Neskutečně zasekané a spomalené PC

Zpráva

WiZARD_ · #61 Příspěvek od **WiZARD_** » 28 zář 2011 20:08

21:08:09.0859 0320 TDSS rootkit removing tool 2.6.2.0 Sep 26 2011 18:56:43
21:08:10.0000 0320 ============================================================
21:08:10.0000 0320 Current date / time: 2011/09/28 21:08:10.0000
21:08:10.0000 0320 SystemInfo:
21:08:10.0000 0320
21:08:10.0000 0320 OS Version: 5.1.2600 ServicePack: 1.0
21:08:10.0000 0320 Product type: Workstation
21:08:10.0000 0320 ComputerName: UNGIS-KFHKNNXQI
21:08:10.0000 0320 UserName: Administrator
21:08:10.0000 0320 Windows directory: C:\WINDOWS
21:08:10.0000 0320 System windows directory: C:\WINDOWS
21:08:10.0000 0320 Processor architecture: Intel x86
21:08:10.0000 0320 Number of processors: 1
21:08:10.0000 0320 Page size: 0x1000
21:08:10.0000 0320 Boot type: Safe boot with network
21:08:10.0000 0320 ============================================================
21:08:10.0203 0320 Initialize success

WiZARD_ · #62 Příspěvek od **WiZARD_** » 28 zář 2011 20:09

21:08:09.0859 0320 TDSS rootkit removing tool 2.6.2.0 Sep 26 2011 18:56:43
21:08:10.0000 0320 ============================================================
21:08:10.0000 0320 Current date / time: 2011/09/28 21:08:10.0000
21:08:10.0000 0320 SystemInfo:
21:08:10.0000 0320
21:08:10.0000 0320 OS Version: 5.1.2600 ServicePack: 1.0
21:08:10.0000 0320 Product type: Workstation
21:08:10.0000 0320 ComputerName: UNGIS-KFHKNNXQI
21:08:10.0000 0320 UserName: Administrator
21:08:10.0000 0320 Windows directory: C:\WINDOWS
21:08:10.0000 0320 System windows directory: C:\WINDOWS
21:08:10.0000 0320 Processor architecture: Intel x86
21:08:10.0000 0320 Number of processors: 1
21:08:10.0000 0320 Page size: 0x1000
21:08:10.0000 0320 Boot type: Safe boot with network
21:08:10.0000 0320 ============================================================
21:08:10.0203 0320 Initialize success
21:08:58.0671 0408 ============================================================
21:08:58.0671 0408 Scan started
21:08:58.0671 0408 Mode: Manual;
21:08:58.0671 0408 ============================================================
21:08:58.0859 0408 Abiosdsk - ok
21:08:58.0937 0408 abp480n5 - ok
21:08:59.0031 0408 ACPI (c792bfe75c01509954a9ab92d68cb892) C:\WINDOWS\System32\DRIVERS\ACPI.sys
21:08:59.0031 0408 ACPI - ok
21:08:59.0171 0408 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\System32\drivers\ACPIEC.sys
21:08:59.0187 0408 ACPIEC - ok
21:08:59.0265 0408 adpu160m - ok
21:08:59.0343 0408 aec (ff773feda15e8bd97fd54fe87a0acdbe) C:\WINDOWS\System32\drivers\aec.sys
21:08:59.0343 0408 aec - ok
21:08:59.0453 0408 AFD (51b1872b62d1c335bac53313913c8d5b) C:\WINDOWS\System32\drivers\afd.sys
21:08:59.0453 0408 AFD - ok
21:08:59.0531 0408 Aha154x - ok
21:08:59.0578 0408 aic78u2 - ok
21:08:59.0625 0408 aic78xx - ok
21:08:59.0687 0408 ALCXWDM - ok
21:08:59.0781 0408 AliIde - ok
21:08:59.0890 0408 AmdK8 (59301936898ae62245a6f09c0aba9475) C:\WINDOWS\System32\DRIVERS\AmdK8.sys
21:08:59.0890 0408 AmdK8 - ok
21:08:59.0953 0408 amsint - ok
21:09:00.0046 0408 Arp1394 (e47ae30589d7195bb044847fbb63a06e) C:\WINDOWS\System32\DRIVERS\arp1394.sys
21:09:00.0046 0408 Arp1394 - ok
21:09:00.0093 0408 asc - ok
21:09:00.0171 0408 asc3350p - ok
21:09:00.0296 0408 asc3550 - ok
21:09:00.0453 0408 Aspi32 (20d04091eba710f6988f710507d85868) C:\WINDOWS\System32\drivers\Aspi32.sys
21:09:00.0453 0408 Aspi32 - ok
21:09:00.0609 0408 AsyncMac (03f403b07a884fc2aa54a0916c410931) C:\WINDOWS\System32\DRIVERS\asyncmac.sys
21:09:00.0609 0408 AsyncMac - ok
21:09:00.0687 0408 atapi (95b858761a00e1d4f81f79a0da019aca) C:\WINDOWS\System32\DRIVERS\atapi.sys
21:09:00.0687 0408 atapi - ok
21:09:00.0718 0408 Atdisk - ok
21:09:00.0796 0408 Atmarpc (8d735ca1cbdb0081b0e3b9ff0eb222d0) C:\WINDOWS\System32\DRIVERS\atmarpc.sys
21:09:00.0796 0408 Atmarpc - ok
21:09:00.0875 0408 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\System32\DRIVERS\audstub.sys
21:09:00.0875 0408 audstub - ok
21:09:00.0953 0408 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\System32\drivers\Beep.sys
21:09:00.0953 0408 Beep - ok
21:09:01.0078 0408 catchme - ok
21:09:01.0171 0408 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\System32\drivers\cbidf2k.sys
21:09:01.0171 0408 cbidf2k - ok
21:09:01.0218 0408 cd20xrnt - ok
21:09:01.0296 0408 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\System32\drivers\Cdaudio.sys
21:09:01.0296 0408 Cdaudio - ok
21:09:01.0359 0408 Cdfs (049a38451f2611caf2fd528e023a0b5a) C:\WINDOWS\System32\drivers\Cdfs.sys
21:09:01.0359 0408 Cdfs - ok
21:09:01.0406 0408 Cdrom (6506e033ad04cfec9ee56dbefd1083dd) C:\WINDOWS\System32\DRIVERS\cdrom.sys
21:09:01.0406 0408 Cdrom - ok
21:09:01.0453 0408 Changer - ok
21:09:01.0515 0408 CmdIde - ok
