Reset PC pri Tento Pocitac apod.

[hollca]

A udelat test v Malwarebytes porad nejde, protoze se to behem testu sekne a restartuje.

[Reklama]

[jaro3]

Zkus ho spustit v nouz. režimu, budu až večer..

[hollca]

To taky nejde...proste se to pokazde resetuje..://

[jaro3]

Vypni si rez.ochrany i firewall.
Stáhni si Dr. Web CureIt
dej update , po aktualizaci dej start.
Tlacitky dole muzeš soubor léčit, smazat, přesunout nebo přejmenovat

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Poznámka: Nepoužij k označení skriptu funkci VYBRAT VŠE

Kód: Vybrat vše

Folder::
c:\program files\Crawler
DDS::
uSearchAssistant = hxxp://search.qip.ru/ie
uSearchURL,(Default) = Root: HKCU; Subkey: Software\Microsoft\Internet Explorer\SearchUrl; ValueType: string; ValueName: '; ValueData: '; Flags: createvalueifdoesntexist noerror; Tasks: AddSearchQip


Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HJT

[hollca]

Nefunguje ani ten Dr.. vzdycky se to resetuje..

[jaro3]

Proveď script v CF.

Potom:
Stáhni si OTL
na plochu. Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Output klikni na minimal Output.Pod Standard Registry změň na All.. Zatrhni LOP Check a Purity Check. Klikni na Run Scan. Všechny ostatní nastavení ponech jak jsou. Sken může trvat dlouho, až skončí otevřou se dva logy:
OTListIt.Txt
Extras.Txt
Jsou uloženy ve stejném místě jako OTL. Oba logy sem prosím zkopíruj.

[hollca]

Zde je log z CF...

ComboFix 10-02-12.01 - Martin 14.02.2010 15:32:31.5.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.3326.2648 [GMT 1:00]
Spuštěný z: c:\documents and settings\Martin\Plocha\VerTerm.exe
Použité ovládací přepínače :: c:\documents and settings\Martin\Plocha\CFScript.txt
AV: avast! antivirus 4.8.1368 [VPS 100213-1] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\program files\Crawler
c:\program files\Crawler\adrkeys.dat
c:\program files\Crawler\COMMON_FF.dat
c:\program files\Crawler\confirm.dat
c:\program files\Crawler\ctbcomm.dll
c:\program files\Crawler\ctbr.dll
c:\program files\Crawler\CTConf.dat
c:\program files\Crawler\CTipsDef.dll
c:\program files\Crawler\CToolbar.exe
c:\program files\Crawler\CUpdate.exe
c:\program files\Crawler\firefox\components\xcomm.dll
c:\program files\Crawler\firefox\components\xplugin.xpt
c:\program files\Crawler\firefox\components\xshared.dll
c:\program files\Crawler\firefox\components\xshared.xpt
c:\program files\Crawler\firefox\components\xsupport.dll
c:\program files\Crawler\firefox\components\xsupport.xpt
c:\program files\Crawler\firefox\components\xwsg.dll
c:\program files\Crawler\firefox\chrome.manifest
c:\program files\Crawler\firefox\chrome\common.jar
c:\program files\Crawler\firefox\chrome\stwsg.jar
c:\program files\Crawler\firefox\install.ini
c:\program files\Crawler\firefox\install.rdf
c:\program files\Crawler\firefox\stwsg_ff.ini
c:\program files\Crawler\Languages\STWSG_CS.cab
c:\program files\Crawler\Languages\STWSG_DE.cab
c:\program files\Crawler\Languages\STWSG_EN.cab
c:\program files\Crawler\Languages\STWSG_EN.cab.old
c:\program files\Crawler\Languages\STWSG_ES.cab
c:\program files\Crawler\Languages\STWSG_FF.cab
c:\program files\Crawler\Languages\STWSG_FR.cab
c:\program files\Crawler\Languages\STWSG_IT.cab
c:\program files\Crawler\Languages\STWSG_NL.cab
c:\program files\Crawler\Languages\STWSG_PT-BR.cab
c:\program files\Crawler\Languages\STWSG_PT.cab
c:\program files\Crawler\Languages\STWSG_RU.cab
c:\program files\Crawler\Languages\TBR5_CS.cab
c:\program files\Crawler\Languages\TBR5_DE.cab
c:\program files\Crawler\Languages\TBR5_EN.cab
c:\program files\Crawler\Languages\TBR5_ES.cab
c:\program files\Crawler\Languages\TBR5_FR.cab
c:\program files\Crawler\Languages\TBR5_IT.cab
c:\program files\Crawler\Languages\TBR5_NL.cab
c:\program files\Crawler\Languages\TBR5_PL.cab
c:\program files\Crawler\Languages\TBR5_PT-BR.cab
c:\program files\Crawler\Languages\TBR5_PT.cab
c:\program files\Crawler\Languages\TBR5_RU.cab
c:\program files\Crawler\lookfor.dat
c:\program files\Crawler\majorse.dat
c:\program files\Crawler\rootmenu.dat
c:\program files\Crawler\services.dat
c:\program files\Crawler\STWSG_FF.dat
c:\program files\Crawler\STWSGLanguageAct\info.ini
c:\program files\Crawler\STWSGLanguageAct\language.ini
c:\program files\Crawler\TBR5LanguageAct\info.ini
c:\program files\Crawler\TBR5LanguageAct\language.ini
c:\program files\Crawler\Update\domains.cab
c:\program files\Crawler\WebSecurityGuard.dll
c:\program files\Crawler\WSGData\domains\domains_000.dat
c:\program files\Crawler\WSGData\domains\domains_000_diff.dat
c:\program files\Crawler\WSGData\domains\domains_001.dat
c:\program files\Crawler\WSGData\domains\domains_001_diff.dat
c:\program files\Crawler\WSGData\domains\domains_002.dat
c:\program files\Crawler\WSGData\domains\domains_002_diff.dat
c:\program files\Crawler\WSGData\domains\domains_003.dat
c:\program files\Crawler\WSGData\domains\domains_003_diff.dat
c:\program files\Crawler\WSGData\domains\domains_004.dat
c:\program files\Crawler\WSGData\domains\domains_004_diff.dat
c:\program files\Crawler\WSGData\domains\domains_005.dat
c:\program files\Crawler\WSGData\domains\domains_005_diff.dat
c:\program files\Crawler\WSGData\domains\domains_006.dat
c:\program files\Crawler\WSGData\domains\domains_006_diff.dat
c:\program files\Crawler\WSGData\domains\domains_007.dat
c:\program files\Crawler\WSGData\domains\domains_007_diff.dat
c:\program files\Crawler\WSGData\domains\domains_008.dat
c:\program files\Crawler\WSGData\domains\domains_008_diff.dat
c:\program files\Crawler\WSGData\domains\domains_009.dat
c:\program files\Crawler\WSGData\domains\domains_009_diff.dat
c:\program files\Crawler\WSGData\domains\domains_010.dat
c:\program files\Crawler\WSGData\domains\domains_010_diff.dat
c:\program files\Crawler\WSGData\domains\domains_011.dat
c:\program files\Crawler\WSGData\domains\domains_011_diff.dat
c:\program files\Crawler\WSGData\domains\domains_012.dat
c:\program files\Crawler\WSGData\domains\domains_012_diff.dat
c:\program files\Crawler\WSGData\domains\domains_013.dat
c:\program files\Crawler\WSGData\domains\domains_013_diff.dat
c:\program files\Crawler\WSGData\domains\domains_014.dat
c:\program files\Crawler\WSGData\domains\domains_014_diff.dat
c:\program files\Crawler\WSGData\domains\domains_015.dat
c:\program files\Crawler\WSGData\domains\domains_015_diff.dat
c:\program files\Crawler\WSGData\domains\domains_016.dat
c:\program files\Crawler\WSGData\domains\domains_016_diff.dat
c:\program files\Crawler\WSGData\domains\domains_017.dat
c:\program files\Crawler\WSGData\domains\domains_017_diff.dat
c:\program files\Crawler\WSGData\domains\domains_018.dat
c:\program files\Crawler\WSGData\domains\domains_018_diff.dat
c:\program files\Crawler\WSGData\domains\domains_019.dat
c:\program files\Crawler\WSGData\domains\domains_019_diff.dat
c:\program files\Crawler\WSGData\domains\domains_020.dat
c:\program files\Crawler\WSGData\domains\domains_020_diff.dat
c:\program files\Crawler\WSGData\domains\domains_021.dat
c:\program files\Crawler\WSGData\domains\domains_021_diff.dat
c:\program files\Crawler\WSGData\domains\domains_022.dat
c:\program files\Crawler\WSGData\domains\domains_022_diff.dat
c:\program files\Crawler\WSGData\domains\domains_023.dat
c:\program files\Crawler\WSGData\domains\domains_023_diff.dat
c:\program files\Crawler\WSGData\domains\domains_024.dat
c:\program files\Crawler\WSGData\domains\domains_024_diff.dat
c:\program files\Crawler\WSGData\domains\domains_025.dat
c:\program files\Crawler\WSGData\domains\domains_025_diff.dat
c:\program files\Crawler\WSGData\domains\domains_026.dat
c:\program files\Crawler\WSGData\domains\domains_026_diff.dat
c:\program files\Crawler\WSGData\domains\domains_027.dat
c:\program files\Crawler\WSGData\domains\domains_027_diff.dat
c:\program files\Crawler\WSGData\domains\domains_028.dat
c:\program files\Crawler\WSGData\domains\domains_028_diff.dat
c:\program files\Crawler\WSGData\domains\domains_029.dat
c:\program files\Crawler\WSGData\domains\domains_029_diff.dat
c:\program files\Crawler\WSGData\domains\domains_030.dat
c:\program files\Crawler\WSGData\domains\domains_030_diff.dat
c:\program files\Crawler\WSGData\domains\domains_031.dat
c:\program files\Crawler\WSGData\domains\domains_031_diff.dat
c:\program files\Crawler\WSGData\domains\domains_032.dat
c:\program files\Crawler\WSGData\domains\domains_032_diff.dat
c:\program files\Crawler\WSGData\domains\domains_033.dat
c:\program files\Crawler\WSGData\domains\domains_033_diff.dat
c:\program files\Crawler\WSGData\domains\domains_034.dat
c:\program files\Crawler\WSGData\domains\domains_034_diff.dat
c:\program files\Crawler\WSGData\domains\domains_035.dat
c:\program files\Crawler\WSGData\domains\domains_035_diff.dat
c:\program files\Crawler\WSGData\domains\domains_036.dat
c:\program files\Crawler\WSGData\domains\domains_036_diff.dat
c:\program files\Crawler\WSGData\domains\domains_037.dat
c:\program files\Crawler\WSGData\domains\domains_037_diff.dat
c:\program files\Crawler\WSGData\domains\index.dat
c:\program files\Crawler\WSGData\domains\TopList.dat
c:\program files\Crawler\WSGData\g_S-1-5-21-1614895754-308236825-839522115-1003.dat
c:\program files\Crawler\WSGData\ud_S-1-5-21-1614895754-308236825-839522115-1003.dat
c:\program files\Crawler\WSGData\w_S-1-5-21-1614895754-308236825-839522115-1003.dat
c:\program files\Crawler\WSGData\wfilter.dat

.
((((((((((((((((((((((((( Soubory vytvořené od 2010-01-14 do 2010-02-14 )))))))))))))))))))))))))))))))
.

