Prosim o kontroli logu - Samovolny restart PC

[panter2005]

Pc sa mi hockedy sam restartne .
Potom mi vypise :
Nektere z souboru obsahujici data registru systemu bylo treba obnovit pomoci protokolu alebo alternativni kopie . Obnoveni bylo uspesne .

Stava sa to dost casto .

Tu je log :

Logfile of random's system information tool 1.09 (written by random/random)
Run by Spravca at 2011-10-26 11:32:22
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 65 GB (81%) free of 80 GB
Total RAM: 383 MB (60% free)

HijackThis download failed

======Scheduled tasks folder======

C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-18.job
C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-507921405-1708537768-1202660629-1004.job
C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-18.job
C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-507921405-1708537768-1202660629-1004.job
C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Spravca\Data aplikací\Mozilla\Firefox\Profiles\ot3v7m7s.default

prefs.js - "browser.search.useDBForOrder" - ""
prefs.js - "browser.startup.homepage" - "www.szm.sk "
prefs.js - "keyword.URL" - "http://search.conduit.com/ResultsExt.as ... ource=2&q="

"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"{ABDE892B-13A8-4d1b-88E6-365A6E755758}"=C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
"{1E73965B-8B48-48be-9C8D-68B920ABC1C4}"=C:\Program Files\AVG\AVG2012\Firefox4\


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@checkpoint.com/FFApi]
"Description"=ZoneAlarm Toolbar Api
"Path"=C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\npFFApi.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nppl3260;version=12.0.1.647]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=c:\program files\real\realplayer\Netscape6\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprjplug;version=12.0.1.647]
"Description"=RealJukebox Netscape Plugin
"Path"=c:\program files\real\realplayer\Netscape6\nprjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=12.0.1.652]
"Description"=RealNetworks(tm) RealPlayer Chrome Background Extension Plug-In
"Path"=C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.652]
"Description"=RealPlayer(tm) HTML5VideoShim Plug-In
"Path"=C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.647]
"Description"=12.0.1.647
"Path"=c:\program files\real\realplayer\Netscape6\nprpjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nppl3260.xpt
nsjsrealplayerplugin.xpt

C:\Program Files\Mozilla Firefox\plugins\
NPOFF12.DLL
nppdf32.dll
nppl3260.dll
nprjplug.dll
nprpjplug.dll

C:\Program Files\Mozilla Firefox\searchplugins\
atlas-sk.xml
azet-sk.xml
dunaj-sk.xml
eBay.xml
fcmdSrch.xml
google.xml
slovnik-sk.xml
wikipedia-sk.xml
zoznam-sk.xml

C:\Documents and Settings\Spravca\Data aplikací\Mozilla\Firefox\Profiles\ot3v7m7s.default\extensions\
toolbar@ask.com
TRASH
{e4a8a97b-f2ed-450b-b12d-ee082ba24781}

C:\Documents and Settings\Spravca\Data aplikací\Mozilla\Firefox\Profiles\ot3v7m7s.default\searchplugins\
aol-web-search.xml
askcom.xml
conduit.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-09-05 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2011-06-19 386264]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG2012\avgssie.dll [2011-09-27 2179936]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Softonic Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2011-05-17 1490312]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-05-26 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{f999a48b-1950-4d81-9971-79018f807b4b}]
FreeOnlineRadioPlayerRecorder Toolbar - C:\Program Files\FreeOnlineRadioPlayerRecorder\tbFree.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{f999a48b-1950-4d81-9971-79018f807b4b} - FreeOnlineRadioPlayerRecorder Toolbar - C:\Program Files\FreeOnlineRadioPlayerRecorder\tbFree.dll []
{98889811-442D-49dd-99D7-DC866BE87DBC}
{D4027C7F-154A-4066-A1AD-4243D8127440} - Softonic Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2011-05-17 1490312]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"tsnp325"=C:\WINDOWS\tsnp325.exe [2006-10-10 270336]
"snp325"=C:\WINDOWS\vsnp325.exe [2006-10-10 827392]
"AVG_TRAY"=C:\Program Files\AVG\AVG2012\avgtray.exe [2011-09-23 2404704]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2008-05-16 13529088]
"TkBellExe"=C:\program files\real\realplayer\update\realsched.exe [2011-06-19 273544]
""= []
"ApnUpdater"=C:\Program Files\Ask.com\Updater\Updater.exe [2011-05-17 395144]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"eyeBeam SIP Client"=C:\Program Files\CounterPath\eyeBeam 1.5\eyeBeam.exe [2006-07-07 5186048]
"POP Peeper"=C:\Program Files\POP Peeper\POPPeeper.exe [2011-08-18 1609728]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
C:\WINDOWS\system32\NvCpl.dll [2008-05-16 13529088]