21:09:01.0593 0408 cmpci (e5842ccf0953d3d46d5e26427b67e901) C:\WINDOWS\System32\drivers\cmaudio.sys
21:09:01.0609 0408 cmpci - ok
21:09:01.0703 0408 Cpqarray - ok
21:09:01.0750 0408 dac2w2k - ok
21:09:01.0781 0408 dac960nt - ok
21:09:01.0890 0408 Disk (d1b16340ceaceecbf52340a0cbdf43e1) C:\WINDOWS\System32\DRIVERS\disk.sys
21:09:01.0890 0408 Disk - ok
21:09:01.0968 0408 dmboot (a71d4dcf0f18dab0d5ea1bf206fcb5f6) C:\WINDOWS\System32\drivers\dmboot.sys
21:09:01.0968 0408 dmboot - ok
21:09:02.0062 0408 dmio (ad811bf5557d8ff29fbf8a8a9a4ec279) C:\WINDOWS\System32\drivers\dmio.sys
21:09:02.0062 0408 dmio - ok
21:09:02.0140 0408 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\System32\drivers\dmload.sys
21:09:02.0140 0408 dmload - ok
21:09:02.0218 0408 DMusic (ef05974d47d56fa8387f170f05bae5e7) C:\WINDOWS\System32\drivers\DMusic.sys
21:09:02.0218 0408 DMusic - ok
21:09:02.0265 0408 dpti2o - ok
21:09:02.0328 0408 drmkaud (fd859e517fa2abb53654afa7ec9e3a94) C:\WINDOWS\System32\drivers\drmkaud.sys
21:09:02.0328 0408 drmkaud - ok
21:09:02.0406 0408 ElbyCDIO (084a13f18856d610d44d3109a9d2acde) C:\WINDOWS\System32\Drivers\ElbyCDIO.sys
21:09:02.0406 0408 ElbyCDIO - ok
21:09:02.0500 0408 ElbyDelay (df9957db3bfe5136aad3c2c101806c98) C:\WINDOWS\System32\Drivers\ElbyDelay.sys
21:09:02.0500 0408 ElbyDelay - ok
21:09:02.0531 0408 ElbyVCD - ok
21:09:02.0750 0408 Fastfat (e4a3a8f3e60b542a747b10e86faa5dad) C:\WINDOWS\System32\drivers\Fastfat.sys
21:09:02.0750 0408 Fastfat - ok
21:09:02.0937 0408 Fdc (19c5c7eac0190a42522290bf002f64ea) C:\WINDOWS\System32\DRIVERS\fdc.sys
21:09:02.0937 0408 Fdc - ok
21:09:03.0000 0408 Fips (266dab58619b17bdf37fabbd48d875ca) C:\WINDOWS\System32\drivers\Fips.sys
21:09:03.0000 0408 Fips - ok
21:09:03.0062 0408 Flpydisk (8f70d1f7606f7442e2f7383f3701d728) C:\WINDOWS\System32\DRIVERS\flpydisk.sys
21:09:03.0062 0408 Flpydisk - ok
21:09:03.0109 0408 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\System32\drivers\Fs_Rec.sys
21:09:03.0109 0408 Fs_Rec - ok
21:09:03.0156 0408 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\System32\DRIVERS\ftdisk.sys
21:09:03.0156 0408 Ftdisk - ok
21:09:03.0234 0408 gameenum (6d18cad8a05d88e672b61db855a08289) C:\WINDOWS\System32\DRIVERS\gameenum.sys
21:09:03.0234 0408 gameenum - ok
21:09:03.0250 0408 GMSIPCI - ok
21:09:03.0312 0408 Gpc (13591e0a02e85de2a388f3ec4bd206df) C:\WINDOWS\System32\DRIVERS\msgpc.sys
21:09:03.0312 0408 Gpc - ok
21:09:03.0390 0408 hamachi (d30b31375c40309425c21efe75db90bb) C:\WINDOWS\System32\DRIVERS\hamachi.sys
21:09:03.0390 0408 hamachi - ok
21:09:03.0468 0408 HidUsb (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\System32\DRIVERS\hidusb.sys
21:09:03.0468 0408 HidUsb - ok
21:09:03.0515 0408 hpn - ok
21:09:03.0609 0408 HPZid412 (d03d10f7ded688fecf50f8fbf1ea9b8a) C:\WINDOWS\System32\DRIVERS\HPZid412.sys
21:09:03.0609 0408 HPZid412 - ok
21:09:03.0671 0408 HPZipr12 (89f41658929393487b6b7d13c8528ce3) C:\WINDOWS\System32\DRIVERS\HPZipr12.sys
21:09:03.0671 0408 HPZipr12 - ok
21:09:03.0718 0408 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\System32\DRIVERS\HPZius12.sys
21:09:03.0718 0408 HPZius12 - ok
21:09:03.0796 0408 i2omgmt - ok
21:09:03.0843 0408 i2omp - ok
21:09:03.0906 0408 i8042prt (efff7945f256c5cf48481c23431de81a) C:\WINDOWS\System32\DRIVERS\i8042prt.sys
21:09:03.0906 0408 i8042prt - ok
21:09:03.0984 0408 Imapi (3cb4410747f2330d97b10b656d5bb2ac) C:\WINDOWS\System32\DRIVERS\imapi.sys
21:09:03.0984 0408 Imapi - ok
21:09:04.0031 0408 ini910u - ok
21:09:04.0093 0408 IntelIde - ok
21:09:04.0156 0408 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys
21:09:04.0156 0408 IpFilterDriver - ok
21:09:04.0218 0408 IpInIp (f56dd863ba732a4e8ee58d486c31250f) C:\WINDOWS\System32\DRIVERS\ipinip.sys
21:09:04.0218 0408 IpInIp - ok
21:09:04.0281 0408 IpNat (fc672ad6e9676814a0c844912f2abcff) C:\WINDOWS\System32\DRIVERS\ipnat.sys
21:09:04.0281 0408 IpNat - ok
21:09:04.0328 0408 IPSec (1c4802409cfd4a7051f458b744cfcaa5) C:\WINDOWS\System32\DRIVERS\ipsec.sys
21:09:04.0328 0408 IPSec - ok
21:09:04.0390 0408 IRENUM (b43201394646b7e98c89056edda686b5) C:\WINDOWS\System32\DRIVERS\irenum.sys
21:09:04.0390 0408 IRENUM - ok
21:09:04.0453 0408 isapnp (1091528512e4dd7ed5fddcc4df1c53d7) C:\WINDOWS\System32\DRIVERS\isapnp.sys
21:09:04.0453 0408 isapnp - ok
21:09:04.0500 0408 Kbdclass (d7195aea3541737440f6b93fc72f63fd) C:\WINDOWS\System32\DRIVERS\kbdclass.sys
21:09:04.0500 0408 Kbdclass - ok
21:09:04.0546 0408 kbdhid (2597d9d538dbdeef183e74eb043c6170) C:\WINDOWS\System32\DRIVERS\kbdhid.sys
21:09:04.0546 0408 kbdhid - ok
21:09:04.0593 0408 kmixer (10e0feb086d8c1419b958c9034e4668a) C:\WINDOWS\System32\drivers\kmixer.sys
21:09:04.0609 0408 kmixer - ok
21:09:04.0671 0408 KSecDD (abc70e8b89cce44731a346deb764bf95) C:\WINDOWS\System32\drivers\KSecDD.sys
21:09:04.0671 0408 KSecDD - ok
