Virus alebo Bios ?

[melondubnica]

Pokusim sa popisat co sa stalo z notebookom, Pc nie je moj ale mojho 13 rocneho synovca, pred 3 dnami dohral hru
a zavrel notebook do pohotovostneho rezimu, vratil sa a pc uz neslo, iba cierna obrazovka ako pri vypnutom pc a system nenabehol, ale pc funguje, nastal tvrdy restart a nic, az na niekolko pokusov nabehol system, predtym stale cierna obrazovka a odvtedy nic az dnes som skusil pc spustit a nabehol, takze sa ho bojim vypnut, horsie bude ak bude treba nejaky restart a pc opat nenabehne podla vsetkeho pravdepodobne nenabieha spravne bios, neviem ci to sposobil nejaky virus alebo je chyba inde, preto by som chcel poprosit o kontrolu za co velmi pekne dakujem, Prikladam log z RSIT:

Logfile of random's system information tool 1.09 (written by random/random)
Run by marco at 2013-03-14 19:30:15
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 20 GB (20%) free of 100 GB
Total RAM: 1789 MB (50% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:30:26, on 14.3.2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\HDThemeEnabler.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\idt\wdm\STacSV.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\WINDOWS\system32\AESTFltr.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\SweetIM\Messenger\SweetIM.exe
C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\marco\Local Settings\Data aplikací\Akamai\netsession_win.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Documents and Settings\marco\Local Settings\Data aplikací\Akamai\netsession_win.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\GamersFirst\LIVE!\Live.exe
C:\Program Files\McAfee Security Scan\3.0.285\SSScheduler.exe
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
C:\Program Files\LSI SoftModem\agrsmsvc.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
C:\Program Files\Hi-Rez Studios\HiPatchService.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\iZ3D Driver\Win32\S3DCService.exe
C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe
C:\Program Files\Application Updater\ApplicationUpdater.exe
C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\marco\Plocha\RSIT.exe
C:\Program Files\trend micro\marco.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com/?st=6&barid={04 ... 247E994C13}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com/?st=6&barid={04 ... 247E994C13}
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1:9421;<local>
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files\IObit Apps Toolbar\IE\7.0\iobitappsToolbarIE.dll
R3 - URLSearchHook: ToolbarURLSearchHook Class - {CA3EB689-8F09-4026-AA10-B9534C691CE0} - C:\Program Files\Hyperionics DB Toolbar\tbhelper.dll (file missing)
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
O1 - Hosts: # Copyright (c) 1993-1999 Microsoft Corp.
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files\IObit Apps Toolbar\IE\7.0\iobitappsToolbarIE.dll
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll
O2 - BHO: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~1\IObit\ADVANC~2\BROWER~1\ASCPLU~1.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O2 - BHO: SMTTB2009 - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\Hyperionics DB Toolbar\tbcore3.dll (file missing)
O3 - Toolbar: Hyperionics DB Toolbar - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files\Hyperionics DB Toolbar\tbcore3.dll (file missing)
O3 - Toolbar: SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files\IObit Apps Toolbar\IE\7.0\iobitappsToolbarIE.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [AESTFltr] %SystemRoot%\system32\AESTFltr.exe /NoDlg
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE -startup
O4 - HKLM\..\Run: [Microsoft Windows Shell] C:\Users\All Users\dgb\mb.exe
O4 - HKLM\..\Run: [ioCentre] C:\Genius\ioCentre\gTaskBar.exe
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\Run: [Sweetpacks Communicator] C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [Aeria Ignite] "C:\Program Files\Aeria Games\Ignite\aeriaignite.exe" silent
O4 - HKLM\..\Run: [SearchSettings] "C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe"
O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Microsoft Windows Shell] C:\Users\All Users\dgb\mb.exe
O4 - HKCU\..\Run: [Windows LUA] C:\Documents and Settings\marco\Data aplikací\WinLUA\WinLUA.exe
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Documents and Settings\marco\Local Settings\Data aplikací\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [KPeerNexonEU] C:\Nexon\NEXON_EU_Downloader\nxEULauncher.exe
O4 - HKCU\..\Run: [Cracked Steam Service] "c:\program files\steam\Cracked Steam.exe" /SERVICE
O4 - HKCU\..\Run: [Ypomos] "C:\Documents and Settings\marco\Data aplikací\Imti\enva.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Advanced SystemCare 6] "C:\Program Files\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart
O4 - HKLM\..\Policies\Explorer\Run: [43426] C:\DOCUME~1\ALLUSE~1\LOCALS~1\Temp\mstxoocku.pif
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: PonyPhone.lnk = C:\Program Files\C-Media\PONYPHONE\Genius PonyPhone.exe
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: GamersFirst LIVE!.lnk = C:\Program Files\GamersFirst\LIVE!\Live.exe
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.0.285\SSScheduler.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat do zařízení Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Stáhnout s IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Stáhnout s IDM obsah FLV videa - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Stáhnout s IDM všechny odkazy - C:\Program Files\Internet Download Manager\IEGetAll.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Advanced SystemCare Service 6 (AdvancedSystemCareService6) - IObit - C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Program Files\LSI SoftModem\agrsmsvc.exe
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Application Updater - Spigot, Inc. - C:\Program Files\Application Updater\ApplicationUpdater.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Hyperdesk Theme Enabler (HdThemeEnabler) - The Skins Factory, Inc. - C:\WINDOWS\HDThemeEnabler.exe
O23 - Service: Hi-Rez Studios Authenticate and Update Service (HiPatchService) - Hi-Rez Studios - C:\Program Files\Hi-Rez Studios\HiPatchService.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - Unknown owner - C:\Program Files\McAfee Security Scan\3.0.285\McCHSvc.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: S3D Service (Win32) (S3DSvc32) - iZ3D Inc. - C:\Program Files\iZ3D Driver\Win32\S3DCService.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - c:\program files\idt\wdm\STacSV.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe

--
End of file - 16974 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\ASC6_PerformanceMonitor.job
C:\WINDOWS\tasks\Game_Booster_AutoUpdate.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\Norton Security Scan for marco.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\marco\Data aplikací\Mozilla\Firefox\Profiles\l0utktox.default

prefs.js - "browser.startup.homepage" - "https://www.google.sk/"
prefs.js - "keyword.URL" - "http://search.yahoo.com/search?fr=green ... =668083&p="

"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.5.502.146 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_146.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\system32\Adobe\Director\np32dsw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX® Web Player
"Path"=C:\Program Files\DivX\DivX Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0]
"Description"=DivX® Player Plugin for VOD Content
"Path"=C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@esn.me/esnsonar,version=0.70.0]
"Description"=ESN Sonar browser plugin
"Path"=C:\Program Files\Battlelog Web Plugins\Sonar\0.70.0\npesnsonar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@esn/esnlaunch,version=0.80.0]
"Description"=
"Path"=C:\Program Files\Battlelog Web Plugins\0.80.0\npesnlaunch.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@gamersfirst.com/LiveLauncher]
"Description"=GamersFirst LIVE! Web Launcher
"Path"=C:\Program Files\GamersFirst\LIVE!\nplivelauncher.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@live.heroesandgenerals.com/npretox]
"Description"=Heroes & Generals downloader
"Path"=C:\Program Files\Heroes & Generals\live\npretoxlive.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@ngm.nexoneu.com/NxGame]
"Description"=Nexon Game Controller
"Path"=C:\Documents and Settings\All Users\Data aplikací\NexonEU\NGM\npNxGameeu.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=1.0.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npdeployJava1.dll
npdivx32.dll
npdivx32.xpt
NPOFF12.DLL
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files\Mozilla Firefox\searchplugins\
atlas-sk.xml
avg-secure-search.xml
azet-sk.xml
dunaj-sk.xml
eBay.xml
google.xml
slovnik-sk.xml
wikipedia-sk.xml
yahoo.xml
zoznam-sk.xml

C:\Documents and Settings\marco\Data aplikací\Mozilla\Firefox\Profiles\l0utktox.default\extensions\
admin@zbani.com
ascsurfingprotection@iobit.com
battlefieldheroespatcher@ea.com
battlefieldplay4free@ea.com
{75656794-AB59-4712-BFBC-5D816D56F3BC}
{88c7f2aa-f93f-432c-8f0e-b7d85967a527}

C:\Documents and Settings\marco\Data aplikací\Mozilla\Firefox\Profiles\l0utktox.default\searchplugins\
conduit.xml
sweetim.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDMIEHlprObj Class - C:\Program Files\Internet Download Manager\IDMIECC.dll [2009-05-07 169392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}]
IObit Apps Toolbar - C:\Program Files\IObit Apps Toolbar\IE\7.0\iobitappsToolbarIE.dll [2013-02-23 1352512]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-26 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2012-03-29 325408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2013-01-12 192144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-01-31 4528760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll [2013-01-12 1000984]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}]
Advanced SystemCare Browser Protection - C:\PROGRA~1\IObit\ADVANC~2\BROWER~1\ASCPLU~1.DLL [2013-01-15 656704]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2012-03-29 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2012-03-29 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
SweetPacks Browser Helper - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2012-07-04 1310040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}]
SMTTB2009 Class - C:\Program Files\Hyperionics DB Toolbar\tbcore3.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{338B4DFE-2E2C-4338-9E41-E176D497299E} - Hyperionics DB Toolbar - C:\Program Files\Hyperionics DB Toolbar\tbcore3.dll []
{EEE6C35B-6118-11DC-9C72-001320C79847} - SweetPacks Toolbar for Internet Explorer - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2012-07-04 1310040]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2013-01-12 192144]
{03EB0E9C-7A91-4381-A220-9B52B641CDB1} - IObit Apps Toolbar - C:\Program Files\IObit Apps Toolbar\IE\7.0\iobitappsToolbarIE.dll [2013-02-23 1352512]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-04-01 61440]
"WirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2009-02-18 506424]
"AESTFltr"=C:\WINDOWS\system32\AESTFltr.exe [2009-02-18 737280]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-26 31016]
"NeroFilterCheck"=C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe [2007-03-01 153136]
"NBKeyScan"=C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2007-12-03 2213160]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2011-04-21 281768]
"PWRISOVM.EXE"=C:\Program Files\PowerISO\PWRISOVM.EXE [2011-06-15 307200]
"Microsoft Windows Shell"=C:\Users\All Users\dgb\mb.exe []
"ioCentre"=C:\Genius\ioCentre\gTaskBar.exe [2009-09-03 61440]
"amd_dc_opt"=C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-01-18 254696]
"SweetIM"=C:\Program Files\SweetIM\Messenger\SweetIM.exe [2012-05-29 115032]
"Sweetpacks Communicator"=C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe [2012-08-15 231768]
"LogMeIn Hamachi Ui"=C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [2012-12-10 2254768]
"Aeria Ignite"=C:\Program Files\Aeria Games\Ignite\aeriaignite.exe [2013-01-08 1794224]
""= []
"SearchSettings"=C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe [2013-02-23 1297728]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"43426"=C:\DOCUME~1\ALLUSE~1\LOCALS~1\Temp\mstxoocku.pif []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe [2007-12-13 1688872]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Microsoft Windows Shell"=C:\Users\All Users\dgb\mb.exe []
"Windows LUA"=C:\Documents and Settings\marco\Data aplikací\WinLUA\WinLUA.exe []
"Akamai NetSession Interface"=C:\Documents and Settings\marco\Local Settings\Data aplikací\Akamai\netsession_win.exe [2012-10-09 4441920]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"KPeerNexonEU"=C:\Nexon\NEXON_EU_Downloader\nxEULauncher.exe []
"Cracked Steam Service"=c:\program files\steam\Cracked Steam.exe [2011-09-16 337506]
"PlayNC Launcher"= []
"Ypomos"=C:\Documents and Settings\marco\Data aplikací\Imti\enva.exe []
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2013-01-08 18705664]
"Advanced SystemCare 6"=C:\Program Files\IObit\Advanced SystemCare 6\ASCTray.exe [2013-01-15 491840]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
Adobe Reader Synchronizer.lnk - C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
GamersFirst LIVE!.lnk - C:\Program Files\GamersFirst\LIVE!\Live.exe
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.0.285\SSScheduler.exe

