Prosím o kontrolu hijackthis Vyřešeno

[Telda.]

Objevila se mi modrá obrazovka kde bylo napsáno:
Byly zjištěny potíže a systémm windows byl ukončen, aby nedošlo k poškození počítače.
Proces nebo podproces kriticky pro -----------------a dál sjem nestihl . Dále tam bylo něco ve smyslu, zda to bylo poprvé atd.
Poté mi opět po delší chvíli naběhl windows, tak nevím co to bylo, ale nikdy předtím jsem to neviděl
Čekám co se dál bude dít´, ale Combofix nepracuje jako poprvé. Teď píši z jiného PC
Zatím se nic neděje, žádné logo se nevytvořilo.

[Reklama]

[Damned]

Je možné, že ho zastavil antivir.

Vypni antivir a pokud máš i Antispyware a odinstaluj ComboFix ( nutné ) .
ComboFix se odinstaluje takto:
Start -> Spustit a zadej do řádku: Combofix[mezera]/uninstall

Stáhni si T-Cleaner ( nutné - smaže vše po Combu,SDFixu,Avengeru,MWAVu atd.-stáhneš->spustíš)

(pozn.Pokud máš AVG nebo Aviru, před stažením T-Cleaneru a po dobu čištění deaktivuj AVG i Aviru (i rezidenty), následně T-Cleaner smaž a zapni si AVG, Aviru.)
*****************************************************************************************************************************************
Stáhni si OTL na Plochu.
Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Output klikni na minimal Output.Pod Standard Registry změň na All. Zatrhni LOP Check a Purity Check. File age změň na 14 days. Všechny ostatní nastavení ponech jak jsou. Klikni na Run Scan. Sken může trvat dlouho, až skončí otevřou se dva logy:
OTL.Txt
Extras.Txt
Jsou uloženy ve stejném místě jako OTL. Oba logy sem prosím zkopíruj

[Telda.]

O.K. Antivir jsem měl vypnutý. Mám f-secure profi antivirus. Teď budu pokračovat dle tvého návodu. Jinak jak jsem ti psal , tak se opět restartoval PC a Combofix pokračuje s AUTOSCAN. Tak čekám až doběhne
Co to tam má v PC za šmejda , asi ho utluču

[Damned]

Nezapomeň že uninstall jsou dvě "ll", bývá to častá chyba při odinstalaci. Pokud se na jedno zapomene, Combofix to bere jako skript a udělá znovu kompletní sken.

[Telda.]

Výsledek z ComboFix, teď jdu mazat

ComboFix 10-03-20.01 - Jarda 21.03.2010 0:15.6.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1023.632 [GMT 1:00]
Spuštěný z: e:\documents and settings\Jarda\Plocha\ComboFix.exe
AV: F-Secure Profi Antivirus 8.01 *On-access scanning disabled* (Updated) {E7512ED5-4245-4B4D-AF3A-382D3F313F15}
FW: F-Secure Profi Antivirus 8.01 *enabled* {D4747503-0346-49EB-9262-997542F79BF4}
.

((((((((((((((((((((((((( Soubory vytvořené od 2010-02-20 do 2010-03-20 )))))))))))))))))))))))))))))))
.

2010-03-20 14:57 . 2010-02-12 10:03 293376 ------w- e:\windows\system32\browserchoice.exe
2010-03-10 05:47 . 2009-10-23 15:28 3558912 -c----w- e:\windows\system32\dllcache\moviemk.exe

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-03-20 14:03 . 2009-07-14 17:04 -------- d-----w- e:\program files\CCleaner
2010-03-20 07:40 . 2009-02-24 17:45 -------- d-----w- e:\program files\F-Secure
2010-03-05 19:44 . 2008-10-25 19:38 -------- d-----w- e:\program files\Malwarebytes' Anti-Malware
2010-01-30 12:08 . 2010-01-30 12:08 0 ---ha-w- e:\windows\system32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
2010-01-23 13:15 . 2008-08-12 18:44 -------- d-----w- e:\program files\VSO
2010-01-23 08:42 . 2010-01-23 08:42 -------- d-----w- e:\program files\FreeTime
2010-01-23 08:13 . 2010-01-23 08:12 -------- d-----w- e:\program files\DVDFab 6
2010-01-20 10:49 . 2009-07-12 09:20 -------- d-----w- e:\program files\Microsoft Silverlight
2010-01-17 07:12 . 2003-04-16 12:00 970104 ----a-w- e:\windows\system32\perfh005.dat
2010-01-17 07:12 . 2003-04-16 12:00 347340 ----a-w- e:\windows\system32\perfc005.dat
2010-01-07 15:07 . 2008-10-25 19:38 38224 ----a-w- e:\windows\system32\drivers\mbamswissarmy.sys
2010-01-07 15:07 . 2008-10-25 19:38 19160 ----a-w- e:\windows\system32\drivers\mbam.sys
2009-12-31 16:50 . 2003-04-16 12:00 353792 ----a-w- e:\windows\system32\drivers\srv.sys
2009-12-21 19:08 . 2006-06-23 12:27 916480 ------w- e:\windows\system32\wininet.dll
.

((((((((((((((((((((((((((((( SnapShot@2010-03-20_22.24.55 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-03-20 23:13 . 2010-03-20 23:13 16384 e:\windows\temp\Perflib_Perfdata_4d0.dat
+ 2010-03-20 23:12 . 2010-03-20 23:12 16384 e:\windows\temp\Perflib_Perfdata_118.dat
- 2010-03-20 22:15 . 2010-03-20 22:15 16384 e:\windows\temp\Perflib_Perfdata_118.dat
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PC Suite Tray"="e:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe" [2009-11-11 1451520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"sclauncher"="e:\program files\SimpleCenter\bin\win\sclauncher.exe" [2007-10-11 94208]
"ATICCC"="e:\program files\ATI Technologies\ATI.ACE\cli.exe" [2006-01-02 45056]
"V0330Mon.exe"="e:\windows\V0330Mon.exe" [2007-04-30 32768]
"AudioDeck"="e:\program files\VIAudioi\SBADeck\ADeck.exe" [2004-04-19 7916032]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="e:\windows\System32\CTFMON.EXE" [2008-04-14 15360]

e:\documents and settings\Jarda\Nabˇdka Start\Programy\Po spuçtŘnˇ\
syspck32.exe [2008-4-14 16896]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"e:\\Programy\\Macromedia studio MX\\Dreamweaver MX\\Dreamweaver.exe"=
"e:\\Programy\\Macromedia studio MX\\Fireworks MX\\Fireworks.exe"=
"e:\\Programy\\Macromedia studio MX\\Flash MX\\Flash.exe"=
"e:\\Programy\\Macromedia studio MX\\FreeHand 10\\FreeHand 10.exe"=
"e:\\Programy\\Pinnacle\\programs\\RM.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"e:\\Program Files\\Pinnacle\\Shared Files\\Programs\\MediaManager\\PMSManager.exe"=
"e:\\Programy\\Pinnacle\\programs\\Studio.exe"=
"e:\\HRY\\mohaa\\MOHAA.exe"=
"e:\\HRY\\Farcry\\Bin32\\FarCry.exe"=
"e:\\HRY\\pán prstenů-bitva o středozem\\game.dat"=
"e:\\Program Files\\Nokia\\Nokia Software Updater\\nsu_ui_client.exe"=
"e:\\Program Files\\Common Files\\Nokia\\Service Layer\\A\\nsl_host_process.exe"=
"e:\\HRY\\Metin 2\\metin2client.bin"=
"e:\\Program Files\\Skype\\Phone\\Skype.exe"=

R0 fsbts;fsbts;e:\windows\system32\drivers\fsbts.sys [24.2.2009 18:47 33920]
R0 FSFW;F-Secure Firewall Driver;e:\windows\system32\drivers\fsdfw.sys [24.2.2009 18:47 79872]
R1 F-Secure HIPS;F-Secure HIPS Driver;e:\program files\F-Secure\HIPS\drivers\fshs.sys [24.2.2009 18:46 67808]
R2 FSORSPClient;F-Secure ORSP Client;e:\program files\F-Secure\ORSP Client\fsorsp.exe [24.2.2009 18:46 55904]
R3 F-Secure Gatekeeper;F-Secure Gatekeeper;e:\program files\F-Secure\Anti-Virus\minifilter\fsgk.sys [24.2.2009 18:46 107104]
R3 V0330VID;WebCam Vista/Live! Cam Chat;e:\windows\system32\drivers\V0330Vid.sys [24.1.2009 12:32 157696]
S0 sptd;sptd;e:\windows\system32\drivers\sptd.sys [27.2.2008 15:27 639224]
S3 magpsc;magpsc;e:\windows\system32\drivers\magpsc.sys [17.4.2009 14:55 53463]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent;e:\windows\system32\drivers\nmwcdnsu.sys [25.11.2009 17:37 136704]
S3 nmwcdnsuc;Nokia USB Flashing Generic;e:\windows\system32\drivers\nmwcdnsuc.sys [25.11.2009 17:37 8320]
S3 s115bus;Sony Ericsson Device 115 driver (WDM);e:\windows\system32\drivers\s115bus.sys [1.10.2008 17:21 83208]
S3 s115mdfl;Sony Ericsson Device 115 USB WMC Modem Filter;e:\windows\system32\drivers\s115mdfl.sys [1.10.2008 17:22 15112]
S3 s115mdm;Sony Ericsson Device 115 USB WMC Modem Driver;e:\windows\system32\drivers\s115mdm.sys [1.10.2008 17:22 108680]
S3 s115mgmt;Sony Ericsson Device 115 USB WMC Device Management Drivers (WDM);e:\windows\system32\drivers\s115mgmt.sys [1.10.2008 17:22 100488]
S3 s115obex;Sony Ericsson Device 115 USB WMC OBEX Interface;e:\windows\system32\drivers\s115obex.sys [1.10.2008 17:22 98568]
S3 TVICHW32;TVICHW32;e:\windows\system32\drivers\TVICHW32.SYS [9.1.2009 19:09 23600]
S4 F-Secure Filter;F-Secure File System Filter;e:\program files\F-Secure\Anti-Virus\win2k\fsfilter.sys [24.2.2009 18:46 39776]
S4 F-Secure Recognizer;F-Secure File System Recognizer;e:\program files\F-Secure\Anti-Virus\win2k\fsrec.sys [24.2.2009 18:46 25184]
.
Obsah adresáře 'Naplánované úlohy'

