prosim o provereni log

[Márty84]

Fajn, toto je v poradku.

Co ten MBAM? Delate test? Mam cekat na log? Nebo jste test delala bez nalezu a pojedeme dal?

[cacorka]

zatim stale bezi....

[Márty84]

Vyborne. Tak pockame a pak se uvidi

[cacorka]

nic to nenašlo

[Márty84]

Stahnete crystal disk info http://www.slunecnice.cz/sw/crystaldiskinfo/
Nainstalujte a spustte. Za chvili se zobrazi vysledek.
Kliknete nahore na napis Úpravy a pak na napis Kopírovat. To co se zkopiruje (ulozi se to do pameti) mi sem vlozte

[cacorka]

----------------------------------------------------------------------------
CrystalDiskInfo 5.0.5 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows XP Professional SP3 [5.1 Build 2600] (x86)
Date : 2012/11/02 17:17:00

-- Controller Map ----------------------------------------------------------
+ Intel(R) 82801GBM/GHM (ICH7-M Family) Serial ATA Storage Controller - 27C4 [ATA]
+ Primární kanál IDE (0)
- WDC WD1600BEVT-00A23T0
- Sekundární kanál IDE (1)

-- Disk List ---------------------------------------------------------------
(1) WDC WD1600BEVT-00A23T0 : 160,0 GB [0/0/0, pd1]

----------------------------------------------------------------------------
(1) WDC WD1600BEVT-00A23T0
----------------------------------------------------------------------------
Model : WDC WD1600BEVT-00A23T0
Firmware : 01.01A01
Serial Number : WD-WXK1A10D3964
Disk Size : 160,0 GB (8,4/137,4/160,0)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 312581808
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : SATA/300
Power On Hours : 3522 hod.
Power On Count : 1138 krát
Temparature : 39 C (102 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, AAM, 48bit LBA, NCQ
APM Level : 0060h [ON]
AAM Level : 80FEh [OFF]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 152 147 _21 00000000054E Čas na roztočení ploten
04 _99 _99 __0 0000000004D2 Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 200 200 __0 000000000000 Počet chybných hledání
09 _96 _96 __0 000000000DC2 Hodin v činnosti
0A 100 100 __0 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C _99 _99 __0 000000000472 Počet cyklů zapnutí zařízení
C0 200 200 __0 000000000037 Počet vypnutí disku
C1 159 159 __0 00000001E2BD Počet cyklů načítání/vymazání
C2 104 _78 __0 000000000027 Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 100 253 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 100 253 __0 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 427A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2057 442D 5758 4B31 4131 3044 3339 3634
020: 0000 4000 0032 3031 2E30 3141 3031 5744 4320 5744
030: 3136 3030 4245 5654 2D30 3041 3233 5430 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4001 0000 0000 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 1F06 0000 004C 0000
080: 01FE 0000 746B 7F09 6163 7469 BC09 6163 207F 001D
090: 001D 0060 FFFE 0000 80FE 0000 0000 0000 0000 0000
100: 9EB0 12A1 0000 0000 0000 0000 0000 0000 5001 4EE0
110: 576C 8CC1 0000 0000 0000 0000 0000 0000 0000 4018
120: 4018 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 16E5 0000 0000 0000 0000 0000 0000
140: 0000 0000 0004 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 7037 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 101E 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 1000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 47A5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 2F 00 C8 C8 00 00 00 00 00 00 00 03 27
010: 00 98 93 4E 05 00 00 00 00 00 04 32 00 63 63 D2
020: 04 00 00 00 00 00 05 33 00 C8 C8 00 00 00 00 00
030: 00 00 07 2E 00 C8 C8 00 00 00 00 00 00 00 09 32
040: 00 60 60 C2 0D 00 00 00 00 00 0A 32 00 64 64 00
050: 00 00 00 00 00 00 0B 32 00 64 64 00 00 00 00 00
060: 00 00 0C 32 00 63 63 72 04 00 00 00 00 00 C0 32
070: 00 C8 C8 37 00 00 00 00 00 00 C1 32 00 9F 9F BD
080: E2 01 00 00 00 00 C2 22 00 68 4E 27 00 00 00 00
090: 00 00 C4 32 00 C8 C8 00 00 00 00 00 00 00 C5 32
0A0: 00 C8 C8 00 00 00 00 00 00 00 C6 30 00 64 FD 00
0B0: 00 00 00 00 00 00 C7 32 00 C8 C8 00 00 00 00 00
0C0: 00 00 C8 08 00 64 FD 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 80 16 01 7B
170: 03 00 01 00 02 46 05 00 00 00 00 00 00 00 00 00
180: 00 00 01 02 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0D

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 C8 C8 00 00 00 00 00 00 00 00 03 15
010: 00 00 00 00 00 00 00 00 00 00 04 00 00 00 00 00
020: 00 00 00 00 00 00 05 8C 00 00 00 00 00 00 00 00
030: 00 00 07 00 C8 C8 00 00 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 00 00 00 00 00
050: 00 00 00 00 00 00 0B 00 00 00 00 00 00 00 00 00
060: 00 00 0C 00 00 00 00 00 00 00 00 00 00 00 C0 00
070: 00 00 00 00 00 00 00 00 00 00 C1 00 00 00 00 00
080: 00 00 00 00 00 00 C2 00 00 00 00 00 00 00 00 00
090: 00 00 C4 00 00 00 00 00 00 00 00 00 00 00 C5 00
0A0: 00 00 00 00 00 00 00 00 00 00 C6 00 00 00 00 00
0B0: 00 00 00 00 00 00 C7 00 00 00 00 00 00 00 00 00
0C0: 00 00 C8 00 00 00 00 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 9D

[Márty84]

Pokud najdete tyto dva soubory, smazte je
C:\WINDOWS\tasks\Spybot - Search & Destroy - Scheduled Task.job
C:\WINDOWS\tasks\Spybot - Search & Destroy Updater - Scheduled Task.job




Stahnete OTC http://oldtimer.geekstogo.com/OTC.exe , ulozte a spustte.
Kliknete na napis CleanUp a pote OK - Po uklidu dojde k restartu pc.

Stahnete TFC http://oldtimer.geekstogo.com/TFC.exe , ulozte a spustte
Kliknete na START a pote OK - Po uklidu dojde k restartu pc.
Po pouziti muzete programek smazat

Stahnete CCleaner http://www.stahuj.centrum.cz/utility_a_ ... /ccleaner/ a spustte.
Pri instalaci pozor na toolbar, jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!

Defragmentujte disk(y)
Stahnete program Defraggler http://www.stahuj.centrum.cz/utility_a_ ... efraggler/
Pri instalaci opet pozor na toolbar
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.

(Defraggler i CCleaner v logu vidim, ale nevim, zda jste je pouzila )



Pak sem dejte novy log z RSIT a napiste, jak je na tom pocitac.