2010-02-14 11:28 . 2010-02-14 11:28 -------- d-----w- c:\documents and settings\Martin\DoctorWeb
2010-02-13 13:54 . 2010-02-13 14:03 -------- d-----w- C:\VerTerm30892V
2010-02-13 01:05 . 2010-02-13 01:05 -------- d-----w- c:\windows\system32\Nagasoft
2010-02-12 23:38 . 2010-02-12 23:40 -------- d-----w- C:\VerTerm8863V
2010-02-12 23:23 . 2010-02-12 23:23 -------- d-----w- C:\VerTerm
2010-01-28 14:07 . 2010-01-28 14:07 -------- d-----w- c:\program files\Microsoft Games
2010-01-24 11:12 . 2007-05-31 22:47 7437824 ----a-w- c:\windows\system32\smfcore.dll
2010-01-24 11:12 . 2007-02-25 14:36 383238 ----a-w- c:\windows\system32\libmp3lame-0.dll
2010-01-23 08:14 . 2010-01-23 08:14 -------- d-----w- c:\program files\Common Files\Adobe AIR
2010-01-20 19:35 . 2010-01-20 19:35 -------- d-----w- C:\ProgramData
2010-01-20 19:34 . 2010-01-20 19:34 -------- d-----w- c:\program files\Electronic Arts
2010-01-20 19:33 . 2010-01-20 19:33 -------- d-----w- c:\program files\Microsoft WSE

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-02-14 09:45 . 2009-06-17 17:35 -------- d-----w- c:\program files\WinClamAVShield
2010-02-12 23:51 . 2008-12-23 11:13 -------- d-----w- c:\program files\ICQ6.5
2010-02-11 21:07 . 2009-06-18 20:26 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-02-09 21:18 . 2009-06-24 20:15 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-02-09 15:27 . 2008-12-23 09:57 -------- d-----w- c:\program files\uTorrent
2010-02-07 20:24 . 2009-01-23 15:14 1911 ----a-w- c:\windows\eReg.dat
2010-02-07 14:41 . 2009-05-05 17:38 -------- d-----w- c:\program files\Google
2010-02-05 17:22 . 2008-12-23 19:02 -------- d-----w- c:\program files\DAEMON Tools Lite
2010-02-05 13:05 . 2008-12-23 19:00 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2010-01-26 22:49 . 2009-01-08 19:52 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2010-01-20 12:41 . 2009-01-30 18:04 -------- d-----w- c:\program files\Microsoft Silverlight
2010-01-11 11:37 . 2009-12-13 07:53 98304 ----a-w- c:\windows\system32\CmdLineExt.dll
2010-01-11 11:04 . 2010-01-11 11:04 101376 ----a-w- c:\windows\system32\drivers\ACEDRV07.sys
2010-01-08 23:37 . 2010-01-08 23:37 -------- d--h--w- c:\program files\Zero G Registry
2010-01-07 15:07 . 2009-06-18 20:26 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-01-07 15:07 . 2009-06-18 20:26 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-12-31 16:50 . 2006-10-20 21:34 353792 ----a-w- c:\windows\system32\drivers\srv.sys
2009-12-30 12:44 . 2009-12-30 12:03 -------- d-----w- c:\program files\Common Files\BioWare
2009-12-26 12:30 . 2009-12-26 12:30 -------- d-----w- c:\program files\Sony
2009-12-26 01:03 . 2008-12-22 19:44 -------- d-----w- c:\program files\Analog Devices
2009-12-24 17:39 . 2009-12-16 23:39 -------- d-----w- c:\program files\BS_Player
2009-12-21 19:08 . 2006-10-20 21:33 916480 ------w- c:\windows\system32\wininet.dll
2009-12-17 07:42 . 2008-12-22 18:26 343552 ----a-w- c:\windows\system32\mspaint.exe
2009-12-16 23:39 . 2009-12-16 23:39 -------- d-----w- c:\program files\Conduit
2009-12-14 07:10 . 2004-08-17 13:49 33280 ----a-w- c:\windows\system32\csrsrv.dll
2009-12-10 17:56 . 2009-02-09 18:43 445016 ----a-w- c:\windows\system32\wrap_oal.dll
2009-12-10 17:56 . 2009-02-09 18:43 109144 ----a-w- c:\windows\system32\OpenAL32.dll
2009-12-09 10:11 . 2006-10-20 21:30 2147328 ------w- c:\windows\system32\ntoskrnl.exe
2009-12-09 10:11 . 2005-03-02 20:14 2025984 ------w- c:\windows\system32\ntkrnlpa.exe
2009-12-04 18:22 . 2006-10-20 21:33 455424 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2009-11-27 17:14 . 2006-10-20 21:32 1294336 ----a-w- c:\windows\system32\quartz.dll
2009-11-27 17:14 . 2004-08-17 15:49 17920 ----a-w- c:\windows\system32\msyuv.dll
2009-11-27 16:09 . 2001-10-25 14:00 28672 ----a-w- c:\windows\system32\msvidc32.dll
2009-11-27 16:09 . 2001-10-24 12:25 8704 ----a-w- c:\windows\system32\tsbyuv.dll
2009-11-27 16:09 . 2004-08-17 15:49 48128 ----a-w- c:\windows\system32\iyuv_32.dll
2009-11-27 16:09 . 2004-08-17 13:49 11264 ----a-w- c:\windows\system32\msrle32.dll
2009-11-27 16:09 . 2004-08-17 13:49 84992 ----a-w- c:\windows\system32\avifil32.dll
2009-11-24 23:54 . 2008-12-22 22:14 1280480 ----a-w- c:\windows\system32\aswBoot.exe
2009-11-24 23:51 . 2008-12-22 22:14 93424 ----a-w- c:\windows\system32\drivers\aswmon.sys
2009-11-24 23:49 . 2008-12-22 22:14 48560 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2009-11-24 23:48 . 2008-12-22 22:14 23120 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2009-11-24 23:47 . 2008-12-22 22:14 27408 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2009-11-24 23:47 . 2008-12-22 22:14 97480 ----a-w- c:\windows\system32\AvastSS.scr
2009-11-21 16:03 . 2004-08-17 13:49 471552 ----a-w- c:\windows\AppPatch\aclayers.dll
2009-12-06 12:59 . 2010-01-12 18:43 192512 ----a-w- c:\program files\mozilla firefox\components\mhxpcom.dll
2009-08-31 15:55 . 2009-10-11 22:34 118000 ----a-w- c:\program files\mozilla firefox\components\qippipe.dll
.

((((((((((((((((((((((((((((( SnapShot@2010-02-12_23.53.45 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-02-14 14:31 . 2010-02-14 14:31 16384 c:\windows\Temp\Perflib_Perfdata_c60.dat
+ 2010-02-14 14:30 . 2010-02-14 14:30 16384 c:\windows\Temp\Perflib_Perfdata_6f8.dat
+ 2010-02-13 01:05 . 2010-02-13 01:07 37665 c:\windows\system32\Nagasoft\Uninstall.exe
+ 2007-04-30 04:31 . 2007-04-30 04:31 65536 c:\windows\system32\Nagasoft\Codecs\cook.dll
+ 2008-07-21 02:30 . 2008-07-21 02:30 77889 c:\windows\system32\Nagasoft\Codecs\atrc.dll
+ 2008-07-21 02:30 . 2008-07-21 02:30 278528 c:\windows\system32\pncrt.dll
- 2007-10-10 10:28 . 2007-10-10 10:28 278528 c:\windows\system32\pncrt.dll
+ 2009-02-10 04:38 . 2009-02-10 04:38 147456 c:\windows\system32\Nagasoft\GifShower.dll
+ 2009-02-24 05:58 . 2009-02-24 05:58 151552 c:\windows\system32\Nagasoft\FFVJPlayer.exe
+ 2008-07-30 10:03 . 2008-07-30 10:03 106496 c:\windows\system32\Nagasoft\Codecs\WMFDemux.dll
+ 2008-07-21 02:30 . 2008-07-21 02:30 553036 c:\windows\system32\Nagasoft\Codecs\raac.dll
+ 2008-04-22 01:39 . 2008-04-22 01:39 286720 c:\windows\system32\Nagasoft\Codecs\drvc.dll
+ 2009-09-24 02:59 . 2009-09-24 02:59 1695368 c:\windows\system32\Nagasoft\vjocx.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}"= "c:\documents and settings\Martin\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll" [2009-07-14 150768]

[HKEY_CLASSES_ROOT\clsid\{a55f9c95-2bb1-4ea2-bc77-dfaab78832ce}]
[HKEY_CLASSES_ROOT\qipbar.QIPBHO.1]
[HKEY_CLASSES_ROOT\TypeLib\{45FF696B-5284-4781-B2CA-ECF3A742A17B}]
[HKEY_CLASSES_ROOT\qipbar.QIPBHO]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}]
2009-07-14 11:08 150768 ----a-w- c:\documents and settings\Martin\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
2009-05-20 12:36 1258808 ----a-w- c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2009-05-20 1258808]

[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2009-05-20 1258808]

[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-05-05 39408]
"OEXPRESS"="c:\windows\OETRN.EXE" [2009-09-22 26624]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2009-10-30 369200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AsusStartupHelp"="c:\program files\ASUS\AASP\1.00.24\AsRunHelp.exe" [2006-12-29 363008]
"ioCentre"="c:\genius\ioCentre\gTaskBar.exe" [2007-05-31 61440]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-11-24 81000]
"PivotSoftware"="c:\program files\Portrait Displays\Pivot Software\wpctrl.exe" [2007-02-09 694008]
"DT ACR"="c:\program files\Common Files\Portrait Displays\Shared\DT_startup.exe" [2008-06-06 81920]
"ISUSPM Startup"="c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2004-06-16 221184]
"ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2004-08-09 81920]
"OxigenClientAdmin"="c:\program files\Oxigen\bin\Oxigen.exe" [2007-06-23 887264]
"OxigenTrayIcon"="c:\program files\Oxigen\bin\OxiTray.exe" [2007-06-23 557536]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-07-13 292128]
"SweetIM"="c:\program files\SweetIM\Messenger\SweetIM.exe" [2009-05-20 111928]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-07-02 98304]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"SpywareTerminator"="c:\program files\Spyware Terminator\SpywareTerminatorShield.exe" [2009-06-17 1783808]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-10-03 35696]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2009-09-04 935288]
"QuickTime Task"="c:\program files\Pure Codec\QTTask.exe" [2009-09-05 417792]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-10-11 149280]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2006-12-18 868352]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2008-12-22 10:05 356352 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.dll

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\WINDOWS\\system32\\mmc.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"c:\\Program Files\\uTorrent\\utorrent.exe"=
"c:\\Program Files\\ICQ6.5\\ICQ.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Program Files\\TVAnts\\Tvants.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\WINDOWS\\system32\\dpnsvr.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"d:\\Program Files\\TmNationsForever\\TmForever.exe"=
"c:\\Program Files\\QIP\\qip.exe"=
"d:\\Program Files\\LucasArts\\Star Wars Battlefront II\\GameData\\BattlefrontII.exe"=
"d:\\Program Files\\Dragon Age\\bin_ship\\daorigins.exe"=
"d:\\Program Files\\Dragon Age\\DAOriginsLauncher.exe"=
"d:\\Program Files\\Dragon Age\\bin_ship\\daupdatersvc.service.exe"=
"d:\\Program Files\\SEGA\\Vancouver 2010\\Vancouver.exe"=
"d:\\Program Files\\Ubisoft\\IL-2 Sturmovik 1946\\il2fb.exe"=
"d:\\Program Files\\Ubisoft\\Gearbox Software\\Brothers in Arms - Hell's Highway\\Binaries\\biahh.exe"=
"d:\\Program Files\\Codemasters\\OF Dragon Rising\\OFDR.exe"=
"d:\\Program Files\\SopCast\\adv\\SopAdver.exe"=
"d:\\Program Files\\SopCast\\SopCast.exe"=

R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [22.12.2008 23:14 114768]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [26.5.2009 9:05 9968]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [26.5.2009 9:05 72944]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [17.6.2009 17:50 141312]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [22.12.2008 23:14 20560]
R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [5.5.2009 17:29 55152]
R2 PdiService;Portrait Displays SDK Service;c:\program files\Common Files\Portrait Displays\Drivers\pdisrvc.exe [24.12.2008 19:12 90112]
R3 gHidPnp;USB Device Enhanced Function Driver;c:\windows\system32\drivers\gHidPnp.sys [22.12.2008 22:32 16384]
R3 gMouUsb;USB Mouse Device Drv;c:\windows\system32\drivers\gMouUsb.sys [22.12.2008 22:32 9856]
S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [23.12.2008 20:00 691696]
S2 gupdate1c9cda86c7b75c0;Služba Google Update (gupdate1c9cda86c7b75c0);c:\program files\Google\Update\GoogleUpdate.exe [5.5.2009 18:39 133104]
S3 DAUpdaterSvc;Dragon Age: Origins - Content Updater;d:\program files\Dragon Age\bin_ship\daupdatersvc.service.exe [30.12.2009 13:20 25832]
S3 fsssvc;Windows Live Family Safety;c:\program files\Windows Live\Family Safety\fsssvc.exe [6.2.2009 17:08 533360]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [18.6.2009 21:26 38224]
S3 SASENUM;SASENUM;c:\program files\SUPERAntiSpyware\SASENUM.SYS [26.5.2009 9:05 7408]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
vvdsvc REG_MULTI_SZ vvdsvc
.
Obsah adresáře 'Naplánované úlohy'

2010-02-11 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 11:34]

2010-02-14 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-05-05 17:38]

2010-02-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-05-05 17:39]

2010-02-14 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-05-05 17:39]

2010-02-14 c:\windows\Tasks\OGALogon.job
- c:\windows\system32\OGAEXEC.exe [2009-08-03 13:07]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uSearchAssistant = hxxp://search.qip.ru/ie
uSearchURL,(Default) = Root: HKCU; Subkey: Software\Microsoft\Internet Explorer\SearchUrl; ValueType: string; ValueName: '; ValueData: '; Flags: createvalueifdoesntexist noerror; Tasks: AddSearchQip
IE: Crawler Search - tbr:iemenu
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\windows\WebIE.dll
LSP: %SYSTEMROOT%\system32\nvappfilter.dll
DPF: {FC11A119-C2F7-46F4-9E32-937ABA26816E} - file:///F:/CDVIEWER/CdViewer.cab
FF - ProfilePath - c:\documents and settings\Martin\Data aplikací\Mozilla\Firefox\Profiles\v0m0jmnh.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: network.proxy.type - 2
FF - component: c:\documents and settings\Martin\Data aplikací\Mozilla\Firefox\Profiles\v0m0jmnh.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\components\FFExternalAlert.dll
FF - component: c:\documents and settings\Martin\Data aplikací\Mozilla\Firefox\Profiles\v0m0jmnh.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}\components\RadioWMPCore.dll
FF - component: c:\program files\Mozilla Firefox\components\mhxpcom.dll
FF - component: c:\program files\Mozilla Firefox\components\qippipe.dll
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Google\Google Updater\2.4.1536.6592\npCIDetect13.dll
FF - plugin: c:\program files\Google\Update\1.2.183.13\npGoogleOneClick8.dll
FF - plugin: c:\program files\Microsoft\Office Live\npOLW.dll
FF - plugin: c:\program files\Opera\program\plugins\np-mswmp.dll
FF - plugin: c:\program files\Pure Codec\Plugins\npqtplugin.dll
FF - plugin: c:\program files\Pure Codec\Plugins\npqtplugin2.dll
FF - plugin: c:\program files\Pure Codec\Plugins\npqtplugin3.dll
FF - plugin: c:\program files\Pure Codec\Plugins\npqtplugin4.dll
FF - plugin: c:\program files\Pure Codec\Plugins\npqtplugin5.dll
FF - plugin: c:\program files\Pure Codec\Plugins\npqtplugin6.dll
FF - plugin: c:\program files\Pure Codec\Plugins\npqtplugin7.dll
FF - plugin: c:\program files\Pure Codec\Real\Netscape6\nppl3260.dll
FF - plugin: c:\program files\Pure Codec\Real\Netscape6\nprjplug.dll
FF - plugin: c:\program files\Pure Codec\Real\Netscape6\nprpjplug.dll
FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

