36CC-FBBB-A02F2F4EC52D}" = ccc-utility
"{27CC6AB1-E72B-4179-AF1A-EAE507EBAF51}_is1" = ConvertHelper 2.2
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{38DCE347-CE45-219E-56AD-30FCB04CF71A}" = CCC Help Hungarian
"{3F9FCFE0-4979-6377-771D-E8A3F3B197E7}" = CCC Help Portuguese
"{45D4F727-43B5-49CD-B474-B9866A8F4FB8}" = Nokia Map Loader
"{47F0F784-96DD-4213-A0AB-85AF5C4A2E60}" = Ice Age 2 The Meltdown
"{4817189D-1785-4627-A33C-39FD90919300}" = The Sims™ 2 Mazlíčci
"{5C844F60-CFF2-33DE-FD0D-09F3C392679B}" = Catalyst Control Center HydraVision Full
"{5F723D64-4042-ABAE-2A9E-1FEBA1FE4B00}" = CCC Help Korean
"{61709405-4DB8-410C-53DC-A76945D7EBC1}" = CCC Help Turkish
"{6CDB4B41-9244-EC3F-5FBC-550A8BC697F4}" = CCC Help Japanese
"{6E7DD182-9FC6-4651-0095-2E666CC6AF35}" = The Sims 2
"{6EF0B467-8FDD-845E-F168-C7F0C6124C26}" = CCC Help Finnish
"{6FA1D6BE-12DF-4C6F-98F5-A2EFFB9893E3}" = ESET NOD32 Antivirus
"{6FE8B722-4D7E-3CD7-BB3A-3AD1684B1295}" = Microsoft .NET Framework 3.0 Service Pack 1 Language Pack - CSY
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{72F9F82C-0A0D-44a7-9FBD-3804D2EEA9ED}" = The Sims™ 2 Vyzkoušejte si
"{74DCC43B-33C9-3389-BD0D-33EB37973657}" = Microsoft .NET Framework 3.5 Language Pack - csy
"{74FF7813-4878-AB41-8503-22287CF11F37}" = Catalyst Control Center Graphics Light
"{79469AEF-FF16-C52B-F7F8-E1E203A036E5}" = CCC Help Italian
"{83E08A1E-963B-8846-8082-88B996FC060E}" = CCC Help Swedish
"{8A7CAA24-7B23-410B-A7C3-F994B0944160}" = Microsoft Virtual PC 2007
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{9074AFC0-CFDA-11DE-B484-005056806466}" = Google Earth
"{94FB906A-CF42-4128-A509-D353026A607E}" = REALTEK Gigabit and Fast Ethernet NIC Driver
"{9ABF04DC-A40D-B4DA-189B-89497B599AB7}" = CCC Help French
"{9D56C31A-C9C8-394C-0804-670B0D2E0E1F}" = CCC Help Norwegian
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A43BF6A5-D5F0-4AAA-BF41-65995063EC44}" = MSXML 6.0 Parser
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A99968BE-C155-474C-0089-33239DEE1CE2}" = Need For Speed Underground
"{AC76BA86-7AD7-1029-7B44-A93000000001}" = Adobe Reader 9.3 - Czech
"{B59A1FFA-4EE2-805D-7B48-806DE73AAE03}" = CCC Help Thai
"{B7CB0BF3-791E-44D3-9F04-786E36D51C9D}" = PC Connectivity Solution
"{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}" = Nokia Connectivity Cable Driver
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C37810F2-3983-B864-EB7F-DCCB67703FB0}" = Catalyst Control Center Graphics Full New
"{C4A4722E-79F9-417C-BD72-8D359A090C97}" = Samsung PC Studio 3
"{C79A37F3-C076-48BE-B290-F4C8676ABD74}" = Samsung PC Studio 3
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CEF6D9C4-EFA6-F0EC-8E56-8C85609D267D}" = ccc-core-preinstall
"{D1C2B2A9-6FC3-69A6-DDCC-10179BD2A978}" = CCC Help German
"{D3B1C799-CB73-42DE-BA0F-2344793A095C}" = Catalyst Control Center - Branding
"{D5C8DB90-573F-A4E4-6EBF-728B634E3E07}" = CCC Help Polish
"{DA932D71-E52A-43D5-009E-395A1AEC1474}" = The Sims™ Životní Příběhy
"{DD76E812-359A-FEA9-FB17-2E55EBB36543}" = Catalyst Control Center Core Implementation
"{DFEF49D9-FC95-4301-99B9-2FB91C6ABA06}" = The Sims™ 2 Roční období
"{E83971BF-8FEE-F2A6-E0CC-5187C1ECBD4D}" = CCC Help Greek
"{E9C6DC23-56C9-2B27-5FEC-4EEDD107D2D6}" = ccc-core-static
"{EAC31CB7-575E-8C31-468D-10D5FB31CD1A}" = Catalyst Control Center Graphics Full Existing
"{F07717A3-8376-AA87-6BE2-D560F1EBABF0}" = CCC Help Spanish
"{F07B861C-72B9-40A4-8B1A-AAED4C06A7E8}" = QuickTime
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F371C899-B40A-811A-2825-30BE7E941CC9}" = CCC Help Czech
"{F827DB7E-9F8F-46BA-9F22-46CE2CEE1D7E}" = Barbie(TM) Dobrodružství s koňmi(TM)
"{F9B37992-968C-4264-8449-489032FC28DE}" = Wolfenstein
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"{FF6486A6-608F-F80C-BE5C-17D07E2D49BF}" = CCC Help Russian
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"All ATI Software" = Softarová utilita ATI - Odinstalovat
"Any Video Converter_is1" = Any Video Converter 2.7.7
"Applian FLV Player2.0.24" = Applian FLV Player
"ATI Display Driver" = ATI Display Driver
"Burn4Free" = Burn4Free CD and DVD
"CCleaner" = CCleaner
"cd.cover.++" = cd.cover.++ (remove only)
"Cool's_Codec_pack_4.12" = Codec Pack - All In 1 6.0.3.0
"ENTERPRISE" = Microsoft Office Enterprise 2007
"Expekt Poker" = Expekt Poker
"Fever Frenzy" = Fever Frenzy (remove only)
"ffdshow_is1" = ffdshow [rev 3026] [2009-07-05]
"FLVPlayer" = FLV Player 1.3.3
"HijackThis" = HijackThis 2.0.2
"Horsez 2 Vzhůru do sedel" = Horsez 2 Vzhůru do sedel
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"InstallShield_{1096C4FA-CC07-4BE1-B73F-77BDFF4916B8}" = Hard Truck 18 Wheels of Steel
"InstallShield_{242BCCDC-B37B-4792-A52C-BCDDB1030AF9}" = Zoo Empire
"InstallShield_{F9B37992-968C-4264-8449-489032FC28DE}" = Wolfenstein
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 5.0.0
"Microsoft .NET Framework 3.5 Language Pack - csy" = Microsoft .NET Framework 3.5 Language Pack - CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox (3.5.