[cacorka]

je to výrazně lepší, nedosahuje to sice maximalni rychlosti odezvy, ale jde to......

Logfile of random's system information tool 1.09 (written by random/random)
Run by klarka at 2012-11-03 01:10:11
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 82 GB (54%) free of 153 GB
Total RAM: 1015 MB (68% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 1:11:13, on 3.11.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\EeePC\ACPI\AsTray.exe
C:\Program Files\EeePC\ACPI\AsAcpiSvr.exe
C:\Program Files\EeePC\ACPI\AsEPCMon.exe
C:\Program Files\Alwil Software\Avast5\avastUI.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\igfxext.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\WINDOWS\system32\FsUsbExService.Exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\klarka\Dokumenty\Downloads\RSIT(2).exe
C:\Program Files\trend micro\klarka.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [AsusTray] C:\Program Files\EeePC\ACPI\AsTray.exe
O4 - HKLM\..\Run: [AsusEPCMonitor] C:\Program Files\EeePC\ACPI\AsEPCMon.exe
O4 - HKLM\..\Run: [avast] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Odeslat do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat do zařízení Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} (Java Plug-in 1.6.0_31) -
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe
O23 - Service: HP LaserJet Service - HP - C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe

--
End of file - 5036 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\avast! Emergency Update.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\klarka\Data aplikací\Mozilla\Firefox\Profiles\7zcpsuwe.default

prefs.js - "browser.startup.homepage" - "http://www.google.cz/"
prefs.js - "keyword.URL" - "http://search.yahoo.com/search?fr=green ... =827316&p="

"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"wrc@avast.com"=C:\Program Files\Alwil Software\Avast5\WebRep\FF
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.4.402.287 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_4_402_287.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_37]
"Description"=
"Path"=C:\WINDOWS\system32\npdeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\plugins\
nppdf32.dll

C:\Program Files\Mozilla Firefox\searchplugins\
amazondotcom.xml
eBay.xml
google.xml
twitter.xml
wikipedia.xml
yahoo.xml
yahoo.xml.old

C:\Documents and Settings\klarka\Data aplikací\Mozilla\Firefox\Profiles\7zcpsuwe.default\extensions\
{20a82645-c095-46ed-80e3-08825760534b}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2012-09-24 329712]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2012-08-21 1227224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2012-09-24 59376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2012-09-24 79856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2012-08-21 1227224]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2007-12-19 159744]
"AsusTray"=C:\Program Files\EeePC\ACPI\AsTray.exe [2008-09-17 106496]
"AsusEPCMonitor"=C:\Program Files\EeePC\ACPI\AsEPCMon.exe [2008-05-21 94208]
"avast"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2012-08-21 4282728]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2010-11-02 19580520]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Nabídka Start^Programy^Po spuštění^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2008-09-02 604776]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Nabídka Start^Programy^Po spuštění^Microsoft Office.lnk]
C:\PROGRA~1\MICROS~2\Office\OSA9.EXE [2000-01-21 65588]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Nabídka Start^Programy^Po spuštění^SuperHybridEngine.lnk]
C:\PROGRA~1\ASUS\EeePC\SUPERH~1\SUPERH~1.EXE [2008-09-17 376832]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^klarka^Nabídka Start^Programy^Po spuštění^Dropbox.lnk]
C:\Documents and Settings\klarka\Data aplikací\Dropbox\bin\Dropbox.exe []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2007-12-19 208896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2011-07-19 113024]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\VideoLAN\VLC\vlc.exe"="C:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player"
"C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe"="C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe:*:Enabled:KTF MUSIC AoD Server"
"C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe"="C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe:*:Enabled:KTF MUSIC VoD Server"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Documents and Settings\klarka\Data aplikací\Dropbox\bin\Dropbox.exe"="C:\Documents and Settings\klarka\Data aplikací\Dropbox\bin\Dropbox.exe:*:Enabled:Dropbox"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======List of files/folders created in the last 1 month======

2012-11-03 00:10:47 ----D---- C:\rsit
2012-11-02 17:17:34 ----D---- C:\Program Files\Microsoft Silverlight
2012-11-02 17:16:22 ----D---- C:\Documents and Settings\klarka\Data aplikací\OpenCandy
2012-11-02 10:01:24 ----D---- C:\WINDOWS\CSC
2012-11-01 17:35:45 ----D---- C:\Program Files\Defraggler
2012-10-31 12:17:07 ----D---- C:\Documents and Settings\klarka\Data aplikací\TuneUp Software
2012-10-31 12:15:57 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TuneUp Software
2012-10-31 12:15:05 ----SHD---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2012-10-31 12:05:49 ----D---- C:\Documents and Settings\klarka\Data aplikací\pdfforge
2012-10-30 23:20:29 ----D---- C:\Program Files\Common Files\CIGLER SOFTWARE
2012-10-30 23:20:29 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\CIGLER SOFTWARE
2012-10-30 18:54:35 ----A---- C:\WINDOWS\system32\pdfcmon.dll
2012-10-30 18:54:27 ----A---- C:\WINDOWS\system32\MSMPIDE.DLL
2012-10-30 08:21:14 ----HD---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Common Files
2012-10-30 08:12:13 ----D---- C:\Program Files\Common Files\Java
2012-10-30 08:11:41 ----A---- C:\WINDOWS\system32\javaws.exe
2012-10-30 08:11:41 ----A---- C:\WINDOWS\system32\javaw.exe
2012-10-30 08:11:41 ----A---- C:\WINDOWS\system32\java.exe
2012-10-30 08:10:23 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\McAfee
2012-10-29 18:51:11 ----D---- C:\Program Files\SUPERAntiSpyware
2012-10-29 18:26:02 ----D---- C:\Program Files\Mozilla Thunderbird
2012-10-27 18:07:29 ----D---- C:\Program Files\Mozilla Firefox
2012-10-25 08:48:16 ----A---- C:\WINDOWS\system32\CNC495I.dll
2012-10-25 08:48:15 ----A---- C:\WINDOWS\system32\CNHMCA.dll
2012-10-25 08:48:15 ----A---- C:\WINDOWS\system32\CNC495U.dll
2012-10-25 08:48:15 ----A---- C:\WINDOWS\system32\CNC495L.dll
2012-10-25 08:48:15 ----A---- C:\WINDOWS\system32\CNC495C.dll
2012-10-25 07:58:51 ----A---- C:\WINDOWS\system32\CNC495O.dll
2012-10-25 07:58:33 ----HD---- C:\Program Files\CanonBJ
2012-10-25 05:50:54 ----D---- C:\VueScan
2012-10-12 08:19:19 ----HDC---- C:\WINDOWS\$NtUninstallKB2724197$
2012-10-12 08:04:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2756822$
2012-10-12 08:02:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2749655$
2012-10-12 08:00:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2661254-v2$
2012-10-06 08:05:18 ----A---- C:\WINDOWS\vncutil.exe
2012-10-06 08:05:18 ----A---- C:\WINDOWS\SOUNDMAN.EXE
2012-10-06 08:05:17 ----A---- C:\WINDOWS\SkyTel.exe
2012-10-06 08:05:12 ----A---- C:\WINDOWS\RTLCPL.EXE
2012-10-06 08:05:10 ----A---- C:\WINDOWS\system32\drivers\RtkHDAud.sys
2012-10-06 08:05:07 ----A---- C:\WINDOWS\system32\RtkCoInstXP.dll
2012-10-06 08:05:06 ----A---- C:\WINDOWS\RtkAudioService.exe
2012-10-06 08:05:01 ----A---- C:\WINDOWS\RTHDCPL.EXE
2012-10-06 08:04:59 ----A---- C:\WINDOWS\system32\drivers\Monfilt.sys
2012-10-06 08:04:58 ----A---- C:\WINDOWS\MicCal.exe
2012-10-06 08:04:48 ----A---- C:\WINDOWS\system32\drivers\Ambfilt.sys
2012-10-06 08:04:45 ----A---- C:\WINDOWS\ALCWZRD.EXE
2012-10-06 08:04:44 ----D---- C:\Program Files\Realtek
2012-10-06 08:04:44 ----A---- C:\WINDOWS\ALCMTR.EXE
2012-10-06 08:03:12 ----A---- C:\WINDOWS\RtlExUpd.dll
2012-10-05 16:00:01 ----D---- C:\Documents and Settings\klarka\Data aplikací\InstallShield

