Skontrolovat log HJT

[gogy27]

Zdravim,
Prossim Vas chcel by som aby ste mi skontrolovali log a poradili ak sa vam nebude nieco pacit. Pocitac mi ide trochu pomalsie a blbne mi niekedy prihlasenie a youtube kvoli cookies pretoze ked ich vymazem tak vsetko ide vpohode. Tak tu je ten log a dakujem za vase info :)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:42:23, on 16. 9. 2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\PHPWebServer\apache\bin\apache.exe
C:\PHPWebServer\mysql\bin\mysqld.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Eset\nod32krn.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Mobile Partner\Mobile Partner.exe
C:\WINDOWS\ATK0100\HControl.exe
C:\Program Files\ASUSTeK\ASUSDVD\PDVDServ.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe
C:\Program Files\Wireless Console 2\wcourier.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\sm56hlpr.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\USB Disk Tool\USNDISKT.EXE
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb05.exe
C:\Program Files\Eset\nod32kui.exe
C:\PHPWebServer\apache\bin\apache.exe
C:\PHPWebServer\bin\ServiceDirect.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ASUS\Net4Switch\Net4Switch.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\ATK0100\ATKOSD.exe
C:\Program Files\Java\jre1.6.0_03\bin\jucheck.exe
C:\Program Files\ICQ6.5\ICQ.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\user\Plocha\hijackthis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT1098640
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.asus.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = Root: HKCU; Subkey: Software\Microsoft\Internet Explorer\SearchUrl; ValueType: string; ValueName: '; ValueData: '; Flags: createvalueifdoesntexist noerror; Tasks: AddSearchQip
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: QIPBHO Class - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Documents and Settings\user\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll
R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\1552\2558\toolbaru.dll
R3 - URLSearchHook: (no name) - {D73F49B6-B51B-4d32-A3B7-BD04B8342F53} - C:\Program Files\MorpheusBar\SrchAstt\1.bin\MBSRCAS.DLL (file missing)
R3 - URLSearchHook: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfre1.dll
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: XTTBPos00 - {055FD26D-3A88-4e15-963D-DC8493744B1D} - C:\PROGRA~1\ICQTOO~1\1552\2558\toolbaru.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Media Holding Enterprises, LLC - {0D39A900-0F3A-4C29-A254-3E65244FDC34} - C:\Program Files\ContextTool\ContextTool-2.dll (file missing)
O2 - BHO: Adssite Search Assistant - {1648E328-3E5A-4EA5-A9C6-E5F09EE272DA} - C:\WINDOWS\system32\adssite_sidebar.dll (file missing)
O2 - BHO: BrowserCmp - {1D8282E6-BC4F-469B-AAED-7E4FF077AD93} - C:\WINDOWS\system32\iebrowserc.dll (file missing)
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: IE to GetRight Helper - {31FF080D-12A3-439A-A2EF-4BA95A3148E8} - C:\Program Files\GetRight\xx2gr.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: QIPBHO - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Documents and Settings\user\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll
O2 - BHO: ads_optimizer - {9C8A568E-4201-478a-8536-526CF371D2E2} - C:\WINDOWS\system32\nspEA.dll (file missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll
O2 - BHO: rightonadz browser optimizer - {b9b2c59b-8841-60b2-6042-c2e4108047ae} - C:\WINDOWS\system32\{f6a8beae-119b-70d1-2db8-708b3387cf04}.dll (file missing)
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: WhIeHelperObj Class - {c900b400-cdfe-11d3-976a-00e02913a9e0} - C:\Program Files\webHancer\programs\whiehlpr.dll (file missing)
O2 - BHO: MySidesearch Search Assistant - {DDFA1356-E6ED-42a5-9D62-93211D424A90} - C:\WINDOWS\system32\mysidesearch_sidebar.dll (file missing)
O2 - BHO: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfre1.dll
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\1552\2558\toolbaru.dll
O3 - Toolbar: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfre1.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\ASUSTeK\ASUSDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [ASUS Live Update] rem ***C:\Program Files\ASUS\ASUS Live Update\ALU.exe
O4 - HKLM\..\Run: [Power_Gear] C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe 1
O4 - HKLM\..\Run: [Wireless Console 2] C:\Program Files\Wireless Console 2\wcourier.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ABLKSR] C:\WINDOWS\ABLKSR\ABLKSR.exe
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [SMSERIAL] sm56hlpr.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [USB Disk Tool] C:\Program Files\USB Disk Tool\USNDISKT.EXE
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [FortKnoxPersonalFirewall] "C:\Program Files\NETGATE\FortKnox Personal Firewall 2007\FortKnoxGUI.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb05.exe
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [spa_start] C:\WINDOWS\System32\Rundll32.exe "C:\WINDOWS\system32\{f6a8beae-119b-70d1-2db8-708b3387cf04}.dll" DllInit
O4 - HKLM\..\Run: [OBSWATCH] C:\PROGRA~1\ORANGEBS\Watch.exe
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [ComplexWebServer] "C:\PHPWebServer\bin\ServiceDirect.exe" /RUNHIDE /CONF="C:\PHPWebServer\bin\ServiceDirect.conf"
O4 - HKLM\..\Run: [Emurayden PSX Emulator] c:\Archivos de Programa\Emurayden PSX Emulator v2.1\Emurayden PSX AutoLauncher.exe
O4 - HKLM\..\RunOnce: [NSSInstallation] C:\WINDOWS\system32\Adobe\Shockwave 11\nssstub.exe /RunOnce
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Net4Switch] C:\Program Files\ASUS\Net4Switch\Net4Switch.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Mobile Partner] "C:\Program Files\Mobile Partner\Mobile Partner.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [IETI] C:\Program Files\Skype\Phone\IEPlugin\unins000.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [IETI] C:\Program Files\Skype\Phone\IEPlugin\unins000.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART (User 'Default user')
O4 - Startup: RollerCoaster Tycoon 3 Registration.lnk = C:\Documents and Settings\user\Local Settings\Temp\{8B290F8E-B5F7-40EC-8B95-E494958E7816}\{907B4640-266B-4A21-92FB-CD1A86CD0F63}\ATR1.exe
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O8 - Extra context menu item: Download with GetRight - C:\Program Files\GetRight\GRdownload.htm
O8 - Extra context menu item: Open with GetRight Browser - C:\Program Files\GetRight\GRbrowse.htm
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing)
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.asus.com
O16 - DPF: {33288993-5664-11D4-8B5B-00D0B73B3518} (ell Class) - http://www.easports.com/downloads/games ... /ieell.cab
O16 - DPF: {54B52E52-8000-4413-BD67-FC7FE24B59F2} (EARTPatchX Class) - http://www.ea.com/downloads/rtpatch/EARTPX.cab
O16 - DPF: {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} (GSDACtl Class) - http://launch.gamespyarcade.com/softwar ... launch.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://arcade.icq.com/carlo/zuma/popcaploader_v5.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{F2CE53F1-CEA3-4767-83F8-5F32E801A65D}: NameServer = 213.151.208.161 213.151.200.30
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CWS_Apache_80 - Apache Software Foundation - C:\PHPWebServer\apache\bin\apache.exe
O23 - Service: CWS_MySQL_3306 - Unknown owner - C:\PHPWebServer\mysql\bin\mysqld.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

--
End of file - 14118 bytes

[Reklama]

[pitimir]

Ahoj, HJT je uz za svojim zenitom, preto pouzijeme OTL:

Stiahni OTL. Uloz na plochu a spust dvojklikom subor "OTL.exe". Otvori sa okno programu, v nom zaskrtni "Scan All Users", "Lop" aj "Purity Check" a "File Scan" zmen na 7 dni miesto 30. Potom klikni na "Run Scan". Zacne scan pocitaca, po jeho ukonceni sa otvoria dva reporty - obsah oboch potrebujem vidiet.

A este jedna otazocka - ako si na tom s toolbarmi a podobnymi srandami? Pouzivas ich?

[gogy27]

OTL.txt:
OTL logfile created on: 20. 9. 2009 12:18:48 - Run 1
OTL by OldTimer - Version 3.0.14.0 Folder = C:\Documents and Settings\user\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 0000041B | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy

383,36 Mb Total Physical Memory | 84,35 Mb Available Physical Memory | 22,00% Memory free
1,34 Gb Paging File | 0,69 Gb Available in Paging File | 51,39% Paging File free
Paging file location(s): C:\pagefile.sys 1024 1152 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 32,45 Gb Total Space | 1,35 Gb Free Space | 4,15% Space Free | Partition Type: FAT32
Drive D: | 21,56 Gb Total Space | 6,29 Gb Free Space | 29,16% Space Free | Partition Type: FAT32
E: Drive not present or media not loaded
F: Drive not present or media not loaded
Drive G: | 11,05 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive H: | 974,13 Mb Total Space | 973,27 Mb Free Space | 99,91% Space Free | Partition Type: FAT
I: Drive not present or media not loaded

Computer Name: N-35D6C3A98FA74
Current User Name: user
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 7 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2006.03.08 09:42:00 | 00,405,504 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\Ati2evxx.exe
PRC - [2006.03.08 09:42:00 | 00,405,504 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\Ati2evxx.exe
PRC - [2008.03.27 09:28:56 | 00,418,816 | ---- | M] (GRISOFT, s.r.o.) -- C:\Program Files\Grisoft\AVG7\avgamsvr.exe
PRC - [2008.03.27 09:29:06 | 00,049,664 | ---- | M] (GRISOFT, s.r.o.) -- C:\Program Files\Grisoft\AVG7\avgupsvc.exe
PRC - [2008.03.27 09:28:58 | 00,406,528 | ---- | M] (GRISOFT, s.r.o.) -- C:\Program Files\Grisoft\AVG7\avgemc.exe
PRC - [2006.02.28 12:42:38 | 00,229,376 | ---- | M] (Apple Computer, Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2005.10.09 19:17:00 | 00,020,541 | ---- | M] (Apache Software Foundation) -- C:\PHPWebServer\apache\bin\apache.exe
PRC - [2005.12.02 11:41:12 | 03,526,656 | ---- | M] () -- C:\PHPWebServer\mysql\bin\mysqld.exe
PRC - [2004.06.10 16:20:12 | 00,040,960 | ---- | M] (France Telecom) -- C:\WINDOWS\System32\FTRTSVC.exe
PRC - [2008.03.27 09:15:38 | 00,507,904 | ---- | M] (Eset ) -- C:\Program Files\Eset\nod32krn.exe
PRC - [2007.05.28 18:57:54 | 00,275,968 | ---- | M] (Rocket Division Software) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
PRC - [2006.02.22 23:40:40 | 00,106,496 | ---- | M] () -- C:\WINDOWS\ATK0100\HControl.exe
PRC - [2004.11.02 20:24:46 | 00,032,768 | ---- | M] (Cyberlink Corp.) -- C:\Program Files\ASUSTeK\ASUSDVD\PDVDServ.exe
PRC - [2006.05.04 03:59:16 | 16,206,848 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.EXE
PRC - [2006.03.14 17:46:00 | 00,090,112 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe
PRC - [2005.10.17 17:09:34 | 00,987,136 | ---- | M] () -- C:\Program Files\Wireless Console 2\wcourier.exe
PRC - [2005.10.21 02:26:48 | 00,761,945 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
PRC - [2006.03.08 21:05:00 | 00,344,064 | ---- | M] (ATI Technologies, Inc.) -- C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
PRC - [2006.01.19 23:34:26 | 00,544,768 | R--- | M] (Motorola Inc.) -- C:\WINDOWS\sm56hlpr.exe
PRC - [2003.07.31 18:25:18 | 00,122,880 | ---- | M] ( ) -- C:\Program Files\USB Disk Tool\USNDISKT.EXE
PRC - [2007.09.25 01:11:36 | 00,132,496 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
PRC - [2002.07.10 14:19:10 | 00,188,416 | ---- | M] (HP) -- C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb05.exe
PRC - [2005.05.18 13:54:30 | 00,917,504 | ---- | M] (Eset ) -- C:\Program Files\Eset\nod32kui.exe
PRC - [2005.10.09 19:17:00 | 00,020,541 | ---- | M] (Apache Software Foundation) -- C:\PHPWebServer\apache\bin\apache.exe
PRC - [2006.01.31 08:40:14 | 00,818,688 | ---- | M] () -- C:\PHPWebServer\bin\ServiceDirect.exe
PRC - [2006.03.02 15:34:50 | 01,101,824 | ---- | M] (ASUS) -- C:\Program Files\ASUS\Net4Switch\Net4Switch.exe
PRC - [2008.04.12 21:00:38 | 00,068,856 | ---- | M] (Google Inc.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
PRC - [2006.02.21 02:25:58 | 02,170,880 | ---- | M] () -- C:\WINDOWS\ATK0100\ATKOSD.exe
PRC - [2007.09.25 01:11:36 | 00,329,104 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre1.6.0_03\bin\jucheck.exe
PRC - [2009.03.01 12:59:44 | 00,172,792 | ---- | M] (ICQ, LLC.) -- C:\Program Files\ICQ6.5\ICQ.exe
PRC - [2009.07.20 17:44:20 | 00,114,688 | ---- | M] () -- C:\Program Files\Mobile Partner\Mobile Partner.exe
PRC - [2008.04.14 05:22:22 | 01,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008.04.14 05:22:48 | 00,538,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spider.exe
PRC - [2009.09.12 14:57:14 | 00,307,704 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009.09.20 12:10:50 | 00,514,560 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\user\Plocha\OTL.exe