" = Mozilla Firefox (3.5.

"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NSS" = Norton Security Scan
"Polda_is1" = Polda
"PowerISO" = PowerISO
"SAMSUNG Mobile Modem" = SAMSUNG Mobile Modem Driver Set
"Samsung Mobile phone USB driver" = Samsung Mobile phone USB driver Software
"SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software
"SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software
"SeaMonkey (2.0)" = SeaMonkey (2.0)
"SpywareBlaster_is1" = SpywareBlaster 4.2
"The KMPlayer" = The KMPlayer (remove only)
"ThePlaya" = The Playa
"Totally Party" = Totally Spies! Totally Party
"Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0
"ZoneAlarm Pro" = ZoneAlarm Pro

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Warcraft III" = Warcraft III

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 17.2.2010 11:43:53 | Computer Name = JARDA | Source = Application Error | ID = 1000
Description = Chybující aplikace polda.exe, verze 1.0.0.1, chybující modul polda.exe,
verze 1.0.0.1, adresa chyby 0x00001fab.

Error - 20.2.2010 10:26:14 | Computer Name = JARDA | Source = Application Error | ID = 1000
Description = Chybující aplikace ze.exe, verze 0.0.0.0, chybující modul ze.exe,
verze 0.0.0.0, adresa chyby 0x0013ede7.

Error - 26.2.2010 7:19:24 | Computer Name = JARDA | Source = Application Error | ID = 1000
Description = Chybující aplikace hl2.exe, verze 0.0.0.0, chybující modul datacache.dll,
verze 0.0.0.0, adresa chyby 0x0000b423.

Error - 26.2.2010 14:30:00 | Computer Name = JARDA | Source = Application Error | ID = 1000
Description = Chybující aplikace hl2.exe, verze 0.0.0.0, chybující modul studiorender.dll,
verze 0.0.0.0, adresa chyby 0x0003196a.

Error - 5.3.2010 16:12:14 | Computer Name = JARDA | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace firefox.exe, verze 1.9.1.3685, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

[ Application Events ]
Error - 17.2.2010 11:43:53 | Computer Name = JARDA | Source = Application Error | ID = 1000
Description = Chybující aplikace polda.exe, verze 1.0.0.1, chybující modul polda.exe,
verze 1.0.0.1, adresa chyby 0x00001fab.

Error - 20.2.2010 10:26:14 | Computer Name = JARDA | Source = Application Error | ID = 1000
Description = Chybující aplikace ze.exe, verze 0.0.0.0, chybující modul ze.exe,
verze 0.0.0.0, adresa chyby 0x0013ede7.

Error - 26.2.2010 7:19:24 | Computer Name = JARDA | Source = Application Error | ID = 1000
Description = Chybující aplikace hl2.exe, verze 0.0.0.0, chybující modul datacache.dll,
verze 0.0.0.0, adresa chyby 0x0000b423.

Error - 26.2.2010 14:30:00 | Computer Name = JARDA | Source = Application Error | ID = 1000
Description = Chybující aplikace hl2.exe, verze 0.0.0.0, chybující modul studiorender.dll,
verze 0.0.0.0, adresa chyby 0x0003196a.

Error - 5.3.2010 16:12:14 | Computer Name = JARDA | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace firefox.exe, verze 1.9.1.3685, zablokovaný modul
hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

[ System Events ]
Error - 8.3.2010 9:18:50 | Computer Name = JARDA | Source = Ntfs | ID = 262199
Description = Struktura systému souborů disku je poškozena a je nepoužitelná. Je
nutné na svazek F: spustit nástroj chkdsk.

Error - 8.3.2010 9:18:50 | Computer Name = JARDA | Source = Ntfs | ID = 262199
Description = Struktura systému souborů disku je poškozena a je nepoužitelná. Je
nutné na svazek F: spustit nástroj chkdsk.