C:\Documents and Settings\Spravca\Nabídka Start\Programy\Po spuštění
Obsah aplikace OneNote.onetoc2
_uninst_99240743.lnk - C:\Documents and Settings\Spravca\Local Settings\temp\_uninst_99240743.bat

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2011-02-12 239496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2011-02-12 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=347
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\SJphone 1.65\SJphone.exe"="C:\Program Files\SJphone 1.65\SJphone.exe:*:Enabled:SJphone 1.65"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe"="C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe:*:Enabled:Bluetooth Application"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\StrongDC++\StrongDC.exe"="C:\Program Files\StrongDC++\StrongDC.exe:*:Enabled:StrongDC++"
"C:\Program Files\POP Peeper\POPPeeper.exe"="C:\Program Files\POP Peeper\POPPeeper.exe:*:Enabled:POP Peeper"
"C:\Program Files\Outlook Express\msimn.exe"="C:\Program Files\Outlook Express\msimn.exe:*:Enabled:Outlook Express"
"C:\Program Files\AVG\AVG2012\avgmfapx.exe"="C:\Program Files\AVG\AVG2012\avgmfapx.exe:*:Enabled:Inštalátor produktu AVG"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Mizu\Mizu.exe"="C:\Program Files\Mizu\Mizu.exe:*:Enabled:MizuPhone"
"C:\Program Files\Mizu\mvideo.exe"="C:\Program Files\Mizu\mvideo.exe:*:Enabled:MizuVideo"
"C:\Program Files\Mizu\rdviewer.exe"="C:\Program Files\Mizu\rdviewer.exe:*:Enabled:MizuRDesktopClient"
"C:\Program Files\Mizu\rdserver.exe"="C:\Program Files\Mizu\rdserver.exe:*:Enabled:MizuRDesktopServer"
"C:\Program Files\Mizu\mizufax.exe"="C:\Program Files\Mizu\mizufax.exe:*:Enabled:MizuFax"
"C:\Documents and Settings\Spravca\Plocha\SweetImSetup.exe"="C:\Documents and Settings\Spravca\Plocha\SweetImSetup.exe:*:Enabled:SweetIM Installer"
"C:\Program Files\AVG\AVG2012\avgnsx.exe"="C:\Program Files\AVG\AVG2012\avgnsx.exe:*:Enabled:Webový štít"
"C:\Program Files\AVG\AVG2012\avgdiagex.exe"="C:\Program Files\AVG\AVG2012\avgdiagex.exe:*:Enabled:Diagnostika AVG 2012"
"C:\Program Files\AVG\AVG2012\avgemcx.exe"="C:\Program Files\AVG\AVG2012\avgemcx.exe:*:Enabled:Obecná kontrola pošty"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"mixer1"=wdmaud.drv
"midi1"=wdmaud.drv