========== Win32 Services (SafeList) ==========

SRV - [2008.07.25 11:16:40 | 00,034,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe -- (aspnet_state [On_Demand | Stopped])
SRV - [2006.03.08 09:42:00 | 00,405,504 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\Ati2evxx.exe -- (Ati HotKey Poller [Auto | Running])
SRV - [2008.03.27 09:28:56 | 00,418,816 | ---- | M] (GRISOFT, s.r.o.) -- C:\Program Files\Grisoft\AVG7\avgamsvr.exe -- (Avg7Alrt [Auto | Running])
SRV - [2008.03.27 09:29:06 | 00,049,664 | ---- | M] (GRISOFT, s.r.o.) -- C:\Program Files\Grisoft\AVG7\avgupsvc.exe -- (Avg7UpdSvc [Auto | Running])
SRV - [2008.03.27 09:28:58 | 00,406,528 | ---- | M] (GRISOFT, s.r.o.) -- C:\Program Files\Grisoft\AVG7\avgemc.exe -- (AVGEMS [Auto | Running])
SRV - [2006.02.28 12:42:38 | 00,229,376 | ---- | M] (Apple Computer, Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service [Auto | Running])
SRV - [2008.07.25 11:17:02 | 00,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])
SRV - [2005.10.09 19:17:00 | 00,020,541 | ---- | M] (Apache Software Foundation) -- C:\PHPWebServer\apache\bin\apache.exe -- (CWS_Apache_80 [Auto | Running])
SRV - [2005.12.02 11:41:12 | 03,526,656 | ---- | M] () -- C:\PHPWebServer\mysql\bin\mysqld.exe -- (CWS_MySQL_3306 [Auto | Running])
SRV - [2009.01.27 20:58:42 | 00,654,848 | ---- | M] (Macrovision Europe Ltd.) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service [On_Demand | Stopped])
SRV - [2008.07.29 21:10:04 | 00,046,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped])
SRV - [2004.06.10 16:20:12 | 00,040,960 | ---- | M] (France Telecom) -- C:\WINDOWS\System32\FTRTSVC.exe -- (FTRTSVC [Auto | Running])
SRV - [2009.05.31 13:40:00 | 00,182,768 | ---- | M] (Google) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc [On_Demand | Stopped])
SRV - [2008.04.14 05:21:54 | 00,038,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -- (helpsvc [Auto | Running])
SRV - [2008.07.29 19:24:50 | 00,881,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc [Unknown | Stopped])
SRV - [2008.04.14 05:21:44 | 00,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\irmon.dll -- (Irmon [Auto | Running])
SRV - [2008.07.29 19:16:38 | 00,132,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped])
SRV - [2008.03.27 09:15:38 | 00,507,904 | ---- | M] (Eset ) -- C:\Program Files\Eset\nod32krn.exe -- (NOD32krn [Auto | Running])
SRV - [2007.05.28 18:57:54 | 00,275,968 | ---- | M] (Rocket Division Software) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE [Auto | Running])
SRV - [2007.01.19 12:54:14 | 00,097,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\MSN Messenger\usnsvc.exe -- (usnjsvc [On_Demand | Stopped])
SRV - [2006.04.03 18:12:14 | 00,014,032 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend [Disabled | Stopped])
SRV - [2007.01.05 20:57:30 | 00,913,920 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\WMPNetwk.exe -- (WMPNetworkSvc [On_Demand | Stopped])

========== Driver Services (SafeList) ==========

DRV - [2008.03.27 09:15:40 | 00,502,368 | ---- | M] (Eset ) -- C:\WINDOWS\System32\drivers\amon.sys -- (AMON [Auto | Running])
DRV - [2004.05.27 22:13:04 | 00,016,269 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) -- C:\WINDOWS\ATK0100\ASNDIS5.SYS -- (ASNDIS5 [On_Demand | Running])
DRV - [2006.03.08 09:49:20 | 01,506,816 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\DRIVERS\ati2mtag.sys -- (ati2mtag [On_Demand | Running])
DRV - [2007.10.24 19:32:20 | 00,821,856 | ---- | M] (GRISOFT, s.r.o.) -- C:\WINDOWS\System32\Drivers\avg7core.sys -- (Avg7Core [System | Running])
DRV - [2006.11.23 18:55:22 | 00,004,224 | ---- | M] (GRISOFT, s.r.o.) -- C:\WINDOWS\System32\Drivers\avg7rsw.sys -- (Avg7RsW [System | Running])
DRV - [2007.02.23 19:32:46 | 00,027,776 | ---- | M] (GRISOFT, s.r.o.) -- C:\WINDOWS\System32\Drivers\avg7rsxp.sys -- (Avg7RsXP [System | Running])
DRV - [2007.12.23 19:32:54 | 00,010,760 | ---- | M] (GRISOFT, s.r.o.) -- C:\WINDOWS\System32\Drivers\avgclean.sys -- (AvgClean [System | Running])
DRV - [2006.11.23 18:55:24 | 00,004,960 | ---- | M] (GRISOFT, s.r.o.) -- C:\WINDOWS\System32\Drivers\avgtdi.sys -- (AvgTdi [Auto | Running])
DRV - [2005.02.11 21:46:22 | 00,371,712 | ---- | M] (Broadcom Corporation) -- C:\WINDOWS\System32\DRIVERS\bcmwl5.sys -- (BCM43XX [On_Demand | Running])
DRV - [2004.10.15 12:50:20 | 00,015,295 | ---- | M] (Brother Industries Ltd.) -- C:\WINDOWS\System32\Drivers\BrScnUsb.sys -- (BrScnUsb [On_Demand | Stopped])
DRV - [2003.07.29 15:43:44 | 01,257,418 | ---- | M] (WIDCOMM, Inc.) -- C:\WINDOWS\system32\drivers\btkrnl.sys -- (BTKRNL [Boot | Running])
DRV - [2003.07.01 12:29:10 | 00,022,183 | ---- | M] () -- C:\WINDOWS\System32\drivers\btserial.sys -- (BTSERIAL [Auto | Running])
DRV - [2003.07.01 12:28:46 | 00,222,876 | ---- | M] (WIDCOMM, Inc.) -- C:\WINDOWS\System32\drivers\btslbcsp.sys -- (BTSLBCSP [Auto | Running])
DRV - [2005.09.01 19:54:26 | 00,032,000 | ---- | M] (Option N.V.) -- C:\WINDOWS\System32\DRIVERS\gtf32bus.sys -- (GTF32BUS [On_Demand | Stopped])
DRV - [2006.01.25 14:50:40 | 00,016,000 | ---- | M] (Option N.V.) -- C:\WINDOWS\System32\DRIVERS\gtffbus.sys -- (GTFFBUS [On_Demand | Stopped])
DRV - [2006.02.01 12:29:04 | 00,025,472 | ---- | M] (Option N.V.) -- C:\WINDOWS\System32\DRIVERS\gtmmdmusb.sys -- (GTMMDMUSB [On_Demand | Stopped])
DRV - [2006.02.01 12:29:12 | 00,102,784 | ---- | M] (Option NV) -- C:\WINDOWS\System32\DRIVERS\Gtm51Irp.sys -- (GTMNDISIRPXP [On_Demand | Stopped])
DRV - [2006.02.01 12:29:08 | 00,021,760 | ---- | M] (Option N.V.) -- C:\WINDOWS\System32\DRIVERS\gtmserusb.sys -- (GTMSERUSB [On_Demand | Stopped])
DRV - [2005.09.01 19:54:12 | 00,007,936 | ---- | M] (Option N.V.) -- C:\WINDOWS\System32\DRIVERS\gtptser.sys -- (GTPTSER [On_Demand | Stopped])
DRV - [2005.08.29 17:45:24 | 00,018,944 | ---- | M] (Option N.V.) -- C:\WINDOWS\System32\DRIVERS\gtscser.sys -- (GTSCSER [On_Demand | Stopped])
DRV - [2005.12.22 15:30:46 | 00,005,120 | ---- | M] (option) -- C:\WINDOWS\System32\DRIVERS\GtVUsb.sys -- (GtVUsb [On_Demand | Stopped])
DRV - [2008.02.25 18:34:52 | 00,017,480 | ---- | M] (LogMeIn, Inc.) -- C:\WINDOWS\System32\DRIVERS\hamachi.sys -- (hamachi [On_Demand | Running])
DRV - [2008.04.13 18:36:06 | 00,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) -- C:\WINDOWS\System32\DRIVERS\HDAudBus.sys -- (HDAudBus [On_Demand | Running])
DRV - [2008.03.17 11:03:46 | 00,101,376 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\DRIVERS\ewusbmdm.sys -- (hwdatacard [On_Demand | Running])
DRV - [2006.05.04 04:13:52 | 04,271,616 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys -- (IntcAzAudAddService [On_Demand | Running])
DRV - [2006.01.24 10:45:56 | 00,034,944 | ---- | M] (Windows (R) 2000 DDK provider) -- C:\WINDOWS\System32\DRIVERS\ipswuio.sys -- (ipswuio [On_Demand | Stopped])
DRV - [2001.08.17 21:51:32 | 00,018,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\DRIVERS\irsir.sys -- (irsir [On_Demand | Running])
DRV - [2006.07.31 14:34:30 | 00,015,781 | ---- | M] (Meetinghouse Data Communications) -- C:\WINDOWS\System32\DRIVERS\mdc8021x.sys -- (MDC8021X [Auto | Running])
DRV - [2005.02.17 10:07:48 | 00,005,632 | ---- | M] () -- C:\WINDOWS\System32\DRIVERS\ATKACPI.sys -- (MTsensor [On_Demand | Running])
DRV - [2008.04.13 20:53:10 | 00,040,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\DRIVERS\NMnt.sys -- (nm [On_Demand | Stopped])
DRV - [2003.08.04 15:22:44 | 00,016,128 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) -- C:\WINDOWS\System32\PCANDIS5.SYS -- (PCANDIS5 [On_Demand | Stopped])
DRV - [2004.08.18 13:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\System32\DRIVERS\ptilink.sys -- (Ptilink [On_Demand | Running])
DRV - [2005.07.12 19:00:30 | 00,051,328 | ---- | M] (REDC) -- C:\WINDOWS\System32\DRIVERS\rimsptsk.sys -- (rimsptsk [On_Demand | Running])
DRV - [2005.07.14 12:14:34 | 00,027,904 | ---- | M] (REDC) -- C:\WINDOWS\system32\DRIVERS\risdptsk.sys -- (risdptsk [Boot | Running])
DRV - [2006.01.18 05:41:58 | 00,080,512 | R--- | M] (Realtek Semiconductor Corporation ) -- C:\WINDOWS\System32\DRIVERS\Rtnicxp.sys -- (RTL8023xp [On_Demand | Running])
DRV - [2004.08.03 22:31:34 | 00,020,992 | ---- | M] (Realtek Semiconductor Corporation) -- C:\WINDOWS\System32\DRIVERS\RTL8139.SYS -- (rtl8139 [On_Demand | Stopped])
DRV - [2007.11.13 11:25:52 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\WINDOWS\System32\DRIVERS\secdrv.sys -- (Secdrv [Auto | Running])
DRV - [2005.08.10 14:44:06 | 00,050,688 | ---- | M] (Protection Technology) -- C:\WINDOWS\System32\drivers\sfdrv01.sys -- (sfdrv01 [Boot | Running])
DRV - [2005.05.16 15:20:40 | 00,006,656 | ---- | M] (Protection Technology) -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02 [Boot | Running])
DRV - [2006.02.21 13:12:02 | 00,019,968 | ---- | M] (Protection Technology) -- C:\WINDOWS\System32\drivers\sfsync02.sys -- (sfsync02 [Boot | Running])
DRV - [2005.11.03 16:40:08 | 00,063,488 | ---- | M] (Protection Technology) -- C:\WINDOWS\System32\drivers\sfvfs02.sys -- (sfvfs02 [Boot | Running])
DRV - [2006.01.19 23:44:42 | 00,862,340 | R--- | M] (Motorola Inc.) -- C:\WINDOWS\System32\DRIVERS\smserial.sys -- (smserial [On_Demand | Running])
DRV - [2008.06.24 13:35:16 | 00,717,296 | ---- | M] () -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd [Boot | Running])
DRV - [2005.10.03 10:26:36 | 00,720,470 | ---- | M] (Syntek America Inc.) -- C:\WINDOWS\System32\Drivers\SynMini.sys -- (SynMini [On_Demand | Running])
DRV - [2005.10.03 10:26:14 | 00,008,278 | ---- | M] (Syntek America Inc.) -- C:\WINDOWS\System32\Drivers\SynScan.sys -- (SynScan [On_Demand | Running])
DRV - [2005.10.21 02:13:08 | 00,191,936 | ---- | M] (Synaptics, Inc.) -- C:\WINDOWS\System32\DRIVERS\SynTP.sys -- (SynTP [On_Demand | Running])
DRV - [2003.07.03 09:33:58 | 00,053,083 | ---- | M] ( ) -- C:\WINDOWS\System32\DRIVERS\Usbsnx2k.SYS -- (USBSNXSTOR [On_Demand | Stopped])