======List of files/folders modified in the last 1 month======

2012-11-03 01:10:42 ----D---- C:\Program Files\trend micro
2012-11-03 00:30:01 ----D---- C:\WINDOWS\Temp
2012-11-03 00:10:53 ----D---- C:\WINDOWS\Prefetch
2012-11-02 22:10:39 ----SHD---- C:\WINDOWS\Installer
2012-11-02 22:10:38 ----RD---- C:\Program Files\Skype
2012-11-02 22:09:27 ----D---- C:\Program Files
2012-11-02 22:08:50 ----D---- C:\Program Files\TaxEdit2
2012-11-02 22:02:38 ----D---- C:\WINDOWS
2012-11-02 21:59:25 ----N---- C:\WINDOWS\SchedLgU.Txt
2012-11-02 20:04:17 ----SD---- C:\WINDOWS\Tasks
2012-11-02 17:19:11 ----SD---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Microsoft
2012-11-02 17:16:39 ----D---- C:\WINDOWS\system32\drivers
2012-11-02 09:57:48 ----D---- C:\Documents and Settings
2012-11-01 21:09:42 ----D---- C:\WINDOWS\system32\drivers\etc
2012-11-01 20:47:58 ----D---- C:\Program Files\Google
2012-11-01 17:15:02 ----D---- C:\WINDOWS\system32
2012-10-31 12:17:38 ----D---- C:\WINDOWS\system32\config
2012-10-31 11:49:36 ----D---- C:\WINDOWS\pss
2012-10-31 11:14:28 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2012-10-31 11:06:10 ----D---- C:\Program Files\Common Files
2012-10-31 11:06:07 ----D---- C:\Program Files\Zoner
2012-10-31 10:47:00 ----D---- C:\WINDOWS\WinSxS
2012-10-31 10:44:14 ----D---- C:\Program Files\HP
2012-10-31 10:43:56 ----D---- C:\Program Files\Drawing for Children
2012-10-31 10:35:39 ----D---- C:\WINDOWS\system32\CatRoot2
2012-10-30 18:55:59 ----D---- C:\Program Files\PDFCreator
2012-10-30 18:17:53 ----HD---- C:\WINDOWS\inf
2012-10-30 08:11:36 ----D---- C:\Program Files\Java
2012-10-29 19:28:47 ----DC---- C:\WINDOWS\system32\DRVSTORE
2012-10-29 19:28:41 ----D---- C:\WINDOWS\twain_32
2012-10-29 19:18:22 ----D---- C:\Program Files\Mozilla Maintenance Service
2012-10-29 17:25:21 ----D---- C:\Documents and Settings\klarka\Data aplikací\Skype
2012-10-29 11:48:02 ----D---- C:\WINDOWS\Debug
2012-10-28 07:45:09 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2012-10-25 08:48:18 ----D---- C:\WINDOWS\Media
2012-10-21 10:53:06 ----D---- C:\Documents and Settings\klarka\Data aplikací\vlc
2012-10-12 08:19:32 ----RSHDC---- C:\WINDOWS\system32\dllcache
2012-10-12 08:05:10 ----A---- C:\WINDOWS\system32\MRT.exe
2012-10-11 08:29:44 ----HD---- C:\WINDOWS\$hf_mig$
2012-10-11 08:25:53 ----D---- C:\WINDOWS\system32\CatRoot
2012-10-09 20:32:16 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2012-10-06 08:06:21 ----D---- C:\WINDOWS\system32\RTCOM
2012-10-06 08:04:42 ----HD---- C:\Program Files\InstallShield Installation Information
2012-10-05 15:52:28 ----D---- C:\WINDOWS\system32\ReinstallBackups
2012-10-05 15:45:05 ----D---- C:\Program Files\CCleaner

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2012-08-21 25256]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2012-08-21 35928]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2012-08-21 729752]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2012-08-21 355632]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2012-08-21 54232]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS []
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2012-08-21 21256]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2012-08-21 97608]
R3 AsusACPI;ASUS ACPI Driver; C:\WINDOWS\system32\DRIVERS\ASUSACPI.sys [2008-04-08 10752]
R3 btaudio;Zvukové zařízení Bluetooth; C:\WINDOWS\system32\drivers\btaudio.sys [2008-05-30 534568]
R3 BTDriver;Ovladač virtuálních komunikací Bluetooth; C:\WINDOWS\system32\DRIVERS\btport.sys [2008-02-04 37160]
R3 BTKRNL;Enumenátor sběrnice Bluetooth; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2008-08-19 991656]
R3 BTWDNDIS;Server pro přístup k síti LAN Bluetooth; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2008-07-24 156816]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2008-08-19 47272]
R3 FsUsbExDisk;FsUsbExDisk; \??\C:\WINDOWS\system32\FsUsbExDisk.SYS []
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2007-12-19 5854688]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2010-11-02 6188648]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 RT80x86;Ralink 802.11n Wireless Driver; C:\WINDOWS\system32\DRIVERS\RT2860.sys [2008-09-24 704384]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-13 121984]
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2009-11-18 1691480]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 Ktp;Elantech Smart-Pad; C:\WINDOWS\system32\DRIVERS\ETD.sys [2008-10-01 21504]
S3 L1e;Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\WINDOWS\system32\DRIVERS\l1e51x86.sys []
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2009-11-18 1395800]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\WINDOWS\system32\DRIVERS\ss_bbus.sys [2010-04-27 98432]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\WINDOWS\system32\DRIVERS\ss_bmdfl.sys [2010-04-27 14848]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\WINDOWS\system32\DRIVERS\ss_bmdm.sys [2010-04-27 123648]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [2012-07-11 116608]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2012-08-21 44808]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2008-09-02 346720]
R2 FsUsbExService;FsUsbExService; C:\WINDOWS\system32\FsUsbExService.Exe [2010-07-04 238952]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S2 HP LaserJet Service;HP LaserJet Service; C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe [2010-10-25 145920]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2012-10-29 115168]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