2010-03-20 e:\windows\Tasks\Scheduled scanning task.job
- e:\progra~1\F-Secure\ANTI-V~1\fsav.exe [2009-02-24 13:57]

2010-03-20 e:\windows\Tasks\User_Feed_Synchronization-{504A7340-A238-403C-88C4-9479A6F5405A}.job
- e:\windows\system32\msfeedssync.exe [2006-10-17 02:31]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.centrum.cz/
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: &Google Search - e:\program files\Google\GoogleToolbar1.dll/cmsearch.html
IE: Backward Links - e:\program files\Google\GoogleToolbar1.dll/cmbacklinks.html
IE: Cached Snapshot of Page - e:\program files\Google\GoogleToolbar1.dll/cmcache.html
IE: E&xportovat do aplikace Microsoft Office Excel - e:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Similar Pages - e:\program files\Google\GoogleToolbar1.dll/cmsimilar.html
IE: Translate into English - e:\program files\Google\GoogleToolbar1.dll/cmtrans.html
LSP: e:\program files\F-Secure\FSPS\program\FSLSP.DLL
.
.
------- Asociace souborů -------
.
.scr=AutoCADScriptFile
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-03-21 00:21
Windows 5.1.2600 Service Pack 3 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_USERS\S-1-5-21-1757981266-838170752-839522115-1003\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'winlogon.exe'(608)
e:\windows\system32\Ati2evxx.dll

- - - - - - - > 'lsass.exe'(668)
e:\program files\F-Secure\FSPS\program\FSLSP.DLL
.
Celkový čas: 2010-03-21 00:23:57
ComboFix-quarantined-files.txt 2010-03-20 23:23
ComboFix2.txt 2010-03-20 22:27

Před spuštěním: Volných bajtů: 83 709 038 592
Po spuštění: Volných bajtů: 83 671 035 904

- - End Of File - - 61A738EEA42170ECB85E429A1E746510

[Damned]

Jasně. Smaž a vlož mi sem ty logy z OTL.

[Telda.]

OTL Extras logfile created on: 21.3.2010 0:37:56 - Run 1
OTL by OldTimer - Version 3.1.37.3 Folder = E:\Documents and Settings\Jarda\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1 023,00 Mb Total Physical Memory | 483,00 Mb Available Physical Memory | 47,00% Memory free
2,00 Gb Paging File | 1,00 Gb Available in Paging File | 71,00% Paging File free
Paging file location(s): E:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = E: | %SystemRoot% = E:\WINDOWS | %ProgramFiles% = E:\Program Files
Drive C: | 3,77 Gb Total Space | 0,64 Gb Free Space | 16,98% Space Free | Partition Type: FAT32
D: Drive not present or media not loaded
Drive E: | 232,88 Gb Total Space | 78,07 Gb Free Space | 33,53% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: JAROSLAV-IV0IG9
Current User Name: Jarda
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 14 Days
Output = Minimal