C:\Documents and Settings\marco\Nabídka Start\Programy\Po spuštění
PonyPhone.lnk - C:\Program Files\C-Media\PONYPHONE\Genius PonyPhone.exe
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2009-04-01 155648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-26 2210608]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Documents and Settings\marco\Plocha\client\mc.exe"="C:\Documents and Settings\marco\Plocha\client\mc.exe:*:Enabled:mc"
"C:\Documents and Settings\marco\Plocha\Sindicate\client.bin"="C:\Documents and Settings\marco\Plocha\Sindicate\client.bin:*:Enabled:client"
"C:\Program Files\QuadCoreM2\pack\core.bin"="C:\Program Files\QuadCoreM2\pack\core.bin:*:Enabled:core"
"C:\Program Files\THQ\Titan Quest Immortal Throne\Tqit.exe"="C:\Program Files\THQ\Titan Quest Immortal Throne\Tqit.exe:*:Enabled:Tqit"
"C:\Documents and Settings\marco\Plocha\Xpansion2\metin2client.exe.exe"="C:\Documents and Settings\marco\Plocha\Xpansion2\metin2client.exe.exe:*:Enabled:metin2client.exe"
"C:\Documents and Settings\marco\Plocha\Xpansion2\metin2 (2).exe"="C:\Documents and Settings\marco\Plocha\Xpansion2\metin2 (2).exe:*:Enabled:metin2 (2)"
"C:\Documents and Settings\marco\Plocha\Xpansion2\metin2client.bin"="C:\Documents and Settings\marco\Plocha\Xpansion2\metin2client.bin:*:Enabled:metin2client"
"C:\Documents and Settings\marco\Plocha\OlympusMt2\metin2client.bin"="C:\Documents and Settings\marco\Plocha\OlympusMt2\metin2client.bin:*:Enabled:metin2client"
"C:\Documents and Settings\marco\Plocha\OlympusMt2\OlympusMt2Pt.exe"="C:\Documents and Settings\marco\Plocha\OlympusMt2\OlympusMt2Pt.exe:*:Enabled:OlympusMt2Pt"
"C:\Documents and Settings\marco\Plocha\OlympusMt2\mc.exe"="C:\Documents and Settings\marco\Plocha\OlympusMt2\mc.exe:*:Enabled:mc"
"E:\IDM stahovanie\Crystal-World\mc.exe"="E:\IDM stahovanie\Crystal-World\mc.exe:*:Enabled:mc"
"E:\IDM stahovanie\BladeM2\mc.exe"="E:\IDM stahovanie\BladeM2\mc.exe:*:Enabled:mc"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Documents and Settings\marco\Plocha\Hiroko2Client\Hiroko2Client\Hiroko2.exe"="C:\Documents and Settings\marco\Plocha\Hiroko2Client\Hiroko2Client\Hiroko2.exe:*:Enabled:Hiroko2"
"C:\Documents and Settings\All Users\Data aplikací\NexonEU\NGM\NGM.exe"="C:\Documents and Settings\All Users\Data aplikací\NexonEU\NGM\NGM.exe:*:Enabled:Nexon Game Manager"
"C:\Nexon\Combat Arms EU\CombatArms.exe"="C:\Nexon\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe"
"C:\Program Files\MatrixMT2 Reload Client\mc.exe"="C:\Program Files\MatrixMT2 Reload Client\mc.exe:*:Enabled:mc"
"C:\Documents and Settings\marco\Plocha\Client by Heli\Helim2 V3.5\mc.exe"="C:\Documents and Settings\marco\Plocha\Client by Heli\Helim2 V3.5\mc.exe:*:Enabled:mc"
"C:\Program Files\Valkyrie Mt2\valk2client.bin"="C:\Program Files\Valkyrie Mt2\valk2client.bin:*:Enabled:valk2client"
"C:\Program Files\Valkyrie Mt2\Valkyrie Mt2\valk2client.bin"="C:\Program Files\Valkyrie Mt2\Valkyrie Mt2\valk2client.bin:*:Enabled:valk2client"
"E:\css\Counter Strike Source 2011\hl2.exe"="E:\css\Counter Strike Source 2011\hl2.exe:*:Enabled:hl2"
"C:\Documents and Settings\marco\Plocha\Celestial-World_Client_04.09.2011_\Celestial-World\metin2client.bin"="C:\Documents and Settings\marco\Plocha\Celestial-World_Client_04.09.2011_\Celestial-World\metin2client.bin:*:Enabled:metin2client"
"E:\wow\WoW-2.3.0.7561-enGB\wow c\World of Warcraft\WoW-x.x.x.x-4.0.0.12911-EU-Downloader.exe"="E:\wow\WoW-2.3.0.7561-enGB\wow c\World of Warcraft\WoW-x.x.x.x-4.0.0.12911-EU-Downloader.exe:*:Enabled:Blizzard Downloader"
"E:\wow\WoW-2.3.0.7561-enGB\wow c\World of Warcraft\Launcher.exe"="E:\wow\WoW-2.3.0.7561-enGB\wow c\World of Warcraft\Launcher.exe:*:Enabled:Blizzard Launcher"
"C:\Documents and Settings\marco\Plocha\Metin127\Metin127\mc.exe"="C:\Documents and Settings\marco\Plocha\Metin127\Metin127\mc.exe:*:Enabled:mc"
"E:\wow\WoW-2.3.0.7561-enGB\wow c\World of Warcraft\Launcher.patch.exe"="E:\wow\WoW-2.3.0.7561-enGB\wow c\World of Warcraft\Launcher.patch.exe:*:Enabled:Blizzard Launcher"
"C:\Program Files\Steam\steamapps\dazzla92\Counter-Strike Source\hl2.exe"="C:\Program Files\Steam\steamapps\dazzla92\Counter-Strike Source\hl2.exe:*:Enabled:hl2"
"C:\Program Files\Valve\hl.exe"="C:\Program Files\Valve\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\Counter-Strike 1.6\hl.exe"="C:\Program Files\Counter-Strike 1.6\hl.exe:*:Enabled:Half-Life Launcher"
"E:\css\Counter-Strike Source\hl2.exe"="E:\css\Counter-Strike Source\hl2.exe:*:Enabled:hl2"
"C:\Program Files\IAHGames\Counter-Strike Online\Bin\cstrike-online.exe"="C:\Program Files\IAHGames\Counter-Strike Online\Bin\cstrike-online.exe:*:Enabled:Counter-Strike Online"
"C:\Program Files\IAHGames\Counter-Strike Online\Bin\NMService.exe"="C:\Program Files\IAHGames\Counter-Strike Online\Bin\NMService.exe:*:Enabled:Nexon Messenger Core"
"C:\Documents and Settings\marco\Plocha\HammerMT2\client\metin2.bin"="C:\Documents and Settings\marco\Plocha\HammerMT2\client\metin2.bin:*:Enabled:metin2"
"C:\Program Files\Mozilla Firefox\plugin-container.exe"="C:\Program Files\Mozilla Firefox\plugin-container.exe:*:Enabled:Plugin Container for Firefox"
"C:\Program Files\Battlelog Web Plugins\Sonar\0.70.0\SonarHost.exe"="C:\Program Files\Battlelog Web Plugins\Sonar\0.70.0\SonarHost.exe:*:Enabled:ESN Sonar Host Application"
"E:\codmp\CoD 4\iw3mp CoD 4.exe"="E:\codmp\CoD 4\iw3mp CoD 4.exe:*:Enabled:iw3mp CoD 4"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"E:\codmp\CoD 4\iw3mp.exe"="E:\codmp\CoD 4\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM) "
"E:\wow\World of Warcraft\Launcher.exe"="E:\wow\World of Warcraft\Launcher.exe:*:Enabled:Blizzard Launcher"
"E:\wow\World of Warcraft\WoW-x.x.x.x-4.0.0.12911-Downloader.exe"="E:\wow\World of Warcraft\WoW-x.x.x.x-4.0.0.12911-Downloader.exe:*:Enabled:Blizzard Downloader"
"E:\ga 4\Grand Theft Auto IV\LaunchGTAIV.exe"="E:\ga 4\Grand Theft Auto IV\LaunchGTAIV.exe:*:Enabled:Grand Theft Auto IV"
"C:\Documents and Settings\marco\Plocha\Fatal+Mt2+Client+Complet+Final\FatalMt2.exe"="C:\Documents and Settings\marco\Plocha\Fatal+Mt2+Client+Complet+Final\FatalMt2.exe:*:Enabled:FatalMt2"
"C:\Program Files\Valkyrie Mt2\Valkyrie Mt2\Valkyrie Mt2\valk2client.bin"="C:\Program Files\Valkyrie Mt2\Valkyrie Mt2\Valkyrie Mt2\valk2client.bin:*:Enabled:valk2client"
"C:\Program Files\Counter-Strike Xtreme V6\hl.exe"="C:\Program Files\Counter-Strike Xtreme V6\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\Metin2\metin2.bin"="C:\Program Files\Metin2\metin2.bin:*:Disabled:metin2"
"C:\Documents and Settings\marco\Plocha\utorrent.exe"="C:\Documents and Settings\marco\Plocha\utorrent.exe:*:Enabled:µTorrent"
"E:\gmod\Game\Game\hl2.exe"="E:\gmod\Game\Game\hl2.exe:*:Enabled:hl2"
"C:\Program Files\Metin2\metin2.exe"="C:\Program Files\Metin2\metin2.exe:*:Enabled:metin2"
"C:\Quake III Arena\Quake3\quake3.exe"="C:\Quake III Arena\Quake3\quake3.exe:*:Enabled:quake3"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\battlefield 3\Battlefield 3™\bf3.exe"="C:\Program Files\battlefield 3\Battlefield 3™\bf3.exe:*:Enabled:Battlefield 3™"
"C:\Program Files\Vietcong\vietcong.exe"="C:\Program Files\Vietcong\vietcong.exe:*:Enabled:vietcong"
"C:\Program Files\Activision\Call of Duty - World at War Beta\CoDWaWbeta.exe"="C:\Program Files\Activision\Call of Duty - World at War Beta\CoDWaWbeta.exe:*:Enabled:Call of Duty(R): World at War Multiplayer"
"C:\Documents and Settings\marco\Local Settings\Data aplikací\Akamai\netsession_win.exe"="C:\Documents and Settings\marco\Local Settings\Data aplikací\Akamai\netsession_win.exe:*:Enabled:Akamai NetSession Interface"
"E:\Garry's-Mod 11\Game\hl2.exe"="E:\Garry's-Mod 11\Game\hl2.exe:*:Enabled:hl2"
"C:\Documents and Settings\marco\Plocha\Celestial-World[28.09.2011]\Celestial-World\metin2client.bin"="C:\Documents and Settings\marco\Plocha\Celestial-World[28.09.2011]\Celestial-World\metin2client.bin:*:Enabled:metin2client"
"E:\dead island\Dead Island\deadislandgame.exe"="E:\dead island\Dead Island\deadislandgame.exe:*:Enabled:DeadIsland"
"C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe"="C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe:*:Enabled:NEXON_EU_Downloader_Engine"
"C:\Documents and Settings\marco\Plocha\Celestial+World\Celestial World\metin2client.bin"="C:\Documents and Settings\marco\Plocha\Celestial+World\Celestial World\metin2client.bin:*:Enabled:metin2client"
"E:\Medal of Honor 2010\MP\MoHMPGame.exe"="E:\Medal of Honor 2010\MP\MoHMPGame.exe:*:Enabled:Medal of Honor: Multiplayer"
"C:\Program Files\EA GAMES\MOHAA\MOHAA.exe"="C:\Program Files\EA GAMES\MOHAA\MOHAA.exe:*:Enabled:Medal of Honor Allied Assault(tm)"
"C:\Program Files\EA GAMES\MOHAA\moh_spearhead.exe"="C:\Program Files\EA GAMES\MOHAA\moh_spearhead.exe:*:Enabled:Medal of Honor Allied Assault(tm) Spearhead"
"E:\gta4323\Grand Theft Auto IV\LaunchGTAIV.exe"="E:\gta4323\Grand Theft Auto IV\LaunchGTAIV.exe:*:Enabled:Grand Theft Auto IV"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"E:\Grand Theft Auto Liberty city\EFLC\EFLC.exe"="E:\Grand Theft Auto Liberty city\EFLC\EFLC.exe:*:Enabled:Grand Theft Auto : Episodes from Liberty City"
"C:\Program Files\Counter Strike 1.6 Modern Warfare 2\hl.exe"="C:\Program Files\Counter Strike 1.6 Modern Warfare 2\hl.exe:*:Enabled:Half-Life Launcher"
"E:\gta4323\Grand Theft Auto IV\GTAIV.exe"="E:\gta4323\Grand Theft Auto IV\GTAIV.exe:*:Enabled:Grand Theft Auto IV"
"E:\Battlefield 3\Battlefield 3™\bf3.exe"="E:\Battlefield 3\Battlefield 3™\bf3.exe:*:Enabled:Battlefield 3™"
"E:\IDM stahovanie\TeamFortress2\hl2.exe"="E:\IDM stahovanie\TeamFortress2\hl2.exe:*:Enabled:hl2"
"C:\Program Files\Steam\SteamApps\kurva123785\team fortress 2\hl2.exe"="C:\Program Files\Steam\SteamApps\kurva123785\team fortress 2\hl2.exe:*:Enabled:hl2"
"E:\Gears Of War\Rage\Rage.exe"="E:\Gears Of War\Rage\Rage.exe:*:Enabled:Rage"
"E:\IDM stahovanie\aIW-Client\Modern Warfare 2 - Multiplayer\iw4mp.dat"="E:\IDM stahovanie\aIW-Client\Modern Warfare 2 - Multiplayer\iw4mp.dat:*:Enabled:iw4mp"
"C:\Program Files\Unreal Tournament 3\Binaries\UT3.exe"="C:\Program Files\Unreal Tournament 3\Binaries\UT3.exe:*:Enabled:Unreal Tournament 3"
"E:\fuel\FUEL.exe"="E:\fuel\FUEL.exe:*:Enabled:FUEL"
"E:\codbo\Call of Duty - Black Ops\BlackOpsMP.exe"="E:\codbo\Call of Duty - Black Ops\BlackOpsMP.exe:*:Enabled:BlackOpsMP"
"E:\codbo\Call of Duty - Black Ops\BlackOps.exe"="E:\codbo\Call of Duty - Black Ops\BlackOps.exe:*:Enabled:BlackOps"
"E:\srtt\Saints Row The Third\saintsrowthethird.exe"="E:\srtt\Saints Row The Third\saintsrowthethird.exe:*:Enabled:Saints Row: the Third"
"E:\dead rising\deadrising2.exe"="E:\dead rising\deadrising2.exe:*:Enabled:Dead Rising 2"
"E:\battlefield bad company 2\BFBC2Updater.exe"="E:\battlefield bad company 2\BFBC2Updater.exe:*:Enabled:Battlefield: Bad Company™ 2"
"E:\battlefield bad company 2\BFBC2Game.exe"="E:\battlefield bad company 2\BFBC2Game.exe:*:Enabled:Battlefield: Bad Company™ 2"
"C:\Program Files\Steam\SteamApps\common\metro 2033\metro2033.exe"="C:\Program Files\Steam\SteamApps\common\metro 2033\metro2033.exe:*:Enabled:Metro 2033"
"C:\Program Files\Steam\SteamApps\common\metro 2033\metro2033benchmark.exe"="C:\Program Files\Steam\SteamApps\common\metro 2033\metro2033benchmark.exe:*:Enabled:metro2033benchmark"
"C:\Program Files\TeamViewer\Version6\TeamViewer.exe"="C:\Program Files\TeamViewer\Version6\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe"="C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"E:\Crysis2\bin32\Crysis2.exe"="E:\Crysis2\bin32\Crysis2.exe:*:Enabled:Crysis2"
"E:\fable3\Fable3.exe"="E:\fable3\Fable3.exe:*:Enabled:Fable III"
"E:\Batman Arkman City\Binaries\ShippingPC-BmGame.exe"="E:\Batman Arkman City\Binaries\ShippingPC-BmGame.exe:*:Enabled:Batman: Arkham Asylum"
"C:\Program Files\Sierra\hl.exe"="C:\Program Files\Sierra\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Nexon\Vindictus EU\en-EU\NMService.exe"="C:\Nexon\Vindictus EU\en-EU\NMService.exe:*:Enabled:Nexon Messenger Core"
"E:\World of Warcraft 3.3.5a (no install)\Launcher.exe"="E:\World of Warcraft 3.3.5a (no install)\Launcher.exe:*:Enabled:Blizzard Launcher"
"E:\World of Warcraft 3.3.5a (no install)\Launcher.patch.exe"="E:\World of Warcraft 3.3.5a (no install)\Launcher.patch.exe:*:Enabled:Blizzard Launcher"
"E:\World of Warcraft 3.3.5a (no install)\BackgroundDownloader.exe"="E:\World of Warcraft 3.3.5a (no install)\BackgroundDownloader.exe:*:Enabled:Blizzard Downloader"
"C:\Nexon\Combat Arms EU\NMService.exe"="C:\Nexon\Combat Arms EU\NMService.exe:*:Enabled:Nexon Messenger Core"
"C:\Program Files\Java\jre6\bin\java.exe"="C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Steam\SteamApps\common\dead island\DeadIslandGame.exe"="C:\Program Files\Steam\SteamApps\common\dead island\DeadIslandGame.exe:*:Enabled:Dead Island"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Nexon\Combat Arms EU\CombatArms.exe"="C:\Nexon\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe"
"C:\Nexon\Combat Arms EU\Engine.exe"="C:\Nexon\Combat Arms EU\Engine.exe:*Enabled:Engine.exe"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Pando Networks\Media Booster\PMB.exe"="C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"msacm.divxa32"=msaud32_divx.acm
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux1"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
"vidc.mjpg"=bdmjpeg.dll
"vidc.mpeg"=bdmpegv.dll
"msacm.bdmpeg"=bdmpega.acm
"VIDC.FPS1"=frapsvid.dll
"aux2"=wdmaud.drv
"aux3"=wdmaud.drv