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.asus.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie


IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.asus.com
IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.asus.com
IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.asus.com

IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.asus.com

IE - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.qip.ru
IE - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
IE - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Prev Search Page = http://www.google.com
IE - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT1098640
IE - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
IE - URLSearchHook: - Reg Error: Key error. File not found
IE - URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQToolbar\1552\2558\toolbaru.dll (ICQ Inc.)
IE - URLSearchHook: {95289393-33EA-4F8D-B952-483415B9C955} - C:\Documents and Settings\user\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
IE - URLSearchHook: {D73F49B6-B51B-4d32-A3B7-BD04B8342F53} - C:\Program Files\MorpheusBar\SrchAstt\1.bin\MBSRCAS.DLL File not found
IE - URLSearchHook: {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfre1.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\S-1-5-21-2145271908-1465603126-2461060743-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\S-1-5-21-2145271908-1465603126-2461060743-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Fast Browser Search"
FF - prefs.js..browser.search.defaulturl: "http://www.fastbrowsersearch.com/results/results.aspx?s=DEF&v=18&q="
FF - prefs.js..browser.search.order.1: "Fast Browser Search"
FF - prefs.js..browser.search.selectedEngine: "Fast Browser Search"
FF - prefs.js..browser.startup.homepage: "http://www.google.sk/"
FF - prefs.js..extensions.enabledItems: {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.4.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}:6.0.03
FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:1.1
FF - prefs.js..extensions.enabledItems: {C2DCA7EB-22D2-4FD2-86A9-F99FCC8122BB}:2.2.3
FF - prefs.js..extensions.enabledItems: {27A2FD41-CB23-4518-AB5C-C25BAFFDE531}:1.4.1
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.14
FF - prefs.js..keyword.URL: "http://www.fastbrowsersearch.com/results/results.aspx?s=NAUS&v=18&tid={CAAA3CBF-958B-CE76-813C-7687441CEE4F}&q="

FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009.08.08 08:24:22 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.14\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2008.01.19 13:28:10 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.14\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2008.01.19 13:28:10 | 00,000,000 | ---D | M]

[2008.09.07 16:57:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\mozilla\Extensions
[2008.09.07 16:57:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2008.01.19 13:28:36 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\mozilla\Firefox\Profiles\dwdta3hj.default\extensions
[2008.03.03 12:40:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\mozilla\Firefox\Profiles\dwdta3hj.default\extensions\{133ff231-455f-48fb-aeb6-f57292db5b56}
[2009.08.10 13:26:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\mozilla\Firefox\Profiles\dwdta3hj.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009.01.10 19:21:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\mozilla\Firefox\Profiles\dwdta3hj.default\extensions\{27A2FD41-CB23-4518-AB5C-C25BAFFDE531}
[2009.08.05 21:56:06 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\mozilla\Firefox\Profiles\dwdta3hj.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2009.09.15 20:18:54 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\mozilla\Firefox\Profiles\dwdta3hj.default\extensions\{C2DCA7EB-22D2-4FD2-86A9-F99FCC8122BB}
[2009.07.04 09:08:44 | 00,002,061 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\qipsearch.xml
[2009.09.14 21:10:46 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-60.xml
[2008.04.26 19:33:50 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-61.xml
[2008.05.09 08:33:56 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-62.xml
[2008.05.09 08:46:40 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-63.xml
[2008.05.09 08:58:00 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-64.xml
[2008.05.15 13:36:16 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-65.xml
[2008.05.15 14:41:30 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-66.xml
[2008.07.06 14:47:56 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-67.xml
[2008.07.14 11:00:38 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-68.xml
[2008.07.14 15:25:38 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-69.xml
[2008.07.16 17:47:46 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-70.xml
[2008.07.18 20:05:34 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-71.xml
[2008.07.23 19:07:22 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-72.xml
[2008.09.03 15:30:54 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-73.xml
[2008.09.03 15:47:56 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-74.xml
[2008.09.04 16:35:24 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-75.xml
[2008.09.04 17:02:26 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-76.xml
[2008.09.06 15:59:22 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-77.xml
[2009.08.06 13:08:40 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-78.xml
[2009.09.12 23:10:20 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-79.xml
[2008.03.04 20:03:28 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-8.xml
[2008.03.06 17:12:08 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-1.xml
[2008.03.07 19:40:26 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-9.xml
[2008.03.14 10:30:24 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-2.xml
[2008.03.16 17:03:54 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-10.xml
[2008.03.16 18:08:46 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-11.xml
[2008.03.16 18:13:38 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-12.xml
[2008.03.16 18:24:08 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-13.xml
[2008.03.17 13:40:18 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-14.xml
[2008.03.17 13:45:46 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-15.xml
[2008.03.17 16:21:26 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-16.xml
[2008.03.17 19:33:00 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-17.xml
[2008.03.17 19:34:10 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-18.xml
[2008.03.17 19:54:14 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-19.xml
[2008.03.17 20:53:16 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-20.xml
[2008.03.18 15:02:24 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-21.xml
[2008.03.18 16:14:24 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-22.xml
[2008.03.18 17:26:16 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-23.xml
[2008.03.21 16:29:56 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-3.xml
[2008.03.27 14:03:46 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-24.xml
[2008.02.19 18:16:46 | 00,000,951 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin.xml
[2008.03.27 15:08:44 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-25.xml
[2008.03.28 19:45:10 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-26.xml
[2008.03.29 14:52:58 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-4.xml
[2008.04.03 17:18:04 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-27.xml
[2008.04.03 19:24:28 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-28.xml
[2008.04.04 13:32:56 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-29.xml
[2008.04.05 17:59:00 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-5.xml
[2008.04.08 13:57:24 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-30.xml
[2008.04.08 14:03:12 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-31.xml
[2008.04.08 15:12:50 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-32.xml
[2008.04.08 19:38:02 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-33.xml
[2008.04.09 14:15:52 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-34.xml
[2008.04.09 14:40:36 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-35.xml
[2008.04.09 15:37:12 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-36.xml
[2008.04.09 15:52:36 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-37.xml
[2008.04.09 16:15:42 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-38.xml
[2008.04.09 21:40:52 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-39.xml
[2008.04.10 15:43:44 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-40.xml
[2008.04.10 20:42:22 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-41.xml
[2008.04.11 08:51:46 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-42.xml
[2008.04.14 12:44:30 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-6.xml
[2008.04.14 15:25:56 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-43.xml
[2008.04.14 16:38:30 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-44.xml
[2008.04.14 17:46:22 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-45.xml
[2008.04.17 19:50:44 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-46.xml
[2008.04.18 09:36:04 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-47.xml
[2008.04.18 11:24:26 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-48.xml
[2008.04.18 12:54:28 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-49.xml
[2008.04.18 15:27:38 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-50.xml
[2008.04.18 16:13:24 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-51.xml
[2008.04.18 19:44:36 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-52.xml
[2008.04.19 13:57:38 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-53.xml
[2008.04.20 16:19:12 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-54.xml
[2008.04.20 18:39:12 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-55.xml
[2008.04.21 09:34:00 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-56.xml
[2008.04.21 13:09:38 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-57.xml
[2008.04.21 13:29:22 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-58.xml
[2008.04.21 17:17:34 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-59.xml
[2008.04.22 08:32:40 | 00,000,950 | ---- | M] () -- C:\Documents and Settings\user\Data aplikací\Mozilla\FireFox\Profiles\dwdta3hj.default\searchplugins\icqplugin-7.xml
[2008.01.19 13:28:10 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2008.01.19 13:28:10 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2008.02.18 17:09:22 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
[2009.09.12 14:57:06 | 00,023,032 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2009.09.12 14:57:08 | 00,134,648 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2006.12.18 04:18:30 | 00,077,824 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\mozilla firefox\plugins\nppdf32.dll
[2008.11.24 14:35:00 | 00,114,688 | ---- | M] (Adobe Systems, Inc.) -- C:\Program Files\mozilla firefox\plugins\np32dsw.dll
[2009.09.12 14:57:20 | 00,065,528 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll
[2009.04.03 21:38:58 | 00,001,706 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2009.04.03 21:38:58 | 00,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2009.04.03 21:38:58 | 00,001,687 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\mall-cz.xml
[2009.04.03 21:38:58 | 00,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2009.04.03 21:38:58 | 00,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2009.04.03 21:38:58 | 00,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml
[2009.09.15 20:19:02 | 00,003,700 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fast.png
[2009.09.15 20:19:06 | 00,001,963 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fast.xml