AddRemove-CToolbar_UNINSTALL - c:\progra~1\Crawler\CToolbar.exe
AddRemove-Manchester United Facepack - c:\program files\EA Sports\FIFA 09\Uninstaller Man U Facepack.exe



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-02-14 15:37
Windows 5.1.2600 Service Pack 3 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_USERS\S-1-5-21-1614895754-308236825-839522115-1003\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)

[HKEY_USERS\S-1-5-21-1614895754-308236825-839522115-1003\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:45,c5,8c,63,3b,da,9c,50,71,40,a3,0c,ab,0c,58,4a,2a,ae,7c,f5,98,35,4b,
a2,0f,9c,21,b0,ce,63,e8,02,b9,83,16,94,56,dd,b1,b9,12,62,da,b9,c1,8a,54,b0,\
"??"=hex:9c,03,de,c8,88,03,d5,45,31,e5,ca,c9,b4,6b,52,2d

[HKEY_USERS\S-1-5-21-1614895754-308236825-839522115-1003\Software\SecuROM\License information*]
"datasecu"=hex:69,38,f0,18,1b,6d,51,80,ea,60,d0,0b,4c,0c,d8,75,ff,54,30,6e,12,
38,7a,71,17,74,36,8c,32,42,ac,fc,62,fe,d8,fd,49,40,e9,97,92,41,ff,ce,b8,a4,\
"rkeysecu"=hex:02,74,7f,66,08,cf,68,03,73,10,5d,35,e3,e8,a3,44

[HKEY_LOCAL_MACHINE\System\ControlSet003\Enum\HID\Vid_0458&Pid_009c&Col01\6&17d1cf69&0&0000\LogConf]
@DACL=(02 0000)

[HKEY_LOCAL_MACHINE\System\ControlSet003\Enum\HID\Vid_0458&Pid_009c&Col01\6&2a8b800e&0&0000\LogConf]
@DACL=(02 0000)
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'winlogon.exe'(896)
c:\program files\SUPERAntiSpyware\SASWINLO.dll
c:\windows\system32\Ati2evxx.dll

- - - - - - - > 'lsass.exe'(952)
c:\windows\system32\nvappfilter.dll
.
Celkový čas: 2010-02-14 15:38:26
ComboFix-quarantined-files.txt 2010-02-14 14:38
ComboFix2.txt 2010-02-13 14:02
ComboFix3.txt 2010-02-12 23:59

Před spuštěním: Volných bajtů: 12 207 468 544
Po spuštění: Volných bajtů: 12 231 450 624

- - End Of File - - 07293A4DF4B30D44F1B001B76C4ADA0A

[hollca]

Zde jsou logy z OTL:
extras.txt

OTL Extras logfile created on: 14.2.2010 15:43:28 - Run 1
OTL by OldTimer - Version 3.1.28.0 Folder = C:\Documents and Settings\Martin\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 83,00% Memory free
5,00 Gb Paging File | 5,00 Gb Available in Paging File | 90,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 39,06 Gb Total Space | 11,41 Gb Free Space | 29,22% Space Free | Partition Type: NTFS
Drive D: | 259,02 Gb Total Space | 9,01 Gb Free Space | 3,48% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: PREROV-0079224F
Current User Name: Martin
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = Opera.HTML] -- C:\Program Files\Opera\opera.exe (Opera Software)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files\Opera\opera.exe" (Opera Software)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Browse with FastStone] -- "C:\Program Files\FastStone Image Viewer\FSViewer.exe" "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "%programfiles%\internet explorer\iexplore.exe" (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation)
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe" = C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\WINDOWS\system32\mmc.exe" = C:\WINDOWS\system32\mmc.exe:*:Enabled:Konzola Microsoft Management Console -- (Microsoft Corporation)
"C:\Program Files\Opera\opera.exe" = C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software)
"C:\Program Files\uTorrent\utorrent.exe" = C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\Program Files\ICQ6.5\ICQ.exe" = C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6 -- (ICQ, LLC.)
"C:\WINDOWS\system32\PnkBstrA.exe" = C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA -- ()
"C:\WINDOWS\system32\PnkBstrB.exe" = C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB -- ()
"C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
"C:\Program Files\TVAnts\Tvants.exe" = C:\Program Files\TVAnts\Tvants.exe:*:Enabled:TVAnts -- (Zhejiang University)
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation)
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe" = C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger -- (Microsoft Corporation)
"C:\WINDOWS\system32\dpnsvr.exe" = C:\WINDOWS\system32\dpnsvr.exe:*:Enabled:Microsoft DirectPlay8 Server -- (Microsoft Corporation)
"C:\Program Files\Bonjour\mDNSResponder.exe" = C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour -- (Apple Inc.)
"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)
"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)
"D:\Program Files\TmNationsForever\TmForever.exe" = D:\Program Files\TmNationsForever\TmForever.exe:*:Enabled:TmForever -- ()
"C:\Program Files\QIP\qip.exe" = C:\Program Files\QIP\qip.exe:*:Enabled:Quiet Internet Pager -- (The Author of QIP)
"D:\Program Files\LucasArts\Star Wars Battlefront II\GameData\BattlefrontII.exe" = D:\Program Files\LucasArts\Star Wars Battlefront II\GameData\BattlefrontII.exe:*:Enabled:BattlefrontII -- ()
"D:\Program Files\Dragon Age\bin_ship\daorigins.exe" = D:\Program Files\Dragon Age\bin_ship\daorigins.exe:*:Enabled:Dragon Age Origins Game -- (BioWare)
"D:\Program Files\Dragon Age\DAOriginsLauncher.exe" = D:\Program Files\Dragon Age\DAOriginsLauncher.exe:*:Enabled:Dragon Age Origins Launcher -- (BioWare)
"D:\Program Files\Dragon Age\bin_ship\daupdatersvc.service.exe" = D:\Program Files\Dragon Age\bin_ship\daupdatersvc.service.exe:*:Enabled:Dragon Age Origins Updater -- (BioWare)
"D:\Program Files\SEGA\Vancouver 2010\Vancouver.exe" = D:\Program Files\SEGA\Vancouver 2010\Vancouver.exe:*:Enabled:Vancouver 2010™ -- (SEGA)
"D:\Program Files\Ubisoft\IL-2 Sturmovik 1946\il2fb.exe" = D:\Program Files\Ubisoft\IL-2 Sturmovik 1946\il2fb.exe:*:Enabled:il2fb -- ()
"D:\Program Files\Ubisoft\Gearbox Software\Brothers in Arms - Hell's Highway\Binaries\biahh.exe" = D:\Program Files\Ubisoft\Gearbox Software\Brothers in Arms - Hell's Highway\Binaries\biahh.exe:*:Enabled:biahh -- ()
"D:\Program Files\Codemasters\OF Dragon Rising\OFDR.exe" = D:\Program Files\Codemasters\OF Dragon Rising\OFDR.exe:*:Enabled:OF Dragon Rising -- (Codemasters Software Company Limited)
"D:\Program Files\SopCast\adv\SopAdver.exe" = D:\Program Files\SopCast\adv\SopAdver.exe:*:Enabled:SopCast Adver -- (www.sopcast.com)
"D:\Program Files\SopCast\SopCast.exe" = D:\Program Files\SopCast\SopCast.exe:*:Enabled:SopCast Main Application -- (www.sopcast.com)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0046FA01-C5B9-4985-BACB-398DC480FC05}" = Adobe Photoshop CS3
"{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}" = Microsoft Games for Windows - LIVE Redistributable
"{0217E1D1-BCEF-4A61-AF6D-F7740F65A066}" = Pivot Software
"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3
"{050C1C8E-4A4D-4C2F-B9AE-67E60EE91B7F}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.3 Patch
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
"{083F79E4-6FE9-46FB-A6C6-4F8862742947}" = ATI HYDRAVISION
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{090765EE-74A0-4ABB-9B15-4C1F80AB3E10}" = Catalyst Control Center Graphics Full Existing
"{0A2A5039-B37F-489D-B1DC-A5258DF9E697}" = FIFA 08
"{0AAA9C97-74D4-47CE-B089-0B147EF3553C}" = Windows Live Messenger
"{0C34B801-6AEC-4667-B053-03A67E2D0415}" = Apple Application Support
"{0DEA342C-15CB-4F52-97B6-06A9C4B9C06F}" = SDK
"{11202615-E557-4ECF-9B86-F59C81E52909}" = FIFA 10
"{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin
"{1A4052AB-BA77-44F7-8EE7-9F9131BFD7A6}" = OF Dragon Rising
"{1F6423DE-7959-4178-80E0-023C7EAA5347}" = NVIDIA ForceWare Network Access Manager
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2576C501-677F-3206-C73C-E4F90F9433C4}" = ccc-core-preinstall
"{26A24AE4-039D-4CA4-87B4-2F83216014FF}" = Java(TM) 6 Update 17
"{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3
"{2B653229-9854-4989-B780-D978F5F13EAB}" = FEAR
"{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}" = Microsoft Games for Windows - LIVE
"{2EAF7E61-068E-11DF-953C-005056806466}" = Google Earth
"{33571E15-3EB4-4190-BA74-C6CA97288461}" = Microsoft Flight Simulator X SDK
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{36CDA33B-909B-4719-97D1-C4B99309BDC7}" = ATI Parental Control & Encoder
"{390B21DF-7C00-8CE2-B205-B199BADCC4B7}" = Catalyst Control Center Graphics Previews Common
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3BD633E0-4BF8-4499-9149-88F0767D449C}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.4 Patch
"{3C52E7DA-C431-4239-B66B-1BF703D5B194}" = Windows Live Photo Gallery
"{3D374523-CFDE-461A-827E-2A102E2AB365}" = Star Wars Battlefront II
"{4999E00F-EB5E-402E-B5AE-BB5710F77EEB}" = Music Alarm
"{4C35A5B5-940E-B44D-1ADA-52F1FE501FC7}" = Catalyst Control Center Graphics Full New
"{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}" = Microsoft Search Enhancement Pack
"{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}" = Junk Mail filter update
"{51846830-E7B2-4218-8968-B77F0FF475B8}" = Adobe Color EU Extra Settings
"{546C143E-68DC-314D-97BC-1E454E3BA429}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - CSY
"{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}" = Microsoft Office Live Add-in 1.3
"{587178E7-B1DF-494E-9838-FA4DD36E873C}" = ASUSUpdate
"{5DA6F06A-B389-407B-BF8C-1548767914D8}" = ATI Problem Report Wizard
"{5DB65884-C963-4454-AABA-4CA3089281FA}" = NVIDIA PhysX
"{6291FC10-FDF0-4022-A1A5-710C728D49C2}" = Vancouver 2010
"{63C1109E-D977-49ED-BCE3-D00D0BF187D6}" = Windows Live Mail
"{66B4E395-38E3-D233-FB72-EB81DF545985}" = Catalyst Control Center Graphics Light
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{698D7E61-E4BF-4CA6-8A09-CF6BDBFDEF65}" = Battlefield 1942
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6A92E5C5-0578-443D-91F3-92ECE5F2CAE2}" = Windows Live Writer
"{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All
"{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{76CD2979-09C0-493A-84B3-8FD97EF4BCEA}" = Windows Live Family Safety
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{79438F1E-DEC3-443D-9DCD-FECE2D68C605}" = IL-2 Sturmovik 1946
"{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8503C901-85D7-4262-88D2-8D8B2A7B08B8}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.5 Patch
"{8913BD67-274C-0581-203B-9DA14CE43175}" = ccc-core-static
"{89661B04-C646-4412-B6D3-5E19F02F1F37}" = EAX4 Unified Redist
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8C13BEE4-E7CE-4E46-BD13-8F41DAD00FEF}" = SweetIM Toolbar for Internet Explorer 3.4
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support
"{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}" = Choice Guard
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{90280405-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional s aplikací FrontPage
"{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95655ED4-7CA5-46DF-907F-7144877A32E5}" = Adobe Color NA Recommended Settings
"{995F1E2E-F542-4310-8E1D-9926F5A279B3}" = Windows Live Toolbar
"{99ECF41F-5CCA-42BD-B8B8-A8333E2E2944}" = iTunes
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A2C9CD1B-2551-3AED-B244-6698FB929FA6}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - CSY
"{A2D81E70-2A98-4A08-A628-94388B063C5E}" = Adobe Color - Photoshop Specific
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A347C572-F7B4-43A3-BD51-FFC99184F70D}" = Jurassic Park Operation Genesis
"{A429C2AE-EBF1-4F81-A221-1C115CAADDAD}" = QuickTime
"{A43BF6A5-D5F0-4AAA-BF41-65995063EC44}" = MSXML 6.0 Parser
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A586DC50-B18D-48FB-B7CC-A598200457C2}" = Acer eDisplay Management
"{A59BB15D-51B7-F12B-4548-8C0368243441}" = EA Download Manager UI
"{A642BB6B-CA1D-4142-8DD4-318C3F3DC834}" = Rome - Total War(TM)
"{A79E6F7D-002A-9B6C-7CB9-60CED94201DA}" = CCC Help English
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AAF4238F-7C29-451D-9925-C753271A5728}" = Microsoft Visual C++ Run Time Lib Setup
"{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}" = PDF Settings
"{AC76BA86-7AD7-1029-7B44-A92000000001}" = Adobe Reader 9.2 - Czech
"{AD16A8D0-8E62-4857-A8D2-1451CCA96995}" = FIM Speedway GP3
"{AEC81925-9C76-4707-84A9-40696C613ED3}" = Dragon Age: Origins
"{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}" = The Sims™ 3
"{C0698BDA-0D29-40EE-8570-A31106DF9AB1}" = Medieval II Total War
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}" = Adobe ExtendScript Toolkit 2
"{C337BDAF-CB4E-47E2-BE1A-CB31BB7DD0E3}" = Apple Mobile Device Support
"{C5096216-7703-409E-B85A-8A6EE7395128}}_is1" = System Search Dispatcher
"{C6CA8874-5F22-4AF0-9BE3-016BF299C536}" = Windows Live Essentials
"{C941F1F1-25B3-4DF5-83E6-888C51A1AAB6}" = AVIVO Codecs
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware Free Edition
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D0A05794-48C2-4424-A15A-9F20FCFDD374}" = Call of Duty(R) 2
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1
"{D1BB4446-AE9C-4256-9A7F-4D46604D2462}" = Adobe Setup
"{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files
"{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1" = Rapture3D 2.3.22 Game
"{D3B1C799-CB73-42DE-BA0F-2344793A095C}" = Catalyst Control Center - Branding
"{D6D532B2-22E1-43AA-B4B7-34D772314859}" = Oxigen Client v5.01.0000
"{DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9}" = Adobe Color Common Settings
"{DB5443C9-A1C7-302A-1C1D-E24191B0E63D}" = Catalyst Control Center HydraVision Full
"{DD73CA82-EA82-38AA-863D-9A24A018DC96}" = Microsoft .NET Framework 3.5 Language Pack SP1 - csy
"{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}" = Adobe Color JA Extra Settings
"{E17E6A29-9FC8-30D8-8A33-0614F616A552}" = Catalyst Control Center Core Implementation
"{E1BBBAC5-2857-4155-82A6-54492CE88620}" = Opera 9.64
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E5141379-B2D9-4BBC-BB2A-5805541571DD}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.2 Patch
"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3
"{E848C9C0-E6FF-4A3F-9D67-AE53AC3628FE}" = SweetIM for Messenger 2.7
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F1362843-0E0E-4F74-8662-724CF101ADCE}" = Skype web features
"{F2B5A2A7-2DF9-4361-8BD5-362714528B51}" = NHL® 09
"{F58A58EB-3BD6-48A6-0096-1928C5A9DAE7}" = NHL® 2003
"{F6BD194C-4190-4D73-B1B1-C48C99921BFE}" = Windows Live Call
"{F7338FA3-DAB5-49B2-900D-0AFB5760C166}" = PC Probe II
"{FE6D6D42-6AE2-A259-F8C2-193CCE10C569}" = ccc-utility
"µTorrent CZ_is1" = µTorrent CZ 1.8.1 (build 12639)
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player
"Adobe_2ac78060bc5856b0c1cf873bb919b58" = Adobe Photoshop CS3
"All ATI Software" = ATI - Software Uninstall Utility
"ATI Display Driver" = ATI Display Driver
"avast!" = avast! Antivirus
"Brothers in Arms - Hell's Highway" = Brothers in Arms: Hell's Highway
"BS_Player Toolbar" = BS_Player Toolbar
"BSPlayerf" = BS.Player FREE
"CCleaner" = CCleaner
"CINEMATICS PATCH 10 v1" = CINEMATICS PATCH 10 v1
"com.ea.Vault.919CACB699904AC5D41B606703500DD39747C02D.1" = EA Download Manager UI
"Creation Master 09_is1" = Creation Master 09 Rel 1.00
"Creation Master 10_is1" = Creation Master 10 Release 10.1
"DDS Converter 2.1" = DDS Converter 2.1
"EA Download Manager" = EA Download Manager
"extraliga-1280x1024.SCR" = extraliga-1280x1024.SCR
"FastStone Image Viewer" = FastStone Image Viewer 3.6
"FIFA MANAGER 10" = FIFA MANAGER 10
"Flash FLV to Video Audio Converter_is1" = Flash FLV to Video Audio Converter v3.0
"GameSpy Arcade" = GameSpy Arcade
"Google Updater" = Google Updater
"GTR Evolution_1.1.1.2_is1" = GTR Evolution
"High Quality Photo Resizer_is1" = High Quality Photo Resizer 1.60
"HijackThis" = HijackThis 2.0.2
"ie8" = Windows Internet Explorer 8
"InstallShield_{1F6423DE-7959-4178-80E0-023C7EAA5347}" = NVIDIA ForceWare Network Access Manager
"InstallShield_{33571E15-3EB4-4190-BA74-C6CA97288461}" = Microsoft Flight Simulator X SDK
"InstallShield_{79438F1E-DEC3-443D-9DCD-FECE2D68C605}" = IL-2 Sturmovik 1946
"InstallShield_{A347C572-F7B4-43A3-BD51-FFC99184F70D}" = Jurassic Park Operation Genesis
"InstallShield_{A642BB6B-CA1D-4142-8DD4-318C3F3DC834}" = Rome - Total War(TM)
"InstallShield_{D0A05794-48C2-4424-A15A-9F20FCFDD374}" = Call of Duty(R) 2
"Magic ISO Maker v5.5 (build 0273)" = Magic ISO Maker v5.5 (build 0273)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Manager Master 09_is1" = Manager Master 09 Release 1.00
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack SP1 - csy" = Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox (3.5.7)" = Mozilla Firefox (3.5.7)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NVIDIA Drivers" = NVIDIA Drivers
"OEdit" = OEdit
"OpenAL" = OpenAL
"PKR" = PKR
"PunkBusterSvc" = PunkBuster Services
"PureCodec" = Pure Codec
"Shipsim2008" = Ship Simulator 2008
"Sony Ericsson Themes Creator" = Sony Ericsson Themes Creator 3.29
"SopCast" = SopCast 3.2.4
"Spyware Terminator_is1" = Spyware Terminator
"SWBF Conversion Pack_is1" = SWBF Conversion Pack v1.9
"ThumbsPlus7" = ThumbsPlus version 7.0sp1
"Tipp 3 Bundesliga Facepack" = Tipp 3 Bundesliga Facepack
"TmNationsForever_is1" = TmNationsForever
"TVAnts 1.0" = TVAnts 1.0
"VexcastPlayer2.0" = VexcastPlayer2.0
"VLC media player" = VLC media player 1.0.2
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"Xbox_360_CC_Driver" = Xbox 360 Controller for Windows
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"FIFA 10 Grafický patch " = FIFA 10 Grafický patch
"Manchester United Facepack " = Manchester United Facepack
"QIP 2005" = QIP 2005 8095
"uTorrent" = µTorrent