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "E:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [dm paradies foto.exe] -- "E:\Program Files\dm\dm paradies foto\dm paradies foto.exe" "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "E:\Programy\Winamp\Winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "E:\Programy\Winamp\Winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "E:\Programy\Winamp\Winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
"FirewallDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"E:\Programy\Macromedia studio MX\Dreamweaver MX\Dreamweaver.exe" = E:\Programy\Macromedia studio MX\Dreamweaver MX\Dreamweaver.exe:*:Enabled:Dreamweaver MX -- (Macromedia, Inc.)
"E:\Programy\Macromedia studio MX\Fireworks MX\Fireworks.exe" = E:\Programy\Macromedia studio MX\Fireworks MX\Fireworks.exe:*:Enabled:Fireworks MX -- (Macromedia Inc.)
"E:\Programy\Macromedia studio MX\Flash MX\Flash.exe" = E:\Programy\Macromedia studio MX\Flash MX\Flash.exe:*:Enabled:Flash 6.0 r25 -- (Macromedia, Inc.)
"E:\Programy\Macromedia studio MX\FreeHand 10\FreeHand 10.exe" = E:\Programy\Macromedia studio MX\FreeHand 10\FreeHand 10.exe:*:Enabled:FreeHand 10 -- ()
"E:\Programy\Pinnacle\programs\RM.exe" = E:\Programy\Pinnacle\programs\RM.exe:*:Enabled:Render Manager -- (Pinnacle Systems, Inc.)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"E:\Program Files\Pinnacle\Shared Files\Programs\MediaManager\PMSManager.exe" = E:\Program Files\Pinnacle\Shared Files\Programs\MediaManager\PMSManager.exe:*:Enabled:MediaManager Application -- (Pinnacle Systems)
"E:\Programy\Pinnacle\programs\Studio.exe" = E:\Programy\Pinnacle\programs\Studio.exe:*:Enabled:Studio program file -- (Pinnacle Systems)
"E:\HRY\mohaa\MOHAA.exe" = E:\HRY\mohaa\MOHAA.exe:*:Enabled:Medal of Honor Allied Assault -- (Electronic Arts Inc.)
"E:\HRY\Farcry\Bin32\FarCry.exe" = E:\HRY\Farcry\Bin32\FarCry.exe:*:Enabled:Far Cry -- (Crytek)
"E:\HRY\pán prstenů-bitva o středozem\game.dat" = E:\HRY\pán prstenů-bitva o středozem\game.dat:*:Enabled:The Battle for Middle-earth(tm) II -- (Electronic Arts Inc.)
"E:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe" = E:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe:*:Enabled:Nokia Software Updater -- (Nokia Corporation)
"E:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe" = E:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe:*:Enabled:Nokia Service Layer Host Process -- (Nokia Corporation)
"E:\HRY\Metin 2\metin2client.bin" = E:\HRY\Metin 2\metin2client.bin:*:Enabled:metin2client -- ()
"E:\Program Files\Skype\Phone\Skype.exe" = E:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0DEA94ED-915A-4834-A87E-388D012C8E02}" = Medal of Honor Allied Assault
"{13B792AA-C078-43A4-8A3A-8B12D629940D}" = Counter-Strike 1.6
"{1AEA787C-781F-4A88-BB06-54C5A9460551}" = 602XML Filler
"{212748BB-0DA5-46DE-82A1-403736DC9F27}" = MSVC80_x86
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{25BEC3AB-5CD4-481D-9143-215C1BBB189E}" = Sony Ericsson PC Suite
"{26A24AE4-039D-4CA4-87B4-2F83216016FF}" = Java(TM) 6 Update 16
"{2A57B6D0-52F5-42EE-A881-9E30105CF6F4}" = ATI Catalyst Control Center
"{2A9F95AB-65A3-432c-8631-B8BC5BF7477A}" = The Battle for Middle-earth (tm) II
"{2D21ECE3-8EC1-4315-AE4E-1970FB3AF17A}" = Nokia Nseries Video Manager
"{309A4810-C1A1-4BAC-888A-5BB93BC707F4}" = Nokia NSeries One Touch Access
"{315ACD04-BCEB-478B-9B1D-5431D0E6CB11}" = ASUS Enhanced Display Driver
"{332CC6BF-E6C7-48EE-BA3D-435E576AD67F}" = PaperPort Image Printer
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{37D33EA0-A902-4925-8081-9AF88CB86EE1}" = Nokia NSeries Content Copier
"{3BE480ED-E17A-431A-981C-5C2EDDBCD3BF}" = Macromedia Flash MX
"{3CB05291-F546-458E-A796-B5BCF5A3CDC4}" = Studio 10
"{45D4F727-43B5-49CD-B474-B9866A8F4FB8}" = Nokia Map Loader
"{460CE8B9-6EC2-458A-90D4-691631ECE9D9}" = Pinnacle MediaServer
"{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}" = SmartSound Quicktracks Plugin
"{4B6E7269-2948-4E5B-9C82-3B4803AEDD37}" = Nokia NSeries Application Installer
"{4C911A61-39EA-41CC-AB3C-FE3BFFDB5F78}" = Nokia Software Updater
"{4D826618-59C6-11D4-976E-00C04F8EEB39}" = Macromedia FreeHand 10
"{546C143E-68DC-314D-97BC-1E454E3BA429}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - CSY
"{5545EEE1-FA36-4F76-B6BE-5696E7F4E2D6}" = VBA (2627.01)
"{5783F2D7-6001-0405-0002-0060B0CE6BBA}" = AutoCAD 2008 - Český
"{5AAA952E-B15E-47E0-94E4-DD6DC7B9C796}_is1" = Kobra 11 Nitro
"{5BE3BF62-D432-4D47-A712-CD4DF91CABFB}" = ZyXEL USB ADSL Modem/Router
"{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}" = Skype™ 3.8
"{5E65E94D-69F2-4850-9E93-6459C53A0F50}" = Microsoft .NET Framework 1.1 Czech Language Pack
"{626F32D6-007C-41D5-8157-9509AB1428BE}" = Unreal II
"{649CB8E9-4A54-409C-B0D8-7D6865329D26}" = Nokia Download!
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{6869591A-7DD8-46D2-837F-57CBF7358955}" = Nokia Connectivity Cable Driver
"{68F41203-B08A-4EFC-8414-408485473BB3}" = Kačer Donald vrací úder
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{6E0352EE-6F0D-4FBC-B1B8-4FF032C78BE0}" = PC Connectivity Solution
"{71D4305B-56E6-4971-A799-FB7678A1D1AB}" = ASUS ATI Driver
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7F34A21F-2DEB-4598-BB19-611D6BD24271}" = Managed DirectX (0901)
"{80464ABC-A520-453F-A383-6E7B92E0C3B3}" = Armády Exiga
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{84BAD30E-07CD-496A-AC88-EE9C8DFE2327}_is1" = FlatOut
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8B4AB829-DFD3-436D-B808-D9733D76C590}" = Macromedia Dreamweaver MX
"{8C3727F2-8E37-49E4-820C-03B1677F53B6}" = Stronghold Crusader
"{90110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{909F8EBC-EC7F-48FF-0085-475D818F0F31}" = Need for Speed Underground 2
"{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}" = Nokia PC Suite
"{930B2432-43D4-11D5-9871-00C04F8EEB39}" = Macromedia Fireworks MX
"{9A346205-EA92-4406-B1AB-50379DA3F057}" = Autodesk DWF Viewer 7
"{9BB873FA-4907-4BF5-829D-8C18BD68F3A5}" = Nokia Nseries PC Suite
"{A2C9CD1B-2551-3AED-B244-6698FB929FA6}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - CSY
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A347C572-F7B4-43A3-BD51-FFC99184F70D}" = Jurassic Park Operation Genesis
"{A3FEC306-FBFF-4B0D-95B9-F9C67C65079E}" = Brother MFL-Pro Suite
"{A43BF6A5-D5F0-4AAA-BF41-65995063EC44}" = MSXML 6.0 Parser
"{A5BA14E0-7384-11D4-BAE7-00409631A2C8}" = Macromedia Extension Manager
"{A77F3C2D-50CC-4A29-A1FB-1E018BE4DCA2}" = DiscAPI
"{AC76BA86-1033-C470-7760-CE0000000001}" = Adobe Acrobat 6.0 CE Professional
"{B60FDFE5-373B-11D6-B2F7-0002A5E2E59A}" = Lilo & Stitch Trouble in Paradise
"{B6C89654-A6A2-477C-873B-724EC1C56407}" = ScanSoft PaperPort 11
"{BEC99D86-1D70-4AB8-8D15-E116392F9B7D}" = Nokia Music
"{C0698BDA-0D29-40EE-8570-A31106DF9AB1}" = Medieval II Total War
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C151CE54-E7EA-4804-854B-F515368B0798}" = Athlon 64 Processor Driver
"{C60BA916-9E44-4DA4-B11A-9E27B7624EF5}" = Sony Ericsson Drivers
"{C92E7DF1-624A-4D95-A4C4-18CB491B44A4}" = Sony Ericsson Device Data
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CD64CA10-B597-4C84-869F-1903013E3697}" = Nokia Photos
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CF3BAA39-989D-4EC4-9224-44D578494B5B}" = Nokia NSeries System Utilities
"{D6BF6477-8369-489F-8DE6-3731F4B88560}" = Sony Ericsson PC Suite
"{D6DBDC2A-E72C-4284-B6AD-6B3B61B4DABC}" = Far Cry
"{D7BFD899-39D6-4C77-9EC9-F293E8663439}_is1" = Total Immersion Racing
"{DB6AB705-C9BD-40E3-8929-2EA57F36A4FF}_is1" = ConvertXtoDVD 4.0.9.322
"{DD73CA82-EA82-38AA-863D-9A24A018DC96}" = Microsoft .NET Framework 3.5 Language Pack SP1 - csy
"{E09B48B5-E141-427A-AB0C-D3605127224A}" = Microsoft SQL Server Desktop Engine (PINNACLESYS)
"{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}" = PL-2303 USB-to-Serial
"{EEECE229-49F6-4851-A73A-99B058221F8C}" = RAPID
"{EF781A5C-58F5-4BFD-87F9-E4F14D382F25}" = Pinnacle Instant DVD Recorder
"{F01B7EF4-F487-4948-AA18-5332FE5495C9}" = Medieval - Total War - Gold Edition
"{F59205C8-E5FB-43F5-AAB2-16C1760D4F59}" = FaceFilter Studio Brother Edition
"{F9B44569-116C-41CB-929F-539A600D5EC1}" = Nokia NSeries Music Manager
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"05B59228C7E1C21DFBE89260F879BD95880548D8" = Balíček ovladače systému Windows - Nokia Modem (10/05/2009 4.2)
"4StoryCZ_is1" = 4Story 1.2
"504244733D18C8F63FF584AEB290E3904E791693" = Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"8CDCFB95BB84DD9C0F88F22266A0CA86035E55BA" = Balíček ovladače systému Windows - Nokia Modem (06/01/2009 7.01.0.4)
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Photoshop 7.0 CE" = Adobe Photoshop 7.0 CE
"All ATI Software" = ATI - Software Uninstall Utility
"AOE Trial" = Microsoft Age of Empires Trial
"ATI Display Driver" = ATI Display Driver
"AutoCAD 2008 - Český" = AutoCAD 2008 - Český
"AutoCAD 2008 - Český SP1" = AutoCAD 2008 - Český SP1
"awxDTools" = arniWORX Daemon-Tools ShellExtension (remove only)
"CCleaner" = CCleaner
"CDex" = CDex extraction audio
"C-Media Audio" = C-Media 3D Audio
"Cool's_Codec_pack_4.12" = Codec Pack - All In 1 6.0.0.4
"Corel Uninstaller" = Corel Uninstaller
"Creative Live! Cam Center" = Creative Live! Cam Center
"Creative VF0330" = Creative WebCam Vista/Live! Cam Chat Driver (1.11.01.00)
"dm paradies foto" = dm paradies foto
"DriverAgent.exe" = DriverAgent by eSupport.com
"DVDFab 6_is1" = DVDFab 6.1.0.0 Beta (25/09/2009)
"DVDFab Platinum_is1" = DVDFab Platinum 3.1.1.2 Ghosthunter release
"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
"FormatFactory" = FormatFactory 2.20
"F-Secure Product 277" = F-Secure Profi Antivirus
"GameSpy Arcade" = GameSpy Arcade
"HijackThis" = HijackThis 2.0.2
"Hollywood FX for Studio" = Pinnacle Hollywood FX for Studio
"Home Media Server 4.2.0.38" = Home Media Server 4.2.0.38
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"IL-2 Sturmovik" = IL-2 Sturmovik
"InstallShield_{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}" = SmartSound Quicktracks Plugin
"InstallShield_{A347C572-F7B4-43A3-BD51-FFC99184F70D}" = Jurassic Park Operation Genesis
"InstallShield_{D6DBDC2A-E72C-4284-B6AD-6B3B61B4DABC}" = Far Cry
"InstallShield_{F01B7EF4-F487-4948-AA18-5332FE5495C9}" = Medieval - Total War - Gold Edition
"IrfanView" = IrfanView (remove only)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Medal of Honor Allied Assault v 1.0.0.1_is1" = Medal of Honor Allied Assault v 1.0.0.1
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack SP1 - csy" = Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY
"Mplayer.com" = Mplayer.com
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"Nepravidelná slovesa_is1" = Nepravidelná slovesa 2.0
"Nero - Burning Rom!UninstallKey" = Nero 6 Ultra Edition
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"Nokia NSeries Application Installer" = Nokia NSeries Application Installer 6.84.2114
"Nokia NSeries Content Copier" = Nokia NSeries Content Copier 6.84.2114
"Nokia NSeries Music Manager" = Nokia NSeries Music Manager 6.84.2115
"Nokia NSeries One Touch Access" = Nokia NSeries One Touch Access 6.84.2114
"Nokia NSeries System Utilities" = Nokia NSeries System Utilities 6.84.2114
"Nokia PC Suite" = Nokia PC Suite
"Pariah" = Pariah
"PEKI dictionary" = PEKI dictionary 1.21
"POD-Bot 2.5" = POD-Bot 2.5
"QuickTime" = QuickTime
"Renegade" = Command & Conquer Renegade
"Skype_is1" = Skype 3.0
"Soldier of Fortune" = Soldier of Fortune
"ToolBand.SkypeIEToolbarToolbar" = Skype add-on for IE
"Totalcmd" = Total Commander (Remove or Repair)
"VIA Audio Driver Setup Program" = VIA Audio Driver Setup Program
"Vietcong" = Vietcong
"Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
"Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
"Winamp" = Winamp (remove only)
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR
"WinZip" = WinZip
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01007" = Microsoft User-Mode Driver Framework Feature Pack 1.7
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0
"Zoner Photo Studio 8_is1" = Zoner Photo Studio 8

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 20.3.2010 12:46:58 | Computer Name = JAROSLAV-IV0IG9 | Source = F-Secure Management Agent | ID = 103
Description = 1 2010-03-20 17:46:56+02:00 jaroslav-iv0ig9 SYSTEM F-Secure Management
Agent The module F-Secure Anti-Virus Firewall Daemon monitored by F-Secure Management
Agent has stopped responding or was terminated. An attempt to restart it will be
made later. If you see this message frequently, contact the system administrator
or reinstall F-Secure products.

Error - 20.3.2010 13:55:30 | Computer Name = JAROSLAV-IV0IG9 | Source = Microsoft Office 11 | ID = 2001
Description = Rejected Safe Mode action : Microsoft Office Outlook.

Error - 20.3.2010 14:20:27 | Computer Name = JAROSLAV-IV0IG9 | Source = F-Secure Management Agent | ID = 103
Description = 1 2010-03-20 19:20:25+02:00 jaroslav-iv0ig9 SYSTEM F-Secure Management
Agent The module F-Secure Automatic Update Agent monitored by F-Secure Management
Agent has stopped responding or was terminated. An attempt to restart it will be
made later. If you see this message frequently, contact the system administrator
or reinstall F-Secure products.

Error - 20.3.2010 14:31:42 | Computer Name = JAROSLAV-IV0IG9 | Source = F-Secure Anti-Virus | ID = 103
Description = 2 2010-03-20 19:31:41+02:00 jaroslav-iv0ig9 JAROSLAV-IV0IG9\Jarda
F-Secure Anti-Virus Scanning of \DEVICE\HARDDISKVOLUME1\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL
was aborted due to exceeded scanning time limit. The file may be in use or reading
it was too slow (e.g. network connection was under stress).

Error - 20.3.2010 16:03:34 | Computer Name = JAROSLAV-IV0IG9 | Source = F-Secure Management Agent | ID = 103
Description = 1 2010-03-20 21:03:34+02:00 jaroslav-iv0ig9 SYSTEM F-Secure Management
Agent The module F-Secure Anti-Virus Firewall Daemon monitored by F-Secure Management
Agent has stopped responding or was terminated. An attempt to restart it will be
made later. If you see this message frequently, contact the system administrator
or reinstall F-Secure products.