[gogy27]

O1 HOSTS File: (1274 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.darkcheats.org
O1 - Hosts: 127.0.0.1 msdarkcheats.org
O1 - Hosts: 127.0.0.1 http://darkcheats.org
O1 - Hosts: 127.0.0.1 http://darkcheats.org
O1 - Hosts: 127.0.0.1 http://www.darkcheats.org
O1 - Hosts: 127.0.0.1 www.darkcheats.org
O1 - Hosts: 127.0.0.1 darkcheats.org
O1 - Hosts: 127.0.0.1 http://darkcheats.org
O1 - Hosts: 127.0.0.1 http://darkcheats.or
O1 - Hosts: 127.0.0.1 www.darkcheats.or
O1 - Hosts: 127.0.0.1 www.darkcheats.org
O1 - Hosts: 127.0.0.1 darkcheats.org
O1 - Hosts: 127.0.0.1 http://www.darkcheats.org
O1 - Hosts: 127.0.0.1 http://darkcheats.org
O1 - Hosts: 127.0.0.1 http://www.darkcheats.or
O1 - Hosts: 127.0.0.1 http://darkcheats.or
O1 - Hosts: 127.0.0.1 www.darkcheats.or
O1 - Hosts: 127.0.0.1 darkcheats.or
O1 - Hosts: 127.0.0.1 http://www.darkcheats.org
O1 - Hosts: 127.0.0.1 http://darkcheats.org
O1 - Hosts: 127.0.0.1 www.darkcheats.org
O1 - Hosts: 127.0.0.1 darkcheats.org
O1 - Hosts: 127.0.0.1 http://www.dark.de
O1 - Hosts: 127.0.0.1 http://dark.de
O1 - Hosts: 14 more lines...
O2 - BHO: (XTTBPos00 Class) - {055FD26D-3A88-4e15-963D-DC8493744B1D} - C:\Program Files\ICQToolbar\1552\2558\toolbaru.dll (ICQ Inc.)
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (ContextHelper) - {0D39A900-0F3A-4C29-A254-3E65244FDC34} - C:\Program Files\ContextTool\ContextTool-2.dll File not found
O2 - BHO: (Adssite Search Assistant) - {1648E328-3E5A-4EA5-A9C6-E5F09EE272DA} - C:\WINDOWS\System32\adssite_sidebar.dll File not found
O2 - BHO: (BrowserCmp) - {1D8282E6-BC4F-469B-AAED-7E4FF077AD93} - C:\WINDOWS\System32\iebrowserc.dll File not found
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (IE to GetRight Helper) - {31FF080D-12A3-439A-A2EF-4BA95A3148E8} - C:\Program Files\GetRight\xx2gr.dll (Headlight Software, Inc.)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - No CLSID value found.
O2 - BHO: (QIPBHO Class) - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Documents and Settings\user\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
O2 - BHO: (ads_optimizer) - {9C8A568E-4201-478a-8536-526CF371D2E2} - C:\WINDOWS\System32\nspEA.dll File not found
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll (Google Inc.)
O2 - BHO: (rightonadz browser optimizer) - {b9b2c59b-8841-60b2-6042-c2e4108047ae} - C:\WINDOWS\System32\{f6a8beae-119b-70d1-2db8-708b3387cf04}.dll File not found
O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll (Google Inc.)
O2 - BHO: (WhIeHelperObj Class) - {c900b400-cdfe-11d3-976a-00e02913a9e0} - C:\Program Files\webHancer\programs\whiehlpr.dll File not found
O2 - BHO: (MySidesearch Search Assistant) - {DDFA1356-E6ED-42a5-9D62-93211D424A90} - C:\WINDOWS\System32\mysidesearch_sidebar.dll File not found
O2 - BHO: (free-downloads.net Toolbar) - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfre1.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (ICQ Toolbar) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQToolbar\1552\2558\toolbaru.dll (ICQ Inc.)
O3 - HKLM\..\Toolbar: (free-downloads.net Toolbar) - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfre1.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\..\Toolbar\ShellBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O3 - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\..\Toolbar\ShellBrowser: (Morpheus Toolbar) - {3F3714A9-89A4-46BE-8AF3-D0C9D1FB03F9} - Reg Error: Value error. File not found
O3 - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\..\Toolbar\ShellBrowser: (ICQ Toolbar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQToolbar\1552\2558\toolbaru.dll (ICQ Inc.)
O3 - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\..\Toolbar\ShellBrowser: (free-downloads.net Toolbar) - {ECDEE021-0D17-467F-A1FF-C7A115230949} - C:\Program Files\free-downloads.net\tbfre1.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O3 - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\..\Toolbar\WebBrowser: (Morpheus Toolbar) - {3F3714A9-89A4-46BE-8AF3-D0C9D1FB03F9} - Reg Error: Value error. File not found
O3 - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\..\Toolbar\WebBrowser: (ICQ Toolbar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQToolbar\1552\2558\toolbaru.dll (ICQ Inc.)
O3 - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\..\Toolbar\WebBrowser: (free-downloads.net Toolbar) - {ECDEE021-0D17-467F-A1FF-C7A115230949} - C:\Program Files\free-downloads.net\tbfre1.dll (Conduit Ltd.)
O4 - HKLM..\Run: [ABLKSR] C:\WINDOWS\ABLKSR\ABLKSR.exe (ASYSTeK Computer INC.)
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [ASUS Live Update] File not found
O4 - HKLM..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe (ATI Technologies, Inc.)
O4 - HKLM..\Run: [BluetoothAuthenticationAgent] C:\WINDOWS\System32\bthprops.CPL (Microsoft Corporation)
O4 - HKLM..\Run: [ComplexWebServer] C:\PHPWebServer\bin\ServiceDirect.exe ()
O4 - HKLM..\Run: [Emurayden PSX Emulator] c:\Archivos de Programa\Emurayden PSX Emulator v2.1\Emurayden PSX AutoLauncher.exe File not found
O4 - HKLM..\Run: [FortKnoxPersonalFirewall] C:\Program Files\NETGATE\FortKnox Personal Firewall 2007\FortKnoxGUI.exe File not found
O4 - HKLM..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe ()
O4 - HKLM..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb05.exe (HP)
O4 - HKLM..\Run: [nod32kui] C:\Program Files\Eset\nod32kui.exe (Eset )
O4 - HKLM..\Run: [OBSWATCH] C:\Program Files\OrangeBs\Watch.exe (France Télécom R&D)
O4 - HKLM..\Run: [Power_Gear] C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe (ASUSTeK Computer Inc.)
O4 - HKLM..\Run: [RemoteControl] C:\Program Files\ASUSTeK\ASUSDVD\PDVDServ.exe (Cyberlink Corp.)
O4 - HKLM..\Run: [RTHDCPL] C:\WINDOWS\RTHDCPL.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SMSERIAL] C:\WINDOWS\sm56hlpr.exe (Motorola Inc.)
O4 - HKLM..\Run: [spa_start] C:\WINDOWS\system32\{f6a8beae-119b-70d1-2db8-708b3387cf04}.DLL File not found
O4 - HKLM..\Run: [SSBkgdUpdate] C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe (Scansoft, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [USB Disk Tool] C:\Program Files\USB Disk Tool\USNDISKT.EXE ( )
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Wireless Console 2] C:\Program Files\Wireless Console 2\wcourier.exe ()
O4 - HKU\.DEFAULT..\Run: [AVG7_Run] C:\Program Files\Grisoft\AVG7\avgw.exe (GRISOFT, s.r.o.)
O4 - HKU\S-1-5-18..\Run: [AVG7_Run] C:\Program Files\Grisoft\AVG7\avgw.exe (GRISOFT, s.r.o.)
O4 - HKU\S-1-5-19..\Run: [AVG7_Run] C:\Program Files\Grisoft\AVG7\avgw.exe (GRISOFT, s.r.o.)
O4 - HKU\S-1-5-20..\Run: [AVG7_Run] C:\Program Files\Grisoft\AVG7\avgw.exe (GRISOFT, s.r.o.)
O4 - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005..\Run: [Mobile Partner] C:\Program Files\Mobile Partner\Mobile Partner.exe ()
O4 - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005..\Run: [Net4Switch] C:\Program Files\ASUS\Net4Switch\Net4Switch.exe (ASUS)
O4 - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKLM..\RunOnce: [NSSInstallation] C:\WINDOWS\System32\Adobe\Shockwave 11\nssstub.exe (Symantec Corporation)
O4 - HKU\.DEFAULT..\RunOnce: [IETI] C:\Program Files\Skype\Phone\IEPlugin\unins000.exe File not found
O4 - HKU\S-1-5-18..\RunOnce: [IETI] C:\Program Files\Skype\Phone\IEPlugin\unins000.exe File not found
O4 - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\System32\Macromed\Flash\NPSWF32_FlashUtil.exe (Adobe Systems, Inc.)
O4 - Startup: C:\Documents and Settings\user\Nabídka Start\Programy\Po spuštění\RollerCoaster Tycoon 3 Registration.lnk = C:\Documents and Settings\user\Local Settings\Temp\{8B290F8E-B5F7-40EC-8B95-E494958E7816}\{907B4640-266B-4A21-92FB-CD1A86CD0F63}\ATR1.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2145271908-1465603126-2461060743-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: &ICQ Toolbar Search - C:\Program Files\ICQToolbar\toolbaru.dll (IE Toolbar)
O8 - Extra context menu item: Download with GetRight - C:\Program Files\GetRight\GRdownload.htm ()
O8 - Extra context menu item: Open with GetRight Browser - C:\Program Files\GetRight\GRbrowse.htm ()
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\npjpi160_03.dll (Sun Microsystems, Inc.)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra 'Tools' menuitem : ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (Microsoft Corporation)
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\System32\wshbth.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\System32\imon.dll (Eset )
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\WINDOWS\System32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\WINDOWS\System32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000043 - C:\WINDOWS\System32\imon.dll (Eset )
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {33288993-5664-11D4-8B5B-00D0B73B3518} http://www.easports.com/downloads/games ... /ieell.cab (ell Class)
O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} http://download.microsoft.com/download/ ... mv9VCM.CAB (Reg Error: Key error.)
O16 - DPF: {54B52E52-8000-4413-BD67-FC7FE24B59F2} http://www.ea.com/downloads/rtpatch/EARTPX.cab (EARTPatchX Class)
O16 - DPF: {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} http://launch.gamespyarcade.com/softwar ... launch.cab (GSDACtl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_03)
O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_01)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_03)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_03)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/sh ... wflash.cab (Shockwave Flash Object)
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} http://arcade.icq.com/carlo/zuma/popcaploader_v5.cab (PopCapLoader Object)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\MSN Messenger\msgrapp.8.1.0178.00.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\MSN Messenger\msgrapp.8.1.0178.00.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter: - x-sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll (Google Inc.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\Ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O28 - HKLM ShellExecuteHooks: {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.07.31 14:02:54 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ FAT32 ]
O32 - AutoRun File - [2008.04.23 23:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.) - G:\AutoRun.exe -- [ CDFS ]
O32 - AutoRun File - [2008.07.22 19:21:06 | 00,000,045 | R--- | M] () - G:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{00cf30ba-5b01-11dd-b14b-bad0beefface}\Shell\AutoRun\command - "" = G:\setupSNK.exe -- File not found
O33 - MountPoints2\{01ca2e30-a087-11de-b2e1-001731f56978}\Shell - "" = AutoRun
O33 - MountPoints2\{01ca2e30-a087-11de-b2e1-001731f56978}\Shell\AutoRun\command - "" = G:\seamlessKeyLauncher.exe -- File not found
O33 - MountPoints2\{44805116-77d4-11db-abd5-bad0beefface}\Shell\AutoRun\command - "" = F:\setup.exe -- File not found
O33 - MountPoints2\{5a892aa4-cebd-11dd-b245-d9eac43aacba}\Shell\AutoRun\command - "" = G:\setupSNK.exe -- File not found
O33 - MountPoints2\{5a892aa5-cebd-11dd-b245-d9eac43aacba}\Shell\AutoRun\command - "" = setupSNK.exe
O33 - MountPoints2\{9151642e-7562-11de-b2cd-001731dcabe5}\Shell - "" = AutoRun
O33 - MountPoints2\{9151642e-7562-11de-b2cd-001731dcabe5}\Shell\AutoRun\command - "" = G:\AutoRun.exe -- [2008.04.23 23:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\{9f1bb1d0-8bd9-11de-b2d9-001731dcabe5}\Shell - "" = AutoRun
O33 - MountPoints2\{9f1bb1d0-8bd9-11de-b2d9-001731dcabe5}\Shell\AutoRun\command - "" = G:\AutoRun.exe -- [2008.04.23 23:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\{b8227148-8a6a-11de-b2d8-001731f56978}\Shell - "" = AutoRun
O33 - MountPoints2\{b8227148-8a6a-11de-b2d8-001731f56978}\Shell\AutoRun\command - "" = G:\AutoRun.exe -- [2008.04.23 23:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\{c7dfbf9e-7543-11de-b2cc-001731dcabe5}\Shell - "" = AutoRun
O33 - MountPoints2\{c7dfbf9e-7543-11de-b2cc-001731dcabe5}\Shell\AutoRun\command - "" = G:\AutoRun.exe -- [2008.04.23 23:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\{fcc0070e-cec0-11dd-b246-001731f56978}\Shell\AutoRun\command - "" = G:\setupSNK.exe -- File not found
O33 - MountPoints2\G\Shell - "" = AutoRun
O33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\AutoRun.exe -- [2008.04.23 23:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found