Error - 8.3.2010 9:19:09 | Computer Name = JARDA | Source = Service Control Manager | ID = 7000
Description = Služba Služba Google Update (gupdate1ca224dc6598664) neuspěla při
spuštění v důsledku následující chyby: %%5

Error - 8.3.2010 9:19:09 | Computer Name = JARDA | Source = Service Control Manager | ID = 7000
Description = Služba Spyware Terminator Realtime Shield Service neuspěla při spuštění
v důsledku následující chyby: %%3

Error - 8.3.2010 9:29:40 | Computer Name = JARDA | Source = Ntfs | ID = 262199
Description = Struktura systému souborů disku je poškozena a je nepoužitelná. Je
nutné na svazek F: spustit nástroj chkdsk.

Error - 8.3.2010 9:29:40 | Computer Name = JARDA | Source = Ntfs | ID = 262199
Description = Struktura systému souborů disku je poškozena a je nepoužitelná. Je
nutné na svazek F: spustit nástroj chkdsk.

Error - 8.3.2010 9:29:57 | Computer Name = JARDA | Source = Service Control Manager | ID = 7000
Description = Služba Služba Google Update (gupdate1ca224dc6598664) neuspěla při
spuštění v důsledku následující chyby: %%5

Error - 8.3.2010 9:29:57 | Computer Name = JARDA | Source = Service Control Manager | ID = 7000
Description = Služba Spyware Terminator Realtime Shield Service neuspěla při spuštění
v důsledku následující chyby: %%3

< End of report >

Blaža · Příspěvekod **Blaža** » 07 bře 2010 18:44

Ještě OTL.txt

OTL logfile created on: 8.3.2010 18:36:40 - Run 1
OTL by OldTimer - Version 3.1.30.1 Folder = C:\Documents and Settings\VALCANO\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1 023,00 Mb Total Physical Memory | 582,00 Mb Available Physical Memory | 57,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 85,00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 111,76 Gb Total Space | 49,33 Gb Free Space | 44,14% Space Free | Partition Type: NTFS
Drive D: | 233,76 Gb Total Space | 70,17 Gb Free Space | 30,02% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
Drive F: | 39,06 Gb Total Space | 10,17 Gb Free Space | 26,03% Space Free | Partition Type: NTFS
Drive G: | 109,98 Gb Total Space | 3,98 Gb Free Space | 3,62% Space Free | Partition Type: NTFS
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: JARDA
Current User Name: VALCANO
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 14 Days
Output = Minimal

========== Processes (SafeList) ==========

PRC - C:\Documents and Settings\VALCANO\Plocha\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\ESET\ESET Smart Security\ekrn.exe (ESET)
PRC - C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
PRC - C:\WINDOWS\system32\ati2evxx.exe (ATI Technologies Inc.)
PRC - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Advanced Micro Devices Inc.)
PRC - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (ATI Technologies Inc.)
PRC - C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe (Zone Labs, LLC)
PRC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe (Zone Labs, LLC)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
PRC - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
PRC - C:\Program Files\QuickTime\qttask.exe (Apple Computer, Inc.)
PRC - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe (Analog Devices, Inc.)

========== Modules (SafeList) ==========

MOD - C:\Documents and Settings\VALCANO\Plocha\OTL.exe (OldTimer Tools)
MOD - C:\WINDOWS\system32\framedyn.dll (Microsoft Corporation)

========== Win32 Services (SafeList) ==========

SRV - (sp_rssrv) -- File not found
SRV - (gupdate1ca224dc6598664) Služba Google Update (gupdate1ca224dc6598664) -- C:\Program Files\Google\Update\GoogleUpdate.exe (Google Inc.)
SRV - (EhttpSrv) -- C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe (ESET)
SRV - (ekrn) -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe (ESET)
SRV - (Ati HotKey Poller) -- C:\WINDOWS\system32\ati2evxx.exe (ATI Technologies Inc.)
SRV - (ATI Smart) -- C:\WINDOWS\system32\ati2sgag.exe ()
SRV - (ServiceLayer) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (Nokia.)
SRV - (NetTcpPortSharing) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe (Microsoft Corporation)
SRV - (vsmon) -- C:\WINDOWS\System32\ZoneLabs\vsmon.exe (Zone Labs, LLC)
SRV - (Microsoft Office Groove Audit Service) -- C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe (Microsoft Corporation)
SRV - (odserv) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE (Microsoft Corporation)
SRV - (ose) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (IDriverT) -- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe (Macrovision Corporation)
SRV - (SoundMAX Agent Service (default)) -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe (Analog Devices, Inc.)