======List of files/folders created in the last 1 month======

2011-10-26 11:32:24 ----D---- C:\Program Files\trend micro
2011-10-26 11:32:22 ----D---- C:\rsit
2011-10-26 11:31:08 ----A---- C:\WINDOWS\ntbtlog.txt
2011-10-25 17:53:37 ----A---- C:\WINDOWS\ModemLog_Bluetooth LAP Modem.txt
2011-10-25 17:53:37 ----A---- C:\WINDOWS\ModemLog_Bluetooth LAP Modem #2.txt
2011-10-25 17:50:18 ----D---- C:\Program Files\Ask.com
2011-10-20 07:02:51 ----D---- C:\Program Files\BABYLONTOOLBAR
2011-10-19 19:51:42 ----D---- C:\Program Files\Common Files\Skype
2011-10-19 19:51:39 ----RD---- C:\Program Files\Skype
2011-10-19 14:58:43 ----D---- C:\Documents and Settings\Spravca\Data aplikací\Screaming Bee
2011-10-19 14:55:09 ----D---- C:\Documents and Settings\All Users\Data aplikací\Screaming Bee
2011-10-18 07:40:51 ----D---- C:\Program Files\FREEONLINERADIOPLAYERRECORDER
2011-10-16 08:47:19 ----D---- C:\Documents and Settings\Spravca\Data aplikací\The Bat!
2011-10-16 08:46:21 ----D---- C:\Program Files\The Bat!
2011-10-16 08:33:55 ----D---- C:\Documents and Settings\Spravca\Data aplikací\KomaMail
2011-10-12 23:47:06 ----A---- C:\WINDOWS\ModemLog_Bluetooth Fax Modem.txt
2011-10-11 17:58:21 ----A---- C:\libSRTP_log.txt
2011-10-11 12:04:26 ----A---- C:\WINDOWS\MAILMOA.INI
2011-10-11 11:06:23 ----D---- C:\Documents and Settings\Spravca\Data aplikací\PopMan
2011-10-11 09:28:39 ----D---- C:\Documents and Settings\Spravca\Data aplikací\POP Peeper
2011-10-11 09:28:04 ----D---- C:\Program Files\POP Peeper
2011-10-10 23:15:42 ----D---- C:\Program Files\CounterPath
2011-10-10 18:13:09 ----D---- C:\Documents and Settings\All Users\Data aplikací\CounterPath
2011-10-10 16:05:37 ----D---- C:\Documents and Settings\Spravca\Data aplikací\gtk-2.0
2011-10-10 10:00:39 ----A---- C:\WINDOWS\struct~.ini
2011-10-10 09:44:53 ----SHD---- C:\Documents and Settings\Spravca\Data aplikací\.#
2011-10-09 22:01:55 ----A---- C:\WINDOWS\ModemLog_Bluetooth DUN Modem.txt
2011-10-06 07:45:31 ----D---- C:\Documents and Settings\Spravca\Data aplikací\Thunderbird