21:09:04.0734 0408 lbrtfdc - ok
21:09:04.0812 0408 MBAMSwissArmy - ok
21:09:04.0875 0408 MMRTKRNL (58bc110e2d6f93e4c7a5dc092b263c30) C:\WINDOWS\System32\drivers\mmrtkrnl.sys
21:09:04.0875 0408 MMRTKRNL - ok
21:09:05.0046 0408 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\System32\drivers\mnmdd.sys
21:09:05.0046 0408 mnmdd - ok
21:09:05.0218 0408 Modem (0ad37920edce337eff4d3366dcd8566f) C:\WINDOWS\System32\drivers\Modem.sys
21:09:05.0218 0408 Modem - ok
21:09:05.0343 0408 Mouclass (8908fa25e4d9b38c0b962acbc9a50d27) C:\WINDOWS\System32\DRIVERS\mouclass.sys
21:09:05.0343 0408 Mouclass - ok
21:09:05.0421 0408 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\System32\DRIVERS\mouhid.sys
21:09:05.0421 0408 mouhid - ok
21:09:05.0500 0408 MountMgr (d4face53a1c48cf8419b4cf494d2ee2e) C:\WINDOWS\System32\drivers\MountMgr.sys
21:09:05.0500 0408 MountMgr - ok
21:09:05.0531 0408 mraid35x - ok
21:09:05.0562 0408 MRxDAV (d30cba20cc355d3648b9fed5bb55a9d5) C:\WINDOWS\System32\DRIVERS\mrxdav.sys
21:09:05.0562 0408 MRxDAV - ok
21:09:05.0640 0408 MRxSmb (7a3a2be44e12e2abde1af891e83ac130) C:\WINDOWS\System32\DRIVERS\mrxsmb.sys
21:09:05.0640 0408 MRxSmb - ok
21:09:05.0734 0408 Msfs (a1831538e119363d0d90d757ac8a2012) C:\WINDOWS\System32\drivers\Msfs.sys
21:09:05.0734 0408 Msfs - ok
21:09:05.0812 0408 MSKSSRV (85736f804191cb420a31aca2a7f0674f) C:\WINDOWS\System32\drivers\MSKSSRV.sys
21:09:05.0812 0408 MSKSSRV - ok
21:09:05.0875 0408 MSPCLOCK (e943adb93d83c5cbc0ca3f53f53b48cc) C:\WINDOWS\System32\drivers\MSPCLOCK.sys
21:09:05.0875 0408 MSPCLOCK - ok
21:09:05.0937 0408 MSPQM (f6a726b8832db1f88326b8be98b11981) C:\WINDOWS\System32\drivers\MSPQM.sys
21:09:05.0937 0408 MSPQM - ok
21:09:06.0015 0408 Mup (08c56887f06473b09fc1b39e7dec0fb6) C:\WINDOWS\System32\drivers\Mup.sys
21:09:06.0015 0408 Mup - ok
21:09:06.0062 0408 NDIS (3b350e5a2a5e951453f3993275a4523a) C:\WINDOWS\System32\drivers\NDIS.sys
21:09:06.0062 0408 NDIS - ok
21:09:06.0109 0408 NdisTapi (08d43bbdacdf23f34d79e44ed35c1b4c) C:\WINDOWS\System32\DRIVERS\ndistapi.sys
21:09:06.0109 0408 NdisTapi - ok
21:09:06.0156 0408 Ndisuio (e6b6d5e4c9c199b7bb56d7862ea68fbc) C:\WINDOWS\System32\DRIVERS\ndisuio.sys
21:09:06.0156 0408 Ndisuio - ok
21:09:06.0203 0408 NdisWan (15787deca8c5428beeaa8044f544fd85) C:\WINDOWS\System32\DRIVERS\ndiswan.sys
21:09:06.0218 0408 NdisWan - ok
21:09:06.0265 0408 NDProxy (59fc3fb44d2669bc144fd87826bb571f) C:\WINDOWS\System32\drivers\NDProxy.sys
21:09:06.0265 0408 NDProxy - ok
21:09:06.0312 0408 NetBIOS (e351339fa17c4a70940e15b5e3dae6e2) C:\WINDOWS\System32\DRIVERS\netbios.sys
21:09:06.0328 0408 NetBIOS - ok
21:09:06.0375 0408 NetBT (d96f3bc5a6e7452b0e3275b560dc8528) C:\WINDOWS\System32\DRIVERS\netbt.sys
21:09:06.0375 0408 NetBT - ok
21:09:06.0484 0408 NIC1394 (ff4ceca01030be87d530e2c5859738db) C:\WINDOWS\System32\DRIVERS\nic1394.sys
21:09:06.0484 0408 NIC1394 - ok
21:09:06.0546 0408 Npfs (20aba9f035e3a98877480e34fcc4dcb3) C:\WINDOWS\System32\drivers\Npfs.sys
21:09:06.0546 0408 Npfs - ok
21:09:06.0609 0408 Ntfs (e3ae9c79498210a5f39fe5a9ad62bc55) C:\WINDOWS\System32\drivers\Ntfs.sys
21:09:06.0625 0408 Ntfs - ok
21:09:06.0734 0408 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\System32\drivers\Null.sys
21:09:06.0734 0408 Null - ok
21:09:06.0937 0408 nv (ba1b732c1a70cfea0c1b64f2850bf44f) C:\WINDOWS\System32\DRIVERS\nv4_mini.sys
21:09:06.0968 0408 nv - ok
21:09:07.0062 0408 nvata (0344aa9113dc16eec379f4652020849d) C:\WINDOWS\System32\DRIVERS\nvata.sys
21:09:07.0062 0408 nvata - ok
21:09:07.0125 0408 NVENETFD (720cc533eecb65553bd86b139ca04433) C:\WINDOWS\System32\DRIVERS\NVENETFD.sys
21:09:07.0125 0408 NVENETFD - ok
21:09:07.0156 0408 nvnetbus (5f9f545cc5904dd8765f84ee1d056406) C:\WINDOWS\System32\DRIVERS\nvnetbus.sys
21:09:07.0156 0408 nvnetbus - ok
21:09:07.0250 0408 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\System32\DRIVERS\nwlnkflt.sys
21:09:07.0250 0408 NwlnkFlt - ok
21:09:07.0296 0408 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\System32\DRIVERS\nwlnkfwd.sys
21:09:07.0296 0408 NwlnkFwd - ok
21:09:07.0406 0408 ohci1394 (52c36c911f83f200130b2f84e01f3511) C:\WINDOWS\System32\DRIVERS\ohci1394.sys
21:09:07.0406 0408 ohci1394 - ok
21:09:07.0593 0408 Parport (888ee36ddbcd6793c845815b0e8435f3) C:\WINDOWS\System32\DRIVERS\parport.sys
21:09:07.0593 0408 Parport - ok
21:09:07.0734 0408 PartMgr (3334430c29dc338092f79c38ef7b4cd0) C:\WINDOWS\System32\drivers\PartMgr.sys
21:09:07.0734 0408 PartMgr - ok
21:09:07.0828 0408 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\System32\drivers\ParVdm.sys
21:09:07.0828 0408 ParVdm - ok
21:09:07.0890 0408 PCI (da76153b8abd5f894a8b32c09a5f5cbd) C:\WINDOWS\System32\DRIVERS\pci.sys
21:09:07.0906 0408 PCI - ok
21:09:07.0937 0408 PCIDump - ok