========== Driver Services (SafeList) ==========

DRV - (kwflower) -- C:\WINDOWS\system32\drivers\kwflower.log ()
DRV - (StarOpen) -- C:\WINDOWS\system32\drivers\StarOpen.sys ()
DRV - (aeaudio) -- C:\WINDOWS\system32\drivers\aeaudio.sys (Andrea Electronics Corporation)
DRV - (sp_rsdrv2) -- C:\WINDOWS\system32\drivers\sp_rsdrv2.sys ()
DRV - (epfwtdir) -- C:\WINDOWS\system32\drivers\epfwtdir.sys (ESET)
DRV - (ehdrv) -- C:\WINDOWS\system32\drivers\ehdrv.sys (ESET)
DRV - (eamon) -- C:\WINDOWS\system32\drivers\eamon.sys (ESET)
DRV - (ati2mtag) -- C:\WINDOWS\system32\drivers\ati2mtag.sys (ATI Technologies Inc.)
DRV - (kvnet) -- C:\WINDOWS\system32\drivers\kvnet.sys (Kerio Technologies Inc.)
DRV - (upperdev) -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys (Nokia)
DRV - (ALCXWDM) Service for Realtek AC97 Audio (WDM) -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS (Realtek Semiconductor Corp.)
DRV - (pccsmcfd) -- C:\WINDOWS\system32\drivers\pccsmcfd.sys (Nokia)
DRV - (vsdatant) -- C:\WINDOWS\system32\vsdatant.sys (Zone Labs, LLC)
DRV - (UsbserFilt) -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys (Windows (R) Codename Longhorn DDK provider)
DRV - (nmwcdc) -- C:\WINDOWS\system32\drivers\ccdcmbo.sys (Nokia)
DRV - (nmwcd) -- C:\WINDOWS\system32\drivers\ccdcmb.sys (Nokia)
DRV - (usbser) -- C:\WINDOWS\system32\drivers\usbser.sys (Microsoft Corporation)
DRV - (Secdrv) -- C:\WINDOWS\system32\drivers\secdrv.sys (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
DRV - (srescan) -- C:\WINDOWS\system32\ZoneLabs\srescan.sys (Zone Labs, LLC)
DRV - (ss_mdm) -- C:\WINDOWS\system32\drivers\ss_mdm.sys (MCCI Corporation)
DRV - (ss_mdfl) -- C:\WINDOWS\system32\drivers\ss_mdfl.sys (MCCI Corporation)
DRV - (ss_bus) SAMSUNG Mobile USB Device 1.0 driver (WDM) -- C:\WINDOWS\system32\drivers\ss_bus.sys (MCCI Corporation)
DRV - (SCDEmu) -- C:\WINDOWS\system32\drivers\scdemu.sys (PowerISO Computing, Inc.)
DRV - (vmm) -- C:\WINDOWS\system32\drivers\VMM.sys (Microsoft Corporation)
DRV - (VPCNetS2) -- C:\WINDOWS\system32\drivers\VMNetSrv.sys (Microsoft Corporation)
DRV - (sfvfs02) StarForce Protection VFS Driver (version 2.x) -- C:\WINDOWS\System32\drivers\sfvfs02.sys (Protection Technology)
DRV - (sfdrv01) StarForce Protection Environment Driver (version 1.x) -- C:\WINDOWS\System32\drivers\sfdrv01.sys (Protection Technology)
DRV - (sfhlp02) StarForce Protection Helper Driver (version 2.x) -- C:\WINDOWS\System32\drivers\sfhlp02.sys (Protection Technology)
DRV - (sfsync02) StarForce Protection Synchronization Driver (version 2.x) -- C:\WINDOWS\System32\drivers\sfsync02.sys (Protection Technology)
DRV - (Ptilink) -- C:\WINDOWS\system32\drivers\ptilink.sys (Parallel Technologies, Inc.)
DRV - (rtl8139) Realtek RTL8139(A/B/C) -- C:\WINDOWS\system32\drivers\RTL8139.sys (Realtek Semiconductor Corporation)
DRV - (RTL8023) -- C:\WINDOWS\system32\drivers\Rtlnic51.sys (Realtek Semiconductor Corporation )
DRV - (smwdm) -- C:\WINDOWS\system32\drivers\smwdm.sys (Analog Devices, Inc.)

========== Standard Registry (All) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.gametop.com/?utm_source=Ma ... dium=start
IE - HKCU\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation)
IE - HKCU\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - Reg Error: Key error. File not found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.defaulturl: "http://search.sweetim.com/search.asp?src=2&q="
FF - prefs.js..browser.search.selectedEngine: "ICQ Search"
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..extensions.enabledItems: {097d3191-e6fa-4728-9826-b533d755359d}:0.7.11
FF - prefs.js..extensions.enabledItems: anycolor.pavlos256@gmail.com:0.3.1
FF - prefs.js..extensions.enabledItems: {2fa4ed95-0317-4c6a-a74c-5f3e3912c1f9}:2.1.072
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.7.1
FF - prefs.js..extensions.enabledItems: {0b457cAA-602d-484a-8fe7-c1d894a011ba}:0.80
FF - prefs.js..extensions.enabledItems: {7102aba3-045c-4ec2-b921-46d87636d84b}:2.08
FF - prefs.js..extensions.enabledItems: {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.4.1
FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:1.1
FF - prefs.js..extensions.enabledItems: {20291fcc-1471-46c8-8213-5911f5ce6d67}:1.6.0
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.8
FF - prefs.js..keyword.URL: "http://search.sweetim.com/search.asp?src=2&q="
FF - prefs.js..network.proxy.type: 2

FF - HKLM\software\mozilla\Mozilla Firefox 3.5.8\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.02.20 21:59:52 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.8\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.02.20 21:59:52 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\SeaMonkey 2.0\extensions\\Components: C:\Program Files\SeaMonkey\components [2010.02.13 17:04:12 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\SeaMonkey 2.0\extensions\\Plugins: C:\Program Files\SeaMonkey\plugins [2010.01.28 21:54:55 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2010.02.09 19:00:16 | 000,000,000 | ---D | M]