======List of files/folders created in the last 1 month======

2013-03-14 19:30:15 ----D---- C:\rsit
2013-03-14 19:30:15 ----D---- C:\Program Files\trend micro
2013-03-14 18:50:16 ----D---- C:\Documents and Settings\marco\Data aplikací\Search Settings
2013-03-14 18:50:07 ----D---- C:\Program Files\IObit Apps Toolbar
2013-03-14 18:50:07 ----D---- C:\Program Files\Common Files\Spigot
2013-03-14 18:50:07 ----D---- C:\Program Files\Application Updater
2013-03-14 18:49:20 ----D---- C:\Documents and Settings\All Users\Data aplikací\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A}
2013-03-14 18:49:16 ----D---- C:\Documents and Settings\marco\Data aplikací\Apple Computer
2013-03-10 16:56:40 ----D---- C:\Perfect World Entertainment
2013-03-08 13:28:43 ----D---- C:\Program Files\Mozilla Firefox
2013-02-28 19:12:14 ----D---- C:\Documents and Settings\All Users\Data aplikací\REVOLT
2013-02-25 14:21:00 ----D---- C:\Program Files\Illusion Softworks
2013-02-23 16:27:16 ----D---- C:\Program Files\Subway Surfers
2013-02-23 12:16:54 ----D---- C:\Program Files\Common Files\Skype

======List of files/folders modified in the last 1 month======

2013-03-14 19:30:15 ----RD---- C:\Program Files
2013-03-14 19:27:17 ----D---- C:\Documents and Settings\marco\Data aplikací\Skype
2013-03-14 18:53:41 ----D---- C:\WINDOWS\Temp
2013-03-14 18:50:16 ----SHD---- C:\WINDOWS\Installer
2013-03-14 18:50:15 ----SHD---- C:\Config.Msi
2013-03-14 18:50:07 ----D---- C:\Program Files\Common Files
2013-03-14 18:49:32 ----SD---- C:\WINDOWS\Tasks
2013-03-14 18:49:20 ----D---- C:\Documents and Settings\All Users\Data aplikací\IObit
2013-03-14 18:49:13 ----D---- C:\Documents and Settings\marco\Data aplikací\IObit
2013-03-14 18:48:54 ----D---- C:\Program Files\IObit
2013-03-14 18:48:51 ----D---- C:\Program Files\Steam
2013-03-14 18:44:38 ----D---- C:\WINDOWS\system32\CatRoot2
2013-03-14 18:43:45 ----D---- C:\Program Files\Common Files\Akamai
2013-03-14 18:43:13 ----A---- C:\Documents and Settings\All Users\Data aplikací\HPWALog.txt
2013-03-11 15:16:47 ----D---- C:\WINDOWS\system32\config
2013-03-10 17:29:32 ----D---- C:\WINDOWS\Prefetch
2013-03-10 16:44:28 ----D---- C:\Documents and Settings\All Users\Data aplikací\PMB Files
2013-03-10 11:42:00 ----D---- C:\Program Files\Counter-Strike 1.6 Non-Steam
2013-03-09 11:54:26 ----D---- C:\WINDOWS
2013-03-08 23:42:29 ----D---- C:\Documents and Settings\marco\Data aplikací\uTorrent
2013-03-08 22:34:51 ----D---- C:\WINDOWS\WinSxS
2013-03-08 22:34:35 ----HD---- C:\WINDOWS\inf
2013-03-08 22:33:44 ----RSD---- C:\WINDOWS\assembly
2013-03-08 22:33:07 ----D---- C:\WINDOWS\system32\DirectX
2013-03-08 18:10:44 ----D---- C:\Program Files\Mozilla Maintenance Service
2013-03-08 13:55:41 ----HD---- C:\Program Files\InstallShield Installation Information
2013-03-04 13:25:39 ----D---- C:\WINDOWS\system32
2013-03-03 12:57:06 ----A---- C:\WINDOWS\SchedLgU.Txt
2013-02-23 12:17:04 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2013-02-23 12:16:54 ----RD---- C:\Program Files\Skype
2013-02-20 19:14:12 ----D---- C:\WINDOWS\system32\NtmsData
2013-02-20 19:11:24 ----D---- C:\WINDOWS\Registration
2013-02-17 17:01:36 ----A---- C:\WINDOWS\system32\PnkBstrB.exe
2013-02-17 16:48:03 ----A---- C:\WINDOWS\system32\PnkBstrA.exe
2013-02-17 16:48:03 ----A---- C:\WINDOWS\system32\pbsvc.exe
2013-02-16 19:45:38 ----A---- C:\WINDOWS\NeroDigital.ini
2013-02-15 22:41:20 ----D---- C:\Program Files\Heroes & Generals
2013-02-15 12:04:04 ----D---- C:\Documents and Settings\marco\Data aplikací\.minecraft