2011-10-06 07:45:19 ----D---- C:\Program Files\Mozilla Thunderbird
2011-10-05 12:40:40 ----A---- C:\WINDOWS\setdebug.exe
2011-10-05 12:40:39 ----A---- C:\WINDOWS\system32\jit.dll
2011-10-05 12:40:39 ----A---- C:\WINDOWS\system32\javaee.dll
2011-10-05 12:40:39 ----A---- C:\WINDOWS\system32\dx3j.dll
2011-10-05 12:40:39 ----A---- C:\WINDOWS\jautoexp.dat
2011-10-05 12:40:27 ----A---- C:\WINDOWS\system32\wjview.exe
2011-10-05 12:40:27 ----A---- C:\WINDOWS\system32\vmhelper.dll
2011-10-05 12:40:27 ----A---- C:\WINDOWS\system32\msjdbc10.dll
2011-10-05 12:40:26 ----A---- C:\WINDOWS\system32\msjava.dll
2011-10-05 12:40:26 ----A---- C:\WINDOWS\system32\msawt.dll
2011-10-05 12:40:26 ----A---- C:\WINDOWS\system32\jview.exe
2011-10-05 12:40:26 ----A---- C:\WINDOWS\system32\jdbgmgr.exe
2011-10-05 12:40:26 ----A---- C:\WINDOWS\system32\javart.dll
2011-10-05 12:40:25 ----A---- C:\WINDOWS\system32\javaprxy.dll
2011-10-05 12:40:25 ----A---- C:\WINDOWS\system32\javacypt.dll
2011-10-05 12:40:24 ----A---- C:\WINDOWS\system32\clspack.exe
2011-10-04 21:31:08 ----D---- C:\Documents and Settings\Spravca\Data aplikací\Media Get LLC
2011-10-04 21:31:07 ----D---- C:\Documents and Settings\All Users\Data aplikací\Media Get LLC
2011-09-30 20:51:35 ----D---- C:\WINDOWS\Sun
2011-09-30 11:57:26 ----D---- C:\Program Files\Microsoft Works
2011-09-30 11:55:38 ----D---- C:\Program Files\Microsoft Visual Studio
2011-09-30 11:55:37 ----D---- C:\Program Files\Common Files\DESIGNER
2011-09-30 11:46:54 ----D---- C:\Program Files\Microsoft Visual Studio 8
2011-09-30 11:44:12 ----D---- C:\WINDOWS\SHELLNEW
2011-09-30 11:43:08 ----D---- C:\Program Files\Microsoft Office
2011-09-30 11:42:01 ----RHD---- C:\MSOCache
2011-09-29 19:04:17 ----D---- C:\Documents and Settings\Spravca\Data aplikací\facemoods.com
2011-09-29 11:27:30 ----HD---- C:\$AVG
2011-09-29 09:58:52 ----D---- C:\WINDOWS\system32\drivers\AVG
2011-09-29 09:56:52 ----D---- C:\Program Files\AVG
2011-09-28 23:15:05 ----AH---- C:\WINDOWS\system32\mlfcache.dat

