prosím o kontrolu pomalé pc

Zpráva

jjeennddaa · #1 Příspěvek od **jjeennddaa** » 25 zář 2013 06:54

Logfile of random's system information tool 1.06 (written by random/random)
Run by Bob at 2013-09-25 07:53:04
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 111 GB (73%) free of 153 GB
Total RAM: 1919 MB (72% free)

HijackThis download failed

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\RMAutoUpdate.job
C:\WINDOWS\tasks\RMSchedule.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5D9C17C6-093D-43E5-BF3D-4A13D162AB74}]
Lišta Centrum.cz - C:\PROGRA~1\CENTRU~1.O\LITACE~1.CZ\cenbho32.dll [2011-11-24 265680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-09-14 462248]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll [2013-01-31 1000984]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-09-14 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F0DA78E9-6B60-42fb-BC26-EF2CFB8C8FF3}]
Norton Safe Web Lite BHO - C:\Program Files\Norton Safe Web Lite\Engine\1.2.0.7\coIEPlg.dll [2010-12-17 433592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{30CEEEA2-3742-40e4-85DD-812BF1CBB83D} - Norton Safe Web Lite - C:\Program Files\Norton Safe Web Lite\Engine\1.2.0.7\coIEPlg.dll [2010-12-17 433592]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ATKHOTKEY"=C:\Program Files\ATK Hotkey\Hcontrol.exe [2007-07-12 225280]
"ATKOSD2"=C:\Program Files\ATKOSD2\ATKOSD2.exe [2007-07-03 7708672]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2006-10-30 16269312]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2006-05-25 786521]
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2010-06-28 2837864]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 6]
C:\Program Files\IObit\Advanced SystemCare 6\ASCTray.exe /AutoStart []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnTBMon]
C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate]
C:\Documents and Settings\Bob\Data aplikací\Seznam.cz\szninstall.exe [2013-05-16 1062472]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
C:\Documents and Settings\Bob\Data aplikací\Seznam.cz\bin\wszndesktop.exe [2013-04-12 92664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-05-08 54840]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnnupxvSrv]
C:\WINDOWS\inf\msnnupxv.vbe [2013-08-27 1558]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mstokmSrv]
C:\WINDOWS\inf\mstokm.vbe [2013-08-27 1558]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan]
C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2007-09-20 1836328]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe [2007-03-01 153136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCPowerSpeed]
C:\Program Files\PCPowerSpeed\PCPowerTray.exe [2011-09-27 385664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SiteRanker]
C:\Program Files\SiteRanker\SiteRankTray.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SkyTel]
C:\WINDOWS\SkyTel.EXE [2006-05-16 2879488]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmartRAM]
C:\Program Files\IObit\Advanced SystemCare 6\Suo10_SmartRAM.exe /m []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SMSERIAL]
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe [2006-11-22 630784]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vProt]
C:\Program Files\AVG Secure Search\vprot.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Wireless Console 2]
C:\Program Files\Wireless Console 2\wcourier.exe [2007-07-05 1040384]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Bluetooth Manager.lnk]
C:\PROGRA~1\Toshiba\BLUETO~1\TosBtMng.exe [2007-05-22 2756608]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^HP Digital Imaging Monitor.lnk]
C:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.exe [2006-02-19 288472]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Rychlý začátek s aplikací HP Photosmart Premier.lnk]
C:\PROGRA~1\HP\DIGITA~1\bin\hpqthb08.exe [2006-02-10 73728]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^WinZip Quick Pick.lnk]
C:\PROGRA~1\WinZip\WZQKPI~1.EXE [2013-07-23 685936]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Bob^Nabídka Start^Programy^Po spuštění^CCC.lnk]
C:\PROGRA~1\ATITEC~1\ATI.ACE\CORE-S~1\CCC.exe [2006-09-29 49152]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2007-02-02 110592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler]
IPC Configuration Utility - IPC Configuration Utility

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======List of files/folders created in the last 1 months======

2013-09-24 22:52:39 ----D---- C:\AdwCleaner
2013-09-24 18:15:27 ----A---- C:\WINDOWS\zip.exe
2013-09-24 18:15:27 ----A---- C:\WINDOWS\SWXCACLS.exe
2013-09-24 18:15:27 ----A---- C:\WINDOWS\SWSC.exe
2013-09-24 18:15:27 ----A---- C:\WINDOWS\SWREG.exe
2013-09-24 18:15:27 ----A---- C:\WINDOWS\sed.exe
2013-09-24 18:15:27 ----A---- C:\WINDOWS\PEV.exe
2013-09-24 18:15:27 ----A---- C:\WINDOWS\NIRCMD.exe
2013-09-24 18:15:27 ----A---- C:\WINDOWS\MBR.exe
2013-09-24 18:15:27 ----A---- C:\WINDOWS\grep.exe
2013-09-24 18:14:47 ----D---- C:\ComboFix
2013-09-21 18:51:49 ----D---- C:\Qoobox
2013-09-21 18:50:58 ----D---- C:\WINDOWS\erdnt
2013-09-21 18:47:34 ----D---- C:\Program Files\trend micro
2013-09-21 18:47:33 ----D---- C:\rsit
2013-09-21 18:39:24 ----SHD---- C:\WINDOWS\CSC
2013-09-21 18:33:31 ----D---- C:\WINDOWS\pss
2013-09-21 18:31:55 ----A---- C:\WINDOWS\ntbtlog.txt
2013-09-16 19:53:09 ----A---- C:\WINDOWS\system32\CleanMFT32.exe
2013-09-16 19:53:04 ----D---- C:\Program Files\PC Tools Registry Mechanic
2013-09-16 19:53:04 ----D---- C:\Program Files\Common Files\PC Tools
2013-09-16 19:53:01 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2013-09-16 09:59:58 ----A---- C:\Documents and Settings\Bob\Data aplikací\cache.ini
2013-09-16 05:45:13 ----D---- C:\$WINDOWS.~BT
2013-09-15 14:06:20 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2013-09-14 19:59:23 ----A---- C:\WINDOWS\SchedLgU.Txt
2013-09-14 19:54:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
2013-09-14 19:52:51 ----D---- C:\Program Files\Seznam.cz
2013-09-14 19:52:25 ----D---- C:\Documents and Settings\Bob\Data aplikací\Seznam.cz
2013-09-14 19:52:10 ----D---- C:\Documents and Settings\Bob\Data aplikací\DesktopIconGoodgame
2013-09-14 19:02:52 ----D---- C:\Documents and Settings\All Users\Data aplikací\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A}
2013-09-14 19:02:48 ----D---- C:\Documents and Settings\Bob\Data aplikací\Apple Computer
2013-09-14 19:02:47 ----D---- C:\Documents and Settings\All Users\Data aplikací\{BDDB56DE-AE4E-48A2-B856-FB60C8498453}
2013-09-14 19:01:50 ----D---- C:\Documents and Settings\Bob\Data aplikací\IObit
2013-09-14 19:01:47 ----D---- C:\Program Files\IObit
2013-09-14 19:01:47 ----D---- C:\Documents and Settings\All Users\Data aplikací\IObit
2013-09-14 19:00:11 ----D---- C:\Program Files\LemurLeap
2013-09-14 18:47:46 ----D---- C:\Program Files\Euro Truck Simulator 2
2013-09-14 18:35:14 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2013-09-14 18:35:03 ----D---- C:\Program Files\Adobe Flash Player 11.6.602.171
2013-09-14 18:32:37 ----D---- C:\Nová složka
2013-09-14 18:13:45 ----D---- C:\Documents and Settings\Bob\Data aplikací\Opera Software
2013-09-14 18:13:36 ----D---- C:\Program Files\Opera
2013-09-14 18:02:59 ----D---- C:\Documents
2013-09-14 17:59:07 ----D---- C:\Program Files\Common Files\Java
2013-09-14 17:59:02 ----A---- C:\WINDOWS\system32\javaws.exe
2013-09-14 17:58:54 ----A---- C:\WINDOWS\system32\WindowsAccessBridge.dll
2013-09-14 17:58:54 ----A---- C:\WINDOWS\system32\javaw.exe
2013-09-14 17:58:54 ----A---- C:\WINDOWS\system32\java.exe
2013-09-14 17:58:33 ----D---- C:\Program Files\Java
2013-09-14 17:44:34 ----D---- C:\WINDOWS\system32\MRT
2013-09-14 17:41:59 ----D---- C:\Documents and Settings\Bob\Data aplikací\.minecraft
2013-09-14 17:34:48 ----D---- C:\Documents and Settings\All Users\Data aplikací\WinZip
2013-09-14 17:34:42 ----D---- C:\Program Files\WinZip
2013-09-14 17:30:23 ----D---- C:\Documents and Settings\All Users\Data aplikací\NVIDIA
2013-09-14 17:29:29 ----D---- C:\WINDOWS\Sun
2013-09-14 17:21:49 ----D---- C:\NVIDIA
2013-09-14 17:14:17 ----D---- C:\Documents and Settings\All Users\Data aplikací\Sun
2013-09-14 17:14:02 ----A---- C:\WINDOWS\system32\npDeployJava1.dll
2013-09-14 17:14:02 ----A---- C:\WINDOWS\system32\deployJava1.dll
2013-09-14 17:13:04 ----D---- C:\Documents and Settings\Bob\Data aplikací\Sun
2013-09-14 17:09:45 ----D---- C:\Program Files\minecraft warez 1.6.2
2013-09-12 14:48:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2876217$
2013-09-12 14:48:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2864063$
2013-09-12 10:48:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2876315$
2013-08-26 10:26:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$