[Márty84]

Kliknete na START a pak na Spustit
V okenku co vyskoci bude radek, do ktereho napiste

Kód: Vybrat vše

services.msc

Kliknete na OK
Najdete sluzbu !SASCORE (SAS Core Service), kliknete na ni pravym mysidlem a levym na napis Vlastnosti
Zastavte sluzbu kliknutim na Zastavit a u typu spusteni nastavte Zakazano




Jelikoz nejde udelat sken s OTL, radeji se podivame hloubeji

Pokud nemate, zazalohujte si dulezita data

Nepouzivejte ComboFix bez predchozi domluvy! Je to poruseni pravidel fora a ztratite tim narok na pomoc!

Stahnete ComboFix http://download.bleepingcomputer.com/sUBs/ComboFix.exe a ulozte ho na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Spustte ComboFix.
Odsouhlaste licencni podminky a nechte program pracovat. Jestli vam nabidne instalaci Konzoly pro zotaveni, souhlaste.
Po dobu skenu nic nespoustejte, nikam neklikejte.
Po dokonceni skenovani (muze dojit i k restartu pc) by se mel vytvorit log, ktery bude umisteny zde C:\ComboFix.txt
Jeho obsah sem zkopirujte

Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace

[cacorka]

combofix to provede, ale nedari se najit ten log (i kdy dam hledat vsechny txt soubory)...tak tam zkrátka není

[Márty84]

No jo, ale bez logu toho moc nezmuzu

C:\ComboFix.txt by mel byt log. Pokud tam takovy soubor neni, neprobehlo to korektne. Zkuste spustit CF v nouzovem rezimu

[cacorka]