======List of files/folders modified in the last 1 month======

2011-10-26 11:32:24 ----D---- C:\Program Files
2011-10-26 11:31:08 ----D---- C:\WINDOWS
2011-10-26 11:27:51 ----D---- C:\WINDOWS\temp
2011-10-26 11:26:48 ----D---- C:\WINDOWS\Prefetch
2011-10-26 11:23:21 ----D---- C:\WINDOWS\system32\CatRoot2
2011-10-26 11:15:35 ----D---- C:\Documents and Settings\Spravca\Data aplikací\Skype
2011-10-26 11:04:22 ----D---- C:\WINDOWS\system32\drivers
2011-10-26 09:39:43 ----D---- C:\Documents and Settings\All Users\Data aplikací\MFAData
2011-10-26 06:43:58 ----HD---- C:\WINDOWS\inf
2011-10-26 06:29:12 ----SHD---- C:\System Volume Information
2011-10-26 06:07:45 ----A---- C:\WINDOWS\FORGE32.ini
2011-10-26 06:07:44 ----D---- C:\Program Files\Sound Forge
2011-10-26 05:50:52 ----D---- C:\Documents and Settings\Spravca\Data aplikací\Winamp
2011-10-26 05:48:49 ----D---- C:\WINDOWS\system32\Restore
2011-10-26 05:46:48 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-10-26 05:44:56 ----D---- C:\Program Files\Avant Browser
2011-10-26 05:38:20 ----D---- C:\Documents and Settings\Spravca\Data aplikací\uTorrent
2011-10-26 05:38:08 ----D---- C:\WINDOWS\Minidump
2011-10-25 20:06:03 ----D---- C:\Program Files\Opera
2011-10-25 17:52:24 ----SHD---- C:\WINDOWS\Installer
2011-10-25 17:52:10 ----SD---- C:\WINDOWS\Tasks
2011-10-25 17:36:29 ----A---- C:\WINDOWS\NeroDigital.ini
2011-10-25 17:21:22 ----D---- C:\Program Files\SJphone 1.65
2011-10-25 17:21:22 ----D---- C:\Program Files\Common Files
2011-10-25 15:16:52 ----D---- C:\Documents and Settings\Spravca\Data aplikací\Power Sound Editor Free
2011-10-25 09:55:22 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-10-25 09:55:11 ----D---- C:\WINDOWS\system32
2011-10-24 17:14:51 ----D---- C:\Program Files\VLC media player
2011-10-21 21:44:57 ----D---- C:\Documents and Settings\Spravca\Data aplikací\Opera
2011-10-19 19:51:38 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2011-10-18 18:30:19 ----D---- C:\WINDOWS\Media
2011-10-10 17:36:27 ----SD---- C:\Documents and Settings\Spravca\Data aplikací\Microsoft
2011-10-10 16:30:45 ----A---- C:\WINDOWS\win.ini
2011-10-10 11:14:31 ----D---- C:\WINDOWS\WinSxS
2011-10-06 18:31:57 ----SD---- C:\WINDOWS\Downloaded Program Files
2011-10-06 16:20:49 ----D---- C:\Documents and Settings\Spravca\Data aplikací\Mozilla
2011-10-05 12:40:50 ----HD---- C:\Program Files\InstallShield Installation Information
2011-10-05 12:40:48 ----D---- C:\WINDOWS\Help
2011-10-05 12:40:36 ----D---- C:\WINDOWS\java
2011-10-05 10:54:05 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVG2012
2011-10-05 10:19:27 ----D---- C:\WINDOWS\AppPatch
2011-10-05 09:52:18 ----D---- C:\WINDOWS\pss
2011-10-04 21:44:09 ----D---- C:\Program Files\CCleaner
2011-10-03 19:09:30 ----D---- C:\Program Files\Mozilla Firefox
2011-09-30 12:10:10 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2011-09-30 12:09:38 ----RSD---- C:\WINDOWS\assembly
2011-09-30 11:57:01 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-09-30 11:56:46 ----D---- C:\Program Files\MSBuild
2011-09-30 11:54:07 ----RSD---- C:\WINDOWS\Fonts
2011-09-30 11:53:14 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2011-09-30 11:53:14 ----D---- C:\Program Files\Microsoft.NET
2011-09-30 11:44:44 ----D---- C:\Program Files\Common Files\System
2011-09-29 10:06:17 ----D---- C:\WINDOWS\SxsCaPendDel