[2009.12.21 22:41:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Extensions
[2009.12.21 22:41:55 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Extensions\{92650c4d-4b8e-4d2a-b7eb-24ecf4f6b63a}
[2009.07.13 13:05:55 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2010.03.08 18:27:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\extensions
[2010.03.08 18:26:50 | 000,000,000 | ---D | M] (Forecastfox) -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}
[2010.01.19 14:30:02 | 000,000,000 | ---D | M] (All-in-One Sidebar) -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\extensions\{097d3191-e6fa-4728-9826-b533d755359d}
[2009.11.20 16:07:48 | 000,000,000 | ---D | M] (FireShot) -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba}
[2010.01.17 12:14:23 | 000,000,000 | ---D | M] (Site Launcher) -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\extensions\{20291fcc-1471-46c8-8213-5911f5ce6d67}
[2009.09.04 14:07:54 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009.11.20 16:07:46 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\extensions\{2fa4ed95-0317-4c6a-a74c-5f3e3912c1f9}
[2010.03.08 18:26:48 | 000,000,000 | ---D | M] (History Submenus) -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\extensions\{7102aba3-045c-4ec2-b921-46d87636d84b}
[2009.08.19 19:13:37 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2010.03.08 18:26:53 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2009.11.20 16:07:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\extensions\anycolor.pavlos256@gmail.com
[2010.03.08 18:26:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\extensions\foxfilter@inspiredeffect.net
[2010.02.13 15:12:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\SeaMonkey\Profiles\x3yhmdo4.default\extensions
[2009.12.24 19:11:04 | 000,000,000 | ---D | M] (ChatZilla) -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\SeaMonkey\Profiles\x3yhmdo4.default\extensions\{59c81df5-4b7a-477b-912d-4e0fdf64e5f2}
[2009.12.24 19:11:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\SeaMonkey\Profiles\x3yhmdo4.default\extensions\inspector@mozilla.org
[2010.03.05 21:06:27 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\searchplugins\icqplugin-1.xml
[2009.11.19 22:40:17 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\searchplugins\icqplugin-2.xml
[2009.11.20 16:08:03 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\searchplugins\icqplugin-3.xml
[2010.01.08 17:33:42 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\searchplugins\icqplugin-4.xml
[2010.02.20 22:00:21 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\searchplugins\icqplugin-5.xml
[2008.03.31 08:52:00 | 000,000,168 | ---- | M] () -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\searchplugins\icqplugin.gif
[2008.03.31 08:52:00 | 000,000,618 | ---- | M] () -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\searchplugins\icqplugin.src
[2009.09.17 13:30:04 | 000,000,944 | ---- | M] () -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\searchplugins\icqplugin.xml
[2009.08.22 14:46:12 | 000,003,915 | ---- | M] () -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\searchplugins\sweetim.xml
[2009.11.19 22:39:38 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010.02.20 21:59:46 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2010.02.20 21:59:43 | 000,023,512 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browserdirprovider.dll
[2010.02.20 21:59:43 | 000,137,176 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\brwsrcmp.dll
[2010.02.20 21:59:47 | 000,064,984 | ---- | M] (mozilla.org) -- C:\Program Files\Mozilla Firefox\plugins\npnul32.dll
[2009.12.21 18:34:06 | 000,103,864 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll
[2009.11.03 02:45:38 | 000,002,371 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\google.xml
[2009.11.03 02:45:38 | 000,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2009.11.03 02:45:38 | 000,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2009.11.03 02:45:38 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2009.11.03 02:45:38 | 000,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2009.11.03 02:45:38 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: ([2004.08.18 13:00:00 | 000,000,737 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\ShellBrowser: (&Adresa) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O3 - HKCU\..\Toolbar\WebBrowser: (&Adresa) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O3 - HKCU\..\Toolbar\WebBrowser: (&Odkazy) - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
O4 - HKLM..\Run: [GrooveMonitor] C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\qttask.exe (Apple Computer, Inc.)
O4 - HKLM..\Run: [reset] C:\WINDOWS\reset.reg ()
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SpywareTerminator] E:\PROGRA~1\SPYWAR~1\SpywareTerminatorShield.exe File not found
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [ZoneAlarm Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe (Zone Labs, LLC)
O4 - HKCU..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\network diagnostic\xpnetdiag.exe (Microsoft Corporation)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\WINDOWS\system32\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKCU\..Trusted Domains: 26 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... mv9VCM.CAB (Reg Error: Key error.)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupda ... 7488922406 (WUWebControl Class)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O16 - DPF: {FFB3A759-98B1-446F-BDA9-909C6EB18CC7} http://utilities.pcpitstop.com/da2/PCPitStop2.cab (PCPitstop Exam)
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\WINDOWS\system32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\sysimage {76E67A63-06E9-11D2-A840-006008059382} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\wia {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\Class Install Handler {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\lzdhtml {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/webviewhtml {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (logonui.exe) - C:\WINDOWS\System32\logonui.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\WINDOWS\System32\sysdm.cpl (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\crypt32chain: DllName - crypt32.dll - C:\WINDOWS\System32\crypt32.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cryptnet: DllName - cryptnet.dll - C:\WINDOWS\System32\cryptnet.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cscdll: DllName - cscdll.dll - C:\WINDOWS\System32\cscdll.dll (Microsoft Corporation)
O20 - Winlogon\Notify\dimsntfy: DllName - %SystemRoot%\System32\dimsntfy.dll - C:\WINDOWS\system32\dimsntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\ScCertProp: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\sclgntfy: DllName - sclgntfy.dll - C:\WINDOWS\System32\sclgntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\SensLogn: DllName - WlNotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\Schedule: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\termsrv: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\wlballoon: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll (Microsoft Corporation)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {438755C2-A8BA-11D1-B96B-00A0C90312E1} - Browseui preloader - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Proces mezipaměti kategorií součástí - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\VALCANO\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\VALCANO\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msapsspc.dll) - C:\WINDOWS\System32\msapsspc.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (schannel.dll) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (digest.dll) - C:\WINDOWS\System32\digest.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msnsspc.dll) - C:\WINDOWS\System32\msnsspc.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\WINDOWS\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\WINDOWS\System32\wdigest.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.07.13 12:47:35 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{1eab1c7a-fadf-11de-a03e-00112fcab42d}\Shell - "" = AutoRun
O33 - MountPoints2\{1eab1c7a-fadf-11de-a03e-00112fcab42d}\Shell\AutoRun\command - "" = C:\WINDOWS\System32\shell32.dll -- [2008.06.17 20:02:56 | 008,465,408 | ---- | M] (Microsoft Corporation)
O33 - MountPoints2\{39d52c52-e011-11de-a009-00112fcab42d}\Shell\AutoRun\command - "" = F:\Web'n'walk_Helper.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