ComboFix 12-11-03.02 - klarka 03.11.2012 21:09:50.4.2 - x86 NETWORK
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1015.678 [GMT 1:00]
Spuštěný z: c:\documents and settings\klarka\Plocha\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\Install.exe
c:\windows\system32\TZLog.log
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-10-03 do 2012-11-03 )))))))))))))))))))))))))))))))
.
.
2012-11-02 23:10 . 2012-11-02 23:14 -------- d-----w- C:\rsit
2012-11-02 16:17 . 2012-11-02 16:17 -------- d-----w- c:\program files\Microsoft Silverlight
2012-11-02 16:16 . 2012-11-02 16:16 -------- d-----w- c:\documents and settings\klarka\Data aplikací\OpenCandy
2012-11-02 08:57 . 2012-11-02 08:58 -------- d-----w- c:\documents and settings\Administrator.KLARKA-96E9B859
2012-11-01 16:35 . 2012-11-01 16:36 -------- d-----w- c:\program files\Defraggler
2012-11-01 14:03 . 2012-11-01 14:03 -------- d--h--w- c:\documents and settings\klarka\Okolní tiskárny
2012-11-01 14:03 . 2012-11-01 14:03 -------- d-----w- c:\documents and settings\All Users.WINDOWS\Oblíbené položky
2012-10-31 11:17 . 2012-10-31 11:17 -------- d-----w- c:\documents and settings\klarka\Data aplikací\TuneUp Software
2012-10-31 11:15 . 2012-10-31 11:17 -------- d-----w- c:\documents and settings\All Users.WINDOWS\Data aplikací\TuneUp Software
2012-10-31 11:15 . 2012-10-31 11:15 -------- d-sh--w- c:\documents and settings\All Users.WINDOWS\Data aplikací\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2012-10-31 11:05 . 2012-10-31 11:05 -------- d-----w- c:\documents and settings\klarka\Data aplikací\pdfforge
2012-10-30 22:20 . 2012-10-30 22:25 -------- d-----w- c:\program files\Common Files\CIGLER SOFTWARE
2012-10-30 22:20 . 2012-10-30 22:25 -------- d-----w- c:\documents and settings\All Users.WINDOWS\Data aplikací\CIGLER SOFTWARE
2012-10-30 17:54 . 2012-05-05 10:54 662288 ----a-w- c:\windows\system32\MSCOMCT2.OCX
2012-10-30 17:54 . 2012-10-12 06:34 86528 ----a-w- c:\windows\system32\pdfcmon.dll
2012-10-30 17:54 . 2012-05-05 10:54 23552 ----a-w- c:\windows\system32\MSMPIDE.DLL
2012-10-30 07:21 . 2012-10-30 07:21 -------- d--h--w- c:\documents and settings\All Users.WINDOWS\Data aplikací\Common Files
2012-10-30 07:12 . 2012-10-30 07:12 -------- d-----w- c:\program files\Common Files\Java
2012-10-30 07:10 . 2012-10-30 07:10 -------- d-----w- c:\documents and settings\All Users.WINDOWS\Data aplikací\McAfee
2012-10-29 17:51 . 2012-10-29 17:51 -------- d-----w- c:\program files\SUPERAntiSpyware
2012-10-29 17:26 . 2012-10-29 18:03 -------- d-----w- c:\program files\Mozilla Thunderbird
2012-10-25 07:48 . 2010-03-18 15:12 114688 ----a-w- c:\windows\system32\CNC495I.dll
2012-10-25 07:48 . 2010-03-18 17:25 307200 ----a-w- c:\windows\system32\CNC495L.dll
2012-10-25 07:48 . 2010-03-18 15:12 1335296 ----a-w- c:\windows\system32\CNC495C.dll
2012-10-25 07:48 . 2010-03-18 15:11 106496 ----a-w- c:\windows\system32\CNC495U.dll
2012-10-25 07:48 . 2008-08-25 16:02 15872 ----a-w- c:\windows\system32\CNHMCA.dll
2012-10-25 06:58 . 2010-06-03 13:12 94208 ----a-w- c:\windows\system32\CNC495O.dll
2012-10-25 06:58 . 2012-10-25 06:58 -------- d--h--w- c:\program files\CanonBJ
2012-10-25 04:50 . 2012-10-25 07:15 -------- d-----w- C:\VueScan
2012-10-06 07:05 . 2010-11-02 17:36 84584 ----a-w- c:\windows\SOUNDMAN.EXE
2012-10-06 07:05 . 2010-11-02 17:36 359016 ----a-w- c:\windows\vncutil.exe
2012-10-06 07:05 . 2010-11-02 17:36 1833576 ----a-w- c:\windows\SkyTel.exe
2012-10-06 07:05 . 2010-11-02 17:36 891496 ----a-w- c:\windows\system32\RTSndMgr.CPL
2012-10-06 07:05 . 2010-11-02 17:36 9721960 ----a-w- c:\windows\RTLCPL.EXE
2012-10-06 07:05 . 2010-11-02 17:36 6188648 ----a-w- c:\windows\system32\drivers\RtkHDAud.sys
2012-10-06 07:05 . 2010-11-02 17:36 54888 ----a-w- c:\windows\system32\RtkCoInstXP.dll
2012-10-06 07:05 . 2010-11-02 17:36 129640 ----a-w- c:\windows\RtkAudioService.exe
2012-10-06 07:05 . 2010-11-02 17:36 19580520 ----a-w- c:\windows\RTHDCPL.EXE
2012-10-06 07:04 . 2009-11-18 05:17 1395800 ----a-w- c:\windows\system32\drivers\Monfilt.sys
2012-10-06 07:04 . 2010-11-02 17:35 2180712 ----a-w- c:\windows\MicCal.exe
2012-10-06 07:04 . 2009-11-18 05:16 1691480 ----a-w- c:\windows\system32\drivers\Ambfilt.sys
2012-10-06 07:04 . 2010-11-02 17:35 285288 ----a-w- c:\windows\system32\ALSNDMGR.CPL
2012-10-06 07:04 . 2010-11-02 17:35 2815592 ----a-w- c:\windows\ALCWZRD.EXE
2012-10-06 07:04 . 2012-10-06 07:04 -------- d-----w- c:\program files\Realtek
2012-10-06 07:04 . 2010-11-02 17:35 64104 ----a-w- c:\windows\ALCMTR.EXE
2012-10-06 07:03 . 2010-10-28 08:46 1251944 ----a-w- c:\windows\RtlExUpd.dll
2012-10-05 15:00 . 2012-10-05 15:00 -------- d-----w- c:\documents and settings\klarka\Data aplikací\InstallShield
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-09 19:32 . 2012-04-10 05:46 696760 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-10-09 19:32 . 2011-09-24 15:54 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-09-29 18:54 . 2012-02-13 05:50 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-09-24 14:32 . 2012-06-17 19:48 477168 ----a-w- c:\windows\system32\npdeployJava1.dll
2012-09-24 14:32 . 2010-11-10 23:34 473072 ----a-w- c:\windows\system32\deployJava1.dll
2012-09-24 12:51 . 2012-01-06 18:25 73728 ----a-w- c:\windows\system32\javacpl.cpl
2012-08-28 15:18 . 2004-08-18 12:00 916992 ----a-w- c:\windows\system32\wininet.dll
2012-08-28 15:18 . 2004-08-18 12:00 43520 ----a-w- c:\windows\system32\licmgr10.dll
2012-08-28 15:18 . 2004-08-18 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-08-28 12:07 . 2004-08-18 12:00 385024 ----a-w- c:\windows\system32\html.iec
2012-08-24 13:53 . 2004-08-18 12:00 177664 ----a-w- c:\windows\system32\wintrust.dll
2012-08-23 06:27 . 2004-08-18 12:00 2150912 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-08-23 06:27 . 2004-08-17 15:45 2029568 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-08-21 09:13 . 2011-09-15 09:25 729752 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-08-21 09:13 . 2010-11-11 00:20 355632 ----a-w- c:\windows\system32\drivers\aswSP.sys
2012-08-21 09:13 . 2010-11-11 00:20 54232 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2012-08-21 09:13 . 2010-11-11 00:20 35928 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2012-08-21 09:13 . 2010-11-11 00:20 97608 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2012-08-21 09:13 . 2010-11-11 00:20 89624 ----a-w- c:\windows\system32\drivers\aswmon.sys