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSEH;AVGIDSEH; C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys [2011-07-11 23120]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\WINDOWS\system32\DRIVERS\avgrkx86.sys [2011-09-13 32592]
R0 BTHidMgr;Bluetooth HID Manager Service; C:\WINDOWS\System32\Drivers\BTHidMgr.sys [2005-04-30 28271]
R0 mv61xxmm;mv61xxmm; C:\WINDOWS\system32\drivers\mv61xxmm.sys [2011-02-12 13616]
R0 mv64xxmm;mv64xxmm; C:\WINDOWS\system32\drivers\mv64xxmm.sys [2011-02-12 5632]
R0 mvxxmm;mvxxmm; C:\WINDOWS\system32\drivers\mvxxmm.sys [2011-02-12 13616]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2007-03-08 43528]
R0 viaagp1;VIA AGP Filter; C:\WINDOWS\system32\DRIVERS\viaagp1.sys [2002-07-23 32128]
R0 videX32;videX32; C:\WINDOWS\system32\DRIVERS\videX32.sys [2010-02-11 13976]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 VIAPFD;VIAPFD; C:\WINDOWS\System32\Drivers\VIAPFD.SYS [2001-12-18 3279]
R3 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\system32\DRIVERS\vbtenum.sys [2005-04-30 11860]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-22 32384]
R3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S1 Avgldx86;AVG AVI Loader Driver; C:\WINDOWS\system32\DRIVERS\avgldx86.sys [2011-07-11 229840]
S1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\WINDOWS\system32\DRIVERS\avgmfx86.sys [2011-08-08 40016]
S1 Avgtdix;AVG TDI Driver; C:\WINDOWS\system32\DRIVERS\avgtdix.sys [2011-07-11 295248]
S1 DumpDrv;Crash Dump Driver; C:\WINDOWS\system32\drivers\DumpDrv.sys [2011-02-12 9472]
S1 P3;Ovladač procesoru Intel PentiumIII; C:\WINDOWS\system32\DRIVERS\p3.sys [2011-02-12 46592]
S2 rspndr;Odpovídající zařízení zjišťování topologie linkové vrstvy; C:\WINDOWS\system32\DRIVERS\rspndr.sys [2011-02-12 62848]
S3 Avgfwdx;Avgfwdx; C:\WINDOWS\system32\DRIVERS\avgfwdx.sys [2011-05-23 30944]
S3 Avgfwfd;AVG network filter service; C:\WINDOWS\system32\DRIVERS\avgfwdx.sys [2011-05-23 30944]
S3 AVGIDSDriver;AVGIDSDriver; C:\WINDOWS\system32\DRIVERS\AVGIDSDriver.Sys [2011-07-11 134608]
S3 AVGIDSFilter;AVGIDSFilter; C:\WINDOWS\system32\DRIVERS\AVGIDSFilter.Sys [2011-07-11 24272]
S3 AVGIDSShim;AVGIDSShim; C:\WINDOWS\system32\DRIVERS\AVGIDSShim.Sys [2011-07-11 16720]
S3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys [2005-05-31 20480]
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys [2005-04-30 10804]
S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\WINDOWS\System32\Drivers\btcusb.sys [2005-05-31 23000]
S3 BTNetFilter;Bluetooth Network Filter; \??\C:\WINDOWS\system32\drivers\BTNetFilter.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 esihdrv;esihdrv; \??\C:\DOCUME~1\Spravca\LOCALS~1\Temp\esihdrv.sys []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2008-05-16 6557408]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2001-10-25 5888]
S3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2008-04-13 20992]
S3 SCREAMINGBDRIVER;Screaming Bee Audio; C:\WINDOWS\system32\drivers\ScreamingBAudio.sys [2010-07-01 34896]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 SNP325;USB PC Camera (SNPSTD325); C:\WINDOWS\system32\DRIVERS\snp325.sys [2007-04-03 10251904]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys [2004-10-19 61312]
S3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys [2005-03-25 82148]
S3 VIAudio;VIA AC'97 Audio Controller (WDM); C:\WINDOWS\system32\drivers\viaudio.sys [2000-12-09 41208]
S3 WsAudio_DeviceS(1);WsAudio_DeviceS(1); C:\WINDOWS\system32\drivers\WsAudio_DeviceS(1).sys [2010-09-19 25704]
S3 WsAudio_DeviceS(2);WsAudio_DeviceS(2); C:\WINDOWS\system32\drivers\WsAudio_DeviceS(2).sys [2010-09-19 25704]
S3 WsAudio_DeviceS(3);WsAudio_DeviceS(3); C:\WINDOWS\system32\drivers\WsAudio_DeviceS(3).sys [2010-09-19 25704]
S3 WsAudio_DeviceS(4);WsAudio_DeviceS(4); C:\WINDOWS\system32\drivers\WsAudio_DeviceS(4).sys [2010-09-19 25704]
S3 WsAudio_DeviceS(5);WsAudio_DeviceS(5); C:\WINDOWS\system32\drivers\WsAudio_DeviceS(5).sys [2010-09-19 25704]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2011-02-12 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2011-02-12 82944]
S3 YMIDUSBW;Yamaha USB-MIDI Driver (WDM); C:\WINDOWS\system32\drivers\ymidusbw.sys [2011-01-31 34280]
S4 exFat;exFat; C:\WINDOWS\system32\drivers\exFat.sys [2011-02-12 133632]
S4 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