========== Files/Folders - Created Within 7 Days ==========

[2009.09.20 12:10:38 | 00,514,560 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\user\Plocha\OTL.exe
[2009.09.16 20:39:32 | 00,396,288 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\user\Plocha\hijackthis.exe
[2009.09.13 18:57:10 | 00,000,000 | ---D | C] -- C:\Program Files\HSDPA USB Modem
[2009.07.03 12:58:29 | 00,010,752 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2009.05.30 13:04:05 | 00,000,080 | RHS- | C] () -- C:\WINDOWS\System32\DD5A413DC0.dll
[2008.12.27 20:43:22 | 01,163,264 | ---- | C] () -- C:\WINDOWS\System32\libmySQL.dll
[2008.12.15 16:41:55 | 00,000,104 | ---- | C] () -- C:\WINDOWS\APCBT.ini
[2008.12.12 19:29:15 | 00,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2008.12.07 10:32:01 | 00,000,426 | ---- | C] () -- C:\WINDOWS\BRWMARK.INI
[2008.12.07 10:24:53 | 00,077,824 | ---- | C] () -- C:\WINDOWS\System32\BROSNMP.DLL
[2008.12.07 10:21:40 | 00,027,019 | ---- | C] () -- C:\WINDOWS\maxlink.ini
[2008.12.06 11:45:52 | 00,000,470 | ---- | C] () -- C:\WINDOWS\canasta.ini
[2008.07.22 15:42:32 | 01,970,176 | ---- | C] () -- C:\WINDOWS\System32\d3dx9.dll
[2008.06.02 15:26:46 | 00,000,000 | ---- | C] () -- C:\WINDOWS\musicmaker.INI
[2008.06.02 15:16:09 | 00,000,321 | ---- | C] () -- C:\WINDOWS\BeatBox.INI
[2008.06.02 15:11:30 | 00,038,912 | ---- | C] () -- C:\WINDOWS\System32\mgxasio.dll
[2008.06.02 15:08:27 | 00,005,729 | ---- | C] () -- C:\WINDOWS\mgxoschk.ini
[2008.04.11 20:29:20 | 00,063,880 | ---- | C] () -- C:\WINDOWS\System32\{f6a8beae-119b-70d1-2db8-708b3387cf04}.dll-uninst.exe
[2008.02.24 10:17:30 | 00,000,011 | ---- | C] () -- C:\WINDOWS\hpclj3600g.ini
[2008.02.24 10:16:54 | 00,000,011 | ---- | C] () -- C:\WINDOWS\hpclj3600m.ini
[2008.02.24 10:16:26 | 00,000,011 | ---- | C] () -- C:\WINDOWS\hpbvspst.ini
[2008.02.24 10:16:21 | 00,000,011 | ---- | C] () -- C:\WINDOWS\hpbvnstp.ini
[2008.02.15 13:51:07 | 00,000,031 | ---- | C] () -- C:\WINDOWS\bluevoda.ini
[2008.02.14 16:01:30 | 00,000,000 | ---- | C] () -- C:\WINDOWS\PHPRunner.INI
[2008.02.01 10:27:21 | 00,002,997 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
[2007.09.27 08:59:30 | 00,717,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2007.09.03 14:22:06 | 00,000,461 | ---- | C] () -- C:\WINDOWS\EAGRAPH.INI
[2007.08.17 23:38:16 | 00,000,175 | ---- | C] () -- C:\WINDOWS\CIV.INI
[2007.02.23 14:13:45 | 00,056,832 | ---- | C] () -- C:\WINDOWS\System32\Iyvu9_32.dll
[2006.12.03 11:42:35 | 00,000,088 | ---- | C] () -- C:\WINDOWS\STXKBD32.INI
[2006.12.03 11:41:30 | 00,000,028 | ---- | C] () -- C:\WINDOWS\WTRDCTM.INI
[2006.12.03 11:40:13 | 00,005,228 | ---- | C] () -- C:\WINDOWS\WTRAN32.INI
[2006.12.03 11:40:10 | 00,002,864 | ---- | C] () -- C:\WINDOWS\WDICT32.INI
[2006.11.03 19:06:10 | 00,001,244 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2006.10.25 19:30:59 | 00,032,768 | ---- | C] () -- C:\WINDOWS\UMSDIH.DLL
[2006.10.25 19:30:58 | 00,053,083 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\USBSNX2K.SYS
[2006.10.16 17:06:49 | 00,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2006.07.31 14:34:05 | 00,006,272 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASLM75.SYS
[2006.07.31 14:32:00 | 00,069,632 | R--- | C] () -- C:\WINDOWS\sm56spn.dll
[2006.07.31 14:32:00 | 00,069,632 | R--- | C] () -- C:\WINDOWS\sm56itl.dll
[2006.07.31 14:32:00 | 00,069,632 | R--- | C] () -- C:\WINDOWS\sm56eng.dll
[2006.07.31 14:32:00 | 00,069,632 | R--- | C] () -- C:\WINDOWS\sm56brz.dll
[2006.07.31 14:32:00 | 00,061,440 | R--- | C] () -- C:\WINDOWS\sm56ger.dll
[2006.07.31 14:32:00 | 00,061,440 | R--- | C] () -- C:\WINDOWS\sm56fra.dll
[2006.07.31 14:32:00 | 00,053,248 | R--- | C] () -- C:\WINDOWS\sm56jpn.dll
[2006.07.31 14:32:00 | 00,049,152 | R--- | C] () -- C:\WINDOWS\sm56cht.dll
[2006.07.31 14:32:00 | 00,049,152 | R--- | C] () -- C:\WINDOWS\sm56chs.dll
[2006.07.31 14:20:37 | 00,135,168 | R--- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2006.07.31 08:37:27 | 00,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2006.01.02 21:16:32 | 00,000,010 | ---- | C] () -- C:\WINDOWS\System32\ABLKSR.ini
[2005.02.17 10:07:48 | 00,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\ATKACPI.sys
[2004.11.20 11:15:21 | 00,007,424 | ---- | C] () -- C:\WINDOWS\System32\drivers\MMIOPORT.SYS
[2004.11.20 11:15:21 | 00,002,538 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2004.11.20 11:14:54 | 00,000,665 | ---- | C] () -- C:\WINDOWS\win.ini
[2004.11.20 11:14:51 | 00,000,227 | ---- | C] () -- C:\WINDOWS\system.ini
[2004.10.11 11:19:00 | 00,092,672 | ---- | C] () -- C:\WINDOWS\System32\ASUSASV2.DLL
[2004.06.27 18:04:56 | 00,004,608 | ---- | C] () -- C:\WINDOWS\System32\imslevel.dll
[2004.06.27 17:33:38 | 00,011,776 | ---- | C] () -- C:\WINDOWS\System32\imsispd.dll
[2003.07.29 16:03:48 | 00,073,728 | ---- | C] () -- C:\WINDOWS\System32\btsendto_ie.dll
[2003.07.29 16:02:50 | 00,065,536 | ---- | C] () -- C:\WINDOWS\System32\btsendto_wab.dll
[2003.07.29 15:56:42 | 00,065,536 | ---- | C] () -- C:\WINDOWS\System32\btprn2k.dll
[2003.07.01 12:29:10 | 00,022,183 | ---- | C] () -- C:\WINDOWS\System32\drivers\btserial.sys
[2003.06.12 01:09:44 | 00,156,160 | ---- | C] () -- C:\WINDOWS\System32\unrar3.dll
[2002.05.15 23:29:04 | 00,000,607 | ---- | C] () -- C:\WINDOWS\System32\BTNeighborhood.dll.manifest
[2002.03.06 02:00:00 | 00,075,264 | ---- | C] () -- C:\WINDOWS\System32\unacev2.dll
[2002.03.04 10:16:34 | 00,110,592 | R--- | C] () -- C:\WINDOWS\System32\Jpeg32.dll
[2002.02.27 17:50:00 | 00,197,120 | ---- | C] () -- C:\WINDOWS\System32\patchw32.dll
[2001.11.23 18:18:00 | 00,000,597 | ---- | C] () -- C:\WINDOWS\System32\btcss.dll.manifest
[2001.11.14 13:56:00 | 01,802,240 | ---- | C] () -- C:\WINDOWS\System32\lcppn21.dll

========== Files - Modified Within 7 Days ==========

[2009.09.20 12:10:50 | 00,514,560 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\user\Plocha\OTL.exe
[2009.09.16 20:39:44 | 00,396,288 | ---- | M] (Trend Micro Inc.) -- C:\Documents and Settings\user\Plocha\hijackthis.exe
[2009.09.16 15:29:06 | 00,000,382 | ---- | M] () -- C:\WINDOWS\tasks\NSSstub.job
[2009.09.16 15:26:32 | 00,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009.09.16 15:22:54 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009.09.16 15:22:44 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009.09.16 15:22:34 | 40,205,1072 | -HS- | M] () -- C:\hiberfil.sys