2012-08-21 09:13 . 2010-11-11 00:20 21256 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2012-08-21 09:13 . 2010-11-11 00:20 25256 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2012-08-21 09:12 . 2010-11-11 00:20 41224 ----a-w- c:\windows\avastSS.scr
2012-08-21 09:12 . 2010-11-11 00:20 227648 ----a-w- c:\windows\system32\aswBoot.exe
2012-10-27 17:07 . 2012-10-27 17:07 261600 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-08-21 09:12 121528 ----a-w- c:\program files\Alwil Software\Avast5\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2007-12-19 159744]
"AsusTray"="c:\program files\EeePC\ACPI\AsTray.exe" [2008-09-17 106496]
"AsusEPCMonitor"="c:\program files\EeePC\ACPI\AsEPCMon.exe" [2008-05-21 94208]
"avast"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2012-08-21 4282728]
"RTHDCPL"="RTHDCPL.EXE" [2010-11-02 19580520]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-07-19 113024]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Nabídka Start^Programy^Po spuštění^Bluetooth.lnk]
path=c:\documents and settings\All Users.WINDOWS\Nabídka Start\Programy\Po spuštění\Bluetooth.lnk
backup=c:\windows\pss\Bluetooth.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Nabídka Start^Programy^Po spuštění^Microsoft Office.lnk]
path=c:\documents and settings\All Users.WINDOWS\Nabídka Start\Programy\Po spuštění\Microsoft Office.lnk
backup=c:\windows\pss\Microsoft Office.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Nabídka Start^Programy^Po spuštění^SuperHybridEngine.lnk]
path=c:\documents and settings\All Users.WINDOWS\Nabídka Start\Programy\Po spuštění\SuperHybridEngine.lnk
backup=c:\windows\pss\SuperHybridEngine.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^klarka^Nabídka Start^Programy^Po spuštění^Dropbox.lnk]
path=c:\documents and settings\klarka\Nabídka Start\Programy\Po spuštění\Dropbox.lnk
backup=c:\windows\pss\Dropbox.lnkStartup
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\VideoLAN\\VLC\\vlc.exe"=
"c:\\Program Files\\Samsung\\Samsung New PC Studio\\npsasvr.exe"=
"c:\\Program Files\\Samsung\\Samsung New PC Studio\\npsvsvr.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
R2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCore.exe [11.7.2012 19:54 116608]
R3 RT80x86;Ralink 802.11n Wireless Driver;c:\windows\system32\drivers\rt2860.sys [6.11.2010 13:26 704384]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [15.9.2011 10:25 729752]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [11.11.2010 1:20 355632]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [22.7.2011 17:27 12880]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [12.7.2011 22:55 67664]
S2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [11.11.2010 1:20 21256]
S2 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe [2.12.2011 16:12 238952]
S2 HP LaserJet Service;HP LaserJet Service;c:\program files\HP\HPLaserJetService\HPLaserJetService.exe [25.10.2010 14:53 145920]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [6.10.2012 8:04 1691480]
S3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [2.12.2011 16:12 36608]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\drivers\ss_bbus.sys [2.12.2011 16:14 98432]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\drivers\ss_bmdfl.sys [2.12.2011 16:14 14848]
S3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\drivers\ss_bmdm.sys [2.12.2011 16:14 123648]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
.
Obsah adresáře 'Naplánované úlohy'
.
2012-11-02 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\Alwil Software\Avast5\AvastEmUpdate.exe [2012-07-06 09:12]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.cz/
IE: Odeslat do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat do zařízení Bluetooth - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
Trusted Zone: mojebanka.cz\*
Trusted Zone: mojebanka.cz\*
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\documents and settings\klarka\Data aplikací\Mozilla\Firefox\Profiles\7zcpsuwe.default\
FF - prefs.js: browser.search.selectedEngine - Yahoo
FF - prefs.js: browser.startup.homepage - hxxp://www.google.cz/
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=827316&p=
FF - ExtSQL: 2012-10-30 08:11; {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}; c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
FF - ExtSQL: !HIDDEN! 2011-09-17 11:15; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
WebBrowser-{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - (no file)
AddRemove-01_Simmental - c:\program files\Samsung\USB Drivers\01_Simmental\Uninstall.exe
AddRemove-02_Siberian - c:\program files\Samsung\USB Drivers\02_Siberian\Uninstall.exe
AddRemove-03_Swallowtail - c:\program files\Samsung\USB Drivers\03_Swallowtail\Uninstall.exe
AddRemove-04_semseyite - c:\program files\Samsung\USB Drivers\04_semseyite\Uninstall.exe
AddRemove-05_Sloan - c:\program files\Samsung\USB Drivers\05_Sloan\Uninstall.exe
AddRemove-06_Spencer - c:\program files\Samsung\USB Drivers\06_Spencer\Uninstall.exe
AddRemove-07_Schorl - c:\program files\Samsung\USB Drivers\07_Schorl\Uninstall.exe
AddRemove-08_EMPChipset - c:\program files\Samsung\USB Drivers\08_EMPChipset\Uninstall.exe
AddRemove-09_Hsp - c:\program files\Samsung\USB Drivers\09_Hsp\Uninstall.exe
AddRemove-11_HSP_Plus_Default - c:\program files\Samsung\USB Drivers\11_HSP_Plus_Default\Uninstall.exe
AddRemove-16_Shrewsbury - c:\program files\Samsung\USB Drivers\16_Shrewsbury\Uninstall.exe
AddRemove-17_EMP_Chipset2 - c:\program files\Samsung\USB Drivers\17_EMP_Chipset2\Uninstall.exe
AddRemove-18_Zinia_Serial_Driver - c:\program files\Samsung\USB Drivers\18_Zinia_Serial_Driver\Uninstall.exe
AddRemove-19_VIA_driver - c:\program files\Samsung\USB Drivers\19_VIA_driver\Uninstall.exe
AddRemove-20_NXP_Driver - c:\program files\Samsung\USB Drivers\20_NXP_Driver\Uninstall.exe
AddRemove-21_Searsburg - c:\program files\Samsung\USB Drivers\21_Searsburg\Uninstall.exe
AddRemove-22_WiBro_WiMAX - c:\program files\Samsung\USB Drivers\22_WiBro_WiMAX\Uninstall.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-11-03 21:18
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
Celkový čas: 2012-11-03 21:23:01
ComboFix-quarantined-files.txt 2012-11-03 20:22
.
Před spuštěním: Volných bajtů: 89 554 681 856
Po spuštění: Volných bajtů: 89 379 704 832
.
- - End Of File - - F8DD6C95B279606C4DAE8AADE6321C05