S2 avgfws;AVG Firewall; C:\Program Files\AVG\AVG2012\avgfws.exe [2011-08-19 2399560]
S2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe [2011-09-12 5265248]
S2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2012\avgwdsvc.exe [2011-08-02 192776]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2008-05-16 159812]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 BlueSoleil Hid Service;BlueSoleil Hid Service; C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe [2005-04-06 110592]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2011-02-12 14848]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2011-02-12 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2011-02-12 14848]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]

-----------------EOF-----------------

[panter2005]

Pekne prosim o kontrolu

[motji]

Dobrý večer
Vypadá to na nabořený systém. Mrkneme na stav disku.

stáhněte
http://www.slunecnice.cz/sw/crystaldiskinfo/
- spusťte ho a v nabídce zvolte Kopírovat.
-Data ze schránky sem pak vložte pomocí Ctrl+V

[panter2005]

Zasielam to :

----------------------------------------------------------------------------
CrystalDiskInfo 4.1.3 (C) 2008-2011 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows XP Professional SP3 [5.1 Build 2600] (x86)
Date : 2011/10/26 23:17:38

-- Controller Map ----------------------------------------------------------
+ VIA Bus Master IDE Controller - 0571 [ATA]
+ Primární kanál IDE (0)
- HL-DT-ST DVD-RAM GSA-H55N
- WDC WD1600AAJB-00J3A0
+ Sekundární kanál IDE (1)
- HL-DT-ST CD-RW GCE-8520B

-- Disk List ---------------------------------------------------------------
(1) WDC WD1600AAJB-00J3A0 : 160.0 GB [0-0-0, pd1]

----------------------------------------------------------------------------
(1) WDC WD1600AAJB-00J3A0
----------------------------------------------------------------------------
Model : WDC WD1600AAJB-00J3A0
Firmware : 01.03E01
Serial Number : WD-WCAV3E212198
Disk Size : 160.0 GB (8.4/137.4/160.0)
Buffer Size : 8192 KB
Queue Depth : 1
# of Sectors : 312581808
Rotation Rate : Unknown
Interface : Parallel ATA
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : Ultra DMA/133
Power On Hours : 2088 hours
Power On Count : 265 count
Temparature : 38 C (100 F)
Health Status : Good
Features : S.M.A.R.T., 48bit LBA
APM Level : ----
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000001 Read Error Rate
03 133 133 _21 0000000010E5 Spin-Up Time
04 100 100 __0 000000000134 Start/Stop Count
05 200 200 140 000000000000 Reallocated Sectors Count
07 100 253 __0 000000000000 Seek Error Rate
09 _98 _98 __0 000000000828 Power-On Hours
0A 100 100 __0 000000000000 Spin Retry Count
0B 100 100 __0 000000000000 Recalibration Retries
0C 100 100 __0 000000000109 Power Cycle Count
C0 200 200 __0 00000000001C Power-off Retract Count
C1 200 200 __0 000000000134 Load/Unload Cycle Count
C2 105 _99 __0 000000000026 Temperature
C4 200 200 __0 000000000000 Reallocation Event Count
C5 200 200 __0 000000000000 Current Pending Sector Count
C6 100 253 __0 000000000000 Uncorrectable Sector Count
C7 200 200 __0 000000000008 UltraDMA CRC Error Count
C8 100 253 __0 000000000000 Write Error Rate

-- IDENTIFY_DEVICE ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 42 7A 3F FF C8 37 00 10 00 00 00 00 00 3F 00 00
010: 00 00 00 00 20 20 20 20 20 57 44 2D 57 43 41 56
020: 33 45 32 31 32 31 39 38 00 00 40 00 00 32 30 31
030: 2E 30 33 45 30 31 57 44 43 20 57 44 31 36 30 30
040: 41 41 4A 42 2D 30 30 4A 33 41 30 20 20 20 20 20
050: 20 20 20 20 20 20 20 20 20 20 20 20 20 20 80 10
060: 00 00 2F 00 40 01 00 00 00 00 00 07 3F FF 00 10
070: 00 3F FC 10 00 FB 01 10 FF FF 0F FF 00 00 00 07
080: 00 03 00 78 00 78 00 78 00 78 00 00 00 00 00 00
090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0A0: 01 FE 00 00 74 6B 7D 61 41 23 74 69 BC 41 41 23
0B0: 20 7F 00 0F 00 0F 00 00 FF FE 60 3B 00 00 00 00
0C0: 00 00 00 00 00 00 00 00 9E B0 12 A1 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 50 01 4E E1 AE 9B 7B CB
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 10
0F0: 40 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 09 00 00 00 00 00 00 00 00 16 D5 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 04 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 01 16 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 30 37 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 01 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 01 10 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 EB A5

[motji]

Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe
-uložte ho na plochu a spustte soubor OTL.exe.
-do bílého okna dole skopírujte tento skript:

Kód: Vybrat vše

netsvcs
drivers32
savembr:0
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s

/md5start
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
hal.dll
logevent.dll
netlogon.dll
ntelogon.dll
scecli.dll
sceclt.dll
ws2_32.dll
autochk.exe
csrss.exe
explorer.exe
lsass.exe
services.exe
smss.exe
spoolsv.exe
svchost.exe
userinit.exe
winlogon.exe
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
cdrom.sys
Changer.sys
fastfat.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
mv61xx.sys
ndis.sys
ntfs.sys
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
symmpi.sys
tcpip.sys
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
/md5stop