========== Last 10 Event Log Errors ==========

[ Antivirus Events ]
Error - 8.11.2009 11:06:00 | Computer Name = PREROV-0079224F | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://suggestqueries.google.com/comple ... undt&cp=18
failed, 0000A413.

Error - 9.11.2009 4:34:39 | Computer Name = PREROV-0079224F | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://cs.wikipedia.org/w/api.php?actio ... 02&suggest
failed, 0000A413.

Error - 9.11.2009 12:24:12 | Computer Name = PREROV-0079224F | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://suggestqueries.google.com/comple ... yson&cp=28
failed, 0000A413.

Error - 10.11.2009 11:03:34 | Computer Name = PREROV-0079224F | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://clients1.google.cz/complete/sear ... burg&cp=29
failed, 0000A413.

Error - 13.12.2009 3:58:28 | Computer Name = PREROV-0079224F | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://d19.gamecopyworld.com/?r=pc_sw_b ... fii-mi!rar
failed, 00000084.

Error - 21.12.2009 14:01:06 | Computer Name = PREROV-0079224F | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://dl.s9.uloz.to/Ps;Hs;fid=3125987; ... so?bD&u=0&
failed, 00000084.

Error - 23.12.2009 7:12:22 | Computer Name = PREROV-0079224F | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://dl.s6.uloz.to/Ps;Hs;fid=3375926; ... &c=6134480
failed, 00000084.

Error - 1.1.2010 6:43:23 | Computer Name = PREROV-0079224F | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://sitecheck2.opera.com/?host=www.s ... Rxmlxd3A==
failed, 00000070.

Error - 1.1.2010 6:43:44 | Computer Name = PREROV-0079224F | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://sitecheck2.opera.com/?host=osobn ... UmJtGkUw==
failed, 00000070.

Error - 1.1.2010 6:43:45 | Computer Name = PREROV-0079224F | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://sitecheck2.opera.com/?host=www.o ... PT2BI5yg==
failed, 00000070.

[ Application Events ]
Error - 12.2.2010 4:54:54 | Computer Name = PREROV-0079224F | Source = Adobe Version Cue CS3 | ID = 3
Description =

Error - 12.2.2010 4:54:54 | Computer Name = PREROV-0079224F | Source = Adobe Version Cue CS3 | ID = 3
Description =

Error - 12.2.2010 4:54:54 | Computer Name = PREROV-0079224F | Source = Adobe Version Cue CS3 | ID = 3
Description =

Error - 12.2.2010 4:54:54 | Computer Name = PREROV-0079224F | Source = Adobe Version Cue CS3 | ID = 3
Description =

Error - 12.2.2010 4:54:54 | Computer Name = PREROV-0079224F | Source = Adobe Version Cue CS3 | ID = 3
Description =

Error - 12.2.2010 4:54:54 | Computer Name = PREROV-0079224F | Source = Adobe Version Cue CS3 | ID = 3
Description =

Error - 12.2.2010 4:54:54 | Computer Name = PREROV-0079224F | Source = Adobe Version Cue CS3 | ID = 3
Description =

Error - 12.2.2010 4:54:54 | Computer Name = PREROV-0079224F | Source = Adobe Version Cue CS3 | ID = 3
Description =

Error - 12.2.2010 4:54:54 | Computer Name = PREROV-0079224F | Source = Adobe Version Cue CS3 | ID = 3
Description =

Error - 12.2.2010 4:54:54 | Computer Name = PREROV-0079224F | Source = Adobe Version Cue CS3 | ID = 3
Description =

[ Application Events ]
Error - 12.2.2010 4:54:54 | Computer Name = PREROV-0079224F | Source = Adobe Version Cue CS3 | ID = 3
Description =

Error - 12.2.2010 4:54:54 | Computer Name = PREROV-0079224F | Source = Adobe Version Cue CS3 | ID = 3
Description =

Error - 12.2.2010 4:54:54 | Computer Name = PREROV-0079224F | Source = Adobe Version Cue CS3 | ID = 3
Description =

Error - 12.2.2010 4:54:54 | Computer Name = PREROV-0079224F | Source = Adobe Version Cue CS3 | ID = 3
Description =

Error - 12.2.2010 4:54:54 | Computer Name = PREROV-0079224F | Source = Adobe Version Cue CS3 | ID = 3
Description =

Error - 12.2.2010 4:54:54 | Computer Name = PREROV-0079224F | Source = Adobe Version Cue CS3 | ID = 3
Description =

Error - 12.2.2010 4:54:54 | Computer Name = PREROV-0079224F | Source = Adobe Version Cue CS3 | ID = 3
Description =

Error - 12.2.2010 4:54:54 | Computer Name = PREROV-0079224F | Source = Adobe Version Cue CS3 | ID = 3
Description =

Error - 12.2.2010 4:54:54 | Computer Name = PREROV-0079224F | Source = Adobe Version Cue CS3 | ID = 3
Description =

Error - 12.2.2010 4:54:54 | Computer Name = PREROV-0079224F | Source = Adobe Version Cue CS3 | ID = 3
Description =

[ System Events ]
Error - 14.2.2010 8:17:27 | Computer Name = PREROV-0079224F | Source = DCOM | ID = 10016
Description = Nastavení omezení výchozí pro počítač neuděluje oprávnění typu Místní
- Aktivace k aplikaci COM Server s identifikátorem CLSID {BC866CF2-5486-41F7-B46B-9AA49CF3EBB1}

uživateli NT AUTHORITY\LOCAL SERVICE (SID S-1-5-19). Toto oprávnění zabezpečení
lze upravit pomocí nástroje správy Služba komponent.