======List of files/folders modified in the last 1 months======

2013-09-25 07:52:41 ----D---- C:\WINDOWS\Prefetch
2013-09-25 07:49:01 ----D---- C:\WINDOWS\system32\CatRoot2
2013-09-25 07:47:14 ----AC---- C:\WINDOWS\ModemLog_Standardní modem 33 600 bitů za sekundu #3.txt
2013-09-25 07:44:24 ----D---- C:\WINDOWS\Temp
2013-09-24 22:54:58 ----D---- C:\WINDOWS\system32
2013-09-24 22:54:17 ----RD---- C:\Program Files
2013-09-24 19:04:13 ----SD---- C:\WINDOWS\Tasks
2013-09-24 18:56:15 ----HD---- C:\WINDOWS\inf
2013-09-24 18:55:59 ----ASH---- C:\boot.ini
2013-09-24 18:55:59 ----A---- C:\WINDOWS\win.ini
2013-09-24 18:55:59 ----A---- C:\WINDOWS\system.ini
2013-09-24 18:52:07 ----D---- C:\Windows
2013-09-24 18:44:00 ----D---- C:\WINDOWS\system32\drivers
2013-09-24 18:37:43 ----D---- C:\WINDOWS\AppPatch
2013-09-24 18:37:38 ----D---- C:\Program Files\Common Files
2013-09-24 18:23:35 ----RSHDC---- C:\WINDOWS\system32\dllcache
2013-09-24 18:20:18 ----D---- C:\WINDOWS\system32\config
2013-09-21 18:32:39 ----D---- C:\Documents and Settings
2013-09-16 19:25:11 ----D---- C:\WINDOWS\system32\Macromed
2013-09-16 09:58:17 ----AC---- C:\WINDOWS\NeroDigital.ini
2013-09-15 16:28:59 ----D---- C:\WINDOWS\Minidump
2013-09-15 14:18:30 ----D---- C:\Documents and Settings\All Users\Data aplikací\PCPowerSpeed
2013-09-15 14:17:17 ----D---- C:\Documents and Settings\Bob\Data aplikací\PCPowerSpeed
2013-09-14 19:58:51 ----D---- C:\WINDOWS\Debug
2013-09-14 19:58:42 ----D---- C:\Program Files\Alwil Software
2013-09-14 19:58:40 ----D---- C:\Config.Msi
2013-09-14 19:55:21 ----SHD---- C:\WINDOWS\Installer
2013-09-14 19:55:20 ----D---- C:\WINDOWS\WinSxS
2013-09-12 14:50:47 ----D---- C:\Program Files\Internet Explorer
2013-09-12 14:50:29 ----D---- C:\WINDOWS\ie8updates
2013-09-12 14:50:06 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2013-09-12 13:25:28 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2013-09-12 13:24:13 ----D---- C:\WINDOWS\security
2013-09-07 19:40:46 ----D---- C:\Program Files\T-Mobile
2013-09-01 16:57:52 ----A---- C:\WINDOWS\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2010-06-28 28880]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2010-06-28 165456]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2010-06-28 46672]
R1 avgtp;avgtp; \??\C:\WINDOWS\system32\drivers\avgtpx86.sys []
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 Tcpip6;Ovladač protokolu Microsoft IPv6; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2010-02-11 226880]
R1 Tosrfcom;Bluetooth RFCOMM; C:\WINDOWS\System32\Drivers\tosrfcom.sys [2007-05-24 64000]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2010-06-28 17744]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2010-06-28 100176]
R2 Ethpdrv;Ethernet Packet Driver; C:\WINDOWS\system32\DRIVERS\ethpdrv.sys [2007-08-01 16376]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2010-06-28 23376]
R3 AtcL002;NDIS Miniport Driver for Atheros L2 Fast Ethernet Controller; C:\WINDOWS\system32\DRIVERS\l251x86.sys [2007-08-21 30208]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2007-02-02 1975296]
R3 CmBatt;Microsoft AC Adapter Driver; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952]
R3 DCamUSBGene;USB2.0 1.3M PC Cam; C:\WINDOWS\system32\DRIVERS\usbgene.sys [2006-11-29 142720]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 huawei_enumerator;huawei_enumerator; C:\WINDOWS\system32\DRIVERS\ew_jubusenum.sys [2012-04-23 76544]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2006-11-03 4394496]
R3 kbfiltr;Keyboard Filter; C:\WINDOWS\system32\DRIVERS\kbfiltr.sys [2007-01-24 5632]
R3 MODEMCSA;Unimodem Streaming Filter Device; C:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ATKACPI.sys [2006-12-14 7680]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2001-10-25 5888]
R3 smserial;smserial; C:\WINDOWS\system32\DRIVERS\smserial.sys [2006-11-22 982272]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2006-05-25 193088]
R3 tosporte;Bluetooth COM Port; C:\WINDOWS\system32\DRIVERS\tosporte.sys [2006-10-10 41600]
R3 tunmp;Microsoft Tun Miniport Adapter Driver; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2008-04-13 12288]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 catchme;catchme; \??\C:\DOCUME~1\Bob\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\WINDOWS\system32\DRIVERS\ew_hwusbdev.sys [2010-07-27 102784]
S3 ew_usbenumfilter;huawei_CompositeFilter; C:\WINDOWS\system32\DRIVERS\ew_usbenumfilter.sys [2010-03-20 11136]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2006-05-16 49664]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2006-05-16 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2006-05-16 21568]
S3 huawei_cdcacm;huawei_cdcacm; C:\WINDOWS\system32\DRIVERS\ew_jucdcacm.sys [2012-04-23 95616]
S3 huawei_cdcecm;huawei_cdcecm; C:\WINDOWS\system32\DRIVERS\ew_jucdcecm.sys [2012-04-23 70016]
S3 huawei_ext_ctrl;huawei_ext_ctrl; C:\WINDOWS\system32\DRIVERS\ew_juextctrl.sys [2012-04-23 27520]
S3 IpwP;IPWireless 3G Network Adapter; C:\WINDOWS\system32\DRIVERS\ipw3gnet.sys [2008-10-10 51040]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 RTSTOR;USB Mass Stroage Device; C:\WINDOWS\system32\drivers\RTSTOR.SYS []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 tosrfbd;Bluetooth RFBUS; C:\WINDOWS\system32\DRIVERS\tosrfbd.sys [2007-04-24 113920]
S3 tosrfbnp;Bluetooth RFBNEP; C:\WINDOWS\System32\Drivers\tosrfbnp.sys [2006-11-20 36480]
S3 Tosrfhid;Bluetooth RFHID; C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys [2007-03-01 73728]
S3 tosrfnds;Bluetooth Personal Area Network; C:\WINDOWS\system32\DRIVERS\tosrfnds.sys [2005-01-06 18612]
S3 tosrfusb;Bluetooth USB Controller; C:\WINDOWS\system32\DRIVERS\tosrfusb.sys [2007-06-11 41856]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 6to4;Pomocná služba protokolu IPv6; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2007-02-02 446464]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2013-09-14 182696]
R2 MbnExt;Mobile Broadband Extension Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2007-09-20 853288]
R2 NSL;Norton Safe Web Lite; C:\Program Files\Norton Safe Web Lite\Engine\1.2.0.7\ccSvcHst.exe [2010-11-24 130000]
R2 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service; C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe [2012-08-21 794272]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2007-08-09 73728]
R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2007-02-25 125048]
R2 Update LemurLeap;Update LemurLeap; C:\Program Files\LemurLeap\updateLemurLeap.exe [2013-08-31 206624]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-04-02 135664]
S2 vToolbarUpdater15.5.0;vToolbarUpdater15.5.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\ToolbarUpdater.exe []
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-04-02 135664]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-09-15 194032]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2007-10-23 382248]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

#2 Příspěvek od **vyosek** » 25 zář 2013 07:25

Zdravim

S ComboFixem jste tam provadel co prosim?

A jeste ke ComboFixu, ktery jste pouzil, tak na zaklade licence a pravidel fora ptam, umite s nim pracovat (spusteni, rozlusteni logu, napsani skriptu)?

Licencni podminky ComboFixu hovori jasne "Nikdy by nemel byt pouzit v prostredi bez dozoru zkusene osoby"
Obrázek

Nebezpeci CFka

Je urcen primarne pro radce - jeho svevolnym pouzitim ztracite narok na podporu
Maze stopy po haveti, takze v logu z RSIT neni nic videt
Jeho log je treba dolustit, jelikoz neumi smazat vse - to ovsem tezko zvladnete pokud k tomu nejste vyskolen
CF muze mit bug = sunda Vam system, pokud nevite kam co uklada, jak co obnovit, mate system v kytkam a ceka Vas reinstal
CF taky bohuzel prozatim nekontroluje nektere dulezite knihovny (napr. hal.dll) - ty treba mazou nektere typy haveti (napr. angela) - smaze Vam po restartu hal.dll = nenajede Vam system a jste o radek vyse = reinstal

jjeennddaa · #3 Příspěvek od **jjeennddaa** » 25 zář 2013 07:34

Pc nešel vůbec spustit. Jen najela bílá plocha. ale nějak se mi podařilo spustit combofix. Tak jsem jej zapnul. script jsem nevkládal. Systém už mi alespon normálně naběhne

#4 Příspěvek od **vyosek** » 25 zář 2013 07:36

Takze s ComboFixem neumite, nejste osoba vyskolena a tim padem porusujete jeho licenci, je to tak?