[Márty84]

Otevrete si poznamkovy blok a zkopirujte do nej tento skript

Kód: Vybrat vše

KillAll::

Firefox::
FF - ProfilePath - c:\documents and settings\klarka\Data aplikací\Mozilla\Firefox\Profiles\7zcpsuwe.default\
FF - prefs.js: browser.search.selectedEngine - Yahoo
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=green ... =827316&p=

RegLock::
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]

Reboot::

Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev CFScript a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni a ukoncete vsechny spustene programy
Pretahntete mysi tento vytvoreny textovy dokument nad ikonu ComboFix a pustte.
ComboFix by se mel spustit a vykonat prikazy.
Az skonci (muze dojit k restartu pc), mel by se objevit novy log, ten mi sem zase zkopirujte.

Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace

[cacorka]

ComboFix 12-11-03.02 - klarka 03.11.2012 22:33:52.5.2 - x86 NETWORK
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1015.647 [GMT 1:00]
Spuštěný z: C:\Documents and Settings\klarka\Plocha\ComboFix.exe
Použité ovládací přepínače :: C:\Documents and Settings\klarka\Plocha\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}


((((((((((((((((((((((((( Soubory vytvořené od 2012-10-03 do 2012-11-03 )))))))))))))))))))))))))))))))


2012-11-02 23:10:47 . 2012-11-02 23:14:05 -------- d-----w- C:\rsit
2012-11-02 16:17:34 . 2012-11-02 16:17:36 -------- d-----w- C:\Program Files\Microsoft Silverlight
2012-11-02 16:16:22 . 2012-11-02 16:16:22 -------- d-----w- C:\Documents and Settings\klarka\Data aplikací\OpenCandy
2012-11-02 08:57:48 . 2012-11-02 08:58:22 -------- d-----w- C:\Documents and Settings\Administrator.KLARKA-96E9B859
2012-11-01 16:35:45 . 2012-11-01 16:36:06 -------- d-----w- C:\Program Files\Defraggler
2012-11-01 14:03:57 . 2012-11-01 14:03:57 -------- d--h--w- C:\Documents and Settings\klarka\Okolní tiskárny
2012-11-01 14:03:57 . 2012-11-01 14:03:57 -------- d-----w- C:\Documents and Settings\All Users.WINDOWS\Oblíbené položky
2012-10-31 11:17:07 . 2012-10-31 11:17:07 -------- d-----w- C:\Documents and Settings\klarka\Data aplikací\TuneUp Software
2012-10-31 11:15:57 . 2012-10-31 11:17:40 -------- d-----w- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\TuneUp Software
2012-10-31 11:15:05 . 2012-10-31 11:15:05 -------- d-sh--w- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2012-10-31 11:05:49 . 2012-10-31 11:05:49 -------- d-----w- C:\Documents and Settings\klarka\Data aplikací\pdfforge
2012-10-30 22:20:29 . 2012-10-30 22:25:36 -------- d-----w- C:\Program Files\Common Files\CIGLER SOFTWARE
2012-10-30 22:20:29 . 2012-10-30 22:25:13 -------- d-----w- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\CIGLER SOFTWARE
2012-10-30 17:54:36 . 2012-05-05 10:54:20 662288 ----a-w- C:\WINDOWS\system32\MSCOMCT2.OCX
2012-10-30 17:54:35 . 2012-10-12 06:34:54 86528 ----a-w- C:\WINDOWS\system32\pdfcmon.dll
2012-10-30 17:54:27 . 2012-05-05 10:54:20 23552 ----a-w- C:\WINDOWS\system32\MSMPIDE.DLL
2012-10-30 07:21:14 . 2012-10-30 07:21:14 -------- d--h--w- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Common Files
2012-10-30 07:12:13 . 2012-10-30 07:12:13 -------- d-----w- C:\Program Files\Common Files\Java
2012-10-30 07:10:23 . 2012-10-30 07:10:23 -------- d-----w- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\McAfee
2012-10-29 17:51:11 . 2012-10-29 17:51:32 -------- d-----w- C:\Program Files\SUPERAntiSpyware
2012-10-29 17:26:02 . 2012-10-29 18:03:29 -------- d-----w- C:\Program Files\Mozilla Thunderbird
2012-10-25 07:48:16 . 2010-03-18 15:12:02 114688 ----a-w- C:\WINDOWS\system32\CNC495I.dll
2012-10-25 07:48:15 . 2010-03-18 17:25:16 307200 ----a-w- C:\WINDOWS\system32\CNC495L.dll
2012-10-25 07:48:15 . 2010-03-18 15:12:28 1335296 ----a-w- C:\WINDOWS\system32\CNC495C.dll
2012-10-25 07:48:15 . 2010-03-18 15:11:30 106496 ----a-w- C:\WINDOWS\system32\CNC495U.dll
2012-10-25 07:48:15 . 2008-08-25 16:02:28 15872 ----a-w- C:\WINDOWS\system32\CNHMCA.dll
2012-10-25 06:58:51 . 2010-06-03 13:12:06 94208 ----a-w- C:\WINDOWS\system32\CNC495O.dll
2012-10-25 06:58:33 . 2012-10-25 06:58:33 -------- d--h--w- C:\Program Files\CanonBJ
2012-10-25 04:50:54 . 2012-10-25 07:15:06 -------- d-----w- C:\VueScan
2012-10-06 07:05:18 . 2010-11-02 17:36:50 84584 ----a-w- C:\WINDOWS\SOUNDMAN.EXE
2012-10-06 07:05:18 . 2010-11-02 17:36:50 359016 ----a-w- C:\WINDOWS\vncutil.exe
2012-10-06 07:05:17 . 2010-11-02 17:36:50 1833576 ----a-w- C:\WINDOWS\SkyTel.exe
2012-10-06 07:05:16 . 2010-11-02 17:36:38 891496 ----a-w- C:\WINDOWS\system32\RTSndMgr.CPL
2012-10-06 07:05:12 . 2010-11-02 17:36:26 9721960 ----a-w- C:\WINDOWS\RTLCPL.EXE
2012-10-06 07:05:10 . 2010-11-02 17:36:26 6188648 ----a-w- C:\WINDOWS\system32\drivers\RtkHDAud.sys
2012-10-06 07:05:07 . 2010-11-02 17:36:14 54888 ----a-w- C:\WINDOWS\system32\RtkCoInstXP.dll
2012-10-06 07:05:06 . 2010-11-02 17:36:04 129640 ----a-w- C:\WINDOWS\RtkAudioService.exe
2012-10-06 07:05:01 . 2010-11-02 17:36:02 19580520 ----a-w- C:\WINDOWS\RTHDCPL.EXE
2012-10-06 07:04:59 . 2009-11-18 05:17:00 1395800 ----a-w- C:\WINDOWS\system32\drivers\Monfilt.sys
2012-10-06 07:04:58 . 2010-11-02 17:35:52 2180712 ----a-w- C:\WINDOWS\MicCal.exe
2012-10-06 07:04:48 . 2009-11-18 05:16:00 1691480 ----a-w- C:\WINDOWS\system32\drivers\Ambfilt.sys
2012-10-06 07:04:47 . 2010-11-02 17:35:40 285288 ----a-w- C:\WINDOWS\system32\ALSNDMGR.CPL
2012-10-06 07:04:45 . 2010-11-02 17:35:40 2815592 ----a-w- C:\WINDOWS\ALCWZRD.EXE
2012-10-06 07:04:44 . 2012-10-06 07:04:44 -------- d-----w- C:\Program Files\Realtek
2012-10-06 07:04:44 . 2010-11-02 17:35:40 64104 ----a-w- C:\WINDOWS\ALCMTR.EXE
2012-10-06 07:03:12 . 2010-10-28 08:46:00 1251944 ----a-w- C:\WINDOWS\RtlExUpd.dll
2012-10-05 15:00:01 . 2012-10-05 15:00:01 -------- d-----w- C:\Documents and Settings\klarka\Data aplikací\InstallShield
.


(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))

2012-10-09 19:32:16 . 2012-04-10 05:46:59 696760 ----a-w- C:\WINDOWS\system32\FlashPlayerApp.exe
2012-10-09 19:32:15 . 2011-09-24 15:54:00 73656 ----a-w- C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2012-09-29 18:54:26 . 2012-02-13 05:50:14 22856 ----a-w- C:\WINDOWS\system32\drivers\mbam.sys
2012-09-24 14:32:24 . 2012-06-17 19:48:53 477168 ----a-w- C:\WINDOWS\system32\npdeployJava1.dll
2012-09-24 14:32:20 . 2010-11-10 23:34:10 473072 ----a-w- C:\WINDOWS\system32\deployJava1.dll
2012-09-24 12:51:47 . 2012-01-06 18:25:18 73728 ----a-w- C:\WINDOWS\system32\javacpl.cpl
2012-08-28 15:18:59 . 2004-08-18 12:00:00 916992 ----a-w- C:\WINDOWS\system32\wininet.dll
2012-08-28 15:18:53 . 2004-08-18 12:00:00 43520 ----a-w- C:\WINDOWS\system32\licmgr10.dll
2012-08-28 15:18:52 . 2004-08-18 12:00:00 1469440 ------w- C:\WINDOWS\system32\inetcpl.cpl
2012-08-28 12:07:32 . 2004-08-18 12:00:00 385024 ----a-w- C:\WINDOWS\system32\html.iec
2012-08-24 13:53:44 . 2004-08-18 12:00:00 177664 ----a-w- C:\WINDOWS\system32\wintrust.dll
2012-08-23 06:27:26 . 2004-08-18 12:00:00 2150912 ----a-w- C:\WINDOWS\system32\ntoskrnl.exe
2012-08-23 06:27:26 . 2004-08-17 15:45:32 2029568 ----a-w- C:\WINDOWS\system32\ntkrnlpa.exe
2012-08-21 09:13:15 . 2011-09-15 09:25:51 729752 ----a-w- C:\WINDOWS\system32\drivers\aswSnx.sys
2012-08-21 09:13:15 . 2010-11-11 00:20:48 355632 ----a-w- C:\WINDOWS\system32\drivers\aswSP.sys
2012-08-21 09:13:15 . 2010-11-11 00:20:42 54232 ----a-w- C:\WINDOWS\system32\drivers\aswTdi.sys
2012-08-21 09:13:14 . 2010-11-11 00:20:44 35928 ----a-w- C:\WINDOWS\system32\drivers\aswRdr.sys
2012-08-21 09:13:14 . 2010-11-11 00:20:39 97608 ----a-w- C:\WINDOWS\system32\drivers\aswmon2.sys
2012-08-21 09:13:14 . 2010-11-11 00:20:39 89624 ----a-w- C:\WINDOWS\system32\drivers\aswmon.sys
2012-08-21 09:13:13 . 2010-11-11 00:20:50 21256 ----a-w- C:\WINDOWS\system32\drivers\aswFsBlk.sys
2012-08-21 09:13:13 . 2010-11-11 00:20:38 25256 ----a-w- C:\WINDOWS\system32\drivers\aavmker4.sys
2012-08-21 09:12:33 . 2010-11-11 00:20:19 41224 ----a-w- C:\WINDOWS\avastSS.scr
2012-08-21 09:12:23 . 2010-11-11 00:20:19 227648 ----a-w- C:\WINDOWS\system32\aswBoot.exe
2012-10-27 17:07:54 . 2012-10-27 17:07:29 261600 ----a-w- C:\Program Files\mozilla firefox\components\browsercomps.dll