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2006-07-27 20640]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2011-08-15 691696]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2011-08-17 138192]
R1 iZ3DInjectionDriver;Driver inject our D3D and OGL wrappers; \??\C:\Program Files\iZ3D Driver\Win32\S3DInjectionDriver.sys []
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2011-06-15 60156]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2010-06-17 28520]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2011-08-17 66616]
R3 AESTAud;AE Audio Service; C:\WINDOWS\system32\drivers\AESTAud.sys [2009-02-18 113536]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2008-10-29 1204128]
R3 AmdLLD;AMD Low Level Device Driver; C:\WINDOWS\system32\DRIVERS\AmdLLD.sys [2007-06-29 34304]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2009-04-01 3597824]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2011-08-15 1735040]
R3 btaudio;Zvukové zařízení Bluetooth; C:\WINDOWS\system32\drivers\btaudio.sys [2009-01-14 534568]
R3 BTDriver;Ovladač virtuálních komunikací Bluetooth; C:\WINDOWS\system32\DRIVERS\btport.sys [2009-01-14 37160]
R3 BTKRNL;Enumenátor sběrnice Bluetooth; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2009-01-14 991656]
R3 BTWDNDIS;Server pro přístup k síti LAN Bluetooth; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2009-01-14 156816]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2009-01-14 47272]
R3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 NTProcDrv;Process creation detector for NT.; \??\C:\WINDOWS\TEMP\drv2FE4.tmp []
R3 STHDA;IDT High Definition Audio CODEC; C:\WINDOWS\system32\drivers\sthda.sys [2009-03-30 1550891]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-13 121984]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2009-07-17 297728]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 cmphone;C-Media USB PHONE Device Interface; C:\WINDOWS\system32\drivers\cmphone.sys [2006-09-05 1210880]
S3 EagleNT;EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys []
S3 EagleXNt;EagleXNt; \??\C:\WINDOWS\system32\drivers\EagleXNt.sys []
S3 gHidPnp;USB Device Enhanced Function Driver; C:\WINDOWS\System32\Drivers\gHidPnp.Sys [2009-06-27 20480]
S3 gMouUsb;USB Mouse Device Drv; C:\WINDOWS\system32\DRIVERS\gMouUsb.sys [2009-06-25 11520]
S3 IT9135BDA;IT9135 BDA Devices; C:\WINDOWS\System32\Drivers\IT9135BDA.sys [2011-09-20 94336]
S3 MPE;Filtr MPE BDA; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-13 15232]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 vtany;vtany; \??\C:\WINDOWS\vtany.sys []
S3 WinRing0_1_2_0;WinRing0_1_2_0; \??\C:\Program Files\IObit\Game Booster 3\Driver\WinRing0.sys []
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S3 xhunter1;xhunter1; \??\C:\WINDOWS\xhunter1.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdvancedSystemCareService6;Advanced SystemCare Service 6; C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe [2013-02-25 528192]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [2008-08-26 14336]
R2 Akamai;Akamai NetSession Interface; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2011-08-17 269480]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2011-04-21 136360]
R2 Application Updater;Application Updater; C:\Program Files\Application Updater\ApplicationUpdater.exe [2013-02-23 805752]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2009-04-01 602112]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2008-12-11 346720]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2012-12-10 1435568]
R2 HdThemeEnabler;Hyperdesk Theme Enabler; C:\WINDOWS\HDThemeEnabler.exe [2008-07-01 102400]
R2 HiPatchService;Hi-Rez Studios Authenticate and Update Service; C:\Program Files\Hi-Rez Studios\HiPatchService.exe [2012-08-30 8704]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2012-03-29 153376]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2007-12-03 869672]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2013-02-17 66872]
R2 S3DSvc32;S3D Service (Win32); C:\Program Files\iZ3D Driver\Win32\S3DCService.exe [2010-10-25 360960]
R2 Skype C2C Service;Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-01-31 3289208]
R2 STacSV;Audio Service; c:\program files\idt\wdm\STacSV.exe [2009-03-30 254042]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2008-10-23 223232]
R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2007-12-13 447784]
R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-08-15 135664]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-01-08 161536]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-08-15 135664]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-26 194032]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 idsvc;Služba Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.0.285\McCHSvc.exe []
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-26 65824]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-03-08 115608]
S3 npggsvc;nProtect GameGuard Service; C:\WINDOWS\system32\GameMon.des [2012-08-28 4204272]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2013-02-15 543144]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

[Rudy]

Zdravím!
Poprosím o log ComboFix:

Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se

jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine

aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,

pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k

nezadoucim kolizim s rezidentem antispyware

[melondubnica]

Dakujem za pomoc, combofix co som videl mazal program exe injected a synovec tvrdi ze to nainstaloval pred tyzdnom, je mozne ze to sposobilo problemy alebo je chyba v biose ?, som rad ze nerestartlo PC, mozno by uz nenabehol