========== Files/Folders - Created Within 14 Days ==========

[2010.03.01 15:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\NSS
[2010.03.01 15:55:53 | 000,000,000 | ---D | C] -- C:\Program Files\Norton Security Scan
[2010.03.01 15:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\NSS\0207030.022
[2010.03.01 15:55:46 | 000,000,000 | ---D | C] -- C:\Program Files\NortonInstaller
[2010.01.22 20:26:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\ESET
[2009.10.31 15:38:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Microsoft
[2009.09.24 11:26:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Microsoft
[2009.08.31 18:06:31 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Data aplikací\Microsoft
[2009.08.21 12:14:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Google
[2009.08.21 11:54:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Google
[2009.07.13 12:47:27 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Data aplikací\Microsoft
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 14 Days ==========

[2010.03.08 18:32:48 | 006,815,744 | -H-- | M] () -- C:\Documents and Settings\VALCANO\NTUSER.DAT
[2010.03.08 14:29:33 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.03.08 14:29:32 | 000,352,185 | ---- | M] () -- C:\WINDOWS\System32\vsconfig.xml
[2010.03.08 14:29:07 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.03.08 14:28:56 | 1073,008,640 | -HS- | M] () -- C:\hiberfil.sys
[2010.03.07 19:08:31 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\VALCANO\ntuser.ini
[2010.03.06 19:43:13 | 000,000,478 | -H-- | M] () -- C:\WINDOWS\tasks\Norton Security Scan for VALCANO.job
[2010.03.06 15:35:30 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.03.05 22:27:02 | 002,647,218 | -H-- | M] () -- C:\Documents and Settings\VALCANO\Local Settings\Data aplikací\IconCache.db
[2010.03.01 20:45:58 | 000,011,114 | ---- | M] () -- C:\Documents and Settings\VALCANO\Dokumenty\Hodiny.xlsx
[2010.03.01 15:55:53 | 000,000,172 | ---- | M] () -- C:\WINDOWS\System32\drivers\NSS\0207030.022\isolate.ini
[2010.03.01 09:03:02 | 000,004,212 | -H-- | M] () -- C:\WINDOWS\System32\zllictbl.dat
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010.03.01 20:45:57 | 000,011,114 | ---- | C] () -- C:\Documents and Settings\VALCANO\Dokumenty\Hodiny.xlsx
[2010.03.01 15:56:00 | 000,000,478 | -H-- | C] () -- C:\WINDOWS\tasks\Norton Security Scan for VALCANO.job
[2010.03.01 15:55:53 | 000,000,172 | ---- | C] () -- C:\WINDOWS\System32\drivers\NSS\0207030.022\isolate.ini
[2010.02.05 17:53:30 | 000,000,082 | ---- | C] () -- C:\WINDOWS\mafosav.INI
[2009.12.14 19:00:20 | 000,796,048 | ---- | C] () -- C:\WINDOWS\System32\libeay32_0.9.6l.dll
[2009.12.14 11:34:14 | 000,021,840 | ---- | C] () -- C:\WINDOWS\System32\SIntfNT.dll
[2009.12.14 11:34:14 | 000,017,212 | ---- | C] () -- C:\WINDOWS\System32\SIntf32.dll
[2009.12.14 11:34:14 | 000,012,067 | ---- | C] () -- C:\WINDOWS\System32\SIntf16.dll
[2009.12.09 10:27:48 | 000,000,668 | ---- | C] () -- C:\Documents and Settings\VALCANO\Data aplikací\vso_ts_preview.xml
[2009.11.12 20:20:18 | 000,000,197 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI
[2009.10.24 15:06:53 | 000,000,098 | ---- | C] () -- C:\WINDOWS\ka.ini
[2009.10.15 11:54:28 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\LauncherAccess.dt
[2009.10.15 11:52:57 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2009.09.28 20:56:26 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\AVSredirect.dll
[2009.09.28 20:56:23 | 000,471,552 | ---- | C] () -- C:\WINDOWS\System32\Smab.dll
[2009.09.01 20:35:18 | 000,279,720 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
[2009.08.31 19:00:23 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2009.08.31 19:00:23 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2009.08.02 09:45:14 | 000,096,256 | ---- | C] () -- C:\Documents and Settings\VALCANO\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.07.29 21:54:55 | 000,168,448 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2009.07.29 21:54:55 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2009.07.29 21:54:52 | 002,402,304 | ---- | C] () -- C:\WINDOWS\System32\x264vfw.dll
[2009.07.29 21:54:52 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2009.07.29 21:54:51 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2009.07.20 22:15:45 | 000,000,044 | ---- | C] () -- C:\WINDOWS\System32\msssc.dll
[2009.07.20 18:33:16 | 000,000,258 | ---- | C] () -- C:\WINDOWS\ESSSOFT.INI
[2009.07.16 22:37:11 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2009.07.13 13:22:28 | 000,141,312 | ---- | C] () -- C:\WINDOWS\System32\drivers\sp_rsdrv2.sys
[2005.10.14 10:56:50 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\VorbisEnc.dll
[2005.10.14 10:56:50 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll
[2005.10.14 10:56:50 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2005.10.14 10:56:50 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll
[2005.10.14 10:56:48 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\MMSwitch.dll
[2000.05.28 17:03:06 | 000,131,072 | ---- | C] () -- C:\WINDOWS\System32\cdzip.dll
[2000.05.26 21:36:46 | 000,116,224 | ---- | C] () -- C:\WINDOWS\System32\cdunzip.dll