21:09:08.0000 0408 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) C:\WINDOWS\System32\DRIVERS\pciide.sys
21:09:08.0000 0408 PCIIde - ok
21:09:08.0078 0408 Pcmcia (71c6d1edd74657806190032704b3c1ef) C:\WINDOWS\System32\drivers\Pcmcia.sys
21:09:08.0078 0408 Pcmcia - ok
21:09:08.0093 0408 PDCOMP - ok
21:09:08.0140 0408 PDFRAME - ok
21:09:08.0171 0408 PDRELI - ok
21:09:08.0203 0408 PDRFRAME - ok
21:09:08.0234 0408 perc2 - ok
21:09:08.0281 0408 perc2hib - ok
21:09:08.0375 0408 pfc (444f122e68db44c0589227781f3c8b3f) C:\WINDOWS\System32\drivers\pfc.sys
21:09:08.0375 0408 pfc - ok
21:09:08.0484 0408 PptpMiniport (fed674d73eb56c35444f701e847bf85b) C:\WINDOWS\System32\DRIVERS\raspptp.sys
21:09:08.0484 0408 PptpMiniport - ok
21:09:08.0562 0408 Processor (603cf9e9fddf4468ac9439796598d902) C:\WINDOWS\System32\DRIVERS\processr.sys
21:09:08.0562 0408 Processor - ok
21:09:08.0625 0408 PSched (944440247fe6988c88b376ed85a0cd1a) C:\WINDOWS\System32\DRIVERS\psched.sys
21:09:08.0625 0408 PSched - ok
21:09:08.0703 0408 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\System32\DRIVERS\ptilink.sys
21:09:08.0703 0408 Ptilink - ok
21:09:08.0781 0408 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\System32\Drivers\PxHelp20.sys
21:09:08.0781 0408 PxHelp20 - ok
21:09:08.0812 0408 ql1080 - ok
21:09:08.0843 0408 Ql10wnt - ok
21:09:08.0875 0408 ql12160 - ok
21:09:08.0906 0408 ql1240 - ok
21:09:08.0937 0408 ql1280 - ok
21:09:09.0015 0408 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\System32\DRIVERS\rasacd.sys
21:09:09.0015 0408 RasAcd - ok
21:09:09.0078 0408 Rasl2tp (4c242c79a9c0d98d52d6f8cb9248d528) C:\WINDOWS\System32\DRIVERS\rasl2tp.sys
21:09:09.0078 0408 Rasl2tp - ok
21:09:09.0125 0408 RasPppoe (888335b3be346119cf7b4eff3a3fca7c) C:\WINDOWS\System32\DRIVERS\raspppoe.sys
21:09:09.0125 0408 RasPppoe - ok
21:09:09.0187 0408 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\System32\DRIVERS\raspti.sys
21:09:09.0187 0408 Raspti - ok
21:09:09.0250 0408 Rdbss (df80c149c96fcfbb8a3dc3d5dd950aa8) C:\WINDOWS\System32\DRIVERS\rdbss.sys
21:09:09.0250 0408 Rdbss - ok
21:09:09.0343 0408 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\System32\DRIVERS\RDPCDD.sys
21:09:09.0343 0408 RDPCDD - ok
21:09:09.0421 0408 rdpdr (5208d077065ea8775e319f9834f94136) C:\WINDOWS\System32\DRIVERS\rdpdr.sys
21:09:09.0437 0408 rdpdr - ok
21:09:09.0500 0408 RDPWD (0606700377b6fb8b04475e92507adade) C:\WINDOWS\System32\drivers\RDPWD.sys
21:09:09.0500 0408 RDPWD - ok
21:09:09.0562 0408 redbook (f96247e7d101acddb9089fc9fdca51bd) C:\WINDOWS\System32\DRIVERS\redbook.sys
21:09:09.0562 0408 redbook - ok
21:09:09.0625 0408 regi (001b4278407f4303efc902a2b16f2453) C:\WINDOWS\System32\drivers\regi.sys
21:09:09.0625 0408 regi - ok
21:09:09.0796 0408 rtl8139 (7a0db9fc3dc3c620aea30ea2a6557cac) C:\WINDOWS\System32\DRIVERS\RTL8139.SYS
21:09:09.0796 0408 rtl8139 - ok
21:09:10.0062 0408 Secdrv (07f7f501ad50de2ba2d5842d9b6d6155) C:\WINDOWS\System32\DRIVERS\secdrv.sys
21:09:10.0062 0408 Secdrv - ok
21:09:10.0250 0408 serenum (65a7c4d86c153c82e33a552c217abb29) C:\WINDOWS\System32\DRIVERS\serenum.sys
21:09:10.0250 0408 serenum - ok
21:09:10.0312 0408 Serial (85ad2d12ccb39d825b3490c102f77e6a) C:\WINDOWS\System32\DRIVERS\serial.sys
21:09:10.0312 0408 Serial - ok
21:09:10.0390 0408 sfdrv01 (58235f4483b63ff33b0fc41c1cd624c5) C:\WINDOWS\System32\drivers\sfdrv01.sys
21:09:10.0390 0408 sfdrv01 - ok
21:09:10.0437 0408 sfdrv01a (4d0ce0fadca29e7da68ce597ac9010bd) C:\WINDOWS\System32\drivers\sfdrv01a.sys
21:09:10.0437 0408 sfdrv01a - ok
21:09:10.0515 0408 sfhlp02 (daad4c099ebf5094d32c373ac1ac0f3c) C:\WINDOWS\System32\drivers\sfhlp02.sys
21:09:10.0515 0408 sfhlp02 - ok
21:09:10.0593 0408 Sfloppy (4e1b8866f3d208dee3906a191cb493e3) C:\WINDOWS\System32\drivers\Sfloppy.sys
21:09:10.0593 0408 Sfloppy - ok
21:09:10.0687 0408 sfsync02 (6dc03269f4c71e4ab313c3597f42a340) C:\WINDOWS\System32\drivers\sfsync02.sys
21:09:10.0687 0408 sfsync02 - ok
21:09:10.0750 0408 sfvfs02 (107b772690050d3b19cbc637ad8fd96e) C:\WINDOWS\System32\drivers\sfvfs02.sys
21:09:10.0750 0408 sfvfs02 - ok
21:09:10.0812 0408 Simbad - ok
21:09:10.0875 0408 Sparrow - ok
21:09:10.0953 0408 splitter (32c54211e9e8a45cbcb097beaeb1999a) C:\WINDOWS\System32\drivers\splitter.sys
21:09:10.0953 0408 splitter - ok
21:09:11.0062 0408 sptd (71e276f6d189413266ea22171806597b) C:\WINDOWS\System32\Drivers\sptd.sys
21:09:11.0062 0408 Suspicious file (NoAccess): C:\WINDOWS\System32\Drivers\sptd.sys. md5: 71e276f6d189413266ea22171806597b
21:09:11.0062 0408 sptd ( LockedFile.Multi.Generic ) - warning
21:09:11.0062 0408 sptd - detected LockedFile.Multi.Generic (1)
21:09:11.0171 0408 sr (af4cf05e5b2f413a8bfeed9bb2a294f4) C:\WINDOWS\System32\DRIVERS\sr.sys
21:09:11.0171 0408 sr - ok
21:09:11.0218 0408 Srv (94619eb663216f9bf12f9b950fcab3c0) C:\WINDOWS\System32\DRIVERS\srv.sys