ComboFix 13-03-14.02 - marco 14.03.2013 20:53:53.1.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1789.878 [GMT 1:00]
Spuštěný z: c:\documents and settings\marco\Plocha\ComboFix.exe
AV: AntiVir Desktop *Disabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
.
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\marco\boost_thread-vc90-mt-1_37.dll
c:\documents and settings\marco\MLibTorrent.dll
c:\program files\DealBulldog Toolbar
c:\program files\sXe Injected
c:\program files\sXe Injected\ddsxei.sys
c:\program files\sXe Injected\default.reg
c:\program files\sXe Injected\firechange.exe
c:\program files\sXe Injected\chromechange.exe
c:\program files\sXe Injected\icpgjfneehieebagbmdbhnlpiopdcmna\1.0.3_1\background.html
c:\program files\sXe Injected\icpgjfneehieebagbmdbhnlpiopdcmna\1.0.3_1\background.js
c:\program files\sXe Injected\icpgjfneehieebagbmdbhnlpiopdcmna\1.0.3_1\example.html
c:\program files\sXe Injected\icpgjfneehieebagbmdbhnlpiopdcmna\1.0.3_1\icon128.png
c:\program files\sXe Injected\icpgjfneehieebagbmdbhnlpiopdcmna\1.0.3_1\icon19.png
c:\program files\sXe Injected\icpgjfneehieebagbmdbhnlpiopdcmna\1.0.3_1\manifest.json
c:\program files\sXe Injected\icpgjfneehieebagbmdbhnlpiopdcmna\1.0.3_1\options.css
c:\program files\sXe Injected\icpgjfneehieebagbmdbhnlpiopdcmna\1.0.3_1\options.html
c:\program files\sXe Injected\icpgjfneehieebagbmdbhnlpiopdcmna\1.0.3_1\options.js
c:\program files\sXe Injected\icpgjfneehieebagbmdbhnlpiopdcmna\1.0.3_1\README.md
c:\program files\sXe Injected\icpgjfneehieebagbmdbhnlpiopdcmna\1.0.3_1\redirect.html
c:\program files\sXe Injected\icpgjfneehieebagbmdbhnlpiopdcmna\1.0.3_1\redirect.js
c:\program files\sXe Injected\localstrike-search.xml
c:\program files\sXe Injected\newtaburl_local.xpi
c:\program files\sXe Injected\Preferences
c:\program files\sXe Injected\search.ini
c:\program files\sXe Injected\speeddial.ini
c:\program files\sXe Injected\sXe-I EULA.txt
c:\program files\sXe Injected\sXe Injected.exe
c:\program files\sXe Injected\sXe Injected.txt
c:\program files\sXe Injected\sXe.dll
c:\program files\sXe Injected\TopSites.plist
c:\program files\sXe Injected\uninstall.exe
c:\program files\sXe Injected\uninstall.ini
c:\program files\sXe Injected\Web Data
c:\program files\sXe Injected\web.dll
c:\windows\sys
c:\windows\sys\a.txt
c:\windows\sys\msvcp100d.dll
c:\windows\sys\msvcr100.dll
c:\windows\sys\msvcr100d.dll
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-02-14 do 2013-03-14 )))))))))))))))))))))))))))))))
.
.
2013-03-14 19:23 . 2013-03-14 19:23 -------- d-----w- c:\documents and settings\marco\Data aplikací\IObit Apps
2013-03-14 18:30 . 2013-03-14 18:30 -------- d-----w- C:\rsit
2013-03-14 18:30 . 2013-03-14 18:30 -------- d-----w- c:\program files\trend micro
2013-03-14 17:50 . 2013-03-14 17:50 -------- d-----w- c:\documents and settings\marco\Data aplikací\Search Settings
2013-03-14 17:50 . 2013-03-14 17:50 -------- d-----w- c:\windows\system32\config\systemprofile\Data aplikací\Application Updater
2013-03-14 17:50 . 2013-03-14 17:50 -------- d-----w- c:\program files\IObit Apps Toolbar
2013-03-14 17:50 . 2013-03-14 17:50 -------- d-----w- c:\program files\Application Updater
2013-03-14 17:50 . 2013-03-14 17:50 -------- d-----w- c:\program files\Common Files\Spigot
2013-03-14 17:49 . 2013-03-14 17:49 -------- d-----w- c:\documents and settings\All Users\Data aplikací\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A}
2013-03-14 17:49 . 2013-03-14 17:49 -------- d-----w- c:\documents and settings\marco\Data aplikací\Apple Computer
2013-03-14 17:49 . 2013-03-14 17:49 -------- d-----w- c:\documents and settings\marco\AppData
2013-03-10 15:56 . 2013-03-10 15:56 -------- d-----w- C:\Perfect World Entertainment
2013-02-28 18:12 . 2013-02-28 18:12 -------- d-----w- c:\documents and settings\All Users\Data aplikací\REVOLT
2013-02-25 13:21 . 2013-02-25 13:21 -------- d-----w- c:\program files\Illusion Softworks
2013-02-23 15:27 . 2013-02-23 15:27 -------- d-----w- c:\documents and settings\marco\Local Settings\Data aplikací\Kiloo Games
2013-02-23 15:27 . 2013-02-23 15:27 -------- d-----w- c:\program files\Subway Surfers
2013-02-23 11:16 . 2013-02-23 11:16 -------- d-----w- c:\program files\Common Files\Skype
2013-02-16 22:09 . 2013-02-16 22:16 -------- d-----w- c:\documents and settings\marco\Local Settings\Data aplikací\Darksiders2
2013-02-15 18:40 . 2013-02-15 18:42 -------- d-----w- c:\documents and settings\marco\Local Settings\Data aplikací\BlueStacksSetup
2013-02-14 12:09 . 2013-02-15 21:41 -------- d-----w- c:\program files\Heroes & Generals
2013-02-14 11:38 . 2013-02-14 11:38 -------- d-----w- c:\documents and settings\marco\Data aplikací\Sudeo
2013-02-14 11:38 . 2013-02-14 11:38 -------- d-----w- c:\documents and settings\marco\Data aplikací\Gyxa
2013-02-14 11:38 . 2013-02-14 11:38 -------- d-----w- c:\documents and settings\marco\Data aplikací\Edpos
2013-02-12 20:24 . 2013-02-12 20:24 -------- d-----w- c:\documents and settings\marco\Data aplikací\Uvfuo
2013-02-12 20:24 . 2013-02-12 20:24 -------- d-----w- c:\documents and settings\marco\Data aplikací\Upotek
2013-02-12 20:24 . 2013-02-12 20:24 -------- d-----w- c:\documents and settings\marco\Data aplikací\Pesyt
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-02-17 16:01 . 2011-09-30 21:14 138464 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2013-02-17 16:01 . 2011-09-30 21:14 111928 ----a-w- c:\windows\system32\PnkBstrB.exe
2013-02-17 15:48 . 2011-09-30 21:14 22328 ----a-w- c:\documents and settings\marco\Data aplikací\PnkBstrK.sys
2013-02-17 15:48 . 2011-11-05 18:42 682280 ----a-w- c:\windows\system32\pbsvc.exe
2013-02-17 15:48 . 2011-09-30 21:14 66872 ----a-w- c:\windows\system32\PnkBstrA.exe
2013-02-16 18:29 . 2011-09-30 21:14 111928 ----a-w- c:\windows\system32\PnkBstrB.ex0
2013-02-15 10:31 . 2011-11-26 19:06 215128 ----a-w- c:\windows\system32\PnkBstrB.xtr
2013-02-13 18:54 . 2013-02-12 12:23 0 ---ha-w- c:\documents and settings\marco\Data aplikací\winsvcns.sys
2013-01-11 19:17 . 2013-01-11 19:17 697864 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-01-11 19:17 . 2011-08-23 07:58 74248 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-03-08 12:29 . 2013-03-08 12:28 263064 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{03EB0E9C-7A91-4381-A220-9B52B641CDB1}"= "c:\program files\IObit Apps Toolbar\IE\7.0\iobitappsToolbarIE.dll" [2013-02-23 1352512]
.
[HKEY_CLASSES_ROOT\clsid\{03eb0e9c-7a91-4381-a220-9b52b641cdb1}]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}]
2013-02-23 18:17 1352512 ----a-w- c:\program files\IObit Apps Toolbar\IE\7.0\iobitappsToolbarIE.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{03EB0E9C-7A91-4381-A220-9B52B641CDB1}"= "c:\program files\IObit Apps Toolbar\IE\7.0\iobitappsToolbarIE.dll" [2013-02-23 1352512]
.
[HKEY_CLASSES_ROOT\clsid\{03eb0e9c-7a91-4381-a220-9b52b641cdb1}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" [2007-12-13 1688872]
"Akamai NetSession Interface"="c:\documents and settings\marco\Local Settings\Data aplikací\Akamai\netsession_win.exe" [2012-10-09 4441920]
"Cracked Steam Service"="c:\program files\steam\Cracked Steam.exe" [2011-09-16 337506]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2013-01-08 18705664]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-04-01 61440]
"WirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2009-02-18 506424]
"AESTFltr"="c:\windows\system32\AESTFltr.exe" [2009-02-18 737280]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"NeroFilterCheck"="c:\program files\Common Files\Nero\Lib\NeroCheck.exe" [2007-03-01 153136]
"NBKeyScan"="c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2007-12-03 2213160]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2011-04-21 281768]
"PWRISOVM.EXE"="c:\program files\PowerISO\PWRISOVM.EXE" [2011-06-15 307200]
"ioCentre"="c:\genius\ioCentre\gTaskBar.exe" [2009-09-03 61440]
"amd_dc_opt"="c:\program files\AMD\Dual-Core Optimizer\amd_dc_opt.exe" [2008-07-22 77824]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
"SweetIM"="c:\program files\SweetIM\Messenger\SweetIM.exe" [2012-05-29 115032]
"Sweetpacks Communicator"="c:\program files\SweetIM\Communicator\SweetPacksUpdateManager.exe" [2012-08-15 231768]
"LogMeIn Hamachi Ui"="c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe" [2012-12-10 2254768]
"SearchSettings"="c:\program files\Common Files\Spigot\Search Settings\SearchSettings.exe" [2013-02-23 1297728]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\marco\Nabídka Start\Programy\Po spuštění\
PonyPhone.lnk - c:\program files\C-Media\PONYPHONE\Genius PonyPhone.exe [2011-11-16 630784]
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2006-10-26 98632]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
Adobe Reader Speed Launch.lnk - c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe [2006-10-23 40048]
Adobe Reader Synchronizer.lnk - c:\program files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe [2006-10-23 734872]
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2008-12-11 604776]
GamersFirst LIVE!.lnk - c:\program files\GamersFirst\LIVE!\Live.exe [2012-4-29 2647664]
McAfee Security Scan Plus.lnk - c:\program files\McAfee Security Scan\3.0.285\SSScheduler.exe [2012-9-5 271808]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
2008-04-14 03:22 1695232 ----a-w- c:\program files\Messenger\msmsgs.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Documents and Settings\\All Users\\Data aplikací\\NexonEU\\NGM\\NGM.exe"=
"c:\\Program Files\\Counter-Strike 1.6\\hl.exe"=
"e:\\css\\Counter-Strike Source\\hl2.exe"=
"c:\\Program Files\\Mozilla Firefox\\plugin-container.exe"=
"c:\\Program Files\\Battlelog Web Plugins\\Sonar\\0.70.0\\SonarHost.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Documents and Settings\\marco\\Local Settings\\Data aplikací\\Akamai\\netsession_win.exe"=
"e:\\Garry's-Mod 11\\Game\\hl2.exe"=
"e:\\Medal of Honor 2010\\MP\\MoHMPGame.exe"=
"c:\\Program Files\\EA GAMES\\MOHAA\\MOHAA.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"e:\\battlefield bad company 2\\BFBC2Updater.exe"=
"e:\\battlefield bad company 2\\BFBC2Game.exe"=
"c:\\Program Files\\TeamViewer\\Version6\\TeamViewer.exe"=
"c:\\Program Files\\TeamViewer\\Version6\\TeamViewer_Service.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"c:\\WINDOWS\\system32\\javaw.exe"=
"c:\\WINDOWS\\system32\\dpnsvr.exe"=
"c:\\Program Files\\Take2\\Hidden and Dangerous Deluxe\\bin\\hde.exe"=
"c:\\WINDOWS\\system32\\msiexec.exe"=
"c:\\Program Files\\SweetIM\\Communicator\\SweetPacksUpdateManager.exe"=
"c:\\Program Files\\Counter-Strike Source\\hl2.exe"=
"c:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"=
"c:\\Program Files\\Steam\\steam.exe"=
"e:\\Diablo-3-lan-server-1.0.3.10057\\Mooege\\Diablo III.exe"=
"e:\\borderlands\\Binaries\\Borderlands.exe"=
"e:\\worlfeinstein 2\\MP\\Wolf2MP.exe"=
"e:\\worlfeinstein 2\\MP\\Wolf2MPLite.exe"=
"c:\\Program Files\\Kamuse\\kcsDownloadV3\\KCSDownloadV3.exe"=
"c:\\Program Files\\Counter-Strike 1.6\\hlds.exe"=
"e:\\diablo3\\Diablo.III.Client.Server.Emulator\\Diablo III.exe"=
"e:\\diablo3\\Diablo.III.Client.Server.Emulator\\src\\Mooege\\bin\\Debug\\Mooege.exe"=
"c:\\Program Files\\Counter-Strike 1.6 Non-Steam\\hl.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"e:\\SEV2\\Far Cry 2\\bin\\FarCry2.exe"=
"e:\\SEV2\\Far Cry 2\\bin\\FC2Launcher.exe"=
"e:\\SEV2\\Far Cry 2\\bin\\FC2Editor.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"57562:TCP"= 57562:TCP:Pando Media Booster
"57562:UDP"= 57562:UDP:Pando Media Booster
"58808:TCP"= 58808:TCP:Pando Media Booster
"58808:UDP"= 58808:UDP:Pando Media Booster
"56982:TCP"= 56982:TCP:Pando Media Booster
"56982:UDP"= 56982:UDP:Pando Media Booster
"1045:TCP"= 1045:TCP:Akamai NetSession Interface
"5000:UDP"= 5000:UDP:Akamai NetSession Interface
.
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [15.8.2011 20:53 691696]
R1 iZ3DInjectionDriver;Driver inject our D3D and OGL wrappers;c:\program files\iZ3D Driver\Win32\S3DInjectionDriver.sys [2.1.2012 23:31 34968]
R2 Akamai;Akamai NetSession Interface;c:\windows\System32\svchost.exe -k Akamai [17.8.2004 15:49 14336]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [15.8.2011 20:59 136360]
R2 Application Updater;Application Updater;c:\program files\Application Updater\ApplicationUpdater.exe [23.2.2013 16:54 805752]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [10.12.2012 17:29 1435568]
R2 HdThemeEnabler;Hyperdesk Theme Enabler;c:\windows\HDThemeEnabler.exe [1.7.2008 11:16 102400]
R2 HiPatchService;Hi-Rez Studios Authenticate and Update Service;c:\program files\Hi-Rez Studios\HiPatchService.exe [28.7.2012 11:01 8704]
R2 S3DSvc32;S3D Service (Win32);c:\program files\iZ3D Driver\Win32\S3DCService.exe [2.1.2012 23:31 360960]
R3 AESTAud;AE Audio Service;c:\windows\system32\drivers\AESTAud.sys [15.8.2011 19:16 113536]
R3 NTProcDrv;Process creation detector for NT.;\??\c:\windows\TEMP\drv2FE4.tmp --> c:\windows\TEMP\drv2FE4.tmp [?]
S2 Skype C2C Service;Skype C2C Service;c:\documents and settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [31.1.2013 10:38 3289208]
S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [8.1.2013 12:55 161536]
S3 cmphone;C-Media USB PHONE Device Interface;c:\windows\system32\drivers\cmphone.sys [16.11.2011 16:33 1210880]
S3 EagleXNt;EagleXNt;\??\c:\windows\system32\drivers\EagleXNt.sys --> c:\windows\system32\drivers\EagleXNt.sys [?]
S3 gHidPnp;USB Device Enhanced Function Driver;c:\windows\system32\drivers\gHidPnp.sys [16.11.2011 13:49 20480]
S3 gMouUsb;USB Mouse Device Drv;c:\windows\system32\drivers\gMouUsb.sys [16.11.2011 13:49 11520]
S3 IT9135BDA;IT9135 BDA Devices;c:\windows\system32\drivers\IT9135BDA.sys [20.9.2011 18:28 94336]
S3 McComponentHostService;McAfee Security Scan Component Host Service;"c:\program files\McAfee Security Scan\3.0.285\McCHSvc.exe" --> c:\program files\McAfee Security Scan\3.0.285\McCHSvc.exe [?]
S3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des -service --> c:\windows\system32\GameMon.des -service [?]
S3 vtany;vtany;\??\c:\windows\vtany.sys --> c:\windows\vtany.sys [?]
S3 WinRing0_1_2_0;WinRing0_1_2_0;c:\program files\IObit\Game Booster 3\Driver\WinRing0.sys [25.8.2012 10:01 14416]
S3 xhunter1;xhunter1;\??\c:\windows\xhunter1.sys --> c:\windows\xhunter1.sys [?]
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - APPLICATION_UPDATER
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
Akamai REG_MULTI_SZ Akamai
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-03-06 10:57 1630672 ----a-w- c:\program files\google\Chrome\Application\25.0.1364.152\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-03-14 c:\windows\Tasks\Game_Booster_AutoUpdate.job
- c:\program files\IObit\Game Booster 3\AutoUpdate.exe [2012-08-25 15:57]
.
2013-03-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-08-15 19:08]
.
2013-03-14 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-08-15 19:08]
.
2012-07-22 c:\windows\Tasks\Norton Security Scan for marco.job
- c:\progra~1\NORTON~2\Engine\372~1.5\Nss.exe [2012-07-22 09:45]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://home.sweetim.com/?st=6&barid={047A376C-E63E-11E1-B141-00247E994C13}
mStart Page = hxxp://home.sweetim.com/?st=6&barid={047A376C-E63E-11E1-B141-00247E994C13}
uInternet Settings,ProxyOverride = 127.0.0.1:9421;<local>
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Odeslat do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat do zařízení Bluetooth - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: Stáhnout s IDM - c:\program files\Internet Download Manager\IEExt.htm
IE: Stáhnout s IDM obsah FLV videa - c:\program files\Internet Download Manager\IEGetVL.htm
IE: Stáhnout s IDM všechny odkazy - c:\program files\Internet Download Manager\IEGetAll.htm
TCP: DhcpNameServer = 217.75.71.141 217.75.71.142
FF - ProfilePath - c:\documents and settings\marco\Data aplikací\Mozilla\Firefox\Profiles\l0utktox.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: browser.search.selectedEngine - Yahoo
FF - prefs.js: browser.startup.homepage - hxxps://www.google.sk/
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=668083&p=
FF - ExtSQL: 2013-03-14 18:50; iobitapps@mybrowserbar.com; c:\program files\IObit Apps Toolbar\FF
FF - user.js: network.cookie.cookieBehavior - 0
FF - user.js: privacy.clearOnShutdown.cookies - false
FF - user.js: security.warn_viewing_mixed - false
FF - user.js: security.warn_viewing_mixed.show_once - false
FF - user.js: security.warn_submit_insecure - false
FF - user.js: security.warn_submit_insecure.show_once - false
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKCU-Run-Microsoft Windows Shell - c:\users\All Users\dgb\mb.exe
HKCU-Run-Windows LUA - c:\documents and settings\marco\Data aplikací\WinLUA\WinLUA.exe
HKCU-Run-KPeerNexonEU - c:\nexon\NEXON_EU_Downloader\nxEULauncher.exe
HKCU-Run-PlayNC Launcher - (no file)
HKCU-Run-Ypomos - c:\documents and settings\marco\Data aplikací\Imti\enva.exe
HKLM-Run-Microsoft Windows Shell - c:\users\All Users\dgb\mb.exe
HKLM-Explorer_Run-43426 - c:\docume~1\ALLUSE~1\LOCALS~1\Temp\mstxoocku.pif
AddRemove-Agere Systems Soft Modem - c:\windows\agrsmdel
AddRemove-Alliance of Valiant Arms - c:\aeriagames\AVA\Uninst.exe
AddRemove-APB Reloaded - e:\apb\APB Reloaded\Uninstall.exe
AddRemove-Borderlands 2_is1 - e:\borderlands 2\Borderlands 2\unins000.exe
AddRemove-Brothers in Arms - Hell's Highway - c:\program files\Ubisoft\Gearbox Software\Brothers in Arms - Hell's Highway\Binaries\uninst.exe
AddRemove-Call of Duty - c:\progra~1\CALLOF~1\Uninstall\Unwise.exe
AddRemove-Call of Duty: Black Ops_is1 - e:\codbo\Call of Duty - Black Ops\unins000.exe
AddRemove-Counter Strike 1.6 Patch v42 - c:\program files\Valve\Uninstall.exe
AddRemove-Counter Strike 1.6 Modern Warfare 2 2010 - c:\program files\Counter Strike 1.6 Modern Warfare 2\Uninstall.exe
AddRemove-Counter-Strike 1.6 - c:\program files\Sierra\Uninstal.exe
AddRemove-Counter-Strike Online - c:\program files\IAHGames\Counter-Strike Online\uninst.exe
AddRemove-Counter-Strike Xtreme V6 - c:\program files\Counter-Strike Xtreme V6\Uninstal.exe
AddRemove-CS Patch v36b BETA 0.1 - c:\program files\Valve\Uninstal.exe
AddRemove-CSS Transformation Pack_is1 - c:\program files\Counter-Strike 1.6\cstrike\cstrike\unins000.exe
AddRemove-Diablo.III.Collectors.Edition_is1 - e:\diablo3\Diablo.III.Collectors.Edition\unins000.exe
AddRemove-Dishonored_is1 - e:\dishonored\Dishonored\unins000.exe
AddRemove-Dragon Age 2.v 1.04 + 16 DLC_is1 - e:\dragon age 2\Dragon Age 2.v 1.04 + 16 DLC\Uninstall\unins000.exe
AddRemove-Duke Nukem Forever_is1 - e:\duken dukem\Duke Nukem Forever\unins000.exe
AddRemove-Dungeon Defenders_is1 - c:\program files\Trendy Entertainment\Dungeon Defenders\unins000.exe
AddRemove-Half-Life Source - c:\program files\Half Life 2\uninstall.exe
AddRemove-Half-Life_is1 - c:\program files\Valve\Half-Life\unins000.exe
AddRemove-Hyperionics DB Toolbar - c:\program files\Hyperionics DB Toolbar\UninstallToolbar.exe
AddRemove-IT9130 DriverInstaller_10.2.3.2 - c:\docume~1\marco\LOCALS~1\Temp\DriverInstall32.exe
AddRemove-Mafia II_is1 - c:\program files\2K Games\Mafia II\unins000.exe
AddRemove-McAfee Security Scan - c:\program files\McAfee Security Scan\uninstall.exe
AddRemove-Metin2_is1 - c:\program files\Metin2\unins000.exe
AddRemove-Metro 2033_is1 - c:\program files\THQ\Metro 2033\unins000.exe
AddRemove-MTA:SA 1.1 - c:\program files\MTA San Andreas 1.1\Uninstall.exe
AddRemove-Orcs Must Die!_is1 - e:\orcs must die\Orcs Must Die!\unins000.exe
AddRemove-Origin - c:\program files\Origin\OriginUninstall.exe
AddRemove-Quake2UninstallKey - c:\quake2\Uninst.isu
AddRemove-RaiderZ - c:\perfect world entertainment\RaiderZ\Uninstall RaiderZ Launcher.exe
AddRemove-Rayman Designer_is1 - c:\program files\Ubisoft\Rayman Origins\Rayman Designer\unins000.exe
AddRemove-Rayman_is1 - c:\program files\Ubisoft\Rayman Origins\Rayman\unins000.exe
AddRemove-Saints Row The Third_is1 - e:\srtt\Saints Row The Third\unins000.exe
AddRemove-Sniper Elite V2_is1 - e:\rage2\SniperEliteV2\unins000.exe
AddRemove-Sniper Elite: Nazi Zombie Army_is1 - c:\program files\Sniper Elite Nazi Zombie Army\unins000.exe
AddRemove-Sniper Ghost Warrior_is1 - e:\sniper\Sniper Ghost Warrior\unins000.exe
AddRemove-sXe Injected - c:\program files\sXe Injected\uninstall.exe
AddRemove-The Darkness II_is1 - e:\the darkness 2\The Darkness II\unins000.exe
AddRemove-TmNationsForever_is1 - c:\program files\TmNationsForever\unins000.exe
AddRemove-Tony Hawks Pro Skater HD_is1 - c:\program files\Activision\Tony Hawks Pro Skater HD\unins000.exe
AddRemove-Torchlight II (c) Runic Games_is1 - e:\torchlider\Torchlight II\unins000.exe
AddRemove-Trine 2_is1 - c:\program files\Frozenbyte\Trine 2\unins000.exe
AddRemove-Valkyrie Mt2 - c:\program files\Valkyrie Mt2\Valkyrie Mt2\Valkyrie Mt2\uninst.exe
AddRemove-Valve_0 - c:\program files\Valve\Uninstall.exe
AddRemove-Valve_1 - c:\program files\Valve\Uninstall.exe
AddRemove-Valve_2 - c:\program files\Valve\Uninstall.exe
AddRemove-Vietcong - c:\program files\Vietcong\Uninstall.exe
AddRemove-{1A3E23D7-7A1E-43EC-B35D-EB2A31BED943} - c:\program files\Video DVD Maker\Uninstall.exe
AddRemove-{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1 - c:\games\World_of_Tanks\unins000.exe
AddRemove-{2EBFADD2-A417-458D-9B43-BE2081955A9A}}_is1 - c:\program files\Profibot\IBot 3.57\unins000.exe
AddRemove-{37FC691D-93E6-4FF1-A056-A40C4F99AAA7}_is1 - c:\program files\UberStrike HD\unins000.exe
AddRemove-{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF017} - c:\program files\Hi-Rez Studios\HiRezGamesDiagAndSupport.exe
AddRemove-{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC} - c:\program files\Hi-Rez Studios\HiRezGamesDiagAndSupport.exe
AddRemove-{42E41382-5131-4D64-899B-0C06923A3D2D}_is1 - e:\call of duty modern warfare 3\xP\Call of Duty Modern Warfare 3\unins000.exe
AddRemove-{44C0C461-4D2D-4689-A947-8CA36C72E822}}_is1 - c:\program files\Profibot\IBot 3.45\unins000.exe
AddRemove-{47D6F3E4-D158-4E47-84C4-0D6452DB2488}_is1 - e:\co\Call of Duty Black Ops 2\unins000.exe
AddRemove-{4B7IL77L-LKS1-75B1-CODMW3-18CD6E6334R1}_is1 - e:\call of duty modern warfare 3\Call of Duty Modern Warfare 3\unins000.exe
AddRemove-{547ADD84-7D19-4EC0-B709-092F997ACA8C}_is1 - c:\program files\DaemonicMU Season V\unins000.exe
AddRemove-{6889EE56-1816-4E89-94DF-9F56E7804039}_is1 - c:\program files\Valve\unins001.exe
AddRemove-{8DC910CD-8EE3-4ffc-A4EB-9B02701059C4} - c:\program files\EA Games\Battlefield Heroes\uninstaller.exe
AddRemove-{9962387C-4F66-4F3D-9CA4-378AFCA4C2D4}_is1 - e:\gears of war\Rage\Uninstall\unins000.exe
AddRemove-{A2S166A0-F031-4E27-A057-C69733219434}_is1 - e:\tera\TERA\unins000.exe
AddRemove-{A3954367-7BE8-4DD6-93A9-F04AB2478649}_is1 - c:\program files\MatrixMT2 Reload Client\unins000.exe
AddRemove-{C3688A11-F5AD-4571-8400-B825B20ECFD8}}_is1 - c:\program files\Profibot\IBot 3.78\unins000.exe
AddRemove-{E56620C7-1D43-40FF-8A58-0FA3C51033AB}}_is1 - c:\program files\Profibot\IBot 3.77\unins000.exe
AddRemove-Gamesites.cz GUI - c:\program files\Uninstal_GS_GUI.exe
AddRemove-NCsoft-Lineage2 - c:\program files\NCSoft\Launcher\NCLauncher.exe
AddRemove-UnityWebPlayer - c:\documents and settings\marco\Local Settings\Data aplikací\Unity\WebPlayer\Uninstall.exe
AddRemove-{87686C21-8A15-4b4d-A3F1-11141D9BE094} - c:\program files\EA Games\Battlefield Play4Free\uninstaller.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-03-14 21:03
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Akamai]
"ServiceDll"="c:\program files\common files\akamai/netsession_win_ce5ba24.dll"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\NTProcDrv]
"ImagePath"="\??\c:\windows\TEMP\drv2FE4.tmp"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-299502267-1647877149-839522115-1003\Software\SecuROM\License information*]
"datasecu"=hex:67,ed,b8,de,57,ee,0f,1f,83,78,e5,b1,fc,07,f6,c4,3b,34,f7,3e,ad,
05,c0,47,aa,eb,3f,f7,4b,f3,40,61,0a,36,43,3d,db,8b,ae,8a,3b,a2,0a,f7,52,32,\
"rkeysecu"=hex:e1,98,ee,2c,a2,e6,95,c2,79,cc,dc,40,4d,aa,78,12
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{2d530b91-d7a9-4a70-bcac-f64289869384}]
@Denied: (Full) (Everyone)
"Model"=dword:0000009a
"Therad"=dword:00000022
"MData"=hex(0):73,d5,cf,b8,a4,07,89,80,31,e4,35,6b,2a,ca,fe,43,b6,1f,81,1f,5a,
1b,4d,36,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,\
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}]
@Denied: (Full) (Everyone)
"scansk"=hex(0):9b,f0,69,84,42,b8,7b,49,74,cc,3c,c5,08,3b,c9,71,f6,6e,57,c7,fd,
0d,4f,b8,5b,f8,22,39,af,48,17,b1,a6,4e,a6,5b,14,65,5e,f7,00,00,00,00,00,00,\
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(1076)
c:\windows\system32\Ati2evxx.dll
.
Celkový čas: 2013-03-14 21:06:08
ComboFix-quarantined-files.txt 2013-03-14 20:05
.
Před spuštěním: Volných bajtů: 20 366 942 208
Po spuštění: Volných bajtů: 33 038 180 352
.
- - End Of File - - 45063D7DD279FE44CA2879F986D056A2