Log z nej aspon mate (c:\combofix.txt) nebo mi aspon zabalte slozku c:\qoobox a nekam uploadnete

jjeennddaa · #5 Příspěvek od **jjeennddaa** » 25 zář 2013 07:44

ComboFix 13-09-24.02 - Bob 24.09.2013 18:24:55.1.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1919.1481 [GMT 2:00]
Spuštěný z: C:\Documents and Settings\Administrator\Plocha\ComboFix.exe
AV: avast! Antivirus *Enabled/Outdated* {7591DB91-41F0-48A3-B128-1A293FD8233D}

VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))

C:\install.exe
C:\Program Files\FunWebProducts
C:\WINDOWS\$NtUninstallKB26367$
C:\WINDOWS\$NtUninstallKB26367$\2272855696
C:\WINDOWS\$NtUninstallKB26367$\2309222236\@
C:\WINDOWS\$NtUninstallKB26367$\2309222236\Desktop.ini
C:\WINDOWS\$NtUninstallKB26367$\2309222236\L\00000004.@
C:\WINDOWS\$NtUninstallKB26367$\2309222236\L\201d3dde
C:\WINDOWS\$NtUninstallKB26367$\2309222236\L\76603ac3
C:\WINDOWS\$NtUninstallKB26367$\2309222236\L\eomnsnjl
C:\WINDOWS\$NtUninstallKB26367$\2309222236\U\00000004.@
C:\WINDOWS\$NtUninstallKB26367$\2309222236\U\00000008.@
C:\WINDOWS\$NtUninstallKB26367$\2309222236\U\000000cb.@
C:\WINDOWS\$NtUninstallKB26367$\2309222236\U\80000000.@
C:\WINDOWS\$NtUninstallKB26367$\2309222236\U\80000032.@
C:\WINDOWS\system32\1822858648.dat
C:\WINDOWS\system32\Cache
C:\WINDOWS\system32\Cache\26c630d098e22dd5.fb
C:\WINDOWS\system32\Cache\272512937d9e61a4.fb
C:\WINDOWS\system32\Cache\287204568329e189.fb
C:\WINDOWS\system32\Cache\28bc8f716fd76a47.fb
C:\WINDOWS\system32\Cache\31a0997e9a5b5eb3.fb
C:\WINDOWS\system32\Cache\32c84fe32bb74d60.fb
C:\WINDOWS\system32\Cache\3917078cb68ec657.fb
C:\WINDOWS\system32\Cache\590ba23ce359fd0c.fb
C:\WINDOWS\system32\Cache\610289e025a3ee9a.fb
C:\WINDOWS\system32\Cache\6c59ac5e7e7a3ad0.fb
C:\WINDOWS\system32\Cache\6d03dad1035885d3.fb
C:\WINDOWS\system32\Cache\95f567698be8a182.fb
C:\WINDOWS\system32\Cache\a34378e6ab5161c8.fb
C:\WINDOWS\system32\Cache\ad10a52aff5e038d.fb
C:\WINDOWS\system32\Cache\c1fa887b03019701.fb
C:\WINDOWS\system32\Cache\c4d28dca2e7648be.fb
C:\WINDOWS\system32\Cache\d201ef9910cd39de.fb
C:\WINDOWS\system32\Cache\d2e94710a5708128.fb
C:\WINDOWS\system32\Cache\d79b9dfe81484ec4.fb
C:\WINDOWS\system32\Cache\f998975c9cc711ee.fb
C:\WINDOWS\system32\SET1C9.tmp

Nakažená kopie C:\WINDOWS\system32\drivers\afd.sys byla nalezena a vyléčena.
Obnovena kopie z - The cat found it

((((((((((((((((((((((((( Soubory vytvořené od 2013-08-24 do 2013-09-24 )))))))))))))))))))))))))))))))

2013-09-24 16:19:47 . 2011-08-17 13:49:54 138496 -c--a-w- C:\WINDOWS\system32\dllcache\afd.sys
2013-09-24 16:19:47 . 2011-08-17 13:49:54 138496 ----a-w- C:\WINDOWS\system32\drivers\afd.sys
2013-09-21 16:47:34 . 2013-09-21 16:47:34 -------- d-----w- C:\Program Files\trend micro
2013-09-21 16:47:33 . 2013-09-21 16:48:40 -------- d-----w- C:\rsit
2013-09-21 16:32:39 . 2013-09-21 16:32:44 -------- d-----w- C:\Documents and Settings\Administrator
2013-09-16 17:53:09 . 2012-08-21 12:44:02 38560 ----a-w- C:\WINDOWS\system32\CleanMFT32.exe
2013-09-16 17:53:09 . 2008-09-17 19:17:48 658432 ----a-w- C:\WINDOWS\system32\MSCOMCT2.OCX
2013-09-16 17:53:09 . 2008-04-02 13:54:20 1101824 ----a-w- C:\WINDOWS\system32\UniBox210.ocx
2013-09-16 17:53:09 . 2008-04-02 13:53:50 212992 ----a-w- C:\WINDOWS\system32\UniBoxVB12.ocx
2013-09-16 17:53:09 . 2008-04-02 13:53:36 880640 ----a-w- C:\WINDOWS\system32\UniBox10.ocx
2013-09-16 17:53:04 . 2013-09-16 17:53:18 -------- d-----w- C:\Program Files\PC Tools Registry Mechanic
2013-09-16 17:53:04 . 2013-09-16 17:53:06 -------- d-----w- C:\Program Files\Common Files\PC Tools
2013-09-16 17:53:01 . 2013-09-16 17:53:21 -------- d---a-w- C:\Documents and Settings\All Users\Data aplikací\TEMP
2013-09-16 03:45:13 . 2013-09-16 03:45:13 -------- d-----w- C:\$WINDOWS.~BT
2013-09-16 03:40:33 . 2013-09-16 03:40:33 536870912 --sha-w- C:\WinPEpge.sys
2013-09-15 12:31:19 . 2013-09-15 12:31:19 -------- d-----r- C:\Documents and Settings\LocalService\Oblíbené položky
2013-09-15 12:06:20 . 2013-09-15 12:06:20 -------- d-----w- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2013-09-14 17:59:21 . 2013-09-14 17:59:21 -------- d-----w- C:\WINDOWS\system32\config\systemprofile\Data aplikací\IObit
2013-09-14 17:55:09 . 2010-06-28 20:57:33 38848 ----a-w- C:\WINDOWS\avastSS.scr
2013-09-14 17:54:33 . 2013-09-14 17:54:33 -------- d-----w- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
2013-09-14 17:52:51 . 2013-09-14 17:52:51 -------- d-----w- C:\Program Files\Seznam.cz
2013-09-14 17:02:52 . 2013-09-14 17:02:52 -------- d-----w- C:\Documents and Settings\All Users\Data aplikací\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A}
2013-09-14 17:02:49 . 2013-09-14 17:02:49 -------- d-----w- C:\Documents and Settings\Bob\AppData
2013-09-14 17:02:47 . 2013-09-14 17:02:47 -------- d-----w- C:\Documents and Settings\All Users\Data aplikací\{BDDB56DE-AE4E-48A2-B856-FB60C8498453}
2013-09-14 17:01:47 . 2013-09-14 17:02:53 -------- d-----w- C:\Documents and Settings\All Users\Data aplikací\IObit
2013-09-14 17:01:47 . 2013-09-14 17:01:47 -------- d-----w- C:\Program Files\IObit
2013-09-14 17:00:38 . 2013-09-14 17:00:40 -------- d-----w- C:\Program Files\Minibar
2013-09-14 17:00:11 . 2013-09-14 17:00:28 -------- d-----w- C:\Program Files\LemurLeap
2013-09-14 16:59:47 . 2013-09-14 16:59:47 -------- d-----w- C:\Documents and Settings\All Users\Data aplikací\Babylon
2013-09-14 16:47:46 . 2013-09-14 16:50:43 -------- d-----w- C:\Program Files\Euro Truck Simulator 2
2013-09-14 16:35:03 . 2013-09-14 16:35:14 -------- d-----w- C:\Program Files\Adobe Flash Player 11.6.602.171
2013-09-14 16:32:37 . 2013-09-14 16:32:37 -------- d-----w- C:\Nová složka
2013-09-14 16:13:36 . 2013-09-14 16:13:44 -------- d-----w- C:\Program Files\Opera
2013-09-14 16:02:59 . 2013-09-21 12:14:28 -------- d-----w- C:\Documents
2013-09-14 16:01:20 . 2013-09-14 16:01:20 -------- d-----w- C:\Program Files\AskPartnerNetwork
2013-09-14 16:01:20 . 2013-09-14 16:01:20 -------- d-----w- C:\Documents and Settings\All Users\Data aplikací\AskPartnerNetwork
2013-09-14 16:01:09 . 2013-09-14 16:01:09 -------- d-----w- C:\Documents and Settings\All Users\Data aplikací\APN
2013-09-14 15:59:07 . 2013-09-14 15:59:07 -------- d-----w- C:\Program Files\Common Files\Java
2013-09-14 15:59:02 . 2013-09-14 15:58:39 144896 ----a-w- C:\WINDOWS\system32\javacpl.cpl
2013-09-14 15:58:54 . 2013-09-14 15:58:41 94632 ----a-w- C:\WINDOWS\system32\WindowsAccessBridge.dll
2013-09-14 15:09:45 . 2013-09-14 15:10:42 -------- d-----w- C:\Program Files\minecraft warez 1.6.2
.

(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))

2013-08-09 01:56:34 . 2004-08-17 13:49:20 386560 ----a-w- C:\WINDOWS\system32\themeui.dll
2013-08-08 06:09:49 . 2004-08-17 13:44:44 1877760 ----a-w- C:\WINDOWS\system32\win32k.sys
2013-08-08 06:05:47 . 2004-08-17 13:49:22 920064 ----a-w- C:\WINDOWS\system32\wininet.dll
2013-08-08 06:05:46 . 2004-08-17 13:49:30 1469440 ------w- C:\WINDOWS\system32\inetcpl.cpl
2013-08-08 06:05:46 . 2004-08-17 13:49:10 43520 ------w- C:\WINDOWS\system32\licmgr10.dll
2013-08-08 06:05:45 . 2004-08-17 13:49:04 18944 ----a-w- C:\WINDOWS\system32\corpol.dll
2013-08-08 00:02:34 . 2004-08-17 13:44:08 385024 ------w- C:\WINDOWS\system32\html.iec
2013-08-05 13:30:13 . 2004-08-17 13:49:16 1289216 ----a-w- C:\WINDOWS\system32\ole32.dll
2013-08-02 23:48:38 . 2006-10-18 20:47:22 1543680 ------w- C:\WINDOWS\system32\wmvdecod.dll
2013-07-10 10:37:49 . 2004-08-17 13:49:20 406016 ----a-w- C:\WINDOWS\system32\usp10.dll
2013-07-04 07:34:00 . 2004-08-17 13:45:30 2151936 ----a-w- C:\WINDOWS\system32\ntoskrnl.exe
2013-07-04 07:33:59 . 2004-08-17 15:45:32 2030592 ----a-w- C:\WINDOWS\system32\ntkrnlpa.exe
2007-09-20 02:45:48 . 2009-05-15 07:51:28 90112 ----a-r- C:\Program Files\axesstel.dll
2007-09-20 02:45:48 . 2009-05-15 07:51:28 118784 ----a-r- C:\Program Files\MSP_Uninstall.exe