========== LOP Check ==========

[2009.07.21 12:02:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\CanonBJ
[2009.07.28 06:16:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Electronic Arts
[2010.02.09 19:00:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\ESET
[2009.11.06 20:15:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\ICQ
[2009.08.29 21:28:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Installations
[2009.08.29 21:31:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Nokia
[2009.07.17 18:37:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\PC Drivers HeadQuarters
[2009.08.26 13:12:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\PC Suite
[2009.07.20 15:26:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\PCPitstop
[2010.01.10 11:06:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Spyware Terminator
[2009.07.21 18:32:46 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\System Restore
[2010.02.15 14:57:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP
[2009.08.13 20:18:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TrackMania
[2009.10.03 10:23:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Ubisoft
[2009.09.28 20:58:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\VALCANO\Data aplikací\Any Video Converter
[2009.10.27 07:59:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\VALCANO\Data aplikací\COWON
[2009.12.09 13:36:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\VALCANO\Data aplikací\DeepBurner
[2009.12.29 22:49:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\VALCANO\Data aplikací\ESET
[2009.09.12 18:23:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\VALCANO\Data aplikací\Ice Age 2
[2009.12.13 22:33:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\VALCANO\Data aplikací\Kerio
[2009.08.26 12:59:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\VALCANO\Data aplikací\Nokia
[2009.07.16 21:50:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\VALCANO\Data aplikací\Opera
[2009.08.26 13:12:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\VALCANO\Data aplikací\PC Suite
[2009.10.15 12:03:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\VALCANO\Data aplikací\Samsung
[2010.02.13 13:05:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\VALCANO\Data aplikací\Spyware Terminator
[2009.12.09 10:28:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\VALCANO\Data aplikací\Vso
[2009.10.19 09:06:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\VALCANO\Data aplikací\XnView

========== Purity Check ==========

========== Alternate Data Streams ==========

@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:5C321E34
< End of report >

Damned · Příspěvekod **Damned** » 07 bře 2010 19:31

Po 14-ti dnech? To bych na Železný splesnivěl....

To tam máš ESS a Kerio? Na co?

Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Custom Scans/Fixes do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
SRV - (sp_rssrv) -- File not found
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.gametop.com/?utm_source=Ma ... dium=start
IE - HKCU\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKCU\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - Reg Error: Key error. File not found
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.defaulturl: "http://search.sweetim.com/search.asp?src=2&q="
FF - prefs.js..browser.search.selectedEngine: "ICQ Search"
FF - prefs.js..keyword.URL: "http://search.sweetim.com/search.asp?src=2&q="
[2009.12.24 19:11:04 | 000,000,000 | ---D | M] (ChatZilla) -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\SeaMonkey\Profiles\x3yhmdo4.default\extensions\{59c81df5-4b7a-477b-912d-4e0fdf64e5f2}
[2009.12.24 19:11:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\SeaMonkey\Profiles\x3yhmdo4.default\extensions\inspector@mozilla.org
[2010.03.05 21:06:27 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\searchplugins\icqplugin-1.xml
[2009.11.19 22:40:17 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\searchplugins\icqplugin-2.xml
[2009.11.20 16:08:03 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\searchplugins\icqplugin-3.xml
[2010.01.08 17:33:42 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\searchplugins\icqplugin-4.xml
[2010.02.20 22:00:21 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\searchplugins\icqplugin-5.xml
[2008.03.31 08:52:00 | 000,000,168 | ---- | M] () -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\searchplugins\icqplugin.gif
[2008.03.31 08:52:00 | 000,000,618 | ---- | M] () -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\searchplugins\icqplugin.src
[2009.09.17 13:30:04 | 000,000,944 | ---- | M] () -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\searchplugins\icqplugin.xml
[2009.08.22 14:46:12 | 000,003,915 | ---- | M] () -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\searchplugins\sweetim.xml
O4 - HKLM..\Run: [reset] C:\WINDOWS\reset.reg ()
O4 - HKLM..\Run: [SpywareTerminator] E:\PROGRA~1\SPYWAR~1\SpywareTerminatorShield.exe File not found
O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... mv9VCM.CAB (Reg Error: Key error.)
O33 - MountPoints2\{39d52c52-e011-11de-a009-00112fcab42d}\Shell\AutoRun\command - "" = F:\Web'n'walk_Helper.exe -- File not found
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:5C321E34