Error - 14.2.2010 8:17:27 | Computer Name = PREROV-0079224F | Source = DCOM | ID = 10016
Description = Nastavení omezení výchozí pro počítač neuděluje oprávnění typu Místní
- Aktivace k aplikaci COM Server s identifikátorem CLSID {BC866CF2-5486-41F7-B46B-9AA49CF3EBB1}

uživateli NT AUTHORITY\LOCAL SERVICE (SID S-1-5-19). Toto oprávnění zabezpečení
lze upravit pomocí nástroje správy Služba komponent.

Error - 14.2.2010 8:36:57 | Computer Name = PREROV-0079224F | Source = DCOM | ID = 10016
Description = Nastavení omezení výchozí pro počítač neuděluje oprávnění typu Místní
- Aktivace k aplikaci COM Server s identifikátorem CLSID {BC866CF2-5486-41F7-B46B-9AA49CF3EBB1}

uživateli NT AUTHORITY\LOCAL SERVICE (SID S-1-5-19). Toto oprávnění zabezpečení
lze upravit pomocí nástroje správy Služba komponent.

Error - 14.2.2010 8:36:57 | Computer Name = PREROV-0079224F | Source = DCOM | ID = 10016
Description = Nastavení omezení výchozí pro počítač neuděluje oprávnění typu Místní
- Aktivace k aplikaci COM Server s identifikátorem CLSID {BC866CF2-5486-41F7-B46B-9AA49CF3EBB1}

uživateli NT AUTHORITY\LOCAL SERVICE (SID S-1-5-19). Toto oprávnění zabezpečení
lze upravit pomocí nástroje správy Služba komponent.

Error - 14.2.2010 8:56:27 | Computer Name = PREROV-0079224F | Source = DCOM | ID = 10016
Description = Nastavení omezení výchozí pro počítač neuděluje oprávnění typu Místní
- Aktivace k aplikaci COM Server s identifikátorem CLSID {BC866CF2-5486-41F7-B46B-9AA49CF3EBB1}

uživateli NT AUTHORITY\LOCAL SERVICE (SID S-1-5-19). Toto oprávnění zabezpečení
lze upravit pomocí nástroje správy Služba komponent.

Error - 14.2.2010 8:56:27 | Computer Name = PREROV-0079224F | Source = DCOM | ID = 10016
Description = Nastavení omezení výchozí pro počítač neuděluje oprávnění typu Místní
- Aktivace k aplikaci COM Server s identifikátorem CLSID {BC866CF2-5486-41F7-B46B-9AA49CF3EBB1}

uživateli NT AUTHORITY\LOCAL SERVICE (SID S-1-5-19). Toto oprávnění zabezpečení
lze upravit pomocí nástroje správy Služba komponent.

Error - 14.2.2010 9:54:57 | Computer Name = PREROV-0079224F | Source = DCOM | ID = 10016
Description = Nastavení omezení výchozí pro počítač neuděluje oprávnění typu Místní
- Aktivace k aplikaci COM Server s identifikátorem CLSID {BC866CF2-5486-41F7-B46B-9AA49CF3EBB1}

uživateli NT AUTHORITY\LOCAL SERVICE (SID S-1-5-19). Toto oprávnění zabezpečení
lze upravit pomocí nástroje správy Služba komponent.

Error - 14.2.2010 9:54:58 | Computer Name = PREROV-0079224F | Source = DCOM | ID = 10016
Description = Nastavení omezení výchozí pro počítač neuděluje oprávnění typu Místní
- Aktivace k aplikaci COM Server s identifikátorem CLSID {BC866CF2-5486-41F7-B46B-9AA49CF3EBB1}

uživateli NT AUTHORITY\LOCAL SERVICE (SID S-1-5-19). Toto oprávnění zabezpečení
lze upravit pomocí nástroje správy Služba komponent.

Error - 14.2.2010 9:57:26 | Computer Name = PREROV-0079224F | Source = Service Control Manager | ID = 7000
Description = Služba Nero BackItUp Scheduler 4.0 neuspěla při spuštění v důsledku
následující chyby: %%2

Error - 14.2.2010 9:57:42 | Computer Name = PREROV-0079224F | Source = DCOM | ID = 10016
Description = Nastavení omezení výchozí pro počítač neuděluje oprávnění typu Místní
- Aktivace k aplikaci COM Server s identifikátorem CLSID {BC866CF2-5486-41F7-B46B-9AA49CF3EBB1}

uživateli NT AUTHORITY\LOCAL SERVICE (SID S-1-5-19). Toto oprávnění zabezpečení
lze upravit pomocí nástroje správy Služba komponent.


< End of report >

[hollca]

OTL.txt --- je to rozdelene na pulky, protoze se to cele sem nevleze

OTL logfile created on: 14.2.2010 15:43:28 - Run 1
OTL by OldTimer - Version 3.1.28.0 Folder = C:\Documents and Settings\Martin\Plocha
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 83,00% Memory free
5,00 Gb Paging File | 5,00 Gb Available in Paging File | 90,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 39,06 Gb Total Space | 11,41 Gb Free Space | 29,22% Space Free | Partition Type: NTFS
Drive D: | 259,02 Gb Total Space | 9,01 Gb Free Space | 3,48% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: PREROV-0079224F
Current User Name: Martin
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Processes (SafeList) ==========

PRC - C:\Documents and Settings\Martin\Plocha\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
PRC - C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
PRC - C:\Program Files\Java\jre6\bin\jqs.exe (Sun Microsystems, Inc.)
PRC - C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
PRC - C:\Program Files\iPod\bin\iPodService.exe (Apple Inc.)
PRC - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc.)
PRC - C:\WINDOWS\system32\ati2evxx.exe (ATI Technologies Inc.)
PRC - C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
PRC - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Advanced Micro Devices Inc.)
PRC - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (ATI Technologies Inc.)
PRC - C:\WINDOWS\system32\PnkBstrA.exe ()
PRC - C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.)
PRC - C:\Program Files\Common Files\Portrait Displays\Shared\HookManager.exe (Portrait Displays Inc.)
PRC - C:\Program Files\Common Files\Portrait Displays\Drivers\pdisrvc.exe (Portrait Displays, Inc.)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Genius\ioCentre\gIMMgm.exe ()
PRC - C:\Genius\ioCentre\gKbdTask.exe ()
PRC - C:\Genius\ioCentre\gMouseTask.exe ()
PRC - C:\Program Files\Oxigen\bin\OxiTray.exe ()
PRC - C:\Program Files\Oxigen\bin\Oxigen.exe ()
PRC - C:\Genius\ioCentre\gDeskMgm.exe ()
PRC - C:\Genius\ioCentre\gTaskBar.exe ()
PRC - C:\Genius\ioCentre\gMGlass.exe ()
PRC - C:\Genius\ioCentre\gTaskSwitch.exe ()
PRC - C:\Genius\ioCentre\gZoom.exe ()
PRC - C:\Genius\ioCentre\gAutoPan.exe ()
PRC - C:\Program Files\Portrait Displays\Pivot Software\Floater.exe ()
PRC - C:\Program Files\Portrait Displays\Pivot Software\wpCtrl.exe ()
PRC - C:\Genius\ioCentre\gAutoScroll.exe ()
PRC - C:\Program Files\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)
PRC - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe ()
PRC - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe (NVIDIA Corporation)
PRC - C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe (InstallShield Software Corporation)


========== Modules (SafeList) ==========

MOD - C:\Documents and Settings\Martin\Plocha\OTL.exe (OldTimer Tools)
MOD - C:\Program Files\Portrait Displays\Pivot Software\Winphook.dll ()


========== Win32 Services (SafeList) ==========

SRV - (NetDDEdsdm) -- File not found
SRV - (NetDDE) -- File not found
SRV - (Nero BackItUp Scheduler 4.0) -- File not found
SRV - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
SRV - (avast! Mail Scanner) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
SRV - (avast! Web Scanner) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
SRV - (aswUpdSv) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
SRV - (JavaQuickStarterService) -- C:\Program Files\Java\jre6\bin\jqs.exe (Sun Microsystems, Inc.)
SRV - (vvdsvc) -- C:\WINDOWS\system32\Nagasoft\vjocx.dll (NanJing Nagasoft Co, LTD.)
SRV - (DAUpdaterSvc) -- D:\Program Files\Dragon Age\bin_ship\daupdatersvc.service.exe (BioWare)
SRV - (iPod Service) -- C:\Program Files\iPod\bin\iPodService.exe (Apple Inc.)
SRV - (Apple Mobile Device) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc.)
SRV - (Ati HotKey Poller) -- C:\WINDOWS\system32\ati2evxx.exe (ATI Technologies Inc.)
SRV - (ATI Smart) -- C:\WINDOWS\system32\ati2sgag.exe ()
SRV - (sp_rssrv) -- C:\Program Files\Spyware Terminator\sp_rsser.exe (Crawler.com)
SRV - (SeaPort) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
SRV - (gupdate1c9cda86c7b75c0) Služba Google Update (gupdate1c9cda86c7b75c0) -- C:\Program Files\Google\Update\GoogleUpdate.exe (Google Inc.)
SRV - (gusvc) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe (Google)
SRV - (fsssvc) -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe (Microsoft Corporation)
SRV - (PnkBstrA) -- C:\WINDOWS\system32\PnkBstrA.exe ()
SRV - (FLEXnet Licensing Service) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.)
SRV - (Bonjour Service) -- C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.)
SRV - (NetTcpPortSharing) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe (Microsoft Corporation)
SRV - (Asset Management Daemon) -- C:\Program Files\Common Files\Portrait Displays\Plugins\AM\dtsslsrv.exe ()
SRV - (DTSRVC) -- C:\Program Files\Common Files\Portrait Displays\Shared\DTSRVC.exe ()
SRV - (PdiService) -- C:\Program Files\Common Files\Portrait Displays\Drivers\pdisrvc.exe (Portrait Displays, Inc.)
SRV - (ForceWare Intelligent Application Manager (IAM)) ForceWare Intelligent Application Manager (IAM) -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe ()
SRV - (nSvcIp) -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe (NVIDIA Corporation)
SRV - (IDriverT) -- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe (Macrovision Corporation)