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))

*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{9CB65206-89C4-402c-BA80-02D8C59F9B1D}"= "C:\Program Files\AskTBar\SrchAstt\2.bin\A5SRCHAS.DLL" [2011-03-07 13:47:50 57344]

[HKEY_CLASSES_ROOT\clsid\{9cb65206-89c4-402c-ba80-02d8c59f9b1d}]

[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5}]
2012-05-15 19:56:32 342272 ----a-w- C:\PROGRA~1\SITERA~1\SiteRank.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{5D9C17C6-093D-43E5-BF3D-4A13D162AB74}]
2011-11-24 17:15:00 265680 ----a-w- C:\PROGRA~1\CENTRU~1.O\LITACE~1.CZ\cenbho32.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SmartRAM"="C:\Program Files\IObit\Advanced SystemCare 6\Suo10_SmartRAM.exe" [2013-06-14 09:02:42 547648]
"Advanced SystemCare 6"="C:\Program Files\IObit\Advanced SystemCare 6\ASCTray.exe" [2013-04-18 18:38:38 491840]
"cz.seznam.software.autoupdate"="C:\Documents and Settings\Bob\Data aplikací\Seznam.cz\szninstall.exe" [2013-05-16 13:25:04 1062472]
"cz.seznam.software.szndesktop"="C:\Documents and Settings\Bob\Data aplikací\Seznam.cz\bin\wszndesktop.exe" [2013-04-12 08:10:22 92664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATKHOTKEY"="C:\Program Files\ATK Hotkey\Hcontrol.exe" [2007-07-12 09:25:28 225280]
"ATKOSD2"="C:\Program Files\ATKOSD2\ATKOSD2.exe" [2007-07-03 09:48:02 7708672]
"RTHDCPL"="RTHDCPL.EXE" [2006-10-30 19:49:54 16269312]
"SkyTel"="SkyTel.EXE" [2006-05-16 18:04:26 2879488]
"SMSERIAL"="C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe" [2006-11-22 17:31:26 630784]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2006-05-25 20:02:04 786521]
"Wireless Console 2"="C:\Program Files\Wireless Console 2\wcourier.exe" [2007-07-05 15:53:44 1040384]
"vProt"="C:\Program Files\AVG Secure Search\vprot.exe" [2013-09-15 17:13:13 2314416]
"SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe" [2013-07-02 07:16:26 254336]
"ApnTBMon"="C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe" [2013-08-05 23:29:59 1601488]
"seznam-listicka-distribuce"="C:\Program Files\Seznam.cz\distribution\szninstall.exe" [2013-05-16 13:25:04 1062472]
"avast5"="C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe" [2010-06-28 20:57:18 2837864]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2008-04-14 03:22:17 15360]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\
Bluetooth Manager.lnk - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe [2007-5-22 2756608]
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [2006-2-19 288472]
Rychlý začátek s aplikací HP Photosmart Premier.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe -s [2006-2-10 73728]
WinZip Quick Pick.lnk - C:\Program Files\WinZip\WZQKPICK32.EXE [2013-7-23 685936]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
2007-05-08 15:24:20 54840 ----a-w- C:\Program Files\HP\HP Software Update\hpwuSchd2.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnnupxvSrv]
2013-08-27 20:55:42 1558 --s-a-w- C:\Windows\inf\msnnupxv.vbe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mstokmSrv]
2013-08-27 20:55:42 1558 --s-a-w- C:\Windows\inf\mstokm.vbe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan]
2007-09-20 07:51:46 1836328 ----a-w- C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
2007-03-01 13:57:24 153136 ----a-w- C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCPowerSpeed]
2011-09-26 22:00:38 385664 ----a-w- C:\Program Files\PCPowerSpeed\PCPowerTray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SiteRanker]
2011-09-12 06:06:42 320000 ----a-w- C:\Program Files\SiteRanker\SiteRankTray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"FirewallOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=

R1 aswSP;aswSP;C:\Windows\system32\drivers\aswSP.sys [13.11.2008 21:00:41 165456]
R1 avgtp;avgtp;C:\Windows\system32\drivers\avgtpx86.sys [14.9.2013 17:34:01 37664]
R2 AdvancedSystemCareService6;Advanced SystemCare Service 6;C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe [14.9.2013 19:02:23 574272]
R2 APNMCP;Ask Update Service;C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe [6.8.2013 1:30:06 164816]
R2 aswFsBlk;aswFsBlk;C:\Windows\system32\drivers\aswFsBlk.sys [13.11.2008 21:00:41 17744]
R2 Ethpdrv;Ethernet Packet Driver;C:\Windows\system32\drivers\ethpdrv.sys [1.8.2007 22:30:40 16376]
R2 MbnExt;Mobile Broadband Extension Service;C:\WINDOWS\system32\svchost.exe -k MbnExt [17.8.2004 15:49:28 14336]
R2 NSL;Norton Safe Web Lite;C:\Program Files\Norton Safe Web Lite\Engine\1.2.0.7\ccSvcHst.exe [7.6.2011 17:57:14 130000]
R2 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service;C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe [16.9.2013 19:53:06 794272]
R2 Update LemurLeap;Update LemurLeap;C:\Program Files\LemurLeap\updateLemurLeap.exe [31.8.2013 9:36:52 206624]
R2 vToolbarUpdater15.5.0;vToolbarUpdater15.5.0;C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\ToolbarUpdater.exe [15.9.2013 19:13:23 1643184]
R3 DCamUSBGene;USB2.0 1.3M PC Cam;C:\Windows\system32\drivers\USBGENE.sys [13.11.2008 16:36:33 142720]
R3 huawei_enumerator;huawei_enumerator;C:\Windows\system32\drivers\ew_jubusenum.sys [31.1.2013 19:03:21 76544]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;C:\Windows\system32\drivers\ew_hwusbdev.sys [31.1.2013 19:03:21 102784]
S3 ew_usbenumfilter;huawei_CompositeFilter;C:\Windows\system32\drivers\ew_usbenumfilter.sys [31.1.2013 19:03:21 11136]
S3 huawei_cdcacm;huawei_cdcacm;C:\Windows\system32\drivers\ew_jucdcacm.sys [31.1.2013 19:03:21 95616]
S3 huawei_cdcecm;huawei_cdcecm;C:\Windows\system32\drivers\ew_jucdcecm.sys [31.1.2013 19:03:21 70016]
S3 huawei_ext_ctrl;huawei_ext_ctrl;C:\Windows\system32\drivers\ew_juextctrl.sys [31.1.2013 19:03:21 27520]
S3 IpwP;IPWireless 3G Network Adapter;C:\Windows\system32\drivers\ipw3gnet.sys [14.11.2008 14:08:19 51040]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
MbnExt REG_MULTI_SZ MbnExt

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-09-18 05:42:14 1177552 ----a-w- C:\Program Files\Google\Chrome\Application\29.0.1547.76\Installer\chrmstp.exe

Obsah adresáře 'Naplánované úlohy'

2013-09-24 C:\WINDOWS\Tasks\ASC6_PerformanceMonitor.job
- C:\Program Files\IObit\Advanced SystemCare 6\Monitor.exe [2013-09-14 17:02:25 . 2013-04-08 17:02:16]

2013-09-24 C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
- C:\Program Files\Google\Update\GoogleUpdate.exe [2010-04-02 15:06:43 . 2010-04-02 15:06:41]

2013-09-18 C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
- C:\Program Files\Google\Update\GoogleUpdate.exe [2010-04-02 15:06:43 . 2010-04-02 15:06:41]

2013-09-16 C:\WINDOWS\Tasks\RMSchedule.job
- C:\Program Files\PC Tools Registry Mechanic\RegMech.exe [2013-09-16 17:53:06 . 2012-08-21 12:43:42]

------- Doplňkový sken -------

uStart Page = hxxp://atlas.centrum.cz/?utm_source=ch-browser&utm_medium=IE-9&utm_content=default
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyOverride = <local>
IE: Crawler Search - tbr:iemenu
IE: E&xportovat do aplikace Microsoft Excel - C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: Interfaces\{B71E9879-E1E3-4E01-AF4D-5FD55EE6AE65}: NameServer = 62.129.50.20,85.135.32.100
Handler: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\15.5.0\ViProtocol.dll

- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

URLSearchHooks-{539F76FD-084E-4858-86D5-62F02F54AE86} - (no file)
BHO-{95B7759C-8C7F-4BF1-B163-73684A933233} - (no file)
Toolbar-{95B7759C-8C7F-4BF1-B163-73684A933233} - (no file)
SharedTaskScheduler-IPC Configuration Utility - (no file)
HKLM_ActiveSetup-ccc-core-static - msiexec

jjeennddaa · #6 Příspěvek od **jjeennddaa** » 25 zář 2013 07:46

http://ulozto.cz/xMMpi1u2/qoobox-zip

#7 Příspěvek od **vyosek** » 25 zář 2013 08:07

Odinstalujte Advanced SystemCare 6 a nasledne i vse od IOBit - jsou to cinske smejdy a spise jen skodi nez jsou uzitkem. Hledaji nesmyslne a neexistujici problemy, databazi haveti ukradli jine renomovane spolecnosti

Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe

Ulozte nejlepe na plochu
Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
Probehne vytvoreni zalohy a nasledne prohledavani
Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

Ulozte nejlepe na plochu
Ukoncete vsechny programy
Kliknete na Scan a nasledne Clean
Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

jjeennddaa · #8 Příspěvek od **jjeennddaa** » 25 zář 2013 08:21

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.2 (09.22.2013:1)
OS: Microsoft Windows XP x86
Ran by Bob on st 25.09.2013 at 9:16:21,06
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\protector_dll.protectorbho
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\protector_dll.protectorbho.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{0E45512E-5B95-4C8C-9393-64ED0470E8D2}

~~~ Files