(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))


*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-08-21 09:12:09 121528 ----a-w- C:\Program Files\Alwil Software\Avast5\ashShell.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe" [2007-12-19 03:08:12 159744]
"AsusTray"="C:\Program Files\EeePC\ACPI\AsTray.exe" [2008-09-17 13:54:20 106496]
"AsusEPCMonitor"="C:\Program Files\EeePC\ACPI\AsEPCMon.exe" [2008-05-21 00:56:24 94208]
"avast"="C:\Program Files\Alwil Software\Avast5\avastUI.exe" [2012-08-21 09:12:26 4282728]
"RTHDCPL"="RTHDCPL.EXE" [2010-11-02 17:36:02 19580520]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2008-04-14 03:22:17 15360]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "C:\Program Files\SUPERAntiSpyware\SASSEH.DLL" [2011-07-19 00:02:18 113024]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""

[HKLM\~\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Nabídka Start^Programy^Po spuštění^Bluetooth.lnk]
path=C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\Po spuštění\Bluetooth.lnk
backup=C:\WINDOWS\pss\Bluetooth.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Nabídka Start^Programy^Po spuštění^Microsoft Office.lnk]
path=C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\Po spuštění\Microsoft Office.lnk
backup=C:\WINDOWS\pss\Microsoft Office.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Nabídka Start^Programy^Po spuštění^SuperHybridEngine.lnk]
path=C:\Documents and Settings\All Users.WINDOWS\Nabídka Start\Programy\Po spuštění\SuperHybridEngine.lnk
backup=C:\WINDOWS\pss\SuperHybridEngine.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^klarka^Nabídka Start^Programy^Po spuštění^Dropbox.lnk]
path=C:\Documents and Settings\klarka\Nabídka Start\Programy\Po spuštění\Dropbox.lnk
backup=C:\WINDOWS\pss\Dropbox.lnkStartup

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Program Files\\VideoLAN\\VLC\\vlc.exe"=
"C:\\Program Files\\Samsung\\Samsung New PC Studio\\npsasvr.exe"=
"C:\\Program Files\\Samsung\\Samsung New PC Studio\\npsvsvr.exe"=
"C:\\Program Files\\Skype\\Phone\\Skype.exe"=

R1 aswSnx;aswSnx;C:\WINDOWS\system32\drivers\aswSnx.sys [15.9.2011 10:25:51 729752]
R1 aswSP;aswSP;C:\WINDOWS\system32\drivers\aswSP.sys [11.11.2010 1:20:48 355632]
R1 SASDIFSV;SASDIFSV;C:\Program Files\SUPERAntiSpyware\sasdifsv.sys [22.7.2011 17:27:02 12880]
R1 SASKUTIL;SASKUTIL;C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [12.7.2011 22:55:22 67664]
R2 !SASCORE;SAS Core Service;C:\Program Files\SUPERAntiSpyware\SASCore.exe [11.7.2012 19:54:49 116608]
R2 aswFsBlk;aswFsBlk;C:\WINDOWS\system32\drivers\aswFsBlk.sys [11.11.2010 1:20:50 21256]
R2 FsUsbExService;FsUsbExService;C:\WINDOWS\system32\FsUsbExService.Exe [2.12.2011 16:12:37 238952]
R2 HP LaserJet Service;HP LaserJet Service;C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe [25.10.2010 14:53:46 145920]
R3 FsUsbExDisk;FsUsbExDisk;C:\WINDOWS\system32\FsUsbExDisk.Sys [2.12.2011 16:12:37 36608]
R3 RT80x86;Ralink 802.11n Wireless Driver;C:\WINDOWS\system32\drivers\rt2860.sys [6.11.2010 13:26:25 704384]
S3 Ambfilt;Ambfilt;C:\WINDOWS\system32\drivers\Ambfilt.sys [6.10.2012 8:04:48 1691480]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM);C:\WINDOWS\system32\drivers\ss_bbus.sys [2.12.2011 16:14:50 98432]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);C:\WINDOWS\system32\drivers\ss_bmdfl.sys [2.12.2011 16:14:50 14848]
S3 ss_bmdm;SAMSUNG USB Mobile Modem;C:\WINDOWS\system32\drivers\ss_bmdm.sys [2.12.2011 16:14:50 123648]

--- Ostatní služby/ovladače v paměti ---

*NewlyCreated* - FSUSBEXDISK

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12

Obsah adresáře 'Naplánované úlohy'

2012-11-02 C:\WINDOWS\Tasks\avast! Emergency Update.job
- C:\Program Files\Alwil Software\Avast5\AvastEmUpdate.exe [2012-07-06 04:29:07 . 2012-08-21 09:12:25]


------- Doplňkový sken -------

uStart Page = hxxp://www.google.cz/
IE: Odeslat do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat do zařízení Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
Trusted Zone: mojebanka.cz\*
Trusted Zone: mojebanka.cz\*
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - C:\Documents and Settings\klarka\Data aplikací\Mozilla\Firefox\Profiles\7zcpsuwe.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.cz/
FF - ExtSQL: 2012-10-30 08:11; {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}; C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
FF - ExtSQL: !HIDDEN! 2011-09-17 11:15; {20a82645-c095-46ed-80e3-08825760534b}; C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension

[Márty84]

Log neni cely, nejak mi tam chybi konec Nic vic tam nebylo?