[Rudy]

Ještě dočistíme. Otevřte poznámkový blok a zkopírujte do něj:

KillAll::

Folder::
c:\program files\IObit Apps Toolbar
c:\program files\Common Files\Spigot
c:\documents and settings\marco\Local Settings\Data aplikací\Akamai
c:\program files\SweetIM
c:\documents and settings\All Users\Data aplikací\Skype\Toolbars

File::
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

Registry::
[-HKEY_CLASSES_ROOT\clsid\{03eb0e9c-7a91-4381-a220-9b52b641cdb1}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{03EB0E9C-7A91-4381-A220-9B52B641CDB1}"=-
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Akamai NetSession Interface"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-
"SweetIM"=-
"Sweetpacks Communicator"=-
"SearchSettings"=-
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"57562:TCP"=-
"57562:UDP"=-
"58808:TCP"=-
"58808:UDP"=-
"56982:TCP"=-
"56982:UDP"=-
"1045:TCP"=-
"5000:UDP"=-

Driver::
Akamai
Skype C2C Service

Firefox::
FF - ProfilePath - c:\documents and settings\marco\Data aplikací\Mozilla\Firefox\Profiles\l0utktox.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: browser.search.selectedEngine - Yahoo
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=green ... =668083&p=
FF - ExtSQL: 2013-03-14 18:50; iobitapps@mybrowserbar.com; c:\program files\IObit Apps Toolbar\FF
FF - user.js: network.cookie.cookieBehavior - 0
FF - user.js: privacy.clearOnShutdown.cookies - false
FF - user.js: security.warn_viewing_mixed - false
FF - user.js: security.warn_viewing_mixed.show_once - false
FF - user.js: security.warn_submit_insecure - false
FF - user.js: security.warn_submit_insecure.show_once - false

Regnull::
[HKEY_USERS\S-1-5-21-299502267-1647877149-839522115-1003\Software\SecuROM\License information*]

RegLock::
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{2d530b91-d7a9-4a70-bcac-f64289869384}]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}]

Reboot::

Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí vykoná příkazy ze skriptu.