~~~ Folders

Successfully deleted: [Folder] "C:\Documents and Settings\Bob\Data aplikacˇ\pcpowerspeed"
Successfully deleted: [Folder] "C:\Program Files\pcpowerspeed"

~~~ Chrome

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Policies\Google\Chrome\extensioninstallforcelist [Blacklisted Policy]

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on st 25.09.2013 at 9:20:29,21
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

#9 Příspěvek od **vyosek** » 25 zář 2013 08:23

Pockam na AdwCleaner jeste

jjeennddaa · #10 Příspěvek od **jjeennddaa** » 25 zář 2013 08:30

# AdwCleaner v3.005 - Report created 25/09/2013 at 09:27:42
# Updated 22/09/2013 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Bob - BOB-6159C838C5F
# Running from : C:\Documents and Settings\Bob\Plocha\adwcleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702

-\\ Google Chrome v29.0.1547.76

[ File : C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]

[ File : C:\Documents and Settings\Bob\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R1].txt - [1287 octets] - [25/09/2013 09:27:10]
AdwCleaner[S1].txt - [1210 octets] - [25/09/2013 09:27:42]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1270 octets] ##########

#11 Příspěvek od **vyosek** » 25 zář 2013 08:42

Pokud nemate, tak presunte Combofix na plochu

Spustte poznamkovy blok (Start-spustit-notepad)
Zkopirujte skript nize

Kód: Vybrat vše

KillAll::

Driver::
AdvancedSystemCareService6
APNMCP
vToolbarUpdater15.5.0

Folder::
C:\Program Files\IObit
C:\Program Files\AskPartnerNetwork
C:\Program Files\Common Files\AVG Secure Search
C:\Program Files\PCPowerSpeed
C:\Program Files\AVG Secure Search
C:\Documents and Settings\All Users\Data aplikací\AskPartnerNetwork
C:\Documents and Settings\All Users\Data aplikací\APN
C:\Documents and Settings\All Users\Data aplikací\Babylon
C:\WINDOWS\system32\config\systemprofile\Data aplikací\IObit
C:\Documents and Settings\All Users\Data aplikací\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A}
C:\Documents and Settings\All Users\Data aplikací\{BDDB56DE-AE4E-48A2-B856-FB60C8498453}
C:\Documents and Settings\All Users\Data aplikací\IObit

Collect::
C:\Windows\inf\mstokm.vbe
C:\Windows\inf\msnnupxv.vbe

Registry::
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"FirewallOverride"=dword:00000000
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnnupxvSrv]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mstokmSrv]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCPowerSpeed]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SmartRAM"=-
"Advanced SystemCare 6"=-
"cz.seznam.software.autoupdate"=-
"cz.seznam.software.szndesktop"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"vProt"=-
"SunJavaUpdateSched"=-
"ApnTBMon"=-
"seznam-listicka-distribuce"=-
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=-
[-HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5}]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{9CB65206-89C4-402c-BA80-02D8C59F9B1D}"=-
[-HKEY_CLASSES_ROOT\clsid\{9cb65206-89c4-402c-ba80-02d8c59f9b1d}]

ClearJavaCache::

Reboot::

Ulozte vytvoreny TXT jako CFScript.txt
Pretahnete vytvoreny CFScript.txt nad Combofix a pustte (viz obrazek nize)
Po aplikaci skriptu (a pripadnem restartu) na Vas vypadne log, jeho obsah sem vlozte

Pokud vyskoci hlaska "Pokus pouzit neplatnou operaci na klic registru, ktery je oznacen pro odstraneni", tak jen restartujte PC - registr se da do kupy - jedna se o vnitrni chybu, kterou zpusobuje CF a autor ji zatim neumi bohuzel opravit

Muze se stat, ze po aplikaci skriptu nenabehnou windows, v tomto pripade restartuje PC a mackejte F8 a zvolte Posledni znamou konfiguraci

jjeennddaa · #12 Příspěvek od **jjeennddaa** » 25 zář 2013 09:02

ComboFix 13-09-24.02 - Bob 25.09.2013 9:48.2.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1919.1304 [GMT 2:00]
Spuštěný z: c:\documents and settings\Bob\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Bob\Plocha\CFScript.txt
AV: avast! Antivirus *Disabled/Outdated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
file zipped: c:\windows\inf\msnnupxv.vbe
file zipped: c:\windows\inf\mstokm.vbe
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\IObit
c:\program files\IObit\Advanced SystemCare 6\ASCInit.log
c:\program files\IObit\Advanced SystemCare 6\ASCService_Log.txt
c:\program files\IObit\Advanced SystemCare 6\ASCServiceLog\2013-09-14.log
c:\program files\IObit\Advanced SystemCare 6\ASCServiceLog\2013-09-15.log
c:\program files\IObit\Advanced SystemCare 6\ASCServiceLog\2013-09-16.log
c:\program files\IObit\Advanced SystemCare 6\ASCServiceLog\2013-09-18.log
c:\program files\IObit\Advanced SystemCare 6\ASCServiceLog\2013-09-21.log
c:\program files\IObit\Advanced SystemCare 6\ASCServiceLog\2013-09-24.log
c:\program files\IObit\Advanced SystemCare 6\AutoSweeper.log
c:\program files\IObit\Advanced SystemCare 6\AutoUpdate.log
c:\program files\IObit\Advanced SystemCare 6\BrowerProtect\ASCPlugin_Protection.dll
c:\program files\IObit\Advanced SystemCare 6\BrowerProtect\ASCUrlScanner.dll
c:\program files\IObit\Advanced SystemCare 6\BrowerProtect\images\asc.png
c:\program files\IObit\Advanced SystemCare 6\BrowerProtect\images\icon_gray.png
c:\program files\IObit\Advanced SystemCare 6\BrowerProtect\images\ie_risk.png
c:\program files\IObit\Advanced SystemCare 6\BrowerProtect\images\ie_safe.png
c:\program files\IObit\Advanced SystemCare 6\BrowerProtect\images\ie_tip_details.gif
c:\program files\IObit\Advanced SystemCare 6\BrowerProtect\images\ie_wraningBg.png
c:\program files\IObit\Advanced SystemCare 6\BrowerProtect\images\popbox_btn_close.png
c:\program files\IObit\Advanced SystemCare 6\BrowerProtect\images\popbox_btn_ok.png
c:\program files\IObit\Advanced SystemCare 6\BrowerProtect\images\risk.png
c:\program files\IObit\Advanced SystemCare 6\BrowerProtect\images\risk_logo.png
c:\program files\IObit\Advanced SystemCare 6\BrowerProtect\images\safe.png
c:\program files\IObit\Advanced SystemCare 6\BrowerProtect\images\safe_logo.png
c:\program files\IObit\Advanced SystemCare 6\BrowerProtect\images\tip_details.png
c:\program files\IObit\Advanced SystemCare 6\BrowerProtect\images\window_risk.png
c:\program files\IObit\Advanced SystemCare 6\BrowerProtect\images\window_safe.png
c:\program files\IObit\Advanced SystemCare 6\BrowerProtect\images\wraningBg.png
c:\program files\IObit\Advanced SystemCare 6\BrowerProtect\np_Asc_plugin.dll
c:\program files\IObit\Advanced SystemCare 6\Extensions.plist
c:\program files\IObit\Advanced SystemCare 6\LatestNews\imagenews.png
c:\program files\IObit\Advanced SystemCare 6\LatestNews\LatestNews.ini
c:\program files\IObit\Advanced SystemCare 6\SecurityHoleScan.log
c:\program files\IObit\Advanced SystemCare 6\Suc13_FileShredder.exe
c:\program files\IObit\Advanced SystemCare 6\UpdateLicense.log
.
---- Předchozí spuštění -------
.
C:\install.exe
c:\windows\$NtUninstallKB26367$\2272855696
c:\windows\$NtUninstallKB26367$\2309222236\@
c:\windows\$NtUninstallKB26367$\2309222236\Desktop.ini
c:\windows\$NtUninstallKB26367$\2309222236\L\00000004.@
c:\windows\$NtUninstallKB26367$\2309222236\L\201d3dde
c:\windows\$NtUninstallKB26367$\2309222236\L\76603ac3
c:\windows\$NtUninstallKB26367$\2309222236\L\eomnsnjl
c:\windows\$NtUninstallKB26367$\2309222236\U\00000004.@
c:\windows\$NtUninstallKB26367$\2309222236\U\00000008.@
c:\windows\$NtUninstallKB26367$\2309222236\U\000000cb.@
c:\windows\$NtUninstallKB26367$\2309222236\U\80000000.@
c:\windows\$NtUninstallKB26367$\2309222236\U\80000032.@
c:\windows\system32\1822858648.dat
c:\windows\system32\Cache\26c630d098e22dd5.fb
c:\windows\system32\Cache\272512937d9e61a4.fb
c:\windows\system32\Cache\287204568329e189.fb
c:\windows\system32\Cache\28bc8f716fd76a47.fb
c:\windows\system32\Cache\31a0997e9a5b5eb3.fb
c:\windows\system32\Cache\32c84fe32bb74d60.fb
c:\windows\system32\Cache\3917078cb68ec657.fb
c:\windows\system32\Cache\590ba23ce359fd0c.fb
c:\windows\system32\Cache\610289e025a3ee9a.fb
c:\windows\system32\Cache\6c59ac5e7e7a3ad0.fb
c:\windows\system32\Cache\6d03dad1035885d3.fb
c:\windows\system32\Cache\95f567698be8a182.fb
c:\windows\system32\Cache\a34378e6ab5161c8.fb
c:\windows\system32\Cache\ad10a52aff5e038d.fb
c:\windows\system32\Cache\c1fa887b03019701.fb
c:\windows\system32\Cache\c4d28dca2e7648be.fb
c:\windows\system32\Cache\d201ef9910cd39de.fb
c:\windows\system32\Cache\d2e94710a5708128.fb
c:\windows\system32\Cache\d79b9dfe81484ec4.fb
c:\windows\system32\Cache\f998975c9cc711ee.fb