Error - 20.3.2010 17:37:59 | Computer Name = JAROSLAV-IV0IG9 | Source = F-Secure Management Agent | ID = 103
Description = 2 2010-03-20 22:37:58+02:00 jaroslav-iv0ig9 SYSTEM F-Secure Management
Agent The module F-Secure Automatic Update Agent monitored by F-Secure Management
Agent has stopped responding or was terminated. An attempt to restart it will be
made later. If you see this message frequently, contact the system administrator
or reinstall F-Secure products.

Error - 20.3.2010 18:07:11 | Computer Name = JAROSLAV-IV0IG9 | Source = F-Secure Anti-Virus | ID = 103
Description = 3 2010-03-20 23:07:10+02:00 jaroslav-iv0ig9 JAROSLAV-IV0IG9\Jarda
F-Secure Anti-Virus Scanning of \DEVICE\HARDDISKVOLUME1\DOCUMENTS AND SETTINGS\JARDA\LOCAL
SETTINGS\DATA APLIKACÍ\MICROSOFT\INTERNET EXPLORER\RECOVERY\LAST ACTIVE\RECOVERYSTORE.{8323A80E-345F-11DF-BF23-0023CDB3A7E1}.DAT
was aborted due to exceeded scanning time limit. The file may be in use or reading
it was too slow (e.g. network connection was under stress).

Error - 20.3.2010 18:15:48 | Computer Name = JAROSLAV-IV0IG9 | Source = F-Secure Management Agent | ID = 103
Description = 1 2010-03-20 23:15:48+02:00 jaroslav-iv0ig9 SYSTEM F-Secure Management
Agent The module F-Secure Anti-Virus Firewall Daemon monitored by F-Secure Management
Agent has stopped responding or was terminated. An attempt to restart it will be
made later. If you see this message frequently, contact the system administrator
or reinstall F-Secure products.

Error - 20.3.2010 18:55:52 | Computer Name = JAROSLAV-IV0IG9 | Source = F-Secure Management Agent | ID = 103
Description = 1 2010-03-20 23:55:52+02:00 jaroslav-iv0ig9 SYSTEM F-Secure Management
Agent The module F-Secure Anti-Virus Firewall Daemon monitored by F-Secure Management
Agent has stopped responding or was terminated. An attempt to restart it will be
made later. If you see this message frequently, contact the system administrator
or reinstall F-Secure products.

Error - 20.3.2010 19:13:29 | Computer Name = JAROSLAV-IV0IG9 | Source = F-Secure Management Agent | ID = 103
Description = 1 2010-03-21 00:13:29+02:00 jaroslav-iv0ig9 SYSTEM F-Secure Management
Agent The module F-Secure Anti-Virus Firewall Daemon monitored by F-Secure Management
Agent has stopped responding or was terminated. An attempt to restart it will be
made later. If you see this message frequently, contact the system administrator
or reinstall F-Secure products.

[ System Events ]
Error - 20.3.2010 18:50:05 | Computer Name = JAROSLAV-IV0IG9 | Source = Service Control Manager | ID = 7034
Description = Služba Ati HotKey Poller byla neočekávaně ukončena. Tento stav nastal
již 1krát.

Error - 20.3.2010 18:50:05 | Computer Name = JAROSLAV-IV0IG9 | Source = Service Control Manager | ID = 7034
Description = Služba MSSQL$PINNACLESYS byla neočekávaně ukončena. Tento stav nastal
již 1krát.

Error - 20.3.2010 18:50:06 | Computer Name = JAROSLAV-IV0IG9 | Source = Service Control Manager | ID = 7034
Description = Služba Java Quick Starter byla neočekávaně ukončena. Tento stav nastal
již 1krát.

Error - 20.3.2010 18:50:12 | Computer Name = JAROSLAV-IV0IG9 | Source = Disk | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Harddisk0\D.

Error - 20.3.2010 18:50:13 | Computer Name = JAROSLAV-IV0IG9 | Source = Disk | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Harddisk0\D.

Error - 20.3.2010 18:50:41 | Computer Name = JAROSLAV-IV0IG9 | Source = atapi | ID = 262149
Description = Na \Device\Ide\IdePort0 byla zjištěna chyba parity.

Error - 20.3.2010 18:50:41 | Computer Name = JAROSLAV-IV0IG9 | Source = Disk | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Harddisk0\D.

Error - 20.3.2010 18:55:40 | Computer Name = JAROSLAV-IV0IG9 | Source = Service Control Manager | ID = 7023
Description = Služba Automatické aktualizace byla ukončena s následující chybou:
%%126

Error - 20.3.2010 19:13:18 | Computer Name = JAROSLAV-IV0IG9 | Source = Service Control Manager | ID = 7023
Description = Služba Automatické aktualizace byla ukončena s následující chybou:
%%126

Error - 20.3.2010 19:40:06 | Computer Name = JAROSLAV-IV0IG9 | Source = Disk | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Harddisk0\D.


< End of report >

[Telda.]

OTL logfile created on: 21.3.2010 0:37:56 - Run 1
OTL by OldTimer - Version 3.1.37.3 Folder = E:\Documents and Settings\Jarda\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1 023,00 Mb Total Physical Memory | 483,00 Mb Available Physical Memory | 47,00% Memory free
2,00 Gb Paging File | 1,00 Gb Available in Paging File | 71,00% Paging File free
Paging file location(s): E:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = E: | %SystemRoot% = E:\WINDOWS | %ProgramFiles% = E:\Program Files
Drive C: | 3,77 Gb Total Space | 0,64 Gb Free Space | 16,98% Space Free | Partition Type: FAT32
D: Drive not present or media not loaded
Drive E: | 232,88 Gb Total Space | 78,07 Gb Free Space | 33,53% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: JAROSLAV-IV0IG9
Current User Name: Jarda
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 14 Days
Output = Minimal

========== Processes (SafeList) ==========

PRC - E:\Documents and Settings\Jarda\Plocha\OTL.exe (OldTimer Tools)
PRC - E:\Program Files\F-Secure\Anti-Virus\fsav32.exe (F-Secure Corporation)
PRC - E:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe (F-Secure Corporation)
PRC - E:\Program Files\F-Secure\Anti-Virus\fssm32.exe (F-Secure Corporation)
PRC - E:\Program Files\F-Secure\Anti-Virus\fsgk32.exe (F-Secure Corporation)
PRC - E:\Program Files\F-Secure\FSAUA\program\fsus.exe (F-Secure Corporation)
PRC - E:\Program Files\F-Secure\ORSP Client\fsorsp.exe (F-Secure Corporation)
PRC - E:\Program Files\F-Secure\Common\FSMB32.EXE (F-Secure Corporation)
PRC - E:\Program Files\F-Secure\Common\FSMA32.EXE (F-Secure Corporation)
PRC - E:\Program Files\F-Secure\Common\FAMEH32.EXE (F-Secure Corporation)
PRC - E:\Program Files\F-Secure\Common\FCH32.EXE (F-Secure Corporation)
PRC - E:\Program Files\F-Secure\Anti-Virus\fsqh.exe (F-Secure Corporation)
PRC - E:\Program Files\F-Secure\FSAUA\program\fsaua.exe (F-Secure Corporation)
PRC - E:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - E:\WINDOWS\ATKKBService.exe (ASUSTeK COMPUTER INC.)
PRC - e:\Program Files\Pinnacle\Shared Files\Programs\MediaServer\PMSHost.exe (Pinnacle Systems)
PRC - E:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe (Microsoft Corporation)


========== Modules (SafeList) ==========

MOD - E:\Documents and Settings\Jarda\Plocha\OTL.exe (OldTimer Tools)


========== Win32 Services (SafeList) ==========

SRV - (F-Secure Gatekeeper Handler Starter) -- E:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe (F-Secure Corporation)
SRV - (ServiceLayer) -- E:\Program Files\PC Connectivity Solution\ServiceLayer.exe (Nokia)
SRV - (FSORSPClient) -- E:\Program Files\F-Secure\ORSP Client\fsorsp.exe (F-Secure Corporation)
SRV - (FSMA) -- E:\Program Files\F-Secure\Common\FSMA32.EXE (F-Secure Corporation)
SRV - (FSDFWD) -- E:\Program Files\F-Secure\FWES\Program\fsdfwd.exe (F-Secure Corporation)
SRV - (FSAUA) -- E:\Program Files\F-Secure\FSAUA\program\fsaua.exe (F-Secure Corporation)
SRV - (NetTcpPortSharing) -- e:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe (Microsoft Corporation)
SRV - (Autodesk Licensing Service) -- E:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe (Autodesk)
SRV - (IDriverT) -- E:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe (Macrovision Corporation)
SRV - (ATKKeyboardService) -- E:\WINDOWS\ATKKBService.exe (ASUSTeK COMPUTER INC.)
SRV - (PinnacleSys.MediaServer) -- e:\Program Files\Pinnacle\Shared Files\Programs\MediaServer\PMSHost.exe (Pinnacle Systems)
SRV - (MSSQL$PINNACLESYS) -- E:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe (Microsoft Corporation)
SRV - (SQLAgent$PINNACLESYS) -- E:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlagent.EXE (Microsoft Corporation)