[melondubnica]

Takze combofix mazal, prebehol restart a PC v pohode nabehlo. Chcem sa prosim opitat co to sposobovalo ze PC nechcelo nabehnut, kedze som predtym skusal aj linux co nabehne z CD a neslo, predpokladal som ze nieco branilo nabehnutiu biosu, bolo to tak alebo som sa mylil? Vdaka za odpoved a prikladam este vysledny log combofix

ComboFix 13-03-14.02 - marco 14.03.2013 22:23:49.2.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1789.1027 [GMT 1:00]
Spuštěný z: c:\documents and settings\marco\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\marco\Plocha\CFScript.txt
AV: AntiVir Desktop *Disabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
.
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
FILE ::
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\Common Files\Spigot
c:\program files\Common Files\Spigot\GC\coupons_2.3.crx
c:\program files\Common Files\Spigot\GC\errorassistant_1.1.crx
c:\program files\Common Files\Spigot\GC\saamazon_1.0.crx
c:\program files\Common Files\Spigot\GC\saebay_1.0.crx
c:\program files\Common Files\Spigot\Search Settings\baidu_ff.xml
c:\program files\Common Files\Spigot\Search Settings\baidu_ie.xml
c:\program files\Common Files\Spigot\Search Settings\config.ini
c:\program files\Common Files\Spigot\Search Settings\Lang\res1031.ini
c:\program files\Common Files\Spigot\Search Settings\Lang\res1033.ini
c:\program files\Common Files\Spigot\Search Settings\Lang\res1034.ini
c:\program files\Common Files\Spigot\Search Settings\Lang\res1036.ini
c:\program files\Common Files\Spigot\Search Settings\Lang\res1040.ini
c:\program files\Common Files\Spigot\Search Settings\searchcom_ff.xml
c:\program files\Common Files\Spigot\Search Settings\searchcom_ie.xml
c:\program files\Common Files\Spigot\Search Settings\SearchSettings.exe
c:\program files\Common Files\Spigot\Search Settings\SearchSettings64.exe
c:\program files\Common Files\Spigot\Search Settings\wth160.dll
c:\program files\Common Files\Spigot\Search Settings\wthx160.dll
c:\program files\Common Files\Spigot\Search Settings\yahoo_ff.xml
c:\program files\Common Files\Spigot\Search Settings\yahoo_ie.xml
c:\program files\Common Files\Spigot\Search Settings\yandex_ff.xml
c:\program files\Common Files\Spigot\Search Settings\yandex_ie.xml
c:\program files\IObit Apps Toolbar
c:\program files\IObit Apps Toolbar\FF\components\IFBHOHelperWidgiToolbar.xpt
c:\program files\IObit Apps Toolbar\FF\components\IFBHOWidgiToolbar.xpt
c:\program files\IObit Apps Toolbar\FF\components\iobitappsFF.dll
c:\program files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.10
c:\program files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.11
c:\program files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.12
c:\program files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.13
c:\program files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.14
c:\program files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.15
c:\program files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.16
c:\program files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.17
c:\program files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.18
c:\program files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.19
c:\program files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.20
c:\program files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.21
c:\program files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.5
c:\program files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.6
c:\program files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.7
c:\program files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.8
c:\program files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.9
c:\program files\IObit Apps Toolbar\FF\chrome.manifest
c:\program files\IObit Apps Toolbar\FF\chrome\chrome.jar
c:\program files\IObit Apps Toolbar\FF\install.rdf
c:\program files\IObit Apps Toolbar\IE\7.0\config.ini
c:\program files\IObit Apps Toolbar\IE\7.0\iobitappsToolbarIE.dll
c:\program files\IObit Apps Toolbar\Res\amazon.gif
c:\program files\IObit Apps Toolbar\Res\ebay.gif
c:\program files\IObit Apps Toolbar\Res\facebook.gif
c:\program files\IObit Apps Toolbar\Res\googleplus.gif
c:\program files\IObit Apps Toolbar\Res\icon_settings.gif
c:\program files\IObit Apps Toolbar\Res\iobit-toolbar-logo-hover.gif
c:\program files\IObit Apps Toolbar\Res\iobit-toolbar-logo.gif
c:\program files\IObit Apps Toolbar\Res\Lang\Res1031.ini
c:\program files\IObit Apps Toolbar\Res\Lang\Res1033.ini
c:\program files\IObit Apps Toolbar\Res\Lang\Res1034.ini
c:\program files\IObit Apps Toolbar\Res\Lang\Res1036.ini
c:\program files\IObit Apps Toolbar\Res\Lang\Res1040.ini
c:\program files\IObit Apps Toolbar\Res\radio-close.gif
c:\program files\IObit Apps Toolbar\Res\radio-minimize.gif
c:\program files\IObit Apps Toolbar\Res\radiobeta.gif
c:\program files\IObit Apps Toolbar\Res\search-button-hover.gif
c:\program files\IObit Apps Toolbar\Res\search-button.gif
c:\program files\IObit Apps Toolbar\Res\search-chevron-hover.gif
c:\program files\IObit Apps Toolbar\Res\search-chevron.gif
c:\program files\IObit Apps Toolbar\Res\search_amazon.gif
c:\program files\IObit Apps Toolbar\Res\search_baidu.gif
c:\program files\IObit Apps Toolbar\Res\search_ebay.gif
c:\program files\IObit Apps Toolbar\Res\search_yahoo.gif
c:\program files\IObit Apps Toolbar\Res\search_yandex.gif
c:\program files\IObit Apps Toolbar\Res\toolbar-icon.gif
c:\program files\IObit Apps Toolbar\Res\twitter.gif
c:\program files\IObit Apps Toolbar\Res\widgets.xml
c:\program files\IObit Apps Toolbar\WidgiHelper.exe
c:\program files\SweetIM
c:\program files\SweetIM\Communicator\mgcommon.dll
c:\program files\SweetIM\Communicator\mgcommunication.dll
c:\program files\SweetIM\Communicator\mgsimcommon.dll
c:\program files\SweetIM\Communicator\mgxml_wrapper.dll
c:\program files\SweetIM\Communicator\Microsoft.VC90.CRT\Microsoft.VC90.CRT.manifest
c:\program files\SweetIM\Communicator\Microsoft.VC90.CRT\msvcm90.dll
c:\program files\SweetIM\Communicator\Microsoft.VC90.CRT\msvcp90.dll
c:\program files\SweetIM\Communicator\Microsoft.VC90.CRT\msvcr90.dll
c:\program files\SweetIM\Communicator\resources\sqlite\mgSqlite3.dll
c:\program files\SweetIM\Communicator\SweetPacksUpdateManager.exe
c:\program files\SweetIM\Toolbars\Internet Explorer\ClearHist.exe
c:\program files\SweetIM\Toolbars\Internet Explorer\conf\logger.xml
c:\program files\SweetIM\Toolbars\Internet Explorer\default.xml
c:\program files\SweetIM\Toolbars\Internet Explorer\mgcommon.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\mgconfig.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe
c:\program files\SweetIM\Toolbars\Internet Explorer\mghooking.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\mglogger.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\mgsimcommon.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\mgxml_wrapper.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT\Microsoft.VC90.CRT.manifest
c:\program files\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT\msvcm90.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT\msvcp90.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT\msvcr90.dll
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\about.html
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\affid.dat
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\basis.xml
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\bing.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_bing.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_current.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_dictionary.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_google.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_hover.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_left.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_photo.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_video.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_web.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_yahoo.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\clear-history.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\content-notifier-anim-over.gif
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\content-notifier-anim.gif
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\content-notifier.js
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\dating.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\dictionary.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\e_cards.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\eye_icon.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\eye_icon_over.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\find.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\free_stuff.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\games.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\glitter.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\google.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_bing.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_current.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_dictionary.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_google.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_hover.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_left.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_photo.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_video.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_web.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_yahoo.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\help.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\highlight.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\locales.xml
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\logo_16x16.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\logo_21x18.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\logo_32x32.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\logo_about.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\MenuExt.html
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\more-search-providers.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\music.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\news.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\options.html
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_bing.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_current.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_dictionary.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_google.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_hover.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_left.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_photo.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_video.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_web.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_yahoo.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\photos.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\search-current-site.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\shopping.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\SmileySmile.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\SmileyWink.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\sweetim_text.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\toolbar.xml
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\video.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\web-search.png
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\web-toolbar.js
c:\program files\SweetIM\Toolbars\Internet Explorer\resources\yahoo.png
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_AKAMAI
-------\Legacy_SKYPE_C2C_SERVICE
-------\Service_Akamai
-------\Service_Skype C2C Service
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-02-14 do 2013-03-14 )))))))))))))))))))))))))))))))
.
.
2013-03-14 19:23 . 2013-03-14 19:23 -------- d-----w- c:\documents and settings\marco\Data aplikací\IObit Apps
2013-03-14 18:30 . 2013-03-14 18:30 -------- d-----w- C:\rsit
2013-03-14 18:30 . 2013-03-14 18:30 -------- d-----w- c:\program files\trend micro
2013-03-14 17:50 . 2013-03-14 17:50 -------- d-----w- c:\documents and settings\marco\Data aplikací\Search Settings
2013-03-14 17:50 . 2013-03-14 17:50 -------- d-----w- c:\windows\system32\config\systemprofile\Data aplikací\Application Updater
2013-03-14 17:50 . 2013-03-14 17:50 -------- d-----w- c:\program files\Application Updater
2013-03-14 17:49 . 2013-03-14 17:49 -------- d-----w- c:\documents and settings\All Users\Data aplikací\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A}
2013-03-14 17:49 . 2013-03-14 17:49 -------- d-----w- c:\documents and settings\marco\Data aplikací\Apple Computer
2013-03-14 17:49 . 2013-03-14 17:49 -------- d-----w- c:\documents and settings\marco\AppData
2013-03-10 15:56 . 2013-03-10 15:56 -------- d-----w- C:\Perfect World Entertainment
2013-02-28 18:12 . 2013-02-28 18:12 -------- d-----w- c:\documents and settings\All Users\Data aplikací\REVOLT
2013-02-25 13:21 . 2013-02-25 13:21 -------- d-----w- c:\program files\Illusion Softworks
2013-02-23 15:27 . 2013-02-23 15:27 -------- d-----w- c:\documents and settings\marco\Local Settings\Data aplikací\Kiloo Games
2013-02-23 15:27 . 2013-02-23 15:27 -------- d-----w- c:\program files\Subway Surfers
2013-02-23 11:16 . 2013-02-23 11:16 -------- d-----w- c:\program files\Common Files\Skype
2013-02-16 22:09 . 2013-02-16 22:16 -------- d-----w- c:\documents and settings\marco\Local Settings\Data aplikací\Darksiders2
2013-02-15 18:40 . 2013-02-15 18:42 -------- d-----w- c:\documents and settings\marco\Local Settings\Data aplikací\BlueStacksSetup
2013-02-14 12:09 . 2013-02-15 21:41 -------- d-----w- c:\program files\Heroes & Generals
2013-02-14 11:38 . 2013-02-14 11:38 -------- d-----w- c:\documents and settings\marco\Data aplikací\Sudeo
2013-02-14 11:38 . 2013-02-14 11:38 -------- d-----w- c:\documents and settings\marco\Data aplikací\Gyxa
2013-02-14 11:38 . 2013-02-14 11:38 -------- d-----w- c:\documents and settings\marco\Data aplikací\Edpos
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-02-17 16:01 . 2011-09-30 21:14 138464 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2013-02-17 16:01 . 2011-09-30 21:14 111928 ----a-w- c:\windows\system32\PnkBstrB.exe
2013-02-17 15:48 . 2011-09-30 21:14 22328 ----a-w- c:\documents and settings\marco\Data aplikací\PnkBstrK.sys
2013-02-17 15:48 . 2011-11-05 18:42 682280 ----a-w- c:\windows\system32\pbsvc.exe
2013-02-17 15:48 . 2011-09-30 21:14 66872 ----a-w- c:\windows\system32\PnkBstrA.exe
2013-02-16 18:29 . 2011-09-30 21:14 111928 ----a-w- c:\windows\system32\PnkBstrB.ex0
2013-02-15 10:31 . 2011-11-26 19:06 215128 ----a-w- c:\windows\system32\PnkBstrB.xtr
2013-02-13 18:54 . 2013-02-12 12:23 0 ---ha-w- c:\documents and settings\marco\Data aplikací\winsvcns.sys
2013-01-11 19:17 . 2013-01-11 19:17 697864 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-01-11 19:17 . 2011-08-23 07:58 74248 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-03-08 12:29 . 2013-03-08 12:28 263064 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" [2007-12-13 1688872]
"Cracked Steam Service"="c:\program files\steam\Cracked Steam.exe" [2011-09-16 337506]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2013-01-08 18705664]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-04-01 61440]
"WirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2009-02-18 506424]
"AESTFltr"="c:\windows\system32\AESTFltr.exe" [2009-02-18 737280]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"NeroFilterCheck"="c:\program files\Common Files\Nero\Lib\NeroCheck.exe" [2007-03-01 153136]
"NBKeyScan"="c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2007-12-03 2213160]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2011-04-21 281768]
"PWRISOVM.EXE"="c:\program files\PowerISO\PWRISOVM.EXE" [2011-06-15 307200]
"ioCentre"="c:\genius\ioCentre\gTaskBar.exe" [2009-09-03 61440]
"amd_dc_opt"="c:\program files\AMD\Dual-Core Optimizer\amd_dc_opt.exe" [2008-07-22 77824]
"LogMeIn Hamachi Ui"="c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe" [2012-12-10 2254768]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\Currentversion\policies\explorer\Run]
"43426"="c:\docume~1\ALLUSE~1\LOCALS~1\Temp\mstxoocku.pif" [BU]
.
c:\documents and settings\marco\Nabídka Start\Programy\Po spuštění\
PonyPhone.lnk - c:\program files\C-Media\PONYPHONE\Genius PonyPhone.exe [2011-11-16 630784]
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2006-10-26 98632]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
Adobe Reader Speed Launch.lnk - c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe [2006-10-23 40048]
Adobe Reader Synchronizer.lnk - c:\program files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe [2006-10-23 734872]
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2008-12-11 604776]
GamersFirst LIVE!.lnk - c:\program files\GamersFirst\LIVE!\Live.exe [2012-4-29 2647664]
McAfee Security Scan Plus.lnk - c:\program files\McAfee Security Scan\3.0.285\SSScheduler.exe [2012-9-5 271808]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
2008-04-14 03:22 1695232 ----a-w- c:\program files\Messenger\msmsgs.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Documents and Settings\\All Users\\Data aplikací\\NexonEU\\NGM\\NGM.exe"=
"c:\\Program Files\\Counter-Strike 1.6\\hl.exe"=
"e:\\css\\Counter-Strike Source\\hl2.exe"=
"c:\\Program Files\\Mozilla Firefox\\plugin-container.exe"=
"c:\\Program Files\\Battlelog Web Plugins\\Sonar\\0.70.0\\SonarHost.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Documents and Settings\\marco\\Local Settings\\Data aplikací\\Akamai\\netsession_win.exe"=
"e:\\Garry's-Mod 11\\Game\\hl2.exe"=
"e:\\Medal of Honor 2010\\MP\\MoHMPGame.exe"=
"c:\\Program Files\\EA GAMES\\MOHAA\\MOHAA.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"e:\\battlefield bad company 2\\BFBC2Updater.exe"=
"e:\\battlefield bad company 2\\BFBC2Game.exe"=
"c:\\Program Files\\TeamViewer\\Version6\\TeamViewer.exe"=
"c:\\Program Files\\TeamViewer\\Version6\\TeamViewer_Service.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"c:\\WINDOWS\\system32\\javaw.exe"=
"c:\\WINDOWS\\system32\\dpnsvr.exe"=
"c:\\Program Files\\Take2\\Hidden and Dangerous Deluxe\\bin\\hde.exe"=
"c:\\WINDOWS\\system32\\msiexec.exe"=
"c:\\Program Files\\Counter-Strike Source\\hl2.exe"=
"c:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"=
"c:\\Program Files\\Steam\\steam.exe"=
"e:\\Diablo-3-lan-server-1.0.3.10057\\Mooege\\Diablo III.exe"=
"e:\\borderlands\\Binaries\\Borderlands.exe"=
"e:\\worlfeinstein 2\\MP\\Wolf2MP.exe"=
"e:\\worlfeinstein 2\\MP\\Wolf2MPLite.exe"=
"c:\\Program Files\\Kamuse\\kcsDownloadV3\\KCSDownloadV3.exe"=
"c:\\Program Files\\Counter-Strike 1.6\\hlds.exe"=
"e:\\diablo3\\Diablo.III.Client.Server.Emulator\\Diablo III.exe"=
"e:\\diablo3\\Diablo.III.Client.Server.Emulator\\src\\Mooege\\bin\\Debug\\Mooege.exe"=
"c:\\Program Files\\Counter-Strike 1.6 Non-Steam\\hl.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"e:\\SEV2\\Far Cry 2\\bin\\FarCry2.exe"=
"e:\\SEV2\\Far Cry 2\\bin\\FC2Launcher.exe"=
"e:\\SEV2\\Far Cry 2\\bin\\FC2Editor.exe"=
.
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [15.8.2011 20:53 691696]
R1 iZ3DInjectionDriver;Driver inject our D3D and OGL wrappers;c:\program files\iZ3D Driver\Win32\S3DInjectionDriver.sys [2.1.2012 23:31 34968]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [15.8.2011 20:59 136360]
R2 Application Updater;Application Updater;c:\program files\Application Updater\ApplicationUpdater.exe [23.2.2013 16:54 805752]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [10.12.2012 17:29 1435568]
R2 HdThemeEnabler;Hyperdesk Theme Enabler;c:\windows\HDThemeEnabler.exe [1.7.2008 11:16 102400]
R2 HiPatchService;Hi-Rez Studios Authenticate and Update Service;c:\program files\Hi-Rez Studios\HiPatchService.exe [28.7.2012 11:01 8704]
R2 S3DSvc32;S3D Service (Win32);c:\program files\iZ3D Driver\Win32\S3DCService.exe [2.1.2012 23:31 360960]
R3 AESTAud;AE Audio Service;c:\windows\system32\drivers\AESTAud.sys [15.8.2011 19:16 113536]
R3 NTProcDrv;Process creation detector for NT.;c:\windows\Temp\drv1.tmp [14.3.2013 22:36 3584]
S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [8.1.2013 12:55 161536]
S3 cmphone;C-Media USB PHONE Device Interface;c:\windows\system32\drivers\cmphone.sys [16.11.2011 16:33 1210880]
S3 EagleXNt;EagleXNt;\??\c:\windows\system32\drivers\EagleXNt.sys --> c:\windows\system32\drivers\EagleXNt.sys [?]
S3 gHidPnp;USB Device Enhanced Function Driver;c:\windows\system32\drivers\gHidPnp.sys [16.11.2011 13:49 20480]
S3 gMouUsb;USB Mouse Device Drv;c:\windows\system32\drivers\gMouUsb.sys [16.11.2011 13:49 11520]
S3 IT9135BDA;IT9135 BDA Devices;c:\windows\system32\drivers\IT9135BDA.sys [20.9.2011 18:28 94336]
S3 McComponentHostService;McAfee Security Scan Component Host Service;"c:\program files\McAfee Security Scan\3.0.285\McCHSvc.exe" --> c:\program files\McAfee Security Scan\3.0.285\McCHSvc.exe [?]
S3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des -service --> c:\windows\system32\GameMon.des -service [?]
S3 vtany;vtany;\??\c:\windows\vtany.sys --> c:\windows\vtany.sys [?]
S3 WinRing0_1_2_0;WinRing0_1_2_0;c:\program files\IObit\Game Booster 3\Driver\WinRing0.sys [25.8.2012 10:01 14416]
S3 xhunter1;xhunter1;\??\c:\windows\xhunter1.sys --> c:\windows\xhunter1.sys [?]
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - NTPROCDRV
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
Akamai REG_MULTI_SZ Akamai
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-03-06 10:57 1630672 ----a-w- c:\program files\google\Chrome\Application\25.0.1364.152\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-03-14 c:\windows\Tasks\Game_Booster_AutoUpdate.job
- c:\program files\IObit\Game Booster 3\AutoUpdate.exe [2012-08-25 15:57]
.
2013-03-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-08-15 19:08]
.
2013-03-14 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-08-15 19:08]
.
2012-07-22 c:\windows\Tasks\Norton Security Scan for marco.job
- c:\progra~1\NORTON~2\Engine\372~1.5\Nss.exe [2012-07-22 09:45]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://home.sweetim.com/?st=6&barid={047A376C-E63E-11E1-B141-00247E994C13}
mStart Page = hxxp://home.sweetim.com/?st=6&barid={047A376C-E63E-11E1-B141-00247E994C13}
uInternet Settings,ProxyOverride = 127.0.0.1:9421;<local>
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Odeslat do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat do zařízení Bluetooth - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: Stáhnout s IDM - c:\program files\Internet Download Manager\IEExt.htm
IE: Stáhnout s IDM obsah FLV videa - c:\program files\Internet Download Manager\IEGetVL.htm
IE: Stáhnout s IDM všechny odkazy - c:\program files\Internet Download Manager\IEGetAll.htm
TCP: DhcpNameServer = 217.75.71.141 217.75.71.142
FF - ProfilePath - c:\documents and settings\marco\Data aplikací\Mozilla\Firefox\Profiles\l0utktox.default\
FF - prefs.js: browser.startup.homepage - hxxps://www.google.sk/
FF - ExtSQL: 2013-03-14 18:50; iobitapps@mybrowserbar.com; c:\program files\IObit Apps Toolbar\FF
FF - user.js: network.cookie.cookieBehavior - 0
FF - user.js: privacy.clearOnShutdown.cookies - false
FF - user.js: security.warn_viewing_mixed - false
FF - user.js: security.warn_viewing_mixed.show_once - false
FF - user.js: security.warn_submit_insecure - false
FF - user.js: security.warn_submit_insecure.show_once - false
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-Gamesites.cz GUI - c:\program files\Uninstal_GS_GUI.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-03-14 22:38
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\NTProcDrv]
"ImagePath"="\??\c:\windows\TEMP\drv1.tmp"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(1076)
c:\windows\system32\Ati2evxx.dll
.
- - - - - - - > 'explorer.exe'(2536)
c:\windows\system32\btmmhook.dll
c:\windows\system32\msi.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\btncopy.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\Ati2evxx.exe
c:\program files\idt\wdm\STacSV.exe
c:\program files\LSI SoftModem\agrsmsvc.exe
c:\program files\Avira\AntiVir Desktop\avguard.exe
c:\program files\Avira\AntiVir Desktop\avshadow.exe
c:\progra~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Pando Networks\Media Booster\PMB.exe
c:\program files\Nero\Nero8\Nero BackItUp\NBService.exe
c:\windows\system32\PnkBstrA.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\program files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\Common Files\Nero\Lib\NMIndexingService.exe
c:\program files\Hewlett-Packard\Shared\hpqwmiex.exe
c:\windows\system32\wscntfy.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\program files\Hewlett-Packard\Shared\hpqToaster.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
.
**************************************************************************
.
Celkový čas: 2013-03-14 22:43:27 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-03-14 21:43
ComboFix2.txt 2013-03-14 20:06
.
Před spuštěním: Volných bajtů: 32 869 523 456
Po spuštění: Volných bajtů: 32 723 226 624
.
- - End Of File - - 49D75C19ECE373B0F59EB10DA148C5E6