c:\windows\system32\SET1C9.tmp
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_VTOOLBARUPDATER15.5.0
-------\Service_vToolbarUpdater15.5.0
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-08-25 do 2013-09-25 )))))))))))))))))))))))))))))))
.
.
2013-09-25 07:16 . 2013-09-25 07:16 -------- d-----w- c:\windows\ERUNT
2013-09-25 06:02 . 2013-09-25 06:02 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2013-09-25 06:02 . 2013-09-25 06:02 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2013-09-25 06:02 . 2013-04-04 12:50 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-09-24 20:52 . 2013-09-25 07:27 -------- d-----w- C:\AdwCleaner
2013-09-24 16:19 . 2011-08-17 13:49 138496 -c--a-w- c:\windows\system32\dllcache\afd.sys
2013-09-24 16:19 . 2011-08-17 13:49 138496 ----a-w- c:\windows\system32\drivers\afd.sys
2013-09-21 16:47 . 2013-09-25 05:53 -------- d-----w- c:\program files\trend micro
2013-09-21 16:47 . 2013-09-21 16:48 -------- d-----w- C:\rsit
2013-09-21 16:32 . 2013-09-21 16:32 -------- d-----w- c:\documents and settings\Administrator
2013-09-16 17:53 . 2013-09-25 06:27 -------- d-----w- c:\program files\Common Files\PC Tools
2013-09-16 17:53 . 2013-09-25 06:27 -------- d---a-w- c:\documents and settings\All Users\Data aplikací\TEMP
2013-09-16 03:45 . 2013-09-16 03:45 -------- d-----w- C:\$WINDOWS.~BT
2013-09-16 03:40 . 2013-09-16 03:40 536870912 --sha-w- C:\WinPEpge.sys
2013-09-15 12:31 . 2013-09-15 12:31 -------- d-----r- c:\documents and settings\LocalService\Oblíbené položky
2013-09-15 12:06 . 2013-09-15 12:06 -------- d-----w- c:\documents and settings\All Users\Data aplikací\AVAST Software
2013-09-14 17:59 . 2013-09-14 17:59 -------- d-----w- c:\windows\system32\config\systemprofile\Data aplikací\IObit
2013-09-14 17:55 . 2010-06-28 20:57 38848 ----a-w- c:\windows\avastSS.scr
2013-09-14 17:54 . 2013-09-14 17:54 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Alwil Software
2013-09-14 17:52 . 2013-09-14 17:52 -------- d-----w- c:\program files\Seznam.cz
2013-09-14 17:02 . 2013-09-14 17:02 -------- d-----w- c:\documents and settings\All Users\Data aplikací\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A}
2013-09-14 17:02 . 2013-09-14 17:02 -------- d-----w- c:\documents and settings\Bob\AppData
2013-09-14 17:02 . 2013-09-14 17:02 -------- d-----w- c:\documents and settings\All Users\Data aplikací\{BDDB56DE-AE4E-48A2-B856-FB60C8498453}
2013-09-14 17:01 . 2013-09-14 17:02 -------- d-----w- c:\documents and settings\All Users\Data aplikací\IObit
2013-09-14 16:47 . 2013-09-14 16:50 -------- d-----w- c:\program files\Euro Truck Simulator 2
2013-09-14 16:35 . 2013-09-14 16:35 -------- d-----w- c:\program files\Adobe Flash Player 11.6.602.171
2013-09-14 16:32 . 2013-09-14 16:32 -------- d-----w- C:\Nová složka
2013-09-14 16:13 . 2013-09-14 16:13 -------- d-----w- c:\program files\Opera
2013-09-14 16:02 . 2013-09-21 12:14 -------- d-----w- C:\Documents
2013-09-14 15:59 . 2013-09-14 15:59 -------- d-----w- c:\program files\Common Files\Java
2013-09-14 15:59 . 2013-09-14 15:58 144896 ----a-w- c:\windows\system32\javacpl.cpl
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-09-25 06:45 . 2013-09-25 06:45 4689699 ----a-w- C:\Qoobox.zip
2013-08-09 01:56 . 2004-08-17 13:49 386560 ----a-w- c:\windows\system32\themeui.dll
2013-08-08 06:09 . 2004-08-17 13:44 1877760 ----a-w- c:\windows\system32\win32k.sys
2013-08-08 06:05 . 2004-08-17 13:49 920064 ----a-w- c:\windows\system32\wininet.dll
2013-08-08 06:05 . 2004-08-17 13:49 1469440 ------w- c:\windows\system32\inetcpl.cpl
2013-08-08 06:05 . 2004-08-17 13:49 43520 ------w- c:\windows\system32\licmgr10.dll
2013-08-08 06:05 . 2004-08-17 13:49 18944 ----a-w- c:\windows\system32\corpol.dll
2013-08-08 00:02 . 2004-08-17 13:44 385024 ------w- c:\windows\system32\html.iec
2013-08-05 13:30 . 2004-08-17 13:49 1289216 ----a-w- c:\windows\system32\ole32.dll
2013-08-02 23:48 . 2006-10-18 20:47 1543680 ------w- c:\windows\system32\wmvdecod.dll
2013-07-10 10:37 . 2004-08-17 13:49 406016 ----a-w- c:\windows\system32\usp10.dll
2013-07-04 07:34 . 2004-08-17 13:45 2151936 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-07-04 07:33 . 2004-08-17 15:45 2030592 ----a-w- c:\windows\system32\ntkrnlpa.exe
2007-09-20 02:45 . 2009-05-15 07:51 90112 ----a-r- c:\program files\axesstel.dll
2007-09-20 02:45 . 2009-05-15 07:51 118784 ----a-r- c:\program files\MSP_Uninstall.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{5D9C17C6-093D-43E5-BF3D-4A13D162AB74}]
2011-11-24 17:15 265680 ----a-w- c:\progra~1\CENTRU~1.O\LITACE~1.CZ\cenbho32.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATKHOTKEY"="c:\program files\ATK Hotkey\Hcontrol.exe" [2007-07-12 225280]
"ATKOSD2"="c:\program files\ATKOSD2\ATKOSD2.exe" [2007-07-03 7708672]
"RTHDCPL"="RTHDCPL.EXE" [2006-10-30 16269312]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2006-05-25 786521]
"avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2010-06-28 2837864]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Bluetooth Manager.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\Bluetooth Manager.lnk
backup=c:\windows\pss\Bluetooth Manager.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^HP Digital Imaging Monitor.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\HP Digital Imaging Monitor.lnk
backup=c:\windows\pss\HP Digital Imaging Monitor.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Rychlý začátek s aplikací HP Photosmart Premier.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\Rychlý začátek s aplikací HP Photosmart Premier.lnk
backup=c:\windows\pss\Rychlý začátek s aplikací HP Photosmart Premier.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^WinZip Quick Pick.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\WinZip Quick Pick.lnk
backup=c:\windows\pss\WinZip Quick Pick.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^Bob^Nabídka Start^Programy^Po spuštění^CCC.lnk]
path=c:\documents and settings\Bob\Nabídka Start\Programy\Po spuštění\CCC.lnk
backup=c:\windows\pss\CCC.lnkStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate]
2013-05-16 13:25 1062472 ----a-w- c:\documents and settings\Bob\Data aplikací\Seznam.cz\szninstall.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
2013-04-12 08:10 92664 ----a-w- c:\documents and settings\Bob\Data aplikací\Seznam.cz\bin\wszndesktop.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
2013-05-16 13:25 1062472 ----a-w- c:\program files\Seznam.cz\distribution\szninstall.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SkyTel]
2006-05-16 18:04 2879488 ------r- c:\windows\SkyTel.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SMSERIAL]
2006-11-22 17:31 630784 ----a-r- c:\program files\Motorola\SMSERIAL\sm56hlpr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2013-07-02 07:16 254336 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Wireless Console 2]
2007-07-05 15:53 1040384 ----a-w- c:\program files\Wireless Console 2\wcourier.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
.
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [13.11.2008 21:00 165456]
R1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [14.9.2013 17:34 37664]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [13.11.2008 21:00 17744]
R2 Ethpdrv;Ethernet Packet Driver;c:\windows\system32\drivers\ethpdrv.sys [1.8.2007 22:30 16376]
R2 MbnExt;Mobile Broadband Extension Service;c:\windows\system32\svchost.exe -k MbnExt [17.8.2004 15:49 14336]
R2 NSL;Norton Safe Web Lite;c:\program files\Norton Safe Web Lite\Engine\1.2.0.7\ccSvcHst.exe [7.6.2011 17:57 130000]
R3 DCamUSBGene;USB2.0 1.3M PC Cam;c:\windows\system32\drivers\USBGENE.sys [13.11.2008 16:36 142720]
R3 huawei_enumerator;huawei_enumerator;c:\windows\system32\drivers\ew_jubusenum.sys [31.1.2013 19:03 76544]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\drivers\ew_hwusbdev.sys [31.1.2013 19:03 102784]
S3 ew_usbenumfilter;huawei_CompositeFilter;c:\windows\system32\drivers\ew_usbenumfilter.sys [31.1.2013 19:03 11136]
S3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\drivers\ew_jucdcacm.sys [31.1.2013 19:03 95616]
S3 huawei_cdcecm;huawei_cdcecm;c:\windows\system32\drivers\ew_jucdcecm.sys [31.1.2013 19:03 70016]
S3 huawei_ext_ctrl;huawei_ext_ctrl;c:\windows\system32\drivers\ew_juextctrl.sys [31.1.2013 19:03 27520]
S3 IpwP;IPWireless 3G Network Adapter;c:\windows\system32\drivers\ipw3gnet.sys [14.11.2008 14:08 51040]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