========== Driver Services (SafeList) ==========

DRV - (F-Secure Gatekeeper) -- E:\Program Files\F-Secure\Anti-Virus\minifilter\fsgk.sys ()
DRV - (nmwcdnsu) -- E:\WINDOWS\system32\drivers\nmwcdnsu.sys (Nokia)
DRV - (nmwcdnsuc) -- E:\WINDOWS\system32\drivers\nmwcdnsuc.sys (Nokia)
DRV - (UsbserFilt) -- E:\WINDOWS\system32\drivers\usbser_lowerfltj.sys (Nokia)
DRV - (nmwcdc) -- E:\WINDOWS\system32\drivers\ccdcmbo.sys (Nokia)
DRV - (nmwcd) -- E:\WINDOWS\system32\drivers\ccdcmb.sys (Nokia)
DRV - (upperdev) -- E:\WINDOWS\system32\drivers\usbser_lowerflt.sys (Nokia)
DRV - (fsbts) -- E:\WINDOWS\system32\Drivers\fsbts.sys ()
DRV - (F-Secure HIPS) -- E:\Program Files\F-Secure\HIPS\drivers\fshs.sys (F-Secure Corporation)
DRV - (FSFW) -- E:\WINDOWS\System32\drivers\fsdfw.sys (F-Secure Corporation)
DRV - (F-Secure Filter) -- E:\Program Files\F-Secure\Anti-Virus\win2k\fsfilter.sys ()
DRV - (F-Secure Recognizer) -- E:\Program Files\F-Secure\Anti-Virus\win2k\fsrec.sys ()
DRV - (pccsmcfd) -- E:\WINDOWS\system32\drivers\pccsmcfd.sys (Nokia)
DRV - (nm) -- E:\WINDOWS\system32\drivers\nmnt.sys (Microsoft Corporation)
DRV - (MREMP50) -- E:\Program Files\Common Files\Motive\MREMP50.sys (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (MRESP50) -- E:\Program Files\Common Files\Motive\MRESP50.sys (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (sptd) -- E:\WINDOWS\System32\Drivers\sptd.sys (Duplex Secure Ltd.)
DRV - (magpsc) -- E:\WINDOWS\system32\drivers\magpsc.sys (Mobile Action Technology Inc.)
DRV - (V0330VID) -- E:\WINDOWS\system32\drivers\V0330Vid.sys (Creative Technology Ltd.)
DRV - (s125mgmt) Sony Ericsson Device 125 USB WMC Device Management Drivers (WDM) -- E:\WINDOWS\system32\drivers\s125mgmt.sys (MCCI Corporation)
DRV - (s125obex) -- E:\WINDOWS\system32\drivers\s125obex.sys (MCCI Corporation)
DRV - (s125mdm) -- E:\WINDOWS\system32\drivers\s125mdm.sys (MCCI Corporation)
DRV - (s125mdfl) -- E:\WINDOWS\system32\drivers\s125mdfl.sys (MCCI Corporation)
DRV - (s125bus) Sony Ericsson Device 125 driver (WDM) -- E:\WINDOWS\system32\drivers\s125bus.sys (MCCI Corporation)
DRV - (s115mgmt) Sony Ericsson Device 115 USB WMC Device Management Drivers (WDM) -- E:\WINDOWS\system32\drivers\s115mgmt.sys (MCCI Corporation)
DRV - (s115obex) -- E:\WINDOWS\system32\drivers\s115obex.sys (MCCI Corporation)
DRV - (s115mdm) -- E:\WINDOWS\system32\drivers\s115mdm.sys (MCCI Corporation)
DRV - (s115mdfl) -- E:\WINDOWS\system32\drivers\s115mdfl.sys (MCCI Corporation)
DRV - (s115bus) Sony Ericsson Device 115 driver (WDM) -- E:\WINDOWS\system32\drivers\s115bus.sys (MCCI Corporation)
DRV - (ati2mtag) -- E:\WINDOWS\system32\drivers\ati2mtag.sys (ATI Technologies Inc.)
DRV - (EIO) -- E:\WINDOWS\system32\drivers\EIO.sys (ASUSTeK Computer Inc.)
DRV - (asuskbnt) -- E:\WINDOWS\system32\drivers\atkkbnt.sys (ASUSTeK COMPUTER INC.)
DRV - (sfvfs02) StarForce Protection VFS Driver (version 2.x) -- E:\WINDOWS\System32\drivers\sfvfs02.sys (Protection Technology)
DRV - (sfsync02) StarForce Protection Synchronization Driver (version 2.x) -- E:\WINDOWS\System32\drivers\sfsync02.sys (Protection Technology)
DRV - (sfdrv01) StarForce Protection Environment Driver (version 1.x) -- E:\WINDOWS\System32\drivers\sfdrv01.sys (Protection Technology)
DRV - (Ser2pl) -- E:\WINDOWS\system32\drivers\ser2pl.sys (Prolific Technology Inc.)
DRV - (MarvinBus) -- E:\WINDOWS\system32\drivers\MarvinBus.sys (Pinnacle Systems GmbH)
DRV - (sfhlp02) StarForce Protection Helper Driver (version 2.x) -- E:\WINDOWS\System32\drivers\sfhlp02.sys (Protection Technology)
DRV - (ASAPIW2K) -- E:\WINDOWS\system32\drivers\asapiW2k.sys (VOB Computersysteme GmbH)
DRV - (PCLEPCI) -- E:\WINDOWS\system32\drivers\Pclepci.sys (Pinnacle Systems GmbH)
DRV - (ALCXWDM) Service for Realtek AC97 Audio (WDM) -- E:\WINDOWS\system32\drivers\ALCXWDM.SYS (Realtek Semiconductor Corp.)
DRV - (BrScnUsb) -- E:\WINDOWS\system32\drivers\BrScnUsb.sys (Brother Industries Ltd.)
DRV - (prohlp02) -- E:\WINDOWS\System32\drivers\prohlp02.sys (Protection Technology)
DRV - (prodrv06) -- E:\WINDOWS\System32\drivers\prodrv06.sys (Protection Technology)
DRV - (rtl8139) Realtek RTL8139(A/B/C) -- E:\WINDOWS\system32\drivers\rtl8139.sys (Realtek Semiconductor Corporation)
DRV - (prosync1) -- E:\WINDOWS\System32\drivers\prosync1.sys (Protection Technology)
DRV - (VIAudio) Vinyl AC'97 Audio Controller (WDM) -- E:\WINDOWS\system32\drivers\viaudios.sys (VIA Technologies, Inc.)
DRV - (sfhlp01) -- E:\WINDOWS\System32\drivers\sfhlp01.sys (Protection Technology)
DRV - (USB_RNDIS) -- E:\WINDOWS\system32\drivers\usb8023k.sys (Microsoft Corporation)
DRV - (Aspi32) -- E:\WINDOWS\system32\drivers\ASPI32.SYS (Adaptec)
DRV - (V124) -- E:\WINDOWS\system32\drivers\HSF_V124.sys (Conexant)
DRV - (Tones) -- E:\WINDOWS\system32\drivers\HSF_TONE.sys (Conexant)
DRV - (hsf_msft) -- E:\WINDOWS\system32\drivers\HSF_MSFT.sys (Conexant)
DRV - (Rksample) -- E:\WINDOWS\system32\drivers\HSF_SAMP.sys (Conexant)
DRV - (K56) -- E:\WINDOWS\system32\drivers\HSF_K56K.sys (Conexant)
DRV - (Fallback) -- E:\WINDOWS\system32\drivers\HSF_FALL.sys (Conexant)
DRV - (SoftFax) -- E:\WINDOWS\system32\drivers\HSF_FAXX.sys (Conexant)
DRV - (Fsks) -- E:\WINDOWS\system32\drivers\HSF_FSKS.sys (Conexant)
DRV - (basic2) -- E:\WINDOWS\system32\drivers\HSF_BSC2.sys (Conexant)


========== Standard Registry (All) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = E:\WINDOWS\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = E:\WINDOWS\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.centrum.cz/
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - E:\WINDOWS\system32\ieframe.dll (Microsoft Corporation)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: e:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009.07.05 07:44:46 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\jqs@sun.com: E:\Program Files\Java\jre6\lib\deploy\jqs\ff [2009.09.20 09:40:12 | 000,000,000 | ---D | M]

[2009.07.15 18:48:01 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Jarda\Data aplikací\Mozilla\Extensions
[2009.07.15 18:48:01 | 000,000,000 | ---D | M] (No name found) -- E:\Documents and Settings\Jarda\Data aplikací\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009.07.15 18:48:01 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Jarda\Data aplikací\Mozilla\Firefox\Profiles\ifojhtbx.default\extensions
[2009.07.15 18:48:01 | 000,000,000 | ---D | M] (No name found) -- E:\Documents and Settings\Jarda\Data aplikací\Mozilla\Firefox\Profiles\ifojhtbx.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}