========== Driver Services (SafeList) ==========

DRV - (catchme) -- File not found
DRV - (sptd) -- C:\WINDOWS\System32\Drivers\sptd.sys (Duplex Secure Ltd.)
DRV - (ACEDRV07) -- C:\WINDOWS\system32\drivers\ACEDRV07.sys (Protect Software GmbH)
DRV - (MBAMSwissArmy) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys (Malwarebytes Corporation)
DRV - (aswTdi) -- C:\WINDOWS\system32\drivers\aswTdi.sys (ALWIL Software)
DRV - (aswRdr) -- C:\WINDOWS\system32\drivers\aswRdr.sys (ALWIL Software)
DRV - (Aavmker4) -- C:\WINDOWS\system32\drivers\aavmker4.sys (ALWIL Software)
DRV - (aswMon2) -- C:\WINDOWS\system32\drivers\aswmon2.sys (ALWIL Software)
DRV - (aswSP) -- C:\WINDOWS\system32\drivers\aswSP.sys (ALWIL Software)
DRV - (aswFsBlk) -- C:\WINDOWS\system32\drivers\aswFsBlk.sys (ALWIL Software)
DRV - (atksgt) -- C:\WINDOWS\system32\drivers\atksgt.sys ()
DRV - (lirsgt) -- C:\WINDOWS\system32\drivers\lirsgt.sys ()
DRV - (ADIDTSFiltService) -- C:\WINDOWS\system32\drivers\adidts.sys (Analog Devices, Inc.)
DRV - (ati2mtag) -- C:\WINDOWS\system32\drivers\ati2mtag.sys (ATI Technologies Inc.)
DRV - (pcouffin) -- C:\WINDOWS\system32\drivers\pcouffin.sys (VSO Software)
DRV - (sp_rsdrv2) -- C:\WINDOWS\system32\drivers\sp_rsdrv2.sys ()
DRV - (SASENUM) -- C:\Program Files\SUPERAntiSpyware\SASENUM.SYS ( SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV - (SASDIFSV) -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV - (SASKUTIL) -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS (SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV - (GEARAspiWDM) -- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys (GEAR Software Inc.)
DRV - (hamachi) -- C:\WINDOWS\system32\drivers\hamachi.sys (LogMeIn, Inc.)
DRV - (fssfltr) -- C:\WINDOWS\system32\drivers\fssfltr_tdi.sys (Microsoft Corporation)
DRV - (k750mdm) -- C:\WINDOWS\system32\drivers\k750mdm.sys (MCCI)
DRV - (k750obex) -- C:\WINDOWS\system32\drivers\k750obex.sys (MCCI)
DRV - (k750mdfl) -- C:\WINDOWS\system32\drivers\k750mdfl.sys (MCCI)
DRV - (W700mdm) -- C:\WINDOWS\system32\drivers\W700mdm.sys (MCCI)
DRV - (W700mgmt) Sony Ericsson W700 USB WMC Device Management Drivers (WDM) -- C:\WINDOWS\system32\drivers\W700mgmt.sys (MCCI)
DRV - (W700obex) -- C:\WINDOWS\system32\drivers\W700obex.sys (MCCI)
DRV - (W700bus) Sony Ericsson W700 Driver driver (WDM) -- C:\WINDOWS\system32\drivers\W700bus.sys (MCCI)
DRV - (k750bus) Sony Ericsson 750 driver (WDM) -- C:\WINDOWS\system32\drivers\k750bus.sys (MCCI)
DRV - (W700mdfl) -- C:\WINDOWS\system32\drivers\W700mdfl.sys (MCCI)
DRV - (PdiPorts) -- C:\WINDOWS\system32\drivers\PdiPorts.sys (Portrait Displays, Inc.)
DRV - (Secdrv) -- C:\WINDOWS\system32\drivers\secdrv.sys (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
DRV - (HDAudBus) -- C:\WINDOWS\system32\drivers\hdaudbus.sys (Windows (R) Server 2003 DDK provider)
DRV - (gMouUsb) -- C:\WINDOWS\system32\drivers\gMouUsb.sys ()
DRV - (gHidPnp) -- C:\WINDOWS\system32\drivers\gHidPnp.sys ()
DRV - (Pivot) -- C:\WINDOWS\system32\drivers\pivot.sys (Portrait Displays, Inc.)
DRV - (pivotmou) -- C:\WINDOWS\system32\drivers\pivotmou.sys (Portrait Displays, Inc.)
DRV - (ADIHdAudAddService) -- C:\WINDOWS\system32\drivers\ADIHdAud.sys (Analog Devices, Inc.)
DRV - (HdAudAddService) -- C:\WINDOWS\system32\drivers\AtiHdAud.sys (ATI Research Inc.)
DRV - (AsIO) -- C:\WINDOWS\system32\drivers\AsIO.sys ()
DRV - (nvata) -- C:\WINDOWS\system32\DRIVERS\nvata.sys (NVIDIA Corporation)
DRV - (nvnetbus) -- C:\WINDOWS\system32\drivers\nvnetbus.sys (NVIDIA Corporation)
DRV - (NVENETFD) -- C:\WINDOWS\system32\drivers\NVENETFD.sys (NVIDIA Corporation)
DRV - (NVTCP) -- C:\WINDOWS\system32\drivers\nvtcp.sys (NVIDIA Corporation)
DRV - (AEAudio) -- C:\WINDOWS\system32\drivers\aeaudio.sys (Andrea Electronics Corporation)
DRV - (SI3132) -- C:\WINDOWS\system32\DRIVERS\SI3132.sys (Silicon Image, Inc.)
DRV - (sfvfs02) StarForce Protection VFS Driver (version 2.x) -- C:\WINDOWS\System32\drivers\sfvfs02.sys (Protection Technology)
DRV - (SiRemFil) -- C:\WINDOWS\system32\DRIVERS\SiRemFil.sys (Silicon Image, Inc.)
DRV - (sfsync02) StarForce Protection Synchronization Driver (version 2.x) -- C:\WINDOWS\System32\drivers\sfsync02.sys (Protection Technology)
DRV - (sfdrv01) StarForce Protection Environment Driver (version 1.x) -- C:\WINDOWS\System32\drivers\sfdrv01.sys (Protection Technology)
DRV - (sfhlp02) StarForce Protection Helper Driver (version 2.x) -- C:\WINDOWS\System32\drivers\sfhlp02.sys (Protection Technology)
DRV - (SiFilter) -- C:\WINDOWS\system32\DRIVERS\SiWinAcc.sys (Silicon Image, Inc.)
DRV - (MTsensor) -- C:\WINDOWS\system32\drivers\ASACPI.sys ()
DRV - (prohlp02) -- C:\WINDOWS\System32\drivers\prohlp02.sys (Protection Technology)
DRV - (prodrv06) -- C:\WINDOWS\System32\drivers\prodrv06.sys (Protection Technology)
DRV - (prosync1) -- C:\WINDOWS\System32\drivers\prosync1.sys (Protection Technology)
DRV - (sfhlp01) -- C:\WINDOWS\System32\drivers\sfhlp01.sys (Protection Technology)
DRV - (Ptilink) -- C:\WINDOWS\system32\drivers\ptilink.sys (Parallel Technologies, Inc.)


========== Standard Registry (All) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
IE - HKCU\..\URLSearchHook: {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\ctbr.dll File not found
IE - HKCU\..\URLSearchHook: {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - C:\Documents and Settings\Martin\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Crawler Search"
FF - prefs.js..browser.search.defaultthis.engineName: "BS Player Customized Web Search"
FF - prefs.js..browser.search.order.1: "Crawler Search"
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..extensions.enabledItems: {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}:2.5.6.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}:6.0.17
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:1.1
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.7
FF - prefs.js..network.proxy.type: 2

FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009.06.24 21:43:46 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{2224E955-00E9-4613-A844-CE69FCCAAE91}: C:\Program Files\Internet Saving Optimizer\2.2.0.2880\FF
FF - HKLM\software\mozilla\Firefox\Extensions\\{0BA0192D-94A5-45e3-B2B8-3EC5A1A0B5EC}: C:\Program Files\Media Access Startup\1.0.0.610\FF
FF - HKLM\software\mozilla\Firefox\Extensions\\jqs@sun.com: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2009.06.19 12:35:56 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}: C:\Program Files\Crawler\firefox\
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.01.12 19:43:32 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.01.06 17:11:46 | 000,000,000 | ---D | M]

[2009.08.16 23:28:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Mozilla\Extensions
[2009.08.16 23:28:04 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Martin\Data aplikací\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2010.02.13 21:06:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Mozilla\Firefox\Profiles\v0m0jmnh.default\extensions
[2009.08.17 07:20:30 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Martin\Data aplikací\Mozilla\Firefox\Profiles\v0m0jmnh.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.02.03 14:18:36 | 000,000,000 | ---D | M] (BS Player Toolbar) -- C:\Documents and Settings\Martin\Data aplikací\Mozilla\Firefox\Profiles\v0m0jmnh.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}
[2009.07.01 13:22:12 | 000,000,880 | ---- | M] () -- C:\Documents and Settings\Martin\Data aplikací\Mozilla\Firefox\Profiles\v0m0jmnh.default\searchplugins\conduit.xml
[2009.10.12 00:00:21 | 000,002,061 | ---- | M] () -- C:\Documents and Settings\Martin\Data aplikací\Mozilla\Firefox\Profiles\v0m0jmnh.default\searchplugins\qipsearch.xml
[2010.02.13 21:06:44 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010.01.06 17:11:42 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2009.10.01 15:13:41 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
[2009.11.04 15:20:47 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
[2010.01.06 17:11:42 | 000,023,512 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browserdirprovider.dll
[2010.01.06 17:11:42 | 000,137,176 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\brwsrcmp.dll
[2009.12.06 13:59:08 | 000,192,512 | ---- | M] () -- C:\Program Files\Mozilla Firefox\components\mhxpcom.dll
[2009.08.31 16:55:02 | 000,118,000 | ---- | M] () -- C:\Program Files\Mozilla Firefox\components\qippipe.dll
[2009.10.11 04:17:27 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeploytk.dll
[2010.01.06 17:11:44 | 000,064,984 | ---- | M] (mozilla.org) -- C:\Program Files\Mozilla Firefox\plugins\npnul32.dll
[2009.02.27 12:13:42 | 000,103,792 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll
[2009.10.29 11:27:15 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
[2009.10.29 11:27:15 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
[2009.10.29 11:27:15 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
[2009.10.29 11:27:15 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
[2009.10.29 11:27:15 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
[2009.10.29 11:27:15 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
[2009.10.29 11:27:15 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
[2009.09.21 12:24:16 | 000,001,329 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\crawlersrch.xml
[2009.07.31 00:38:59 | 000,002,371 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\google.xml
[2009.07.30 23:15:16 | 000,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2009.07.30 23:15:16 | 000,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2009.07.30 23:15:16 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2009.07.30 23:15:16 | 000,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2009.07.30 23:15:16 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: ([2010.02.13 00:53:25 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: () - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\ctbr.dll File not found
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (WebTransBHO Class) - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\WINDOWS\WebIE.dll ()
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (QIPBHO Class) - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - C:\Documents and Settings\Martin\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll (Google Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O2 - BHO: (SweetIM Toolbar Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKLM\..\Toolbar: (no name) - - No CLSID value found.
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (&Crawler lišta) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\ctbr.dll File not found
O3 - HKLM\..\Toolbar: (WebTranslator) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\WINDOWS\WebIE.dll ()
O3 - HKLM\..\Toolbar: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKCU\..\Toolbar\ShellBrowser: (&Adresa) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O3 - HKCU\..\Toolbar\WebBrowser: (&Adresa) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O3 - HKCU\..\Toolbar\WebBrowser: (&Odkazy) - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (&Crawler lišta) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\ctbr.dll File not found
O3 - HKCU\..\Toolbar\WebBrowser: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AsusStartupHelp] C:\Program Files\ASUS\AASP\1.00.24\AsRunHelp.exe ()
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [DT ACR] C:\Program Files\Common Files\Portrait Displays\Shared\DT_startup.exe ()
O4 - HKLM..\Run: [ioCentre] C:\Genius\ioCentre\gTaskBar.exe ()
O4 - HKLM..\Run: [ISUSPM Startup] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe (InstallShield Software Corporation)
O4 - HKLM..\Run: [ISUSScheduler] C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe (InstallShield Software Corporation)
O4 - HKLM..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [OxigenClientAdmin] C:\Program Files\Oxigen\bin\Oxigen.exe ()
O4 - HKLM..\Run: [OxigenTrayIcon] C:\Program Files\Oxigen\bin\OxiTray.exe ()
O4 - HKLM..\Run: [PivotSoftware] C:\Program Files\Portrait Displays\Pivot Software\wpctrl.exe ()
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\Pure Codec\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [SpywareTerminator] C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe (Crawler.com)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKCU..\Run: [OEXPRESS] C:\WINDOWS\OETRN.EXE ()
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\PhishingFilter present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files\Microsoft Office\Office10\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\WINDOWS\WebIE.dll ()
O9 - Extra 'Tools' menuitem : &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\WINDOWS\WebIE.dll ()
O9 - Extra 'Tools' menuitem : &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\WebIE.dll ()
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\network diagnostic\xpnetdiag.exe (Microsoft Corporation)
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\WINDOWS\system32\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\system32\nvappfilter.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\system32\nvappfilter.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\system32\nvappfilter.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\WINDOWS\system32\nvappfilter.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://www.update.microsoft.com/windows ... 9979921515 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O16 - DPF: {FC11A119-C2F7-46F4-9E32-937ABA26816E} file:///F:/CDVIEWER/CdViewer.cab (AMI DicomDir TreeView Control 2.1)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\WINDOWS\system32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Common Files\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\sysimage {76E67A63-06E9-11D2-A840-006008059382} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\wia {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll (Microsoft Corporation)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\Class Install Handler {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\lzdhtml {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/webviewhtml {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (logonui.exe) - C:\WINDOWS\System32\logonui.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\WINDOWS\System32\sysdm.cpl (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll (SUPERAntiSpyware.com)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\crypt32chain: DllName - crypt32.dll - C:\WINDOWS\System32\crypt32.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cryptnet: DllName - cryptnet.dll - C:\WINDOWS\System32\cryptnet.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cscdll: DllName - cscdll.dll - C:\WINDOWS\System32\cscdll.dll (Microsoft Corporation)
O20 - Winlogon\Notify\dimsntfy: DllName - %SystemRoot%\System32\dimsntfy.dll - C:\WINDOWS\system32\dimsntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\ScCertProp: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\sclgntfy: DllName - sclgntfy.dll - C:\WINDOWS\System32\sclgntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\SensLogn: DllName - WlNotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\Schedule: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\termsrv: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\WgaLogon: DllName - WgaLogon.dll - C:\WINDOWS\System32\WgaLogon.dll (Microsoft Corporation)
O20 - Winlogon\Notify\wlballoon: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll (Microsoft Corporation)
O21 - SSODL: UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll (Microsoft Corporation)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {438755C2-A8BA-11D1-B96B-00A0C90312E1} - Browseui preloader - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Proces mezipaměti kategorií součástí - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Martin\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Martin\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msapsspc.dll) - C:\WINDOWS\System32\msapsspc.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (schannel.dll) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (digest.dll) - C:\WINDOWS\System32\digest.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msnsspc.dll) - C:\WINDOWS\System32\msnsspc.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\WINDOWS\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\WINDOWS\System32\wdigest.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

[hollca]

tady druha pulka logu:

========== Files/Folders - Created Within 30 Days ==========

File not found -- C:\Documents and Settings\Martin\Dokumenty\Martin.
[2010.02.14 15:41:15 | 000,549,376 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Martin\Plocha\OTL.exe
[2010.02.14 12:28:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\DoctorWeb
[2010.02.13 15:28:18 | 000,812,344 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\Martin\Dokumenty\HJTInstall.exe
[2010.02.13 14:54:58 | 000,000,000 | ---D | C] -- C:\VerTerm30892V
[2010.02.13 03:42:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\nagasoft
[2010.02.13 02:05:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Nagasoft
[2010.02.13 00:41:43 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2010.02.13 00:41:43 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2010.02.13 00:41:43 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2010.02.13 00:41:43 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2010.02.13 00:38:23 | 000,000,000 | ---D | C] -- C:\VerTerm8863V
[2010.02.13 00:23:09 | 000,000,000 | ---D | C] -- C:\VerTerm
[2010.02.13 00:23:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010.02.13 00:22:18 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010.02.13 00:21:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Dokumenty\tools
[2010.02.13 00:21:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Plocha\SopCast
[2010.02.12 09:45:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Dokumenty\Tapety Golmani
[2010.02.11 21:36:14 | 005,115,832 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\Martin\Dokumenty\mbam-setup.exe
[2010.01.28 15:07:08 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Games
[2010.01.25 16:12:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Plocha\hudba-nhl
[2010.01.25 16:08:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Dokumenty\NHL 2003
[2010.01.25 16:08:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Plocha\nhl07_06streamseditor1.1
[2010.01.24 12:10:18 | 004,427,636 | ---- | C] (www.flv2all.com ) -- C:\Documents and Settings\Martin\Plocha\flv2allsetup.exe
[2010.01.23 09:14:40 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR
[2010.01.21 23:48:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Plocha\ostatni
[2010.01.21 23:46:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Plocha\prerov
[2010.01.21 23:42:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Plocha\tvare
[2010.01.20 20:35:30 | 000,000,000 | ---D | C] -- C:\ProgramData
[2010.01.20 20:35:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Electronic Arts
[2010.01.20 20:35:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Dokumenty\Electronic Arts
[2010.01.20 20:34:17 | 000,000,000 | ---D | C] -- C:\Program Files\Electronic Arts
[2010.01.20 20:33:29 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft WSE
[2010.01.17 19:36:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Local Settings\Data aplikací\Wings of Prey
[2010.01.17 19:26:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Dokumenty\Stažené soubory
[2010.01.17 19:13:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Martin\Local Settings\Data aplikací\WOP
[2010.01.17 19:13:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\WOP
[2009.12.24 23:57:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\BS_Player
[2009.08.18 11:01:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Adobe
[2009.06.27 20:20:32 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Martin\Data aplikací\pcouffin.sys
[2009.06.18 21:54:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Microsoft
[2009.05.06 12:44:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Google
[2009.05.05 18:39:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Google
[2009.03.05 23:57:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Apple
[2008.12.26 01:22:06 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Data aplikací\Microsoft
[2008.12.24 20:06:23 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Data aplikací\Microsoft
[2008.12.22 20:40:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Microsoft
[9 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[6 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

File not found -- C:\Documents and Settings\Martin\Dokumenty\Martin.
[2010.02.14 15:41:15 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Martin\Plocha\OTL.exe
[2010.02.14 15:40:00 | 000,000,940 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010.02.14 15:38:27 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.02.14 15:37:25 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010.02.14 15:31:38 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.02.14 15:31:31 | 000,929,452 | ---- | M] () -- C:\WINDOWS\System32\nvdb02.adghz
[2010.02.14 15:31:23 | 000,000,960 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2010.02.14 15:31:02 | 000,000,236 | ---- | M] () -- C:\WINDOWS\tasks\OGALogon.job
[2010.02.14 15:31:00 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010.02.14 15:30:46 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.02.14 15:30:42 | 3488,141,312 | -HS- | M] () -- C:\hiberfil.sys
[2010.02.14 15:29:49 | 016,252,928 | -H-- | M] () -- C:\Documents and Settings\Martin\NTUSER.DAT
[2010.02.14 15:29:49 | 000,000,272 | -HS- | M] () -- C:\Documents and Settings\Martin\ntuser.ini
[2010.02.14 12:28:05 | 030,939,216 | ---- | M] () -- C:\Documents and Settings\Martin\Dokumenty\jpe58c6b.exe
[2010.02.14 12:22:40 | 030,939,216 | ---- | M] () -- C:\Documents and Settings\Martin\Dokumenty\launch.exe
[2010.02.13 15:28:36 | 000,001,741 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\HijackThis.lnk
[2010.02.13 15:28:18 | 000,812,344 | ---- | M] (Trend Micro Inc.) -- C:\Documents and Settings\Martin\Dokumenty\HJTInstall.exe
[2010.02.13 12:51:42 | 000,206,336 | ---- | M] () -- C:\Documents and Settings\Martin\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.02.13 10:17:57 | 002,114,204 | -H-- | M] () -- C:\Documents and Settings\Martin\Local Settings\Data aplikací\IconCache.db
[2010.02.13 01:04:56 | 000,000,571 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\SopCast.lnk
[2010.02.13 00:53:25 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2010.02.13 00:40:18 | 003,857,112 | R--- | M] () -- C:\Documents and Settings\Martin\Plocha\VerTerm.exe
[2010.02.13 00:16:51 | 005,419,576 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\SopCast.zip
[2010.02.12 10:52:39 | 000,087,123 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\article_16165_2.jpg
[2010.02.12 10:11:42 | 000,089,918 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\denis-hamel-aleander-salak-2009-9-15-21-11-31.jpg
[2010.02.12 10:10:36 | 000,020,874 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\1261642459_Image1.jpg
[2010.02.12 10:09:03 | 000,093,691 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\Florida+Panthers+v+New+York+Islanders+2Spx4XdybbEl.jpg
[2010.02.12 01:09:18 | 004,611,521 | ---- | M] () -- C:\Documents and Settings\Martin\Dokumenty\tools.rar
[2010.02.11 23:57:00 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2010.02.11 21:39:00 | 000,000,703 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2010.02.11 21:36:45 | 005,115,832 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Martin\Dokumenty\mbam-setup.exe
[2010.02.10 22:03:34 | 000,002,553 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010.02.10 18:47:36 | 000,027,990 | ---- | M] () -- C:\Documents and Settings\Martin\Data aplikací\OFMissionEditorConfig.xml
[2010.02.10 12:03:53 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010.02.09 22:41:23 | 000,001,023 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Mission Editor.lnk
[2010.02.09 22:41:23 | 000,000,841 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\OF Dragon Rising.lnk
[2010.02.07 23:07:02 | 003,165,801 | ---- | M] () -- C:\Documents and Settings\Martin\Dokumenty\nhl-2003-c.zip
[2010.02.07 21:25:14 | 000,000,770 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\NHL® 2003.lnk
[2010.02.07 21:24:02 | 000,001,911 | ---- | M] () -- C:\WINDOWS\eReg.dat
[2010.02.07 15:42:10 | 000,001,922 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Google Earth.lnk
[2010.02.05 14:05:50 | 000,001,620 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\DAEMON Tools Lite.lnk
[2010.02.05 14:05:49 | 000,691,696 | ---- | M] (Duplex Secure Ltd.) -- C:\WINDOWS\System32\drivers\sptd.sys
[2010.02.04 22:33:30 | 000,045,056 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\Alexandre Dumas.doc
[2010.02.04 22:27:21 | 000,002,559 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\Microsoft Word.lnk
[2010.02.01 23:50:14 | 000,000,531 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\Play PKR.lnk
[2010.02.01 00:07:44 | 000,039,475 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\19241_1121780024817_1836594510_229195_179790_n.jpg
[2010.01.31 17:45:43 | 000,000,287 | ---- | M] () -- C:\WINDOWS\game.ini
[2010.01.30 08:45:49 | 000,633,080 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\captain-gl.rar
[2010.01.28 16:34:22 | 000,000,679 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Ship Simulator 2008.lnk
[2010.01.26 23:56:30 | 000,000,983 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Brothers in Arms - Hell's Highway.lnk
[2010.01.25 16:08:19 | 000,679,750 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\nhl07_06streamseditor1.1.zip
[2010.01.25 16:08:05 | 000,362,523 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\wimpdittcz.zip
[2010.01.24 16:00:03 | 001,243,830 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\Prerov-golmani.jpg
[2010.01.24 12:43:35 | 000,003,927 | ---- | M] () -- C:\Documents and Settings\Martin\Dokumenty\Crack.rar
[2010.01.24 12:12:01 | 000,000,604 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\Flash FLV to Video Audio Converter.lnk
[2010.01.24 12:10:28 | 004,427,636 | ---- | M] (www.flv2all.com ) -- C:\Documents and Settings\Martin\Plocha\flv2allsetup.exe
[2010.01.23 09:14:51 | 000,001,914 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\EA Download Manager.lnk
[2010.01.22 14:38:54 | 000,000,289 | ---- | M] () -- C:\WINDOWS\hexedit.INI
[2010.01.21 23:25:05 | 004,964,380 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\Tvare_2.Liga_2007-08_by_Azik.exe
[2010.01.20 20:32:56 | 000,000,765 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\The Sims™ 3.lnk
[2010.01.18 13:15:38 | 000,000,662 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\nhl2009.lnk
[2010.01.17 22:39:38 | 594,082,784 | ---- | M] () -- C:\Documents and Settings\Martin\Dokumenty\409m.exe
[2010.01.17 20:41:44 | 000,000,519 | ---- | M] () -- C:\Documents and Settings\Martin\Plocha\JSGME.exe.lnk
[2010.01.16 17:48:44 | 000,004,096 | ---- | M] () -- C:\WINDOWS\System32\crash
[2010.01.15 18:53:57 | 000,000,711 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\IL-2 Sturmovik 1946.lnk
[9 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[6 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010.02.14 12:28:04 | 030,939,216 | ---- | C] () -- C:\Documents and Settings\Martin\Dokumenty\jpe58c6b.exe
[2010.02.14 12:18:53 | 030,939,216 | ---- | C] () -- C:\Documents and Settings\Martin\Dokumenty\launch.exe
[2010.02.13 15:36:01 | 3488,141,312 | -HS- | C] () -- C:\hiberfil.sys
[2010.02.13 15:28:36 | 000,001,741 | ---- | C] () -- C:\Documents and Settings\Martin\Plocha\HijackThis.lnk
[2010.02.13 01:04:56 | 000,000,571 | ---- | C] () -- C:\Documents and Settings\Martin\Plocha\SopCast.lnk
[2010.02.13 00:41:43 | 000,261,632 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2010.02.13 00:41:43 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2010.02.13 00:41:43 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2010.02.13 00:41:43 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2010.02.13 00:41:43 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2010.02.13 00:21:16 | 003,857,112 | R--- | C] () -- C:\Documents and Settings\Martin\Plocha\VerTerm.exe
[2010.02.13 00:16:17 | 005,419,576 | ---- | C] () -- C:\Documents and Settings\Martin\Plocha\SopCast.zip
[2010.02.12 10:52:39 | 000,087,123 | ---- | C] () -- C:\Documents and Settings\Martin\Plocha\article_16165_2.jpg
[2010.02.12 10:11:42 | 000,089,918 | ---- | C] () -- C:\Documents and Settings\Martin\Plocha\denis-hamel-aleander-salak-2009-9-15-21-11-31.jpg
[2010.02.12 10:10:36 | 000,020,874 | ---- | C] () -- C:\Documents and Settings\Martin\Plocha\1261642459_Image1.jpg
[2010.02.12 10:09:03 | 000,093,691 | ---- | C] () -- C:\Documents and Settings\Martin\Plocha\Florida+Panthers+v+New+York+Islanders+2Spx4XdybbEl.jpg
[2010.02.12 01:09:09 | 004,611,521 | ---- | C] () -- C:\Documents and Settings\Martin\Dokumenty\tools.rar
[2010.02.11 21:39:00 | 000,000,703 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Malwarebytes' Anti-Malware.lnk
[2010.02.10 18:47:36 | 000,027,990 | ---- | C] () -- C:\Documents and Settings\Martin\Data aplikací\OFMissionEditorConfig.xml
[2010.02.09 22:41:23 | 000,001,023 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Mission Editor.lnk
[2010.02.09 22:41:23 | 000,000,841 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\OF Dragon Rising.lnk
[2010.02.07 23:06:57 | 003,165,801 | ---- | C] () -- C:\Documents and Settings\Martin\Dokumenty\nhl-2003-c.zip
[2010.02.07 21:25:14 | 000,000,770 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\NHL® 2003.lnk
[2010.02.07 15:42:10 | 000,001,922 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Google Earth.lnk
[2010.02.05 14:05:50 | 000,001,620 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\DAEMON Tools Lite.lnk
[2010.02.04 22:33:30 | 000,045,056 | ---- | C] () -- C:\Documents and Settings\Martin\Plocha\Alexandre Dumas.doc
[2010.02.01 23:50:14 | 000,000,531 | ---- | C] () -- C:\Documents and Settings\Martin\Plocha\Play PKR.lnk
[2010.02.01 00:07:43 | 000,039,475 | ---- | C] () -- C:\Documents and Settings\Martin\Plocha\19241_1121780024817_1836594510_229195_179790_n.jpg
[2010.01.31 17:45:43 | 000,000,287 | ---- | C] () -- C:\WINDOWS\game.ini
[2010.01.30 08:45:45 | 000,633,080 | ---- | C] () -- C:\Documents and Settings\Martin\Plocha\captain-gl.rar
[2010.01.28 16:34:22 | 000,000,679 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Ship Simulator 2008.lnk
[2010.01.26 23:56:30 | 000,000,983 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Brothers in Arms - Hell's Highway.lnk
[2010.01.25 16:08:15 | 000,679,750 | ---- | C] () -- C:\Documents and Settings\Martin\Plocha\nhl07_06streamseditor1.1.zip
[2010.01.25 16:08:04 | 000,362,523 | ---- | C] () -- C:\Documents and Settings\Martin\Plocha\wimpdittcz.zip
[2010.01.24 15:59:59 | 001,243,830 | ---- | C] () -- C:\Documents and Settings\Martin\Plocha\Prerov-golmani.jpg
[2010.01.24 12:12:01 | 007,437,824 | ---- | C] () -- C:\WINDOWS\System32\smfcore.dll
[2010.01.24 12:12:01 | 000,383,238 | ---- | C] () -- C:\WINDOWS\System32\libmp3lame-0.dll
[2010.01.24 12:12:01 | 000,000,604 | ---- | C] () -- C:\Documents and Settings\Martin\Plocha\Flash FLV to Video Audio Converter.lnk
[2010.01.23 09:14:51 | 000,001,914 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\EA Download Manager.lnk
[2010.01.21 23:24:56 | 004,964,380 | ---- | C] () -- C:\Documents and Settings\Martin\Plocha\Tvare_2.Liga_2007-08_by_Azik.exe
[2010.01.20 20:32:56 | 000,000,765 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\The Sims™ 3.lnk
[2010.01.17 21:06:53 | 594,082,784 | ---- | C] () -- C:\Documents and Settings\Martin\Dokumenty\409m.exe
[2010.01.17 20:41:44 | 000,000,519 | ---- | C] () -- C:\Documents and Settings\Martin\Plocha\JSGME.exe.lnk
[2010.01.17 19:49:08 | 000,003,927 | ---- | C] () -- C:\Documents and Settings\Martin\Dokumenty\Crack.rar
[2010.01.15 18:53:57 | 000,000,711 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\IL-2 Sturmovik 1946.lnk
[2010.01.14 09:31:46 | 000,000,248 | ---- | C] () -- C:\WINDOWS\RomeTW.ini
[2009.12.18 22:41:42 | 000,062,232 | R--- | C] () -- C:\WINDOWS\System32\GameuxInstallHelper.dll
[2009.12.04 14:29:20 | 000,000,632 | ---- | C] () -- C:\WINDOWS\Vtw.INI
[2009.11.06 10:58:04 | 000,178,975 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2009.11.01 14:56:32 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\iyvu9_32.dll
[2009.10.21 13:39:17 | 000,000,126 | ---- | C] () -- C:\Documents and Settings\Martin\Local Settings\Data aplikací\fusioncache.dat
[2009.09.23 16:35:02 | 000,172,032 | ---- | C] () -- C:\WINDOWS\AppTextE.dll
[2009.09.22 13:28:16 | 000,000,088 | ---- | C] () -- C:\WINDOWS\STXKBD32.INI
[2009.09.22 13:24:25 | 000,004,973 | ---- | C] () -- C:\WINDOWS\WTRAN32.INI
[2009.09.22 13:24:19 | 000,002,586 | ---- | C] () -- C:\WINDOWS\WDICT32.INI
[2009.09.22 13:23:02 | 000,491,520 | ---- | C] () -- C:\WINDOWS\WebIE.dll
[2009.09.22 13:23:02 | 000,200,704 | ---- | C] () -- C:\WINDOWS\TRNOET.DLL
[2009.09.22 13:23:02 | 000,045,056 | ---- | C] () -- C:\WINDOWS\TRNOEH.DLL
[2009.09.22 13:22:58 | 000,002,018 | ---- | C] () -- C:\WINDOWS\TRNCOM.INI
[2009.09.05 06:47:41 | 001,058,040 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
[2009.08.20 11:27:39 | 000,278,728 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2009.08.20 11:27:39 | 000,025,416 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2009.08.03 14:07:42 | 000,403,816 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.dll
[2009.06.27 20:20:37 | 000,000,033 | ---- | C] () -- C:\Documents and Settings\Martin\Data aplikací\pcouffin.log
[2009.06.27 20:20:32 | 000,087,608 | ---- | C] () -- C:\Documents and Settings\Martin\Data aplikací\inst.exe
[2009.06.27 20:20:32 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\Martin\Data aplikací\pcouffin.cat
[2009.06.27 20:20:32 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\Martin\Data aplikací\pcouffin.inf
[2009.06.26 14:14:21 | 000,000,170 | ---- | C] () -- C:\Documents and Settings\Martin\Data aplikací\default.rss
[2009.06.26 13:41:32 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009.06.26 13:39:07 | 000,000,039 | ---- | C] () -- C:\WINDOWS\Irremote.ini
[2009.06.19 20:06:22 | 000,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll
[2009.06.19 20:06:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2009.06.19 20:06:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2009.06.19 20:06:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2009.06.19 20:06:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2009.06.19 20:06:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2009.06.19 20:06:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2009.06.19 20:06:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2009.06.19 20:06:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2009.06.19 20:06:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2009.06.17 17:50:52 | 000,141,312 | ---- | C] () -- C:\WINDOWS\System32\drivers\sp_rsdrv2.sys
[2009.04.04 08:28:36 | 000,000,461 | ---- | C] () -- C:\WINDOWS\EAGRAPH.INI
[2009.03.29 08:03:11 | 000,000,253 | ---- | C] () -- C:\WINDOWS\gp2ed32.ini
[2009.01.15 17:13:07 | 000,138,464 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2009.01.15 17:13:07 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\Martin\Data aplikací\PnkBstrK.sys
[2009.01.03 12:00:25 | 000,021,840 | ---- | C] () -- C:\WINDOWS\System32\SIntfNT.dll
[2009.01.03 12:00:25 | 000,017,212 | ---- | C] () -- C:\WINDOWS\System32\SIntf32.dll
[2008.12.29 02:17:51 | 000,000,289 | ---- | C] () -- C:\WINDOWS\hexedit.INI
[2008.12.24 19:12:44 | 000,002,304 | ---- | C] () -- C:\WINDOWS\System32\Machnm32.sys
[2008.12.23 19:48:34 | 000,206,336 | ---- | C] () -- C:\Documents and Settings\Martin\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008.12.23 10:23:08 | 000,000,063 | ---- | C] () -- C:\WINDOWS\SIERRA.INI
[2008.12.23 01:05:26 | 000,000,390 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2008.12.22 22:32:54 | 000,016,384 | ---- | C] () -- C:\WINDOWS\System32\drivers\gHidPnp.sys
[2008.12.22 22:32:54 | 000,009,856 | ---- | C] () -- C:\WINDOWS\System32\drivers\gMouUsb.sys
[2008.12.22 21:28:58 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2008.12.22 21:21:11 | 000,024,576 | R--- | C] () -- C:\WINDOWS\System32\AsIO.dll
[2008.12.22 21:21:11 | 000,012,664 | R--- | C] () -- C:\WINDOWS\System32\drivers\AsIO.sys
[2008.12.22 21:21:10 | 000,012,096 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp64.sys
[2008.12.22 21:21:10 | 000,010,304 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp32.sys
[2008.12.22 20:52:33 | 000,033,565 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini
[2008.12.22 20:44:38 | 000,000,400 | R--- | C] () -- C:\WINDOWS\System32\raidmgmt.ini
[2008.12.22 20:44:37 | 000,000,962 | R--- | C] () -- C:\WINDOWS\System32\AsusSetup.ini
[2008.12.22 20:42:20 | 000,033,527 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2008.12.22 20:42:18 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2008.12.22 20:42:11 | 000,010,288 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2008.01.12 18:09:50 | 000,607,232 | ---- | C] () -- C:\WINDOWS\System32\x264vfw.dll
[2008.01.08 14:33:56 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2008.01.08 14:33:56 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2005.10.14 11:56:50 | 000,765,952 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2005.10.14 11:56:50 | 000,344,064 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll
[2005.10.14 10:56:50 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\VorbisEnc.dll
[2005.10.14 10:56:50 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll
[2005.10.14 10:56:50 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2005.10.14 10:56:50 | 000,155,136 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2005.10.14 10:56:50 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll
[2002.05.15 05:58:38 | 000,122,880 | ---- | C] () -- C:\WINDOWS\System32\v2k2_dec.dll
[1998.03.22 12:50:02 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll

========== LOP Check ==========

[2009.08.10 20:06:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Activision
[2009.12.30 13:52:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\BioWare
[2010.01.09 23:46:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Codemasters
[2010.02.05 14:05:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
[2009.08.17 23:12:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\DriverCure
[2010.01.23 09:14:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Electronic Arts
[2009.08.17 23:11:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ParetoLogic
[2009.08.20 11:29:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\RTL Winter Sports 2008
[2010.01.09 00:44:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Sports Interactive
[2010.01.09 00:14:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
[2009.08.03 12:04:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\SweetIM
[2009.12.18 19:55:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Test Drive Unlimited
[2009.11.29 09:33:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\TrackMania
[2010.01.17 19:13:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\WOP
[2009.07.23 23:03:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[2009.12.18 15:26:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\2K Sports
[2009.01.08 16:24:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Antispyware
[2009.05.09 15:23:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\BlackBean
[2009.12.25 18:39:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\BSplayer
[2009.08.12 12:07:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\BSplayer Pro
[2009.08.18 00:25:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Capcom
[2008.12.23 20:03:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\DAEMON Tools
[2009.08.10 19:10:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\DAEMON Tools Lite
[2009.02.09 19:53:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\DAEMON Tools Pro
[2008.12.24 19:31:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\DisplayTune
[2009.08.17 23:12:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\DriverCure
[2009.08.25 15:38:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\FarmingSimulator2008
[2009.10.07 17:38:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Gearbox Software
[2009.05.24 16:22:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\GetRightToGo
[2009.09.13 08:17:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\ICQ
[2009.04.02 16:40:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Internet Saving Optimizer
[2009.03.14 14:21:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\LangSoft
[2008.12.23 18:34:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Leadertech
[2009.03.19 22:54:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Leawo
[2008.12.22 21:04:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Opera
[2009.07.16 16:49:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\SPORE
[2010.01.09 00:43:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Sports Interactive
[2010.01.09 00:14:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Spyware Terminator
[2008.12.24 22:51:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Teleca
[2009.07.19 13:15:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\The Creative Assembly
[2009.04.11 09:06:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\ThumbsPlus
[2010.02.14 12:23:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\uTorrent
[2009.06.27 20:26:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\Vso
[2009.06.03 19:51:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Martin\Data aplikací\VW_GAMES
[2010.02.14 15:31:02 | 000,000,236 | ---- | M] () -- C:\WINDOWS\Tasks\OGALogon.job

========== Purity Check ==========


< End of report >

[jaro3]

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

vyčisti systém CCleanerem

a použij i T-Cleaner
smaže vše po Combu,MWAVu atd.-stáhneš>spustíš

pozn. před stažením T-Cleaneru a po dobu čištění deaktivuj AVG či Avast, následně T-Cleaner smaž a zapni si AVG či Avast.



Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Custom Scans/Fixes do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
IE - HKCU\..\URLSearchHook: {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\ctbr.dll File not found
IE - HKCU\..\URLSearchHook: {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - C:\Documents and Settings\Martin\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
FF - prefs.js..browser.search.defaultenginename: "Crawler Search"
FF - prefs.js..browser.search.defaultthis.engineName: "BS Player Customized Web Search"
FF - prefs.js..browser.search.order.1: "Crawler Search"
FF - HKLM\software\mozilla\Firefox\Extensions\\{2224E955-00E9-4613-A844-CE69FCCAAE91}: C:\Program Files\Internet Saving Optimizer\2.2.0.2880\FF
FF - HKLM\software\mozilla\Firefox\Extensions\\{0BA0192D-94A5-45e3-B2B8-3EC5A1A0B5EC}: C:\Program Files\Media Access Startup\1.0.0.610\FF
FF - HKLM\software\mozilla\Firefox\Extensions\\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}: C:\Program Files\Crawler\firefox\
O2 - BHO: () - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\ctbr.dll File not found
O2 - BHO: (QIPBHO Class) - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - C:\Documents and Settings\Martin\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
O3 - HKLM\..\Toolbar: (no name) - - No CLSID value found.
O3 - HKLM\..\Toolbar: (&Crawler lišta) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\ctbr.dll File not found
O3 - HKCU\..\Toolbar\WebBrowser: (&Crawler lišta) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\ctbr.dll File not found
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\PhishingFilter present
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O16 - DPF: {FC11A119-C2F7-46F4-9E32-937ABA26816E} file:///F:/CDVIEWER/CdViewer.cab (AMI DicomDir TreeView Control 2.1)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\msdaipp - No CLSID value found
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home

:Files
C:\VerTerm30892V
C:\VerTerm8863V
C:\VerTerm
C:\WINDOWS\tasks\SA.DAT
C:\Documents and Settings\Martin\Dokumenty\jpe58c6b.exe
C:\Documents and Settings\Martin\Plocha\VerTerm.exe
C:\Documents and Settings\Martin\Dokumenty\Crack.rar

:Reg
:Commands
[purity]
[emptytemp]
[start explorer]
[Reboot]

Poté klikni nahoře na Run Fix. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.

V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko u nezobrazovat systémové soubory.

Toto otestuj na Virustotal
C:\Documents and Settings\Martin\Plocha\wimpdittcz.zip
Vlož sem pak odkaz na stránku s výsledky.