MbnExt REG_MULTI_SZ MbnExt
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\ccc-core-static]
msiexec [BU]
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-09-18 05:42 1177552 ----a-w- c:\program files\Google\Chrome\Application\29.0.1547.76\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-09-25 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-04-02 15:06]
.
2013-09-25 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-04-02 15:06]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://atlas.centrum.cz/?utm_source=ch-browser&utm_medium=IE-9&utm_content=default
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyOverride = <local>
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 62.129.50.20 85.135.32.100
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
SharedTaskScheduler-IPC Configuration Utility - (no file)
MSConfigStartUp-Advanced SystemCare 6 - c:\program files\IObit\Advanced SystemCare 6\ASCTray.exe
MSConfigStartUp-ApnTBMon - c:\program files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
MSConfigStartUp-SiteRanker - c:\program files\SiteRanker\SiteRankTray.exe
MSConfigStartUp-SmartRAM - c:\program files\IObit\Advanced SystemCare 6\Suo10_SmartRAM.exe
MSConfigStartUp-vProt - c:\program files\AVG Secure Search\vprot.exe
AddRemove-{3FB39BED-37C8-4E60-8E02-315B8C2B07E3} - c:\windows\system32\uninstall.exe
AddRemove-{B0C56FD7-493D-44DD-B007-BBB5117D6E6F}_is1 - c:\program files\PCPowerSpeed\unins000.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-09-25 09:56
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\NSL]
"ImagePath"="\"c:\program files\Norton Safe Web Lite\Engine\1.2.0.7\ccSvcHst.exe\" /s \"NSL\" /m \"c:\program files\Norton Safe Web Lite\Engine\1.2.0.7\diMaster.dll\" /prefetch:1"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(780)
c:\windows\system32\Ati2evxx.dll
.
- - - - - - - > 'explorer.exe'(3960)
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\windows\system32\Ati2evxx.exe
c:\program files\Java\jre7\bin\jqs.exe
c:\program files\Nero\Nero8\Nero BackItUp\NBService.exe
c:\windows\RTHDCPL.EXE
c:\windows\system32\HPZipm12.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
c:\program files\ATK Hotkey\ATKOSD.exe
c:\program files\ATK Hotkey\KBFiltr.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\windows\system32\wscntfy.exe
c:\program files\ATK Hotkey\WDC.exe
.
**************************************************************************
.
Celkový čas: 2013-09-25 10:01:19 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-09-25 08:01
.
Před spuštěním: Volných bajtů: 116 960 440 320
Po spuštění: Volných bajtů: 116 907 630 592
.
- - End Of File - - D7EEAD76DA71AF8024DC1F1AFB89E025
413FC2A0C716421B3158746D63736515
Nahr nˇ probŘhlo ŁspŘçnŘ

#13 Příspěvek od **vyosek** » 25 zář 2013 09:13

Stahnete FRST 32-bit version z teto stranky http://www.bleepingcomputer.com/downloa ... scan-tool/

Spuštění FRST

Po spuštění FRST odsouhlasíme licenční podmínky kliknutím na [Ano].
Dooznačíme položku Addition.txt - viz obrázek.
Klikneme na tlačítko [Scan], čímž spustíme skenování.
Počkáme na dokončení skenování FRST
Otevře se nám textový soubor FRST.txt, což je požadovaný log a jehož obsah vložíme do svého tématu na fóru.
Na ploše nám zbyde utilita FRST a dva logy - FRST.txt a Addition.txt - nic z toho zatím nemažeme!

jjeennddaa · #14 Příspěvek od **jjeennddaa** » 25 zář 2013 09:25

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 24-09-2013
Ran by Bob (administrator) on BOB-6159C838C5F on 25-09-2013 10:24:09
Running from C:\Documents and Settings\Bob\Plocha
Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(ATI Technologies Inc.) C:\WINDOWS\system32\Ati2evxx.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\Ati2evxx.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Nero AG) C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
() C:\Program Files\ATK Hotkey\Hcontrol.exe
() C:\Program Files\ATKOSD2\ATKOSD2.exe
(Symantec Corporation) C:\Program Files\Norton Safe Web Lite\Engine\1.2.0.7\ccSvcHst.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(AVAST Software) C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
(TOSHIBA CORPORATION) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
() C:\Program Files\ATK Hotkey\ATKOSD.exe
() C:\Program Files\ATK Hotkey\KBFiltr.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
() C:\Program Files\ATK Hotkey\WDC.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [ATKHOTKEY] - C:\Program Files\ATK Hotkey\Hcontrol.exe [225280 2007-07-12] ()
HKLM\...\Run: [ATKOSD2] - C:\Program Files\ATKOSD2\ATKOSD2.exe [7708672 2007-07-03] ()
HKLM\...\Run: [RTHDCPL] - C:\Windows\RTHDCPL.EXE [16269312 2006-10-30] (Realtek Semiconductor Corp.)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [786521 2006-05-25] (Synaptics, Inc.)
HKLM\...\Run: [avast5] - C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2837864 2010-06-28] (AVAST Software)
Winlogon\Notify\AtiExtEvent: C:\Windows\system32\Ati2evxx.dll (ATI Technologies Inc.)
HKU\Administrator\...\Run: [T-Mobile CManager] - C:\Program Files\T-Mobile\Web'n'walk Manager\Manager.exe [ 2013-08-26] (Gemfor s.r.o.)
HKU\Administrator\...\RunOnce: [Report] - C:\AdwCleaner\AdwCleaner[S0].txt [ 2013-09-24] ()
HKU\Default User\...\Run: [T-Mobile CManager] - C:\Program Files\T-Mobile\Web'n'walk Manager\Manager.exe [ 2013-08-26] (Gemfor s.r.o.)
HKU\Default User\...\RunOnce: [NeroHomeFirstStart] - C:\Program Files\Common Files\Nero\Lib\NMFirstStart.exe [ 2007-10-23] (Nero AG)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://atlas.centrum.cz/?utm_source=ch- ... nt=default
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {D7EE5C1B-5F37-4F9F-A49A-83D2EABE6E1B} URL = http://searchatlas.centrum.cz/?q={searc ... =searchbox
BHO: Lišta Centrum.cz - {5D9C17C6-093D-43E5-BF3D-4A13D162AB74} - C:\PROGRA~1\CENTRU~1.O\LITACE~1.CZ\cenbho32.dll (Centrum Holdings s.r.o.)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Norton Safe Web Lite BHO - {F0DA78E9-6B60-42fb-BC26-EF2CFB8C8FF3} - C:\Program Files\Norton Safe Web Lite\Engine\1.2.0.7\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM - Norton Safe Web Lite - {30CEEEA2-3742-40e4-85DD-812BF1CBB83D} - C:\Program Files\Norton Safe Web Lite\Engine\1.2.0.7\coIEPlg.dll (Symantec Corporation)
Toolbar: HKCU -&Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\Windows\system32\browseui.dll (Společnost Microsoft)
Toolbar: HKCU -&Odkazy - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\Windows\system32\SHELL32.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKCU -Norton Safe Web Lite - {30CEEEA2-3742-40E4-85DD-812BF1CBB83D} - C:\Program Files\Norton Safe Web Lite\Engine\1.2.0.7\coIEPlg.dll (Symantec Corporation)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://active.macromedia.com/flash2/cabs/swflash.cab
Tcpip\Parameters: [DhcpNameServer] 62.129.50.20 85.135.32.100

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [aaaajpkhjdkhhnkmgfjodbkfpbmibkkk] - C:\Documents and Settings\All Users\Data aplikací\AskPartnerNetwork\Toolbar\ORJ-V7\CRX\ToolbarCR.crx
CHR HKLM\...\Chrome\Extension: [jlnfdbbladgcmhhamgkioifhbobjaoof] - C:\Program Files\LemurLeap\jlnfdbbladgcmhhamgkioifhbobjaoof.crx
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

========================== Services (Whitelisted) =================

R2 6to4; C:\Windows\System32\6to4svc.dll [100864 2010-02-12] (Microsoft Corporation)
R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [40384 2010-06-28] (AVAST Software)
R3 avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [40384 2010-06-28] (AVAST Software)
R3 avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [40384 2010-06-28] (AVAST Software)
R2 MbnExt; C:\Program Files\T-Mobile\Web'n'walk Manager\MbnExt.dll [414056 2013-08-15] (Gemfor s.r.o.)
R2 NSL; C:\Program Files\Norton Safe Web Lite\Engine\1.2.0.7\diMaster.dll [262584 2010-12-03] (Symantec Corporation)
R2 JavaQuickStarterService; "C:\Program Files\Java\jre7\bin\jqs.exe" -service -config "C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf"

==================== Drivers (Whitelisted) ====================

R1 Aavmker4; C:\Windows\System32\Drivers\Aavmker4.sys [28880 2010-06-28] (ALWIL Software)
R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [17744 2010-06-28] (ALWIL Software)
R2 aswMon2; C:\Windows\System32\Drivers\aswMon2.sys [100176 2010-06-28] (ALWIL Software)