========== LOP Check ==========

[2006.07.31 13:56:28 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\Default User\Data aplikací
[2006.07.31 13:56:28 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\All Users\Data aplikací
[2009.07.03 15:21:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\65-55-55-55-55-55
[2006.11.23 18:49:58 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Avg7
[2008.12.07 10:18:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Brother
[2007.07.14 10:34:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\CyberLink
[2009.01.28 14:59:52 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\FLEXnet
[2006.11.23 18:55:18 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Grisoft
[2008.07.22 15:34:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\Mediaware
[2007.05.24 15:01:58 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\NFS Underground
[2007.03.27 17:03:54 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\PopCap
[2009.07.03 15:22:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\r2-97-46-2p-55-55
[2008.12.07 10:20:18 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Data aplikací\ScanSoft
[2006.07.31 14:07:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Data aplikací
[2006.07.31 14:07:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací
[2006.11.23 18:55:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Data aplikací\AVG7
[2006.07.31 13:56:28 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\user\Data aplikací
[2009.05.31 14:25:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\1'st ZipCommander
[2008.12.12 12:43:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Atari
[2006.11.23 18:55:50 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\AVG7
[2009.01.09 21:24:50 | 00,000,000 | R--D | M] -- C:\Documents and Settings\user\Data aplikací\Brother
[2007.07.14 10:34:36 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\CyberLink
[2008.06.24 13:35:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\DAEMON Tools
[2008.09.06 17:56:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Desktopicon
[2008.03.23 11:24:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Dev-Cpp
[2009.05.30 13:06:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\DJJava
[2007.09.19 19:32:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\DMCache
[2007.06.04 15:21:50 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\FlashFXP
[2008.08.10 19:45:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\fltk.org
[2008.04.16 17:54:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\GetRight
[2008.02.14 13:49:50 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\gtk-2.0
[2007.09.27 12:53:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Hamachi
[2008.03.15 18:08:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\HLSW
[2007.04.27 19:29:06 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\ICQ
[2006.10.15 18:15:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\ICQ Toolbar
[2006.10.15 18:14:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\ICQLite
[2008.10.28 18:22:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Leadertech
[2008.05.17 12:04:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\LimeWire
[2009.07.30 21:33:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\My Games
[2006.08.23 11:33:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\OpenOffice.org2
[2008.02.18 13:46:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\PHP Designer 2007
[2007.08.03 18:25:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Sachy
[2008.03.27 17:04:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Simple Star
[2008.03.04 15:23:18 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\teamspeak2
[2009.03.04 18:54:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\TeamViewer
[2009.02.02 18:36:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Tibia
[2008.12.11 14:59:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\uTorrent
[2008.01.25 12:28:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Web Page Maker V2
[2009.07.30 21:31:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\user\Data aplikací\Xfire
[2004.08.18 13:00:00 | 00,000,065 | RH-- | M] () -- C:\WINDOWS\Tasks\desktop.ini
[2009.09.16 15:22:54 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\Tasks\SA.DAT
[2009.03.15 01:52:02 | 00,000,330 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job
[2009.09.16 15:29:06 | 00,000,382 | ---- | M] () -- C:\WINDOWS\Tasks\NSSstub.job

========== Purity Check ==========

< End of report >

Extras.txt:

OTL Extras logfile created on: 20. 9. 2009 12:18:48 - Run 1
OTL by OldTimer - Version 3.0.14.0 Folder = C:\Documents and Settings\user\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 0000041B | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy

383,36 Mb Total Physical Memory | 84,35 Mb Available Physical Memory | 22,00% Memory free
1,34 Gb Paging File | 0,69 Gb Available in Paging File | 51,39% Paging File free
Paging file location(s): C:\pagefile.sys 1024 1152 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 32,45 Gb Total Space | 1,35 Gb Free Space | 4,15% Space Free | Partition Type: FAT32
Drive D: | 21,56 Gb Total Space | 6,29 Gb Free Space | 29,16% Space Free | Partition Type: FAT32
E: Drive not present or media not loaded
F: Drive not present or media not loaded
Drive G: | 11,05 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive H: | 974,13 Mb Total Space | 973,27 Mb Free Space | 99,91% Space Free | Partition Type: FAT
I: Drive not present or media not loaded

Computer Name: N-35D6C3A98FA74
Current User Name: user
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 7 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.chm [@ = chm.file] -- C:\WINDOWS\hh.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-2145271908-1465603126-2461060743-1005\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
chm.file [open] -- "C:\WINDOWS\hh.exe" %1 (Microsoft Corporation)
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 1
"FirewallDisableNotify" = 1
"UpdatesDisableNotify" = 1
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
"25271:TCP" = 25271:TCP:*:Enabled:BitComet 25271 TCP
"25271:UDP" = 25271:UDP:*:Enabled:BitComet 25271 UDP

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\MSN Messenger\msnmsgr.exe" = C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1 -- (Microsoft Corporation)
"C:\Program Files\MSN Messenger\livecall.exe" = C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone) -- (Microsoft Corporation)
"C:\Program Files\FlashFXP\FlashFXP.exe" = C:\Program Files\FlashFXP\FlashFXP.exe:*:Enabled:FlashFXP v3 -- File not found
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Messenger\MSMSGS.EXE" = C:\Program Files\Messenger\MSMSGS.EXE:*:Enabled:Windows Messenger -- (Microsoft Corporation)
"C:\Program Files\ICQLite\ICQLite.exe" = C:\Program Files\ICQLite\ICQLite.exe:*:Enabled:ICQ Lite -- File not found
"C:\Program Files\Morpheus\Morpheus.exe" = C:\Program Files\Morpheus\Morpheus.exe:*:Enabled:M5Shell -- File not found
"C:\Program Files\EA SPORTS\NHL 99\nhl99.exe" = C:\Program Files\EA SPORTS\NHL 99\nhl99.exe:*:Enabled:nhl99 -- File not found
"C:\Program Files\ICQ6\ICQ.exe" = C:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6 -- File not found
"C:\Program Files\MSN Messenger\msnmsgr.exe" = C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1 -- (Microsoft Corporation)
"C:\Program Files\MSN Messenger\livecall.exe" = C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone) -- (Microsoft Corporation)
"C:\Program Files\Ubisoft\Crytek\Far Cry\Bin32\FarCry.exe" = C:\Program Files\Ubisoft\Crytek\Far Cry\Bin32\FarCry.exe:*:Enabled:Far Cry -- File not found
"C:\Program Files\FlashFXP\FlashFXP.exe" = C:\Program Files\FlashFXP\FlashFXP.exe:*:Enabled:FlashFXP v3 -- File not found
"C:\Program Files\TrackMania Nations ESWC\TmNationsESWC.exe" = C:\Program Files\TrackMania Nations ESWC\TmNationsESWC.exe:*:Enabled:TmNationsESWC -- File not found
"C:\Program Files\Counter-Strike 1.6\hl.exe" = C:\Program Files\Counter-Strike 1.6\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
"C:\Program Files\Counter-Strike Source\hl2.exe" = C:\Program Files\Counter-Strike Source\hl2.exe:*:Enabled:hl2 -- File not found
"C:\Program Files\Counter-Strike 1.6\hlds.exe" = C:\Program Files\Counter-Strike 1.6\hlds.exe:*:Enabled:HLDS Launcher -- (Valve)
"C:\Program Files\BitLord\BitLord.exe" = C:\Program Files\BitLord\BitLord.exe:*:Enabled:BitLord -- File not found
"C:\Program Files\BitComet\BitComet.exe" = C:\Program Files\BitComet\BitComet.exe:*:Enabled:BitComet - a BitTorrent Client -- File not found
"C:\Program Files\EA SPORTS\NHL07\nhl2007.exe" = C:\Program Files\EA SPORTS\NHL07\nhl2007.exe:*:Enabled:nhl2007 -- File not found
"C:\Documents and Settings\USER\Plocha\civilization 2\Civilization 2\civ2.exe" = C:\Documents and Settings\USER\Plocha\civilization 2\Civilization 2\civ2.exe:*:Enabled:civ2 -- ()
"C:\Program Files\Counter-Strike 1.6 Patch Version 26\hltv.exe" = C:\Program Files\Counter-Strike 1.6 Patch Version 26\hltv.exe:*:Enabled:HLTV Launcher -- File not found
"C:\Program Files\Teamspeak2_RC2\server_windows.exe" = C:\Program Files\Teamspeak2_RC2\server_windows.exe:*:Enabled:Server -- ()
"C:\Program Files\totalcmd\TOTALCMD.EXE" = C:\Program Files\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows -- (C. Ghisler & Co.)
"C:\Program Files\BitLord\Downloads\Counter-Strike 1.6 + Half-Life\hl.exe" = C:\Program Files\BitLord\Downloads\Counter-Strike 1.6 + Half-Life\hl.exe:*:Enabled:Half-Life Launcher -- File not found
"C:\Documents and Settings\USER\Plocha\Counter-Strike 1.6 + Half-Life\hltv.exe" = C:\Documents and Settings\USER\Plocha\Counter-Strike 1.6 + Half-Life\hltv.exe:*:Enabled:HLTV Launcher -- File not found
"C:\Program Files\HLSW\hlsw.exe" = C:\Program Files\HLSW\hlsw.exe:*:Enabled:hlsw -- (Stripf Software)
"C:\wamp\bin\apache\apache2.2.6\bin\httpd.exe" = C:\wamp\bin\apache\apache2.2.6\bin\httpd.exe:*:Enabled:Apache HTTP Server -- File not found
"C:\Program Files\CesarFTP\Server.exe" = C:\Program Files\CesarFTP\Server.exe:*:Enabled:Server -- File not found
"C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox -- (Mozilla Corporation)
"C:\Program Files\Grisoft\AVG7\avginet.exe" = C:\Program Files\Grisoft\AVG7\avginet.exe:*:Enabled:avginet.exe -- (GRISOFT, s.r.o.)
"C:\Program Files\Grisoft\AVG7\avgemc.exe" = C:\Program Files\Grisoft\AVG7\avgemc.exe:*:Enabled:avgemc.exe -- (GRISOFT, s.r.o.)
"C:\Program Files\Grisoft\AVG7\avgamsvr.exe" = C:\Program Files\Grisoft\AVG7\avgamsvr.exe:*:Enabled:avgamsvr.exe -- (GRISOFT, s.r.o.)
"C:\Program Files\Grisoft\AVG7\avgcc.exe" = C:\Program Files\Grisoft\AVG7\avgcc.exe:*:Enabled:avgcc.exe -- (GRISOFT, s.r.o.)
"C:\Program Files\International Online Soccer\hl2.exe" = C:\Program Files\International Online Soccer\hl2.exe:*:Enabled:hl2 -- File not found
"C:\Program Files\Aspyr Media, Inc\THAW\Game\THAW.EXE" = C:\Program Files\Aspyr Media, Inc\THAW\Game\THAW.EXE:*:Enabled:Tony Hawk's American Wasteland -- (Aspyr Media, Inc.)
"C:\Program Files\LimeWire\LimeWire.exe" = C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire -- File not found
"C:\Program Files\Firebird_1_5\bin\fbserver.exe" = C:\Program Files\Firebird_1_5\bin\fbserver.exe:*:Enabled:Firebird SQL Server -- (The Firebird Project)
"D:\far cry\Bin32\FarCry.exe" = D:\far cry\Bin32\FarCry.exe:*:Enabled:Far Cry -- File not found
"D:\Rainbow 6\LockdownDed.exe" = D:\Rainbow 6\LockdownDed.exe:*:Enabled:Rainbow Six: Lockdown PC Dedicated Server -- File not found
"C:\WINDOWS\System32\dplaysvr.exe" = C:\WINDOWS\System32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper -- (Microsoft Corporation)
"C:\Program Files\3DO\Heroes3\Heroes3.exe" = C:\Program Files\3DO\Heroes3\Heroes3.exe:*:Enabled:Heroes of Might and Magic® III -- (The 3DO Company)
"D:\Program Files\BitLord\BitLord.exe" = D:\Program Files\BitLord\BitLord.exe:*:Enabled:BitLord -- File not found
"D:\MOH\mohpa.exe" = D:\MOH\mohpa.exe:*:Enabled:Medal of Honor Pacific Assault(tm) -- File not found
"C:\wamp\bin\apache\apache2.2.8\bin\httpd.exe" = C:\wamp\bin\apache\apache2.2.8\bin\httpd.exe:*:Enabled:Apache HTTP Server -- File not found
"D:\Boiling Point - Cesta do pekel\XENUS.EXE" = D:\Boiling Point - Cesta do pekel\XENUS.EXE:*:Disabled:XENUS -- File not found
"D:\NHL09\nhl2009.exe" = D:\NHL09\nhl2009.exe:*:Enabled:nhl2009 -- ()
"D:\KONAMI\Pro Evolution Soccer 5\pes5.exe" = D:\KONAMI\Pro Evolution Soccer 5\pes5.exe:*:Enabled:pes5.exe -- File not found
"C:\Program Files\Grand Theft Auto\gtawin\GtAwin.exe" = C:\Program Files\Grand Theft Auto\gtawin\GtAwin.exe:*:Enabled:Grand Theft Auto -- (DMA Design Ltd.)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\PHPWebServer\apache\bin\Apache.exe" = C:\PHPWebServer\apache\bin\Apache.exe:*:Enabled:Apache HTTP Server -- (Apache Software Foundation)
"C:\Program Files\QIP\qip.exe" = C:\Program Files\QIP\qip.exe:*:Enabled:Quiet Internet Pager -- (The Author of QIP)
"C:\Program Files\Bonjour\mDNSResponder.exe" = C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour -- (Apple Computer, Inc.)
"C:\Program Files\Play+Smile\Texas Hold'em Poker 3D - Deluxe Edition\Poker3d.exe" = C:\Program Files\Play+Smile\Texas Hold'em Poker 3D - Deluxe Edition\Poker3d.exe:*:Enabled:Poker3d -- (Zone 2 Media GmbH)
"C:\Documents and Settings\USER\Plocha\chmatakov15.exe" = C:\Documents and Settings\USER\Plocha\chmatakov15.exe:*:Enabled:chmatakov15 -- ()
"C:\Program Files\TeamViewer\Version4\TeamViewer.exe" = C:\Program Files\TeamViewer\Version4\TeamViewer.exe:*:Enabled:TeamViewer Remote Control Application -- (TeamViewer GmbH)
"D:\FeaR\FEARServer.exe" = D:\FeaR\FEARServer.exe:*:Enabled:F.E.A.R. Stand-Alone Server -- (Monolith Productions, Inc.)
"D:\FeaR\FEARMP.exe" = D:\FeaR\FEARMP.exe:*:Enabled:FEAR -- File not found
"D:\FeaR\FEAR.exe" = D:\FeaR\FEAR.exe:*:Enabled:FEAR -- (Monolith Productions, Inc.)
"D:\Nascar3\NASCAR Racing 3.exe" = D:\Nascar3\NASCAR Racing 3.exe:*:Enabled:NASCAR Racing 3 -- ()
"C:\Program Files\ICQ6.5\ICQ.exe" = C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6 -- (ICQ, LLC.)
"C:\Documents and Settings\USER\Plocha\civilization 2\civ2.exe" = C:\Documents and Settings\USER\Plocha\civilization 2\civ2.exe:*:Enabled:civ2 -- ()
"D:\Sid Meier's Civilization 4\Civilization4.exe" = D:\Sid Meier's Civilization 4\Civilization4.exe:*:Enabled:Sid Meier's Civilization 4 -- (Firaxis Games)
"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)