C:\windows\system32\spool\prtprocs|dll;true;true;true /FP
%systemroot%\system32\drivers\*.sys /5
%systemroot%\system32\drivers\*.sys /X
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\system32\*.* /5
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\config\*.sav
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\*.* /U /s
%systemroot%\*. /mp /s
%ALLUSERSPROFILE%\Data Aplikací\*.*
%ALLUSERSPROFILE%\Data Aplikací\*.exe /s
%ALLUSERSPROFILE%\Dáta aplikácií\*.*
%ALLUSERSPROFILE%\Dáta aplikácií\*.exe /s
%APPDATA%\*.
%APPDATA%\*.*
%APPDATA%\*.exe /s
%SYSTEMDRIVE%\*.exe


HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU /s
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\BITS /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager" /v BootExecute /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager" /v "PendingFileRenameOperations" /c

type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5 

- zaškrtněte okénko Pro všechny uživatele.
-označte okénka Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
- Klikněte na tlačítko Prohledat
-po dokončení skenu se objeví logy OTL.Txt a Extras.txt, vložte je zde

[panter2005]

Este predtym ako to spravim , chcem povedat ze som to nechal prejst MBAM a nieco tam nasiel .
Dufam ze som tym nic zle nespravil .
Tu je log :

Malwarebytes' Anti-Malware 1.50
www.malwarebytes.org

Verze databáze: 8027

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

27. 10. 2011 8:07:37
mbam-log-2011-10-27 (08-07-23).txt

Typ kontroly: Úplný test (A:\|B:\|C:\|D:\|E:\|F:\|)
Testované objekty: 201919
Uplynulý čas: 43 minut, 0 sekund

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 4

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
c:\RECYCLER\s-1-5-21-507921405-1708537768-1202660629-1004\Dc12.exe (Rogue.Installer) -> No action taken.
c:\system volume information\_restore{270a3ee1-e465-4088-940b-1c75a97f0fbe}\RP2\A0008146.exe (Adware.RelevantKnowledge) -> No action taken.
c:\system volume information\_restore{270a3ee1-e465-4088-940b-1c75a97f0fbe}\RP3\A0008291.dll (Adware.RelevantKnowledge) -> No action taken.
c:\system volume information\_restore{270a3ee1-e465-4088-940b-1c75a97f0fbe}\RP3\A0008292.exe (Adware.RelevantKnowledge) -> No action taken.

[motji]

V mbamu to můžete smazat

[panter2005]

Prosim Vas , uz viac ako hodinu mi to skenuje - OTC . Je to normalne ??? Zabera to 100 percent CPU , pritom sa nic neda robit ....

[motji]

No uplně normální to není, ale vydržte ještě chvilku

[panter2005]

Podla mna to nema zmysel nechavat dalej skenovat. Ono sa to asi niekde zaseklo a nepusti dalej.
Tri hodiny by uz aj hadam stacilo - ci nie ? V PC tam toho vela nemam .

[motji]

Dobře, zkuste to ukončit

[panter2005]

Je to vsetko ?

[motji]

Jak to ted vypadá s počítačem?

[panter2005]

Tak vcera sa sam nerestartoval ani raz .
Nieco ste pisali , ze mate pochybnosti o disku .
Vypadá to na nabořený systém.
Ako to vypada z logu Crystaldiscinfo ?

Ja si raz za tyzden precistim PC CCleanerom .
No a to som spravil aj pred tym ako mi to zacalo robit - to samovolne restartovanie.
V CCleanery som vycistil aj registry a potom mi to zacalo robit .
Samozrejme som si ich najprv zalohoval . Ked to zacalo robit , tak som ich opat obnovil.

Preto sa chcem opytat , ako je to z cistenim registrov v CCleaneri . Je to vobec
bezpecne ? , ked sa mi to stalo ?

[motji]

Disk je v pořádku.
Čištění ccleanerem je bezpečné, ale stát se to může..souhra náhod.
PC pár dní sledujte a napište