21:09:11.0234 0408 Srv - ok
21:09:11.0296 0408 StarOpen - ok
21:09:11.0390 0408 swenum (616a013d3ea068b6dee83d905e92ee9f) C:\WINDOWS\System32\DRIVERS\swenum.sys
21:09:11.0390 0408 swenum - ok
21:09:11.0437 0408 swmidi (94abc808fc4b6d7d2bbf42b85e25bb4d) C:\WINDOWS\System32\drivers\swmidi.sys
21:09:11.0437 0408 swmidi - ok
21:09:11.0468 0408 symc810 - ok
21:09:11.0515 0408 symc8xx - ok
21:09:11.0546 0408 sym_hi - ok
21:09:11.0578 0408 sym_u3 - ok
21:09:11.0656 0408 sysaudio (b0b19f036f76333ab3338c7493e87b12) C:\WINDOWS\System32\drivers\sysaudio.sys
21:09:11.0656 0408 sysaudio - ok
21:09:11.0765 0408 Tcpip (244a2f9816bc9b593957281ef577d976) C:\WINDOWS\System32\DRIVERS\tcpip.sys
21:09:11.0765 0408 Tcpip - ok
21:09:11.0843 0408 TDPIPE (1a96630babbd59e8b885eae0dfbe6a3e) C:\WINDOWS\System32\drivers\TDPIPE.sys
21:09:11.0843 0408 TDPIPE - ok
21:09:11.0890 0408 TDTCP (d1c578c6b37713694c5edd7c2d7f7451) C:\WINDOWS\System32\drivers\TDTCP.sys
21:09:11.0890 0408 TDTCP - ok
21:09:11.0937 0408 TermDD (194c51bc28a7ce9818012142b062e431) C:\WINDOWS\System32\DRIVERS\termdd.sys
21:09:11.0937 0408 TermDD - ok
21:09:12.0015 0408 TosIde - ok
21:09:12.0078 0408 Udfs (01ca8ec606522d2f60820b0c0086fdd5) C:\WINDOWS\System32\drivers\Udfs.sys
21:09:12.0078 0408 Udfs - ok
21:09:12.0125 0408 ultra - ok
21:09:12.0187 0408 Update (164cfae1d766905f56c432acfc54f28c) C:\WINDOWS\System32\DRIVERS\update.sys
21:09:12.0187 0408 Update - ok
21:09:12.0375 0408 usbccgp (79fee3cfec5b14194dbe0a703d82b2a4) C:\WINDOWS\System32\DRIVERS\usbccgp.sys
21:09:12.0375 0408 usbccgp - ok
21:09:12.0515 0408 usbehci (2d0c2f3836f72e85d41d9c50aeeb5423) C:\WINDOWS\System32\DRIVERS\usbehci.sys
21:09:12.0515 0408 usbehci - ok
21:09:12.0687 0408 usbhub (d7bf70ac85e48b6c4df953401eccb75a) C:\WINDOWS\System32\DRIVERS\usbhub.sys
21:09:12.0687 0408 usbhub - ok
21:09:12.0812 0408 usbohci (4e7d2f6df7a7e02d80fe0b109f0c9f02) C:\WINDOWS\System32\DRIVERS\usbohci.sys
21:09:12.0812 0408 usbohci - ok
21:09:12.0859 0408 usbprint (c9a83be290c89730ae59f6c3085f072d) C:\WINDOWS\System32\DRIVERS\usbprint.sys
21:09:12.0859 0408 usbprint - ok
21:09:12.0937 0408 usbscan (7691af2109474eb923004f3dca4c9559) C:\WINDOWS\System32\DRIVERS\usbscan.sys
21:09:12.0937 0408 usbscan - ok
21:09:13.0000 0408 USBSTOR (4923c60f9c381eae679db04021d26abb) C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS
21:09:13.0000 0408 USBSTOR - ok
21:09:13.0062 0408 VClone (e69eb856ba6528d0373000683cc869a8) C:\WINDOWS\System32\DRIVERS\VClone.sys
21:09:13.0062 0408 VClone - ok
21:09:13.0140 0408 VgaSave (08d2edfd7261242b8aea27f1fe11e120) C:\WINDOWS\System32\drivers\vga.sys
21:09:13.0140 0408 VgaSave - ok
21:09:13.0203 0408 ViaIde - ok
21:09:13.0250 0408 VolSnap (bd7edaee708c8c4141f2eab80b89904a) C:\WINDOWS\System32\drivers\VolSnap.sys
21:09:13.0250 0408 VolSnap - ok
21:09:13.0328 0408 Wanarp (484af08f15d1306ff2e8b64fe62a160c) C:\WINDOWS\System32\DRIVERS\wanarp.sys
21:09:13.0328 0408 Wanarp - ok
21:09:13.0359 0408 WDICA - ok
21:09:13.0390 0408 wdmaud (499b653356a9e5589ee83ac47e5d2a8c) C:\WINDOWS\System32\drivers\wdmaud.sys
21:09:13.0406 0408 wdmaud - ok
21:09:13.0515 0408 WmBEnum (588c1df21321ec51eebff2c8909d1587) C:\WINDOWS\System32\drivers\WmBEnum.sys
21:09:13.0515 0408 WmBEnum - ok
21:09:13.0578 0408 WmFilter (3b45b7bfd513d3313e895d187849e3a3) C:\WINDOWS\System32\drivers\WmFilter.sys
21:09:13.0578 0408 WmFilter - ok
21:09:13.0625 0408 WmHidLo (a340efc6c494bd2a2aa5c030459a27d2) C:\WINDOWS\System32\drivers\WmHidLo.sys
21:09:13.0625 0408 WmHidLo - ok
21:09:13.0718 0408 WmVirHid (fe7d6991fd5894f06aae95dc78e79948) C:\WINDOWS\System32\drivers\WmVirHid.sys
21:09:13.0734 0408 WmVirHid - ok
21:09:13.0781 0408 WmXlCore (dcbb4688ee775912444b9010cd3fe9b6) C:\WINDOWS\System32\drivers\WmXlCore.sys
21:09:13.0781 0408 WmXlCore - ok
21:09:13.0859 0408 WpdUsb (1385e5aa9c9821790d33a9563b8d2dd0) C:\WINDOWS\System32\Drivers\wpdusb.sys
21:09:13.0859 0408 WpdUsb - ok
21:09:13.0968 0408 YMIDUSB (6e04f159b0ffcb2d72a2b149553ef6fc) C:\WINDOWS\System32\Drivers\ymidusb.sys
21:09:13.0968 0408 YMIDUSB - ok
21:09:14.0031 0408 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
21:09:14.0125 0408 \Device\Harddisk0\DR0 - ok
21:09:14.0140 0408 Boot (0x1200) (a3fe1f1f6359d97cba428fa0536c0a3f) \Device\Harddisk0\DR0\Partition0
21:09:14.0140 0408 \Device\Harddisk0\DR0\Partition0 - ok
21:09:14.0156 0408 ============================================================
21:09:14.0156 0408 Scan finished
21:09:14.0156 0408 ============================================================
21:09:14.0187 0400 Detected object count: 1
21:09:14.0187 0400 Actual detected object count: 1
21:09:18.0437 0400 sptd ( LockedFile.Multi.Generic ) - skipped by user
21:09:18.0437 0400 sptd ( LockedFile.Multi.Generic ) - User select action: Skip