[gogy27]

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0046FA01-C5B9-4985-BACB-398DC480FC05}" = Adobe Photoshop CS3
"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{0BEDBD4E-2D34-47B5-9973-57E62B29307C}" = ATI Control Panel
"{137A1D92-07AA-4AFB-99DA-EB771A85AFFE}" = OpenOffice.org 2.0
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{2987EE84-C4EE-4FF5-8160-32DE00D6ABC6}" = GTA2
"{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3
"{2B653229-9854-4989-B780-D978F5F13EAB}" = FEAR
"{305B8500-1A50-4EEA-BC94-EEECC30E2921}" = WellPhone XT
"{3248F0A8-6813-11D6-A77B-00B0D0160010}" = Java(TM) SE Runtime Environment 6 Update 1
"{3248F0A8-6813-11D6-A77B-00B0D0160030}" = Java(TM) 6 Update 3
"{3293C06B-003F-4027-8380-FFD79E38167D}" = Tony Hawk's American Wasteland (TM)
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{37A60126-2CA5-4C67-865D-54506A1319F1}" = EKOS MP3 Minimizer
"{4377F918-E6C9-4ECA-A7F5-754B310B7ED8}" = Sid Meier's Civilization 4
"{4462AD13-F2AA-4CBD-9F95-293C38EED870}" = Power4 Gear
"{51846830-E7B2-4218-8968-B77F0FF475B8}" = Adobe Color EU Extra Settings
"{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3
"{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}" = Skype™ 3.8
"{5F1E77F9-F293-450A-BDB7-CB2F93FB6A2D}" = My Manager
"{60DE4033-9503-48D1-A483-7846BD217CA9}" = ICQ6.5
"{6249836D-0AFF-459C-A067-4703AD59F972}" = Windows Live Messenger
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = ASUSDVD
"{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All
"{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3
"{71FF9607-1710-45D6-95AD-D4A27272DAD3}" = ASUS World Clock
"{7506D309-53A2-4927-BD1B-70015F1C6E0C}" = Windows Slovak Interface Pack
"{7A529246-912F-4C40-A82A-E608DB702FD7}" = ASUS VideoSecurity Online
"{7B3F0113-E63C-4D6D-AF19-111A3165CCA2}" = Text-To-Speech-Runtime
"{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3
"{83F73CB1-7705-49D1-9852-84D839CA2A45}" = Wireless Console 2
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support
"{8F722FA9-B994-4C9B-B292-FD32D6206EDF}" = ASUS WLAN Card Utilities/Driver
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{90437E5F-0A9E-4B63-AD8B-D232897D18BF}" = ATI Parental Control & Encoder
"{95655ED4-7CA5-46DF-907F-7144877A32E5}" = Adobe Color NA Recommended Settings
"{9AB459CE-B80D-4554-AEAA-9AA1A21C0AF6}" = Volání Cthulhu
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{9D6D7811-43B3-463C-BC79-5D1755269989}" = Net4Switch
"{A0604036-C04E-4149-9E43-5140F095DF80}" = 1'st ZipCommander
"{A17EABB6-D0C6-44E5-820C-72DC7F495064}" = PaperPort
"{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps
"{A2D81E70-2A98-4A08-A628-94388B063C5E}" = Adobe Color - Photoshop Specific
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A5CC2A09-E9D3-49EC-923D-03874BBD4C2C}" = Windows Defender Signatures
"{A87869D7-B133-498C-A347-D9BE109FF6C8}" = USB2.0 1.3M Web Cam
"{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}" = PDF Settings
"{AC76BA86-7AD7-1033-7B44-A71000000002}" = Adobe Reader 7.1.0
"{AC76BA86-7AD7-5676-5A64-E98530000001}" = Extended Language Support Fonts Package
"{ACCA20B0-C4D1-4BF5-BF21-0A0EB5EF9730}" = REALTEK GbE & FE Ethernet NIC Driver
"{AD251AA4-8709-4491-AB3D-6A716FC00805}" = Mediaware Task Manager 3.5
"{B2D7CE29-614A-4ACC-8BFE-009EB3A244C9}" = Windows Defender
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B416CF87-2F0F-4089-B9BF-8BE8A8ED3C0A}" = TCWhiteboard v3.0
"{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}" = Adobe ExtendScript Toolkit 2
"{C6E3F362-AAF3-48CF-B8C4-B3EBC2F2E832}" = F1 Challenge 2007 Full version
"{C7340571-7773-4A8C-9EBC-4E4243B38C76}" = Microsoft XML Parser
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CFBCE791-2D53-4FCE-B3FB-D6E01F4112E8}" = Sid Meier's Civilization 4
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{D1BB4446-AE9C-4256-9A7F-4D46604D2462}" = Adobe Setup
"{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files
"{D5B2EBB1-F7D0-4F3E-A549-FEC4EFA81A6A}" = USB Disk Tool
"{D83BD5E2-5AF4-49F6-B5C1-484A9760E73D}" = Brother MFL-Pro Suite
"{DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9}" = Adobe Color Common Settings
"{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}" = Adobe Color JA Extra Settings
"{DE10AB76-4756-4913-BE25-55D1C1051F9A}" = WinFlash
"{DF6320E3-B716-4FAB-99CD-18AB6A2C3970}" = DJ Java Decompiler v.3.11.11.95
"{E26DEDC7-1A99-4F8C-9615-6DB112E6495B}_is1" = Texas Hold'em Poker 3D - Deluxe Edition 1.0
"{E61CAE2E-6D6E-43C1-941B-17A69BC144C5}" = 602XML Filler
"{E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}" = ASUS Live Update
"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F2B5A2A7-2DF9-4361-8BD5-362714528B51}" = NHL® 09
"{F8A5D96C-F670-425C-9B1F-2B16DF202CCD}" = SPMT
"{FE90E9E7-A158-4687-8853-DF677A939A61}" = WIDCOMM Bluetooth Software
"82A44D22-9452-49FB-00FB-CEC7DCAF7E23" = EA SPORTS online 2007
"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11
"Adobe_2ac78060bc5856b0c1cf873bb919b58" = Adobe Photoshop CS3
"adssite" = Browser Optimizer Adssite
"AdssiteSearchAssistant" = Search Assistant Adssite
"AdssiteSocial" = Socialnetworking Helper Adssite
"All ATI Software" = ATI - Software Uninstall Utility
"AMX Mod X Installer" = AMX Mod X Installer 1.8.1
"Asus ChkMail" = Asus ChkMail
"ATI Display Driver" = ATI Display Driver
"AVG7Uninstall" = AVG 7.5
"BitLord" = BitLord 1.1
"BSPlayer1" = BSPlayer
"BusinessEverywhere.exe" = Business Everywhere
"Canasta for Windows" = Canasta for Windows
"Civilizácia IV SK" = Civilizácia IV SK
"Clovece3D" = Clovece3D
"Collab" = Collab
"ComplexWebServer_2008_12_27_20_39_18_is1" = Complex Web Server 1.2.10
"Counter-Strike 1.6" = Counter-Strike 1.6
"Counter-strike 1.6 CZ" = Counter-strike 1.6 CZ
"Crash Bandicoot 3" = Crash Bandicoot 3
"Ekonomická agenda SQL" = Ekonomická agenda SQL
"FL Studio 8" = FL Studio 8
"FranceTelecomUninstall_OptionGT3GPCM" = Karta Option 3G/EDGE
"FranceTelecomUninstall_OptionGTUSB" = Option ICON USB modem
"Free YouTube to Mp3 Converter_is1" = Free YouTube to Mp3 Converter version 3.1
"free-downloads.net Toolbar" = free-downloads.net Toolbar
"Game Maker 6.1" = Game Maker 6.1
"GetRight_is1" = GetRight
"Grand Theft Auto" = Grand Theft Auto
"Half-Life Model Viewer" = Half-Life Model Viewer
"Hamachi" = Hamachi 1.0.1.5
"HControl" = ATK0100 ACPI UTILITY
"Heat" = Heat
"Heroes of Might and Magic® III" = Heroes of Might and Magic® III
"HijackThis" = HijackThis 2.0.2
"Hitman 2: Silent Assassin" = Hitman 2: Silent Assassin
"HLSW_is1" = HLSW v1.2.1
"hp deskjet 3320 series" = hp deskjet 3320 series (Remove only)
"Cheat Engine 5.3_is1" = Cheat Engine 5.3
"IL Download Manager" = IL Download Manager
"Indeo® software" = Indeo® software
"InstallShield_{7A529246-912F-4C40-A82A-E608DB702FD7}" = ASUS VideoSecurity Online
"intelliScore Polyphonic WAV to MIDI Converter" = intelliScore Polyphonic WAV to MIDI Converter
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Minulost 1.7" = Minulost 1.7
"Mobile Partner" = Mobile Partner
"Monopoly Here & Now Edition" = Monopoly Here & Now Edition
"MorpheusToolbar Uninstall" = Morpheus Toolbar
"Mozilla Firefox (3.0.14)" = Mozilla Firefox (3.0.14)
"Mplayer.com" = Mplayer.com
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"MySidesearchSearchAssistant" = MySidesearch Search Assistant Adssite
"Nero - Burning Rom!UninstallKey" = Nero OEM
"NOD32" = Antivirový systém NOD32
"PC Wizard 2008_is1" = PC Wizard 2008.1.80
"Pcsx2_is1" = Pcsx2 0.9.1 Watermoose
"PlayMP3" = PlayMP3z
"PoiZone" = PoiZone
"PSPad editor_is1" = PSPad editor
"QIP2005" = QIP 2005 Uninstall
"rightonadz" = Enhancement Browser Tools Rightonadz
"Rival Chess - Unregistered Version" = Rival Chess - Unregistered Version
"save2pc Pro Demo_is1" = save2pc Pro Demo 3.39
"ShockwaveFlash" = Adobe Flash Player 9 ActiveX
"SMSERIAL" = Motorola SM56 Data Fax Modem
"ST6UNST #1" = SANDYdemo
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"SystemRequirementsLab" = System Requirements Lab
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"TeamSpeak 2 Server_is1" = TeamSpeak 2 Server RC2
"TeamViewer 4" = TeamViewer 4
"Themen aktuell 1" = Themen aktuell 1
"Tibia_is1" = Tibia
"ToolbarICQToolbar.ICQToolbarObjectIEToolbar" = ICQ Toolbar
"Totalcmd" = Total Commander (Remove or Repair)
"Toxic Biohazard" = Toxic Biohazard
"Uninstall_is1" = Uninstall 1.0.0.1
"webHancer Agent" = webHancer Customer Companion
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR archiver
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"Xfire" = Xfire (remove only)
"XTTB00001.XTTB00001Toolbar" = ICQ Toolbar