:Files
C:\Windows\*.tmp
C:\Windows\System32\*.tmp
C:\Recycler
C:\$RECYCLE.BIN
C:\WINDOWS\tasks\SA.DAT
C:\WINDOWS\System32\drivers\NSS
C:\Program Files\Norton Security Scan
C:\WINDOWS\System32\drivers\NSS
C:\Program Files\NortonInstaller
C:\WINDOWS\tasks\Norton Security Scan for VALCANO.job
C:\WINDOWS\ka.ini

:Reg

:Commands
[purity]
[emptytemp]
[emptyflash]
[start explorer]
[Reboot]

Poté klikni nahoře na Run Fix. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.

Blaža · Příspěvekod **Blaža** » 07 bře 2010 19:48

Po Keriu by měli byt jen zbytky. Mam tam Zone alarm a ESS. Je to špatně ?

Damned · Příspěvekod **Damned** » 07 bře 2010 19:57

Eset Smart Security má FW v sobě. Nevím ani o tom, že by instalátor dával na výběr (ESS nemám) mezi AV a FW nebo AV+FW.

Dva firewally jsou taky na nic.

Blaža · Příspěvekod **Blaža** » 07 bře 2010 21:29

Takže, když spustim OTL, tak mi zmizí ikony a nic. Čekal jsem hodinu a ani se to nepohlo. Pak to napíše, že OTL neodpovídá. Co s tím ?

Damned · Příspěvekod **Damned** » 07 bře 2010 21:41

Tak to uděláme po pár krocích. Změň si výchozí stránky na seznam nebo něco podobné.
Nejdřív skript první:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.gametop.com/?utm_source=Ma ... dium=start
IE - HKCU\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKCU\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - Reg Error: Key error. File not found
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.defaulturl: "http://search.sweetim.com/search.asp?src=2&q="
FF - prefs.js..browser.search.selectedEngine: "ICQ Search"
FF - prefs.js..keyword.URL: "http://search.sweetim.com/search.asp?src=2&q="
[2009.12.24 19:11:04 | 000,000,000 | ---D | M] (ChatZilla) -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\SeaMonkey\Profiles\x3yhmdo4.default\extensions\{59c81df5-4b7a-477b-912d-4e0fdf64e5f2}
[2009.12.24 19:11:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\SeaMonkey\Profiles\x3yhmdo4.default\extensions\inspector@mozilla.org
[2010.03.05 21:06:27 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\searchplugins\icqplugin-1.xml
[2009.11.19 22:40:17 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\searchplugins\icqplugin-2.xml
[2009.11.20 16:08:03 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\searchplugins\icqplugin-3.xml
[2010.01.08 17:33:42 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\searchplugins\icqplugin-4.xml
[2010.02.20 22:00:21 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\searchplugins\icqplugin-5.xml
[2008.03.31 08:52:00 | 000,000,168 | ---- | M] () -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\searchplugins\icqplugin.gif
[2008.03.31 08:52:00 | 000,000,618 | ---- | M] () -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\searchplugins\icqplugin.src
[2009.09.17 13:30:04 | 000,000,944 | ---- | M] () -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\searchplugins\icqplugin.xml
[2009.08.22 14:46:12 | 000,003,915 | ---- | M] () -- C:\Documents and Settings\VALCANO\Data aplikací\Mozilla\Firefox\Profiles\6o02dljp.default\searchplugins\sweetim.xml
O4 - HKLM..\Run: [reset] C:\WINDOWS\reset.reg ()
O4 - HKLM..\Run: [SpywareTerminator] E:\PROGRA~1\SPYWAR~1\SpywareTerminatorShield.exe File not found
O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... mv9VCM.CAB (Reg Error: Key error.)
O33 - MountPoints2\{39d52c52-e011-11de-a009-00112fcab42d}\Shell\AutoRun\command - "" = F:\Web'n'walk_Helper.exe -- File not found
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TEMP:5C321E34

:Reg

:Commands
[purity]
[emptyflash]

Run Fix a po proběhnutí dáš druhý script:

Kód: Vybrat vše

:Files
C:\Windows\*.tmp
C:\Windows\System32\*.tmp
C:\Recycler
C:\$RECYCLE.BIN
C:\WINDOWS\tasks\SA.DAT
C:\WINDOWS\System32\drivers\NSS
C:\Program Files\Norton Security Scan
C:\WINDOWS\System32\drivers\NSS
C:\Program Files\NortonInstaller
C:\WINDOWS\tasks\Norton Security Scan for VALCANO.job
C:\WINDOWS\ka.ini

:Reg

:Commands
[purity]
[emptytemp]
[start explorer]
[Reboot]

Run Fix. Měl by proběhnout restart (až teď) pokud ne, restartuj a vlož mi sem oba logy

Blaža · Příspěvekod **Blaža** » 07 bře 2010 21:58

Hrůza. Udělal jsem podle tebe, ale zase se to seklo.

mwav kontrola

mwav kontrola

Re: mwav kontrola

Re: mwav kontrola

Re: mwav kontrola

Re: mwav kontrola

Re: mwav kontrola

Re: mwav kontrola

Re: mwav kontrola

Re: mwav kontrola

Re: mwav kontrola

Re: mwav kontrola

Re: mwav kontrola

Kdo je online