O1 HOSTS File: ([2009.07.15 14:54:19 | 000,316,918 | R--- | M]) - E:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 10896 more lines...
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - e:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - E:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (&Google) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - e:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O3 - HKCU\..\Toolbar\ShellBrowser: (&Adresa) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - E:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O3 - HKCU\..\Toolbar\ShellBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - e:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (&Adresa) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - E:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O3 - HKCU\..\Toolbar\WebBrowser: (&Odkazy) - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - E:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - e:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (&Links) - {F2CF5485-4E02-4F68-819C-B92DE9277049} - E:\WINDOWS\system32\ieframe.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {FE063DB9-4EC0-403E-8DD8-394C54984B2C} - Reg Error: Value error. File not found
O4 - HKLM..\Run: [ATICCC] E:\Program Files\ATI Technologies\ATI.ACE\cli.exe (ATI Technologies Inc.)
O4 - HKLM..\Run: [AudioDeck] E:\Program Files\VIAudioi\SBADeck\ADeck.exe (VIA Technologies, Inc.)
O4 - HKLM..\Run: [sclauncher] E:\Program Files\SimpleCenter\bin\win\sclauncher.exe (Universal Electronics Inc.)
O4 - HKLM..\Run: [V0330Mon.exe] E:\WINDOWS\V0330Mon.exe (Creative Technology Ltd.)
O4 - HKCU..\Run: [PC Suite Tray] E:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe (Nokia)
O4 - Startup: E:\Documents and Settings\Jarda\Nabídka Start\Programy\Po spuštění\syspck32.exe (Flint)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: disableregistrytools = 0
O8 - Extra context menu item: &Google Search - E:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O8 - Extra context menu item: Backward Links - E:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O8 - Extra context menu item: Cached Snapshot of Page - E:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - E:\Program Files\Microsoft Office\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Similar Pages - E:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O8 - Extra context menu item: Translate into English - E:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - E:\Program Files\Skype\toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - E:\Program Files\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\WINDOWS\network diagnostic\xpnetdiag.exe (Microsoft Corporation)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - E:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - E:\WINDOWS\system32\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - E:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - E:\Program Files\F-Secure\FSPS\program\FSLSP.DLL (F-Secure Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - E:\Program Files\F-Secure\FSPS\program\FSLSP.DLL (F-Secure Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - E:\Program Files\F-Secure\FSPS\program\FSLSP.DLL (F-Secure Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - E:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - E:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - E:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - E:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - E:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - E:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - E:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - E:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - E:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - E:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - E:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - E:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - E:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - E:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - E:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - E:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - E:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - E:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - E:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000023 - E:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000024 - E:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000025 - E:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000026 - E:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000027 - E:\Program Files\F-Secure\FSPS\program\FSLSP.DLL (F-Secure Corporation)
O16 - DPF: {0000000A-0000-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... wmavax.CAB (Reg Error: Key error.)
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.microsoft.com/download/ ... ontrol.cab (Office Genuine Advantage Validation Tool)
O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... mv9VCM.CAB (Reg Error: Key error.)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microso ... 6262874953 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553530000} https://fpdownload.macromedia.com/get/s ... wflash.cab (Reg Error: Key error.)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shoc ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - E:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - E:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - E:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - E:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - E:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - E:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - E:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - E:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - E:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - E:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - E:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - E:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - E:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - E:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - E:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - E:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - E:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - E:\WINDOWS\system32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - E:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - E:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - E:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - E:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - E:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - E:\Program Files\Common Files\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - E:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - E:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - E:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\sysimage {76E67A63-06E9-11D2-A840-006008059382} - E:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - E:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - E:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\wia {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - E:\WINDOWS\system32\wiascr.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - E:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - E:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - E:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\Class Install Handler {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - E:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - E:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - E:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\lzdhtml {8f6b0360-b80d-11d0-a9b3-006097942311} - E:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/webviewhtml {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - E:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - E:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - E:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (E:\WINDOWS\system32\userinit.exe) - E:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (logonui.exe) - E:\WINDOWS\System32\logonui.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - E:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - E:\WINDOWS\System32\sysdm.cpl (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - E:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\crypt32chain: DllName - crypt32.dll - E:\WINDOWS\System32\crypt32.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cryptnet: DllName - cryptnet.dll - E:\WINDOWS\System32\cryptnet.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cscdll: DllName - cscdll.dll - E:\WINDOWS\System32\cscdll.dll (Microsoft Corporation)
O20 - Winlogon\Notify\dimsntfy: DllName - %SystemRoot%\System32\dimsntfy.dll - E:\WINDOWS\system32\dimsntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\ScCertProp: DllName - wlnotify.dll - E:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\sclgntfy: DllName - sclgntfy.dll - E:\WINDOWS\System32\sclgntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\SensLogn: DllName - WlNotify.dll - E:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\Schedule: DllName - wlnotify.dll - E:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\termsrv: DllName - wlnotify.dll - E:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\WgaLogon: DllName - WgaLogon.dll - E:\WINDOWS\System32\WgaLogon.dll (Microsoft Corporation)
O20 - Winlogon\Notify\wlballoon: DllName - wlnotify.dll - E:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - E:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - E:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - E:\WINDOWS\system32\stobject.dll (Microsoft Corporation)
O21 - SSODL: UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - E:\WINDOWS\system32\upnpui.dll (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - E:\WINDOWS\system32\webcheck.dll (Microsoft Corporation)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - E:\WINDOWS\system32\WPDShServiceObj.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {438755C2-A8BA-11D1-B96B-00A0C90312E1} - Browseui preloader - E:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Proces mezipaměti kategorií součástí - E:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: E:\Documents and Settings\Jarda\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: E:\Documents and Settings\Jarda\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - E:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msapsspc.dll) - E:\WINDOWS\System32\msapsspc.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (schannel.dll) - E:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (digest.dll) - E:\WINDOWS\System32\digest.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msnsspc.dll) - E:\WINDOWS\System32\msnsspc.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - E:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - E:\WINDOWS\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - E:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - E:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - E:\WINDOWS\System32\wdigest.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 14 Days ==========

[2010.03.21 00:35:30 | 000,555,520 | ---- | C] (OldTimer Tools) -- E:\Documents and Settings\Jarda\Plocha\OTL.exe
[2010.03.21 00:34:30 | 000,000,000 | -HSD | C] -- E:\RECYCLER
[2010.03.20 18:05:07 | 000,000,000 | RH-D | C] -- E:\Documents and Settings\Jarda\Recent
[2010.03.20 15:57:10 | 000,293,376 | ---- | C] (Microsoft Corporation) -- E:\WINDOWS\System32\browserchoice.exe
[2010.03.17 16:31:37 | 000,000,000 | ---D | C] -- E:\Documents and Settings\Jarda\Plocha\Navigace
[2010.03.16 19:54:33 | 000,000,000 | ---D | C] -- E:\Documents and Settings\Jarda\Plocha\staré fotky
[2010.03.10 06:47:40 | 003,558,912 | ---- | C] (Microsoft Corporation) -- E:\WINDOWS\System32\dllcache\moviemk.exe
[2009.08.01 16:00:29 | 000,000,000 | ---D | M] -- E:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Microsoft
[2009.05.29 23:24:27 | 000,000,000 | ---D | M] -- E:\Documents and Settings\LocalService\Local Settings\Data aplikací\Microsoft
[2009.04.17 17:32:54 | 000,000,000 | ---D | M] -- E:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Google
[2009.02.24 18:47:25 | 000,000,000 | ---D | M] -- E:\Documents and Settings\NetworkService\Local Settings\Data aplikací\F-Secure
[2006.10.18 18:32:38 | 000,000,000 | --SD | M] -- E:\Documents and Settings\LocalService\Data aplikací\Microsoft
[2002.06.14 20:31:58 | 000,000,000 | --SD | M] -- E:\Documents and Settings\NetworkService\Data aplikací\Microsoft
[8 E:\WINDOWS\System32\*.tmp files -> E:\WINDOWS\System32\*.tmp -> ]
[4 E:\WINDOWS\*.tmp files -> E:\WINDOWS\*.tmp -> ]
[1 E:\WINDOWS\System32\drivers\*.tmp files -> E:\WINDOWS\System32\drivers\*.tmp -> ]