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-2145271908-1465603126-2461060743-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"QIP 2005" = QIP 2005 8092
"uTorrent" = µTorrent

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 1. 9. 2009 2:09:37 | Computer Name = N-35D6C3A98FA74 | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace explorer.exe, verze 6.0.2900.5512, zablokovaný
modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 6. 9. 2009 8:46:04 | Computer Name = N-35D6C3A98FA74 | Source = Application Error | ID = 1000
Description = Chybující aplikace civilization4.exe, verze 1.0.9.1722, chybující
modul civilization4.exe, verze 1.0.9.1722, adresa chyby 0x00367014.

Error - 10. 9. 2009 15:23:23 | Computer Name = N-35D6C3A98FA74 | Source = Application Error | ID = 1000
Description = Chybující aplikace nhl2002.exe, verze 0.0.0.0, chybující modul nhl2002.exe,
verze 0.0.0.0, adresa chyby 0x002380b4.

Error - 12. 9. 2009 17:29:17 | Computer Name = N-35D6C3A98FA74 | Source = Application Hang | ID = 1002
Description = Zablokovaná aplikace Mobile Partner.exe, verze 1.0.0.1, zablokovaný
modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error - 13. 9. 2009 12:58:35 | Computer Name = N-35D6C3A98FA74 | Source = .NET Runtime 2.0 Error Reporting | ID = 5000
Description = EventType clr20r3, P1 wellphone2.exe, P2 3.5.651.33, P3 47c7d811,
P4 wellphone2, P5 3.5.651.33, P6 47c7d811, P7 10, P8 334, P9 system.typeinitialization,
P10 NIL.

Error - 13. 9. 2009 13:01:55 | Computer Name = N-35D6C3A98FA74 | Source = .NET Runtime 2.0 Error Reporting | ID = 5000
Description = EventType clr20r3, P1 wellphone2.exe, P2 3.5.651.33, P3 47c7d811,
P4 wellphone2, P5 3.5.651.33, P6 47c7d811, P7 10, P8 334, P9 system.typeinitialization,
P10 NIL.

Error - 13. 9. 2009 13:02:59 | Computer Name = N-35D6C3A98FA74 | Source = .NET Runtime 2.0 Error Reporting | ID = 5000
Description = EventType clr20r3, P1 wellphone2.exe, P2 3.5.651.33, P3 47c7d811,
P4 wellphone2, P5 3.5.651.33, P6 47c7d811, P7 10, P8 334, P9 system.typeinitialization,
P10 NIL.

Error - 13. 9. 2009 13:06:45 | Computer Name = N-35D6C3A98FA74 | Source = MsiInstaller | ID = 1013
Description = Produkt: Microsoft .NET Framework 2.0 -- Setup cannot continue because
this version of the .NET Framework is incompatible with a previously installed
one. For more information, see http://support.microsoft.com/support/kb ... 2/5/00.asp

Error - 13. 9. 2009 13:08:20 | Computer Name = N-35D6C3A98FA74 | Source = .NET Runtime 2.0 Error Reporting | ID = 5000
Description = EventType clr20r3, P1 wellphone2.exe, P2 3.5.651.33, P3 47c7d811,
P4 wellphone2, P5 3.5.651.33, P6 47c7d811, P7 10, P8 334, P9 system.typeinitialization,
P10 NIL.

Error - 19. 9. 2009 14:20:05 | Computer Name = N-35D6C3A98FA74 | Source = Application Error | ID = 1000
Description = Chybující aplikace explorer.exe, verze 6.0.2900.5512, chybující modul
unknown, verze 0.0.0.0, adresa chyby 0x03103575.

[ System Events ]
Error - 15. 9. 2009 14:51:39 | Computer Name = N-35D6C3A98FA74 | Source = W32Time | ID = 39452701
Description = Klient NTP zprostředkovatele časových údajů je konfigurován pro získávání
časových údajů z jednoho nebo více zdrojů času. Žádný z těchto zdrojů však není
aktuálně k dispozici. Po dobu 14 minut nebude proveden žádný pokus o kontaktování
zdroje. Klient NTP nemá k dispozici žádný zdroj času.

Error - 16. 9. 2009 9:25:52 | Computer Name = N-35D6C3A98FA74 | Source = Service Control Manager | ID = 7022
Description = Služba CWS_Apache_80 přestala během spouštění reagovat.

Error - 17. 9. 2009 12:48:55 | Computer Name = N-35D6C3A98FA74 | Source = MRxSmb | ID = 8003
Description = Hlavní prohledávač přijal oznámení serveru od počítače BALCAK-6A91546C,
který
se považuje za hlavní prohledávač domény pro přenos NetBT_Tcpip_{B3986731-BB8. Hlavní
prohledávač bude ukončen nebo bude vyvolána volba.

Error - 19. 9. 2009 4:35:55 | Computer Name = N-35D6C3A98FA74 | Source = Service Control Manager | ID = 7011
Description = Vypršel časový limit (30000 milisekund) čekání na odezvu transakce
služby stisvc.

Error - 19. 9. 2009 8:49:47 | Computer Name = N-35D6C3A98FA74 | Source = MRxSmb | ID = 8003
Description = Hlavní prohledávač přijal oznámení serveru od počítače BALCAK-6A91546C,
který
se považuje za hlavní prohledávač domény pro přenos NetBT_Tcpip_{B3986731-BB8. Hlavní
prohledávač bude ukončen nebo bude vyvolána volba.

Error - 19. 9. 2009 11:37:44 | Computer Name = N-35D6C3A98FA74 | Source = MRxSmb | ID = 8003
Description = Hlavní prohledávač přijal oznámení serveru od počítače BALCAK-6A91546C,
který
se považuje za hlavní prohledávač domény pro přenos NetBT_Tcpip_{B3986731-BB8. Hlavní
prohledávač bude ukončen nebo bude vyvolána volba.

Error - 19. 9. 2009 14:25:53 | Computer Name = N-35D6C3A98FA74 | Source = MRxSmb | ID = 8003
Description = Hlavní prohledávač přijal oznámení serveru od počítače BALCAK-6A91546C,
který
se považuje za hlavní prohledávač domény pro přenos NetBT_Tcpip_{B3986731-BB8. Hlavní
prohledávač bude ukončen nebo bude vyvolána volba.

Error - 19. 9. 2009 15:49:45 | Computer Name = N-35D6C3A98FA74 | Source = MRxSmb | ID = 8003
Description = Hlavní prohledávač přijal oznámení serveru od počítače BALCAK-6A91546C,
který
se považuje za hlavní prohledávač domény pro přenos NetBT_Tcpip_{B3986731-BB8. Hlavní
prohledávač bude ukončen nebo bude vyvolána volba.

Error - 20. 9. 2009 4:34:10 | Computer Name = N-35D6C3A98FA74 | Source = MRxSmb | ID = 8003
Description = Hlavní prohledávač přijal oznámení serveru od počítače BALCAK-6A91546C,
který
se považuje za hlavní prohledávač domény pro přenos NetBT_Tcpip_{B3986731-BB8. Hlavní
prohledávač bude ukončen nebo bude vyvolána volba.

Error - 20. 9. 2009 5:46:07 | Computer Name = N-35D6C3A98FA74 | Source = MRxSmb | ID = 8003
Description = Hlavní prohledávač přijal oznámení serveru od počítače BALCAK-6A91546C,
který
se považuje za hlavní prohledávač domény pro přenos NetBT_Tcpip_{B3986731-BB8. Hlavní
prohledávač bude ukončen nebo bude vyvolána volba.


< End of report >

Toolbari nejake tu mam ale nepouzivam

[pitimir]

No tak, kolko tych AV tam mas?

Stiahni SecurityCheck. Spust ho a postupuj podla instrukcii. Nakoniec vyhodi log, ktory skopiruj sem.

[gogy27]

Results of screen317's Security Check version 0.99.0
Windows XP Service Pack 3
``````````````````````````````
Antivirus/Firewall Check:
AVG 7.5
``````````````````````````````
Anti-malware/Other Utilities Check:
Windows Defender Signatures
Windows Defender
HijackThis 2.0.2
Java(TM) SE Runtime Environment 6 Update 1
Java(TM) 6 Update 3
DJ Java Decompiler v.3.11.11.95
Out of date Java installed!
Adobe Flash Player 10
Adobe Reader 7.1.0
Out of date Adobe Reader installed!
``````````````````````````````
Process Check:
objlist.exe by Laurent
AVG avgemc.exe
Eset nod32krn.exe
Eset nod32kui.exe
``````````````````````````````
DNS Vulnerability Check:
GREAT! (Not vulnerable to DNS cache poisoning)

[pitimir]

Pouzivas NODa alebo AVG?