[Rudy]

Faktem je, že PC byl značně zasviněn především zbytečnostmi. To jsem považoval za příčinu problémů a jak je vidět, měl na tom minimálně určitý podíl. Proč ale nechtěl startovat Linux Live, to opravdu nevím a ani z logu to zjistit nelze. Log je již OK.

[melondubnica]

Dakujem za odpoved, pc som opat restartol vse je OK, este rez velka vdaka, prajem vela uspechov.

[melondubnica]

No takze radost presla zavrel som notebook do pohotovostneho rezimu a po chvilke otvoril a opat je cierna obrazovka, vypol som natvrdo a zapol a pc nic cierna obrazovka, neviem veru co s tym .

[Rudy]

Máte nainstalovaný IObit. "Neladil" jste jím nějak PC? My považujeme tento čínský program za šmejd, kterým si laik může poškodit systém.

[melondubnica]

No musim sa opitat synovca je to jeho PC, ak sa mi podari PC spustit tak to pozrem, a co to znamena ? ze ak ten program bude v PC staci ho odinstalovat? lebo opat neberie linux live ubuntu a obavam sa ze ani nevezme instalacne CD na preinstalovanie XP. Co navrhujete ak sa mi PC nepodari vobec uz spustit a nenacita CD, servis alebo je nadej ze cakat kym PC spustim a skusit nejak opravu XP z CD?? dik za odpovede.
Dodatok:
A urcite nie je chyba v Biose? je moznost skontrolovat nejak bios nejakym programom ak PC sa podari spustit.

[Rudy]

IOBit stačí odinstalovat. Bios můžete pouze reflahovat novou verzí (pokud existuje) Obvykle je ke stažení z webu výrobce.

[melondubnica]

Dobry den, tak nakoniec bol notebook v servise a oprava by stala 150 eur co sa neoplati, takze sa kupil pre synovca new notas, dakujem za Vas straveny cas a ochotu a prajem vela uspechov a chcem sa opitat rad by som prispel aspon malym financnym darom na chod fora, je taka moznost? najlepsie paypal. Niejeden krat ste mi uz pomohli , dakujem za odpoved.

[Rudy]

Nemáte zač a za případný příspěvek děkujeme! Všechny možnosti přispívání najdete zde: http://forum.viry.cz/viewtopic.php?f=7&t=78175 .