========== Files - Modified Within 14 Days ==========

[2010.03.21 00:17:07 | 000,000,006 | -H-- | M] () -- E:\WINDOWS\tasks\SA.DAT
[2010.03.21 00:13:53 | 000,002,206 | ---- | M] () -- E:\WINDOWS\System32\wpa.dbl
[2010.03.21 00:13:46 | 000,049,152 | ---- | M] ( ) -- E:\WINDOWS\System32\CompiledAdapter
[2010.03.21 00:12:30 | 000,002,048 | --S- | M] () -- E:\WINDOWS\bootstat.dat
[2010.03.21 00:11:23 | 015,204,352 | ---- | M] () -- E:\Documents and Settings\Jarda\ntuser.dat
[2010.03.21 00:11:23 | 000,000,272 | -HS- | M] () -- E:\Documents and Settings\Jarda\ntuser.ini
[2010.03.21 00:01:14 | 000,000,542 | ---- | M] () -- E:\WINDOWS\tasks\Scheduled scanning task.job
[2010.03.20 22:18:42 | 000,555,520 | ---- | M] (OldTimer Tools) -- E:\Documents and Settings\Jarda\Plocha\OTL.exe
[2010.03.20 16:27:51 | 000,318,976 | ---- | M] () -- E:\Documents and Settings\Jarda\Plocha\HDC-panasonic.doc
[2010.03.20 16:25:15 | 000,000,162 | -H-- | M] () -- E:\Documents and Settings\Jarda\Plocha\~$C-panasonic.doc
[2010.03.20 16:14:54 | 000,000,466 | -H-- | M] () -- E:\WINDOWS\tasks\User_Feed_Synchronization-{504A7340-A238-403C-88C4-9479A6F5405A}.job
[2010.03.20 15:43:40 | 000,000,169 | ---- | M] () -- E:\WINDOWS\RtlRack.ini
[2010.03.20 08:56:48 | 000,001,103 | ---- | M] () -- E:\Documents and Settings\Jarda\intlname.ols
[2010.03.20 08:51:33 | 000,003,260 | ---- | M] () -- E:\WINDOWS\wincmd.ini
[2010.03.16 20:02:57 | 000,000,192 | ---- | M] () -- E:\WINDOWS\winamp.ini
[2010.03.16 19:16:27 | 000,110,592 | ---- | M] () -- E:\Documents and Settings\Jarda\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.03.16 19:15:56 | 000,000,069 | ---- | M] () -- E:\WINDOWS\NeroDigital.ini
[2010.03.13 18:03:16 | 000,150,425 | -H-- | M] () -- E:\treeinfo.wc
[2010.03.10 19:21:26 | 000,000,721 | ---- | M] () -- E:\WINDOWS\win.ini
[8 E:\WINDOWS\System32\*.tmp files -> E:\WINDOWS\System32\*.tmp -> ]
[4 E:\WINDOWS\*.tmp files -> E:\WINDOWS\*.tmp -> ]
[1 E:\WINDOWS\System32\drivers\*.tmp files -> E:\WINDOWS\System32\drivers\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010.03.20 16:25:14 | 000,000,162 | -H-- | C] () -- E:\Documents and Settings\Jarda\Plocha\~$C-panasonic.doc
[2010.03.20 14:21:23 | 000,000,008 | ---- | C] () -- E:\Documents and Settings\NetworkService\Data aplikací\jasltw.dat
[2010.03.12 13:48:37 | 000,318,976 | ---- | C] () -- E:\Documents and Settings\Jarda\Plocha\HDC-panasonic.doc
[2009.12.02 07:36:00 | 000,000,574 | ---- | C] () -- E:\WINDOWS\disney.ini
[2009.12.01 06:58:39 | 000,021,840 | ---- | C] () -- E:\WINDOWS\System32\SIntfNT.dll
[2009.12.01 06:58:38 | 000,017,212 | ---- | C] () -- E:\WINDOWS\System32\SIntf32.dll
[2009.12.01 06:55:56 | 000,000,025 | ---- | C] () -- E:\WINDOWS\SIERRA.INI
[2009.08.03 14:07:42 | 000,691,592 | ---- | C] () -- E:\WINDOWS\System32\OGACheckControl.DLL
[2009.05.30 16:05:33 | 000,001,041 | ---- | C] () -- E:\Documents and Settings\Jarda\Data aplikací\vso_ts_preview.xml
[2009.05.29 20:08:15 | 000,091,007 | ---- | C] () -- E:\Documents and Settings\Jarda\Data aplikací\NMM-MetaData.db
[2009.05.29 19:51:33 | 002,505,112 | ---- | C] () -- E:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
[2009.05.29 19:28:21 | 000,000,019 | ---- | C] () -- E:\WINDOWS\SoundConverter.INI
[2009.03.18 19:22:36 | 000,000,765 | ---- | C] () -- E:\WINDOWS\602Photo.INI
[2009.02.24 18:47:20 | 000,033,920 | ---- | C] () -- E:\WINDOWS\System32\drivers\fsbts.sys
[2008.10.17 17:00:45 | 000,000,416 | ---- | C] () -- E:\WINDOWS\BRWMARK.INI
[2008.10.17 17:00:45 | 000,000,027 | ---- | C] () -- E:\WINDOWS\BRPP2KA.INI
[2008.10.17 16:58:05 | 000,031,567 | ---- | C] () -- E:\WINDOWS\maxlink.ini
[2008.09.11 17:56:28 | 000,001,025 | ---- | C] () -- E:\WINDOWS\System32\sysprs7.dll
[2008.09.11 17:56:28 | 000,001,025 | ---- | C] () -- E:\WINDOWS\System32\clauth2.dll
[2008.09.11 17:56:28 | 000,001,025 | ---- | C] () -- E:\WINDOWS\System32\clauth1.dll
[2008.09.11 17:56:28 | 000,000,205 | ---- | C] () -- E:\WINDOWS\System32\lsprst7.dll
[2008.09.11 17:56:28 | 000,000,073 | ---- | C] () -- E:\WINDOWS\System32\ssprs.dll
[2008.08.06 20:25:07 | 000,000,069 | ---- | C] () -- E:\WINDOWS\NeroDigital.ini
[2008.05.21 20:26:51 | 000,043,520 | ---- | C] () -- E:\WINDOWS\System32\CmdLineExt03.dll
[2007.11.11 17:43:13 | 000,000,000 | ---- | C] () -- E:\WINDOWS\mngui.INI
[2007.05.23 18:50:51 | 000,069,632 | R--- | C] () -- E:\WINDOWS\System32\xmltok.dll
[2007.05.23 18:50:51 | 000,036,864 | R--- | C] () -- E:\WINDOWS\System32\xmlparse.dll
[2007.01.13 16:41:29 | 000,005,120 | ---- | C] () -- E:\WINDOWS\System32\tcusbdrv.dll
[2006.11.08 18:30:19 | 000,010,240 | ---- | C] () -- E:\WINDOWS\System32\vidx16.dll
[2006.09.19 17:57:41 | 000,000,198 | ---- | C] () -- E:\WINDOWS\QTW.INI
[2006.09.19 17:09:55 | 000,000,034 | ---- | C] () -- E:\WINDOWS\Lingua.ini
[2006.09.19 17:09:55 | 000,000,000 | ---- | C] () -- E:\WINDOWS\PROTOCOL.INI
[2006.09.05 18:12:14 | 000,001,093 | ---- | C] () -- E:\WINDOWS\CAPTURE.INI
[2006.09.04 17:44:32 | 000,108,032 | ---- | C] () -- E:\WINDOWS\System32\sh33w32.dll
[2006.07.24 18:40:12 | 000,194,248 | ---- | C] () -- E:\WINDOWS\System32\LTRFD13n.DLL
[2006.07.24 18:32:25 | 000,001,194 | ---- | C] () -- E:\WINDOWS\VFO.INI
[2006.07.24 18:32:23 | 000,196,096 | ---- | C] () -- E:\WINDOWS\System32\macd32.dll
[2006.07.24 18:32:23 | 000,138,752 | ---- | C] () -- E:\WINDOWS\System32\mase32.dll
[2006.07.24 18:32:23 | 000,136,192 | ---- | C] () -- E:\WINDOWS\System32\mamc32.dll
[2006.07.24 18:32:23 | 000,057,856 | ---- | C] () -- E:\WINDOWS\System32\masd32.dll
[2006.07.24 18:32:23 | 000,027,648 | ---- | C] () -- E:\WINDOWS\System32\ma32.dll
[2006.06.28 09:19:14 | 000,210,944 | ---- | C] () -- E:\WINDOWS\System32\Msvcrt10.dll
[2006.06.26 15:21:22 | 000,000,035 | ---- | C] () -- E:\WINDOWS\A5W.INI
[2006.06.26 15:05:31 | 000,000,179 | ---- | C] () -- E:\WINDOWS\CONTEXT.INI
[2006.06.19 16:05:23 | 000,000,390 | ---- | C] () -- E:\WINDOWS\ODBC.INI
[2006.06.16 21:38:19 | 000,000,151 | ---- | C] () -- E:\WINDOWS\PhotoSnapViewer.INI
[2006.06.15 18:42:07 | 000,000,169 | ---- | C] () -- E:\WINDOWS\RtlRack.ini
[2005.12.07 10:31:00 | 000,202,752 | R--- | C] () -- E:\WINDOWS\System32\CddbCdda.dll
[2004.12.20 17:24:03 | 001,663,068 | ---- | C] () -- E:\WINDOWS\System32\libmmd.dll
[2004.03.01 06:53:21 | 000,729,088 | ---- | C] () -- E:\WINDOWS\System32\xvidcore.dll
[2003.10.09 17:26:10 | 000,053,248 | ---- | C] () -- E:\WINDOWS\System32\pagesync.dll
[2003.09.30 10:47:47 | 000,921,600 | ---- | C] () -- E:\WINDOWS\System32\VorbisEnc.dll
[2003.09.30 10:47:47 | 000,344,064 | ---- | C] () -- E:\WINDOWS\System32\xvid.dll
[2003.09.30 10:47:47 | 000,188,416 | ---- | C] () -- E:\WINDOWS\System32\vorbis.dll
[2003.09.30 10:47:47 | 000,155,136 | ---- | C] () -- E:\WINDOWS\System32\unrar.dll
[2003.09.30 10:47:46 | 000,237,568 | ---- | C] () -- E:\WINDOWS\System32\OggDS.dll
[2003.09.30 10:47:46 | 000,045,056 | ---- | C] () -- E:\WINDOWS\System32\ogg.dll
[2003.04.09 14:38:04 | 000,005,664 | ---- | C] () -- E:\WINDOWS\System32\OUTLPERF.INI
[2002.06.15 21:36:43 | 000,003,260 | ---- | C] () -- E:\WINDOWS\wincmd.ini
[2002.06.15 21:02:56 | 000,000,239 | ---- | C] () -- E:\WINDOWS\level.ini
[2002.06.15 20:51:50 | 000,000,192 | ---- | C] () -- E:\WINDOWS\winamp.ini
[2002.06.15 17:37:54 | 000,000,911 | ---- | C] () -- E:\WINDOWS\Sof.INI
[2002.06.15 16:46:56 | 000,197,120 | ---- | C] () -- E:\WINDOWS\patchw32.dll
[2002.06.15 16:01:01 | 000,000,125 | ---- | C] () -- E:\Documents and Settings\Jarda\Local Settings\Data aplikací\fusioncache.dat
[2002.06.15 15:59:05 | 000,363,520 | ---- | C] () -- E:\WINDOWS\System32\psisdecd.dll
[2002.06.15 15:58:57 | 000,010,496 | ---- | C] () -- E:\WINDOWS\System32\ATKOSDMini.DLL
[2002.06.15 15:58:57 | 000,000,018 | ---- | C] () -- E:\WINDOWS\System32\atkid.ini
[2002.06.15 15:58:56 | 000,046,592 | ---- | C] () -- E:\WINDOWS\System32\asfrench.dll
[2002.06.15 15:58:56 | 000,046,080 | ---- | C] () -- E:\WINDOWS\System32\asrussian.dll
[2002.06.15 15:58:56 | 000,046,080 | ---- | C] () -- E:\WINDOWS\System32\asgerman.dll
[2002.06.15 15:58:56 | 000,046,080 | ---- | C] () -- E:\WINDOWS\System32\aseng.dll
[2002.06.15 15:58:56 | 000,045,568 | ---- | C] () -- E:\WINDOWS\System32\askorean.dll
[2002.06.15 15:58:56 | 000,045,568 | ---- | C] () -- E:\WINDOWS\System32\asjapan.dll
[2002.06.15 15:58:56 | 000,045,568 | ---- | C] () -- E:\WINDOWS\System32\ASCHT.dll
[2002.06.15 15:58:56 | 000,045,568 | ---- | C] () -- E:\WINDOWS\System32\aschs.dll
[2002.06.15 15:31:21 | 000,110,592 | ---- | C] () -- E:\Documents and Settings\Jarda\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2002.06.14 21:04:25 | 000,036,864 | ---- | C] () -- E:\WINDOWS\System32\UnAudioNT.dll
[2002.06.14 21:03:53 | 000,000,164 | ---- | C] () -- E:\WINDOWS\avrack.ini
[2002.06.14 21:03:52 | 000,156,672 | ---- | C] () -- E:\WINDOWS\System32\RTLCPAPI.dll
[2002.06.14 21:02:49 | 000,000,092 | ---- | C] () -- E:\WINDOWS\CMISETUP.INI
[2002.06.14 21:02:49 | 000,000,026 | ---- | C] () -- E:\WINDOWS\CMCDPLAY.INI
[2002.06.14 21:02:49 | 000,000,010 | ---- | C] () -- E:\WINDOWS\Wininit.ini
[2002.06.14 21:02:48 | 000,028,672 | ---- | C] () -- E:\WINDOWS\System32\cmirmdrv.dll
[2002.06.14 21:02:41 | 000,028,672 | ---- | C] () -- E:\WINDOWS\CMIRmDriver.dll
[1997.06.14 01:56:08 | 000,056,832 | ---- | C] () -- E:\WINDOWS\System32\iyvu9_32.dll