chodnik74 · #63 Příspěvek od **chodnik74** » 29 zář 2011 05:31

To vypadá v pořádku..

odpoledne vám napíši script na OTL

WiZARD_ · #64 Příspěvek od **WiZARD_** » 02 říj 2011 11:58

Tak jak to vypadá?

chodnik74 · #65 Příspěvek od **chodnik74** » 02 říj 2011 18:32

Omlouvám se,ale celý víkend jsem mimo domov..před 20 minutama jsem dojel z celodenní brigády..zítra to na stoprocent máte..

a Ještě jednou se omlouvám

Teď už mířím do postele..

WiZARD_ · #66 Příspěvek od **WiZARD_** » 03 říj 2011 08:56

v pohodě.. já jsem jestli jste na mě nezapomněl

chodnik74 · #67 Příspěvek od **chodnik74** » 03 říj 2011 09:16

Nezapomněl

jen jsem opravdu nebyl vůbec na pc a když už,tak je minutku..ale ted jsme ve škole...takže hurá na to

chodnik74 · #68 Příspěvek od **chodnik74** » 03 říj 2011 09:40

Stáhneme si na Plochu program OTL Obrázek

Spustíme soubor OTL.exe (pokud máte Windows Vista nebo Windows 7,tak na soubor klikněte pravým tlačítkem myši a dejte ,,Spustit jako správce,,)

Do dolního okna Vlastní skenování/opravy vložíme následující skript a stiskneme tlačítko Opravit

Kód: Vybrat vše

:OTL
PRC - [2011.09.21 22:01:51 | 000,057,871 | R--- | M] () -- C:\WINDOWS\system32\smsc.exe
PRC - [2002.09.20 18:05:24 | 000,467,968 | RHS- | M] () -- C:\WINDOWS\system32\qmsvlpi.exe
MOD - [2011.09.21 22:01:51 | 000,057,871 | R--- | M] () -- C:\WINDOWS\system32\smsc.exe
MOD - [2002.09.20 18:05:24 | 000,467,968 | RHS- | M] () -- C:\WINDOWS\system32\qmsvlpi.exe
SRV - [2011.09.21 22:01:51 | 000,057,871 | R--- | M] () [Auto | Running] -- C:\WINDOWS\System32\smsc.exe -- (PrtSmanm)
SRV - [2002.09.20 18:04:04 | 001,081,344 | RHS- | M] () [Auto | Stopped] -- C:\WINDOWS\system32\xsycs.dll -- (xkevza)
SRV - [2002.09.20 18:04:04 | 001,081,344 | RHS- | M] () [Auto | Stopped] -- C:\WINDOWS\system32\xsycs.dll -- (vhjqjqbt)
SRV - [2002.09.20 18:04:04 | 001,081,344 | RHS- | M] () [Auto | Stopped] -- C:\WINDOWS\system32\xsycs.dll -- (eybwi)
IE - HKU\S-1-5-21-2052111302-507921405-1801674531-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Prev Search Bar = http://search.qip.ru/ie
IE - HKU\S-1-5-21-2052111302-507921405-1801674531-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Prev Search Page = http://search.qip.ru
IE - HKU\S-1-5-21-2052111302-507921405-1801674531-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
IE - HKU\S-1-5-21-2052111302-507921405-1801674531-1003\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-2052111302-507921405-1801674531-1003\..\URLSearchHook: {95289393-33EA-4F8D-B952-483415B9C955} - C:\Documents and Settings\Viti\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
IE - HKU\S-1-5-21-2052111302-507921405-1801674531-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = local
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.defaulturl: "http://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.3.1&q="
FF - prefs.js..browser.search.selectedEngine: "ICQ Search"
FF - prefs.js..browser.search.suggest.enabled: false
FF - prefs.js..browser.startup.homepage: "http://start.icq.com/"
FF - prefs.js..keyword.URL: "http://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.3.1&q="
[2011.08.23 11:35:59 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2011.09.24 16:14:16 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-1.xml
[2009.06.15 15:32:06 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-10.xml
[2009.07.23 15:16:12 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-11.xml
[2009.08.04 20:40:12 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-12.xml
[2009.09.11 20:19:53 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-13.xml
[2009.10.29 10:16:06 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-14.xml
[2009.11.07 11:15:29 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-15.xml
[2009.12.17 15:19:50 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-16.xml
[2010.01.07 15:37:04 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-17.xml
[2010.02.19 19:11:40 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-18.xml
[2010.03.12 18:28:32 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-19.xml
[2008.10.01 17:09:05 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-2.xml
[2010.03.25 08:05:04 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-20.xml
[2010.04.03 23:01:11 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-21.xml
[2010.07.05 21:02:30 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-22.xml
[2010.07.23 13:46:37 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-23.xml
[2010.07.24 15:37:35 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-24.xml
[2010.09.12 18:11:34 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-25.xml
[2010.09.17 17:46:28 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-26.xml
[2010.10.22 23:06:40 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-27.xml
[2010.10.31 17:13:26 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-28.xml
[2010.11.01 16:32:46 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-29.xml
[2008.11.14 12:06:40 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-3.xml
[2011.03.02 00:33:06 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-30.xml
[2011.03.06 14:33:34 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-31.xml
[2011.03.24 21:06:27 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-32.xml
[2011.04.30 13:06:15 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-33.xml
[2011.05.08 11:24:36 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-34.xml
[2011.07.17 16:32:43 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-35.xml
[2011.08.28 08:24:26 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-36.xml
[2011.08.31 19:52:44 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-37.xml
[2011.09.10 23:48:21 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-38.xml
[2008.12.17 17:50:45 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-4.xml
[2009.02.08 12:49:40 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-5.xml
[2009.03.08 11:53:55 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-6.xml
[2009.03.29 12:51:09 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-7.xml
[2009.04.23 20:07:09 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-8.xml
[2009.04.28 19:03:22 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-9.xml
[2011.08.18 21:40:40 | 000,000,168 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin.gif
[2011.08.18 21:40:40 | 000,000,618 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin.src
[2010.06.21 17:35:24 | 000,001,042 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin.xml
[2009.09.24 16:00:41 | 000,002,061 | ---- | M] () -- C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\qipsearch.xml
[2011.09.17 23:14:04 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\VITI\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\VT4RUFZO.DEFAULT\EXTENSIONS\{800B5000-A755-47E1-992B-48A1C1357F07}
O4 - HKLM..\Run: [Windows LoL Layer] C:\WINDOWS\System32\qmsvlpi.exe ()
O4 - HKLM..\Run: [windows updatess] C:\WINDOWS\System32\lsas.exe ()
O4 - HKU\.DEFAULT..\Run: [Windows LoL Layer] C:\WINDOWS\System32\qmsvlpi.exe ()
O4 - HKU\.DEFAULT..\Run: [windows updatess] C:\WINDOWS\System32\lsas.exe ()
O4 - HKU\S-1-5-18..\Run: [Windows LoL Layer] C:\WINDOWS\System32\qmsvlpi.exe ()
O4 - HKU\S-1-5-18..\Run: [windows updatess] C:\WINDOWS\System32\lsas.exe ()
O4 - HKU\S-1-5-21-2052111302-507921405-1801674531-1003..\Run: [FreeCall] "C:\Program Files\FreeCall.com\FreeCall\FreeCall.exe" -nosplash -minimized File not found
O4 - HKU\S-1-5-21-2052111302-507921405-1801674531-1003..\Run: [mxClock] C:\DOCUME~1\Viti\LOCALS~1\Temp\Rar$EX00.375\maydesign mxClock\mxClock.exe File not found
O4 - HKU\S-1-5-21-2052111302-507921405-1801674531-1003..\Run: [Start WingMan Profiler] File not found
O4 - HKU\S-1-5-21-2052111302-507921405-1801674531-1003..\Run: [ViOrb] C:\Program Files\ViOrb\ViOrb.exe File not found
O4 - HKU\S-1-5-21-2052111302-507921405-1801674531-1003..\Run: [ViStart] C:\Program Files\ViStart\ViStart.exe File not found
O4 - HKU\S-1-5-21-2052111302-507921405-1801674531-1003..\Run: [Windows LoL Layer] C:\WINDOWS\System32\qmsvlpi.exe ()
O4 - HKU\S-1-5-21-2052111302-507921405-1801674531-1003..\Run: [Windows Updates] bqpldgv.exe File not found
O4 - HKU\S-1-5-21-2052111302-507921405-1801674531-1003..\Run: [windows updatess] C:\WINDOWS\System32\lsas.exe ()
O4 - HKU\.DEFAULT..\RunOnce: [windows updatess] C:\WINDOWS\System32\lsas.exe ()
O4 - HKU\S-1-5-18..\RunOnce: [windows updatess] C:\WINDOWS\System32\lsas.exe ()
O4 - HKLM..\RunServices: [Windows LoL Layer] C:\WINDOWS\System32\qmsvlpi.exe ()
O4 - HKLM..\RunServices: [windows updatess] C:\WINDOWS\System32\lsas.exe ()
[2011.09.28 09:48:25 | 000,462,848 | ---- | M] () -- C:\WINDOWS\System32\winlolx.exe
[2011.09.28 09:45:46 | 000,002,272 | ---- | M] () -- C:\WINDOWS\System32\eras.fon
[2011.09.25 23:42:48 | 000,175,467 | ---- | M] () -- C:\scanonline.exe
[2011.09.25 23:42:48 | 000,175,467 | ---- | M] () -- C:\WINDOWS\System32\lsas.exe
[2011.09.21 22:01:51 | 000,057,871 | R--- | M] () -- C:\WINDOWS\System32\smsc.exe
[2011.09.25 12:09:21 | 000,150,528 | ---- | C] (OldMan's Tales) -- C:\WINDOWS\System32\svchots.exe
[8 C:\WINDOWS\AppPatch\*.tmp files -> C:\WINDOWS\AppPatch\*.tmp -> ]
[11 C:\WINDOWS\Fonts\*.tmp files -> C:\WINDOWS\Fonts\*.tmp -> ]
[1 C:\WINDOWS\PCHealth\HelpCtr\Binaries\*.tmp files -> C:\WINDOWS\PCHealth\HelpCtr\Binaries\*.tmp -> ]
[2011.08.28 21:43:29 | 000,921,805 | ---- | M] (instyler installation software) -- C:\Setup.exe

:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp

:commands
[purity]
[emptytemp]
[EmptyFlash] 
[ResetHosts]

Po restartu pc se vám objeví log z OTL,ten mi sem prosím vložte..

chodnik74 · #69 Příspěvek od **chodnik74** » 03 říj 2011 09:41

Taková první vlna..aby jsme odpálili havěť,která nám blokuje Combofix atd

pak už nám pojede Combofix a opravíme i ty aktualizace

chodnik74 · #70 Příspěvek od **chodnik74** » 03 říj 2011 09:49

Jo a viděl jsem,že stahujete přes torrent nelegální programy,četl jste si pravidla našeho fora? a víte,že právě nelegální programy jsou největším zdrojem nákazy a problémů?

WiZARD_ · #71 Příspěvek od **WiZARD_** » 03 říj 2011 10:52

Před čase jsem stahnul nějaký ten program na hudbu, jinak ne

chodnik74 · #72 Příspěvek od **chodnik74** » 03 říj 2011 15:37

Mno já dost dobře vidím,co jste si stahoval..příště vám s takovou nikdo nepomůže,jetli si do počítače budete tahat nelegální programy

pokračujte návodem na OTL

WiZARD_ · #73 Příspěvek od **WiZARD_** » 09 říj 2011 18:50

A jaký script tam mám vložit?