========== LOP Check ==========

[2008.07.11 16:37:26 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\Autodesk
[2009.02.24 18:46:47 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\f-secure
[2009.02.24 18:45:32 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\fssg
[2009.11.28 08:00:05 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\Installations
[2006.06.19 16:50:39 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\MSScanAppDataDir
[2007.11.03 20:05:30 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\My Pictures
[2009.05.29 20:03:25 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\Nokia
[2009.06.17 18:48:40 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\NokiaMusic
[2009.07.14 20:32:07 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\PC Drivers HeadQuarters
[2009.05.29 23:25:14 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\PC Suite
[2006.07.24 19:02:41 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\Pinnacle
[2006.07.24 18:30:47 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\Pinnacle Studio
[2008.10.29 15:05:01 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\ScanSoft
[2007.06.30 02:09:51 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\SmartSound Software Inc
[2007.11.03 12:49:57 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\Teleca
[2009.12.22 15:40:26 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\TEMP
[2008.08.30 12:59:25 | 000,000,000 | ---D | M] -- E:\Documents and Settings\All Users\Data aplikací\vsosdk
[2008.07.11 16:37:26 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Jarda\Data aplikací\Autodesk
[2007.10.10 17:27:33 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Jarda\Data aplikací\DataLayer
[2007.03.22 21:16:37 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Jarda\Data aplikací\Desktop Sidebar
[2009.02.26 19:05:58 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Jarda\Data aplikací\F-Secure
[2009.07.14 20:32:44 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Jarda\Data aplikací\GetRightToGo
[2008.08.06 18:52:17 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Jarda\Data aplikací\InfraRecorder
[2002.06.15 17:48:52 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Jarda\Data aplikací\InterTrust
[2009.04.17 16:54:03 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Jarda\Data aplikací\MobileAction
[2009.07.31 17:58:20 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Jarda\Data aplikací\My Battle for Middle-earth(tm) II Files
[2009.11.25 17:38:55 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Jarda\Data aplikací\Nokia
[2007.10.10 20:42:02 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Jarda\Data aplikací\Nokia Multimedia Player
[2009.05.31 09:20:27 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Jarda\Data aplikací\Nseries
[2010.01.30 13:10:20 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Jarda\Data aplikací\PC Suite
[2006.07.24 19:05:29 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Jarda\Data aplikací\Pinnacle Systems
[2008.10.17 18:49:41 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Jarda\Data aplikací\ScanSoft
[2007.12.28 18:34:05 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Jarda\Data aplikací\Teleca
[2009.07.15 18:48:02 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Jarda\Data aplikací\Thunderbird
[2010.01.24 17:26:33 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Jarda\Data aplikací\Vso
[2006.07.13 19:13:13 | 000,000,000 | ---D | M] -- E:\Documents and Settings\Jarda\Data aplikací\Zoner
[2010.03.21 00:01:14 | 000,000,542 | ---- | M] () -- E:\WINDOWS\Tasks\Scheduled scanning task.job
[2010.03.20 16:14:54 | 000,000,466 | -H-- | M] () -- E:\WINDOWS\Tasks\User_Feed_Synchronization-{504A7340-A238-403C-88C4-9479A6F5405A}.job

========== Alternate Data Streams ==========

@Alternate Data Stream - 134 bytes -> E:\Documents and Settings\All Users\Data aplikací\TEMP:671329E4
< End of report >

[Damned]

Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Custom Scans/Fixes do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O1 HOSTS File: ([2009.07.15 14:54:19 | 000,316,918 | R--- | M]) - E:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 10896 more lines...
O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {FE063DB9-4EC0-403E-8DD8-394C54984B2C} - Reg Error: Value error. File not found
O4 - Startup: E:\Documents and Settings\Jarda\Nabídka Start\Programy\Po spuštění\syspck32.exe (Flint)
O16 - DPF: {0000000A-0000-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... wmavax.CAB (Reg Error: Key error.)
O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... mv9VCM.CAB (Reg Error: Key error.)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553530000} https://fpdownload.macromedia.com/get/s ... wflash.cab (Reg Error: Key error.)
@Alternate Data Stream - 134 bytes -> E:\Documents and Settings\All Users\Data aplikací\TEMP:671329E4

:Files
C:\WINDOWS\*.tmp
C:\WINDOWS\System32\*.tmp
C:\WINDOWS\system32\*.tmp.dll
C:\WINDOWS\system32\SET*.tmp
E:\WINDOWS\System32\drivers\*.tmp
E:\WINDOWS\tasks\*.job
C:\RECYLER
C:\$RECYCLE.BIN
C:\Documents and Settings\NetworkService\Data aplikací\rbuwzv.dat
E:\Documents and Settings\Jarda\Nabídka Start\Programy\Po spuštění\syspck32.exe
E:\Documents and Settings\NetworkService\Data aplikací\jasltw.dat
C:\Windows\tasks\SA.DAT

:Reg

:Commands
[purity]
[emptytemp]
[emptyflash]
[resethosts]
[start explorer]
[Reboot]


Poté klikni nahoře na Run Fix. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.

[Telda.]

All processes killed
========== OTL ==========
Process explorer.exe killed successfully!
127.0.0.1 localhost removed from HOSTS file successfully
127.0.0.1 www.007guard.com removed from HOSTS file successfully
127.0.0.1 007guard.com removed from HOSTS file successfully
127.0.0.1 008i.com removed from HOSTS file successfully
127.0.0.1 www.008k.com removed from HOSTS file successfully
127.0.0.1 008k.com removed from HOSTS file successfully
127.0.0.1 www.00hq.com removed from HOSTS file successfully
127.0.0.1 00hq.com removed from HOSTS file successfully
127.0.0.1 010402.com removed from HOSTS file successfully
127.0.0.1 www.032439.com removed from HOSTS file successfully
127.0.0.1 032439.com removed from HOSTS file successfully
127.0.0.1 www.0scan.com removed from HOSTS file successfully
127.0.0.1 0scan.com removed from HOSTS file successfully
127.0.0.1 1000gratisproben.com removed from HOSTS file successfully
127.0.0.1 1001namen.com removed from HOSTS file successfully
127.0.0.1 www.100888290cs.com removed from HOSTS file successfully
127.0.0.1 100888290cs.com removed from HOSTS file successfully
127.0.0.1 100sexlinks.com removed from HOSTS file successfully
127.0.0.1 www.10sek.com removed from HOSTS file successfully
127.0.0.1 10sek.com removed from HOSTS file successfully
127.0.0.1 www.1-2005-search.com removed from HOSTS file successfully
127.0.0.1 1-2005-search.com removed from HOSTS file successfully
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{FE063DB9-4EC0-403E-8DD8-394C54984B2C} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FE063DB9-4EC0-403E-8DD8-394C54984B2C}\ deleted successfully.
E:\Documents and Settings\Jarda\Nabídka Start\Programy\Po spuštění\syspck32.exe moved successfully.
Starting removal of ActiveX control {0000000A-0000-0010-8000-00AA00389B71}
E:\WINDOWS\Downloaded Program Files\WMAVAX.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{0000000A-0000-0010-8000-00AA00389B71}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0000000A-0000-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{0000000A-0000-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0000000A-0000-0010-8000-00AA00389B71}\ not found.
Starting removal of ActiveX control {33564D57-0000-0010-8000-00AA00389B71}
E:\WINDOWS\Downloaded Program Files\WMV9VCM.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{33564D57-0000-0010-8000-00AA00389B71}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{33564D57-0000-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{33564D57-0000-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{33564D57-0000-0010-8000-00AA00389B71}\ not found.
Starting removal of ActiveX control {D27CDB6E-AE6D-11CF-96B8-444553530000}
E:\WINDOWS\Downloaded Program Files\swflash.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{D27CDB6E-AE6D-11CF-96B8-444553530000}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D27CDB6E-AE6D-11CF-96B8-444553530000}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{D27CDB6E-AE6D-11CF-96B8-444553530000}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D27CDB6E-AE6D-11CF-96B8-444553530000}\ not found.
ADS E:\Documents and Settings\All Users\Data aplikací\TEMP:671329E4 deleted successfully.
========== FILES ==========
File\Folder C:\WINDOWS\*.tmp not found.
File\Folder C:\WINDOWS\System32\*.tmp not found.
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
E:\WINDOWS\System32\drivers\OLD3C.tmp moved successfully.
E:\WINDOWS\tasks\Scheduled scanning task.job moved successfully.
E:\WINDOWS\tasks\User_Feed_Synchronization-{504A7340-A238-403C-88C4-9479A6F5405A}.job moved successfully.
File\Folder C:\RECYLER not found.
File\Folder C:\$RECYCLE.BIN not found.
File\Folder C:\Documents and Settings\NetworkService\Data aplikací\rbuwzv.dat not found.
File\Folder E:\Documents and Settings\Jarda\Nabídka Start\Programy\Po spuštění\syspck32.exe not found.
E:\Documents and Settings\NetworkService\Data aplikací\jasltw.dat moved successfully.
File\Folder C:\Windows\tasks\SA.DAT not found.
========== REGISTRY ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes

User: Jarda
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 1394996 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 3210431 bytes
->Flash cache emptied: 3810 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32835 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes

User: TEMP
->Temporary Internet Files folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 1139202 bytes
%systemroot%\System32 .tmp files removed: 12180488 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 34209 bytes
RecycleBin emptied: 535566 bytes

Total Files Cleaned = 18,00 mb


[EMPTYFLASH]

User: All Users

User: Default User

User: Jarda
->Flash cache emptied: 0 bytes

User: LocalService

User: NetworkService

User: TEMP

Total Flash Files Cleaned = 0,00 mb

E:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

OTL by OldTimer - Version 3.1.37.3 log created on 03212010_011024

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...

[Damned]

Měl by si to mít OK.

Smaž složku C:\_OTL a vysypej Koš.

Stáhni si ToolsCleaner2 (by de A.Rothstein & Dj Quiou) na Plochu a spusť ho.

Klikni na Pt. Restauration (obnova) a poté na OK.
Klikni na Corbeille (koš) a poté na OK.
Klikni na Fichiers temp (temp složky) a poté na OK.
Klikni na Recherche (hledání) a nech Cleaner pracovat. Může se během čištění zastavit , ale nech ho pokračovat.
Když program skončí , klikni na Suppression (odstranění) a odstraň nalezené.
Zavři a smaž program.

Kdyby se něco zase objevilo, tak se zastav.
Označ topic za vyřešený (zelená fajfka) a měj se.

[Telda.]

Mockrát děkuji za pomoc . Až budeš mít chvilku můžeš mi napsat co jsem s tím měl a na co si dávat pozor. Nechámu a netuším čím to bylo. Ještě jednou moc a moc děkuji