chodnik74 · #74 Příspěvek od **chodnik74** » 09 říj 2011 19:55

http://viry.cz/forum/viewtopic.php?p=1040117#p1040117 zde je návod i script

WiZARD_ · #75 Příspěvek od **WiZARD_** » 10 říj 2011 20:55

All processes killed
========== OTL ==========
No active process named smsc.exe was found!
No active process named qmsvlpi.exe was found!
Service PrtSmanm stopped successfully!
Service PrtSmanm deleted successfully!
C:\WINDOWS\system32\smsc.exe moved successfully.
Service xkevza stopped successfully!
Service xkevza deleted successfully!
C:\WINDOWS\system32\xsycs.dll moved successfully.
Service vhjqjqbt stopped successfully!
Service vhjqjqbt deleted successfully!
File C:\WINDOWS\system32\xsycs.dll not found.
Service eybwi stopped successfully!
Service eybwi deleted successfully!
File C:\WINDOWS\system32\xsycs.dll not found.
Unable to set value : HKU\S-1-5-21-2052111302-507921405-1801674531-1003\SOFTWARE\Microsoft\Internet Explorer\Main\\Prev Search Bar| /E!
Unable to set value : HKU\S-1-5-21-2052111302-507921405-1801674531-1003\SOFTWARE\Microsoft\Internet Explorer\Main\\Prev Search Page| /E!
Unable to set value : HKU\S-1-5-21-2052111302-507921405-1801674531-1003\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E!
Registry key HKEY_USERS\S-1-5-21-2052111302-507921405-1801674531-1003\Software\Microsoft\Internet Explorer\URLSearchHooks not found.
Registry key HKEY_USERS\S-1-5-21-2052111302-507921405-1801674531-1003\Software\Microsoft\Internet Explorer\URLSearchHooks not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{95289393-33EA-4F8D-B952-483415B9C955}\ deleted successfully.
File C:\Documents and Settings\Viti\Data aplikací\Microsoft\Internet Explorer\qipsearchbar.dll not found.
Unable to set value : HKU\S-1-5-21-2052111302-507921405-1801674531-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyOverride| /E!
Prefs.js: "ICQ Search" removed from browser.search.defaultenginename
Prefs.js: "http://search.icq.com/search/afe_result ... r=1.3.1&q=" removed from browser.search.defaulturl
Prefs.js: "ICQ Search" removed from browser.search.selectedEngine
Prefs.js: false removed from browser.search.suggest.enabled
Prefs.js: "http://start.icq.com/" removed from browser.startup.homepage
Prefs.js: "http://search.icq.com/search/afe_result ... r=1.3.1&q=" removed from keyword.URL
Folder C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\ not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-1.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-10.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-11.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-12.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-13.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-14.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-15.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-16.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-17.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-18.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-19.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-2.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-20.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-21.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-22.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-23.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-24.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-25.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-26.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-27.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-28.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-29.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-3.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-30.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-31.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-32.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-33.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-34.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-35.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-36.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-37.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-38.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-4.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-5.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-6.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-7.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-8.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin-9.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin.gif not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin.src not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\icqplugin.xml not found.
File C:\Documents and Settings\Viti\Data aplikací\Mozilla\Firefox\Profiles\vt4rufzo.default\searchplugins\qipsearch.xml not found.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}\chrome\locale\zh-TW\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}\chrome\locale\zh-TW folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}\chrome\locale\zh-CN\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}\chrome\locale\zh-CN folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}\chrome\locale\sv-SE\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}\chrome\locale\sv-SE folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}\chrome\locale\ko-KR\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}\chrome\locale\ko-KR folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}\chrome\locale\ja-JP\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}\chrome\locale\ja-JP folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}\chrome\locale\it-IT\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}\chrome\locale\it-IT folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}\chrome\locale\fr-FR\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}\chrome\locale\fr-FR folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}\chrome\locale\es-ES\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}\chrome\locale\es-ES folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}\chrome\locale\en-US\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}\chrome\locale\en-US folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}\chrome\locale\de-DE\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}\chrome\locale\de-DE folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}\chrome\locale folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}\chrome\content\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}\chrome\content folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}\chrome folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA} folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions folder moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Windows LoL Layer deleted successfully.
C:\WINDOWS\system32\qmsvlpi.exe moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\windows updatess deleted successfully.
C:\WINDOWS\system32\lsas.exe moved successfully.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run\\Windows LoL Layer deleted successfully.
File C:\WINDOWS\System32\qmsvlpi.exe not found.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run\\windows updatess deleted successfully.
File C:\WINDOWS\System32\lsas.exe not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run\\Windows LoL Layer not found.
File C:\WINDOWS\System32\qmsvlpi.exe not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run\\windows updatess not found.
File C:\WINDOWS\System32\lsas.exe not found.
Registry key HKEY_USERS\S-1-5-21-2052111302-507921405-1801674531-1003\Software\Microsoft\Windows\CurrentVersion\Run not found.
Registry key HKEY_USERS\S-1-5-21-2052111302-507921405-1801674531-1003\Software\Microsoft\Windows\CurrentVersion\Run not found.
Registry key HKEY_USERS\S-1-5-21-2052111302-507921405-1801674531-1003\Software\Microsoft\Windows\CurrentVersion\Run not found.
Registry key HKEY_USERS\S-1-5-21-2052111302-507921405-1801674531-1003\Software\Microsoft\Windows\CurrentVersion\Run not found.
Registry key HKEY_USERS\S-1-5-21-2052111302-507921405-1801674531-1003\Software\Microsoft\Windows\CurrentVersion\Run not found.
Registry key HKEY_USERS\S-1-5-21-2052111302-507921405-1801674531-1003\Software\Microsoft\Windows\CurrentVersion\Run not found.
File C:\WINDOWS\System32\qmsvlpi.exe not found.
Registry key HKEY_USERS\S-1-5-21-2052111302-507921405-1801674531-1003\Software\Microsoft\Windows\CurrentVersion\Run not found.
Registry key HKEY_USERS\S-1-5-21-2052111302-507921405-1801674531-1003\Software\Microsoft\Windows\CurrentVersion\Run not found.
File C:\WINDOWS\System32\lsas.exe not found.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce\\windows updatess deleted successfully.
File C:\WINDOWS\System32\lsas.exe not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce\\windows updatess not found.
File C:\WINDOWS\System32\lsas.exe not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices\\Windows LoL Layer deleted successfully.
File C:\WINDOWS\System32\qmsvlpi.exe not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices\\windows updatess deleted successfully.
File C:\WINDOWS\System32\lsas.exe not found.
C:\WINDOWS\system32\winlolx.exe moved successfully.
C:\WINDOWS\system32\eras.fon moved successfully.
C:\scanonline.exe moved successfully.
File C:\WINDOWS\System32\lsas.exe not found.
File C:\WINDOWS\System32\smsc.exe not found.
C:\WINDOWS\system32\svchots.exe moved successfully.
C:\WINDOWS\AppPatch\SET693.tmp deleted successfully.
C:\WINDOWS\AppPatch\SET694.tmp deleted successfully.
C:\WINDOWS\AppPatch\SET695.tmp deleted successfully.
C:\WINDOWS\AppPatch\SET696.tmp deleted successfully.
C:\WINDOWS\AppPatch\SET697.tmp deleted successfully.
C:\WINDOWS\AppPatch\SET698.tmp deleted successfully.
C:\WINDOWS\AppPatch\SET699.tmp deleted successfully.
C:\WINDOWS\AppPatch\SET69A.tmp deleted successfully.
C:\WINDOWS\Fonts\SET5A7.tmp deleted successfully.
C:\WINDOWS\Fonts\SET5A8.tmp deleted successfully.
C:\WINDOWS\Fonts\SET5A9.tmp deleted successfully.
C:\WINDOWS\Fonts\SET5AA.tmp deleted successfully.
C:\WINDOWS\Fonts\SET5AB.tmp deleted successfully.
C:\WINDOWS\Fonts\SET5AC.tmp deleted successfully.
C:\WINDOWS\Fonts\SET5AD.tmp deleted successfully.
C:\WINDOWS\Fonts\SET5AE.tmp deleted successfully.
C:\WINDOWS\Fonts\SET5AF.tmp deleted successfully.
C:\WINDOWS\Fonts\SET5B0.tmp deleted successfully.
C:\WINDOWS\Fonts\SET5B1.tmp deleted successfully.
C:\WINDOWS\PCHealth\HelpCtr\Binaries\SET6F5.tmp deleted successfully.
C:\Setup.exe moved successfully.
========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->FireFox cache emptied: 45111599 bytes
->Flash cache emptied: 642 bytes

User: All Users

User: Alů
->Temp folder emptied: 487390 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 49126160 bytes
->Flash cache emptied: 792 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Guest
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->FireFox cache emptied: 0 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Viti

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 37699 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 83873 bytes
RecycleBin emptied: 181136 bytes

Total Files Cleaned = 91,00 mb

[EMPTYFLASH]

User: Administrator
->Flash cache emptied: 0 bytes

User: All Users

User: Alů
->Flash cache emptied: 0 bytes

User: Default User

User: Guest
->Flash cache emptied: 0 bytes

User: LocalService

User: NetworkService

User: Viti

Total Flash Files Cleaned = 0,00 mb

C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

OTL by OldTimer - Version 3.2.28.0 log created on 10102011_215005

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...

VIRY.CZ

Neskutečně zasekané a spomalené PC

Re: Neskutečně zasekané a spomalené PC

Re: Neskutečně zasekané a spomalené PC

Re: Neskutečně zasekané a spomalené PC

Re: Neskutečně zasekané a spomalené PC

Re: Neskutečně zasekané a spomalené PC

Re: Neskutečně zasekané a spomalené PC

Re: Neskutečně zasekané a spomalené PC

Re: Neskutečně zasekané a spomalené PC

Re: Neskutečně zasekané a spomalené PC

Re: Neskutečně zasekané a spomalené PC

Re: Neskutečně zasekané a spomalené PC

Re: Neskutečně zasekané a spomalené PC

Re: Neskutečně zasekané a spomalené PC

Re: Neskutečně zasekané a spomalené PC

Re: Neskutečně zasekané a spomalené PC