R3 aswRdr; C:\Windows\System32\Drivers\aswRdr.sys [23376 2010-06-28] (ALWIL Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [165456 2010-06-28] (ALWIL Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [46672 2010-06-28] (ALWIL Software)
R3 AtcL002; C:\Windows\System32\DRIVERS\l251x86.sys [30208 2007-08-21] (Atheros Communications, Inc.)
R1 avgtp; C:\WINDOWS\system32\drivers\avgtpx86.sys [37664 2013-09-15] (AVG Technologies)
R3 DCamUSBGene; C:\Windows\System32\DRIVERS\usbgene.sys [142720 2006-11-29] (Genesys Logic, Inc.)
R2 Ethpdrv; C:\Windows\System32\DRIVERS\ethpdrv.sys [16376 2007-08-01] (Gemfor s.r.o.)
S3 HPZid412; C:\Windows\System32\DRIVERS\HPZid412.sys [49664 2006-05-16] (HP)
S3 HPZipr12; C:\Windows\System32\DRIVERS\HPZipr12.sys [16496 2006-05-16] (HP)
S3 HPZius12; C:\Windows\System32\DRIVERS\HPZius12.sys [21568 2006-05-16] (HP)
S3 huawei_cdcacm; C:\Windows\System32\DRIVERS\ew_jucdcacm.sys [95616 2012-04-23] (Huawei Technologies Co., Ltd.)
S3 huawei_cdcecm; C:\Windows\System32\DRIVERS\ew_jucdcecm.sys [70016 2012-04-23] (Huawei Technologies Co., Ltd.)
S3 huawei_ext_ctrl; C:\Windows\System32\DRIVERS\ew_juextctrl.sys [27520 2012-04-23] (Huawei Technologies Co., Ltd.)
S3 IpwP; C:\Windows\System32\DRIVERS\ipw3gnet.sys [51040 2008-10-10] (IPWireless Inc.)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [5632 2007-01-24] ( )
R3 MTsensor; C:\Windows\System32\DRIVERS\ATKACPI.sys [7680 2006-12-14] (ATK0100)
S3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R1 Tcpip6; C:\Windows\System32\DRIVERS\tcpip6.sys [226880 2010-02-11] (Microsoft Corporation)
R3 catchme; \??\C:\ComboFix\catchme.sys [x]
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [249472 2012-04-20] (Huawei Technologies Co., Ltd.)
S4 IntelIde; No ImagePath
S3 RTSTOR; system32\drivers\RTSTOR.SYS [x]
U5 ScsiPort; C:\Windows\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U3 mbr; \??\C:\DOCUME~1\Bob\LOCALS~1\Temp\mbr.sys [x]

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2013-09-25 10:23 - 2013-09-25 10:23 - 00000000 ____D C:\FRST
2013-09-25 10:23 - 2013-09-25 10:22 - 01088653 _____ (Farbar) C:\Documents and Settings\Bob\Plocha\FRST.exe
2013-09-25 10:01 - 2013-09-25 10:01 - 00018872 _____ C:\ComboFix.txt
2013-09-25 09:46 - 2013-09-25 09:46 - 00000000 ___RD C:\Documents and Settings\Bob\Nabídka Start\Programy\Nástroje pro správu
2013-09-25 09:44 - 2013-09-24 18:03 - 05130004 ____R (Swearware) C:\Documents and Settings\Bob\Plocha\ComboFix.exe
2013-09-25 09:27 - 2013-10-25 10:10 - 01042066 _____ C:\Documents and Settings\Bob\Plocha\adwcleaner.exe
2013-09-25 09:16 - 2013-09-25 09:16 - 00000000 ____D C:\WINDOWS\ERUNT
2013-09-25 09:15 - 2013-09-25 09:15 - 01030038 _____ (Thisisu) C:\Documents and Settings\Bob\Plocha\JRT.exe
2013-09-25 08:45 - 2013-09-25 08:45 - 04689699 _____ C:\Qoobox.zip
2013-09-25 08:30 - 2013-09-25 08:30 - 00090112 _____ C:\WINDOWS\Minidump\Mini092513-01.dmp
2013-09-25 08:03 - 2013-09-25 08:03 - 00000000 ____D C:\Documents and Settings\Bob\Data aplikací\Malwarebytes
2013-09-25 08:02 - 2013-09-25 08:02 - 00000784 _____ C:\Documents and Settings\All Users\Plocha\Malwarebytes Anti-Malware.lnk
2013-09-25 08:02 - 2013-09-25 08:02 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-09-25 08:02 - 2013-09-25 08:02 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Malwarebytes' Anti-Malware
2013-09-25 08:02 - 2013-09-25 08:02 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2013-09-25 08:02 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2013-09-25 07:53 - 2013-09-25 07:52 - 00781909 _____ C:\Documents and Settings\Bob\Plocha\RSIT.exe
2013-09-24 22:52 - 2013-09-25 09:27 - 00000000 ____D C:\AdwCleaner
2013-09-24 19:00 - 2013-09-24 19:01 - 00000400 _____ C:\WINDOWS\system32\AppLog.log
2013-09-24 18:52 - 2013-09-24 18:52 - 00000075 _____ C:\WINDOWS\setupact.log
2013-09-24 18:52 - 2013-09-24 18:52 - 00000000 _____ C:\WINDOWS\setuperr.log
2013-09-24 18:20 - 2013-09-25 09:54 - 00008192 ____H C:\WINDOWS\system32\config\SECURITY.tmp.LOG
2013-09-24 18:20 - 2013-09-24 18:20 - 00000000 ____H C:\WINDOWS\system32\config\system.tmp.LOG
2013-09-24 18:20 - 2013-09-24 18:20 - 00000000 ____H C:\WINDOWS\system32\config\software.tmp.LOG
2013-09-24 18:20 - 2013-09-24 18:20 - 00000000 ____H C:\WINDOWS\system32\config\SAM.tmp.LOG
2013-09-24 18:20 - 2013-09-24 18:20 - 00000000 ____H C:\WINDOWS\system32\config\default.tmp.LOG
2013-09-24 18:19 - 2011-08-17 15:49 - 00138496 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\afd.sys
2013-09-24 18:19 - 2011-08-17 15:49 - 00138496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2013-09-24 18:15 - 2011-06-26 08:45 - 00256000 _____ C:\WINDOWS\PEV.exe
2013-09-24 18:15 - 2010-11-07 19:20 - 00208896 _____ C:\WINDOWS\MBR.exe
2013-09-24 18:15 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\WINDOWS\NIRCMD.exe
2013-09-24 18:15 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\WINDOWS\SWREG.exe
2013-09-24 18:15 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\WINDOWS\SWSC.exe
2013-09-24 18:15 - 2000-08-31 02:00 - 00212480 _____ (SteelWerX) C:\WINDOWS\SWXCACLS.exe
2013-09-24 18:15 - 2000-08-31 02:00 - 00098816 _____ C:\WINDOWS\sed.exe
2013-09-24 18:15 - 2000-08-31 02:00 - 00080412 _____ C:\WINDOWS\grep.exe
2013-09-24 18:15 - 2000-08-31 02:00 - 00068096 _____ C:\WINDOWS\zip.exe
2013-09-21 18:51 - 2013-09-25 10:01 - 00000000 ____D C:\Qoobox
2013-09-21 18:51 - 2013-09-21 18:51 - 00000000 ___RD C:\Documents and Settings\Administrator\Nabídka Start\Programy\Nástroje pro správu
2013-09-21 18:51 - 2013-09-21 18:51 - 00000000 ___RD C:\Documents and Settings\Administrator\Dokumenty\Obrázky
2013-09-21 18:51 - 2013-09-21 18:51 - 00000000 ___RD C:\Documents and Settings\Administrator\Dokumenty\Hudba
2013-09-21 18:51 - 2013-09-21 18:51 - 00000000 ___RD C:\Documents and Settings\Administrator\Dokumenty\Filmy
2013-09-21 18:50 - 2013-09-25 09:54 - 00000000 ____D C:\WINDOWS\erdnt
2013-09-21 18:47 - 2013-09-25 07:53 - 00000000 ____D C:\Program Files\trend micro
2013-09-21 18:47 - 2013-09-24 18:03 - 05130004 ____R (Swearware) C:\Documents and Settings\Administrator\Plocha\ComboFix.exe
2013-09-21 18:47 - 2013-09-24 18:02 - 00781909 _____ C:\Documents and Settings\Administrator\Plocha\RSIT.exe
2013-09-21 18:47 - 2013-09-21 18:48 - 00000000 ____D C:\rsit
2013-09-21 18:39 - 2013-09-21 18:39 - 00000000 __SHD C:\WINDOWS\CSC
2013-09-21 18:33 - 2013-09-24 18:56 - 00000000 ____D C:\WINDOWS\pss
2013-09-21 18:32 - 2013-09-24 22:55 - 00000178 ___SH C:\Documents and Settings\Administrator\ntuser.ini
2013-09-21 18:32 - 2013-09-24 18:19 - 00000000 __RHD C:\Documents and Settings\Administrator\Data aplikací
2013-09-21 18:32 - 2013-09-21 18:51 - 00000000 ___RD C:\Documents and Settings\Administrator\Nabídka Start\Programy
2013-09-21 18:32 - 2013-09-21 18:51 - 00000000 ____D C:\Documents and Settings\Administrator\Dokumenty
2013-09-21 18:32 - 2013-09-21 18:47 - 00000000 ____D C:\Documents and Settings\Administrator\Plocha
2013-09-21 18:32 - 2013-09-21 18:32 - 00000000 ____D C:\Documents and Settings\Administrator
2013-09-21 18:32 - 2013-09-07 19:40 - 00000834 _____ C:\Documents and Settings\Administrator\Plocha\T-Mobile Internet Manager.lnk
2013-09-21 18:32 - 2011-05-26 18:44 - 00000000 ___HD C:\Documents and Settings\Administrator\Local Settings\Data aplikací
2013-09-21 18:32 - 2011-05-26 18:44 - 00000000 ____D C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Microsoft Help
2013-09-21 18:32 - 2011-05-23 22:50 - 00000000 __SHD C:\Documents and Settings\Administrator\IETldCache
2013-09-21 18:32 - 2008-11-13 17:03 - 00000000 ___RD C:\Documents and Settings\Administrator\Nabídka Start\Programy\Po spuštění
2013-09-21 18:32 - 2008-11-13 17:03 - 00000000 ___RD C:\Documents and Settings\Administrator\Nabídka Start
2013-09-21 18:32 - 2008-11-13 17:03 - 00000000 ___HD C:\Documents and Settings\Administrator\Okolní tiskárny
2013-09-21 18:32 - 2008-11-13 17:03 - 00000000 ___HD C:\Documents and Settings\Administrator\Okolní síť
2013-09-21 18:32 - 2008-11-13 17:03 - 00000000 ____D C:\Documents and Settings\Administrator\Oblíbené položky
2013-09-21 18:32 - 2008-11-13 16:14 - 00001599 _____ C:\Documents and Settings\Administrator\Nabídka Start\Programy\Vzdálená pomoc.lnk
2013-09-21 18:32 - 2008-11-13 16:14 - 00000792 _____ C:\Documents and Settings\Administrator\Nabídka Start\Programy\Windows Media Player.lnk
2013-09-21 18:32 - 2008-11-13 16:14 - 00000000 ___RD C:\Documents and Settings\Administrator\Nabídka Start\Programy\Příslušenství
2013-09-21 18:32 - 2008-11-13 16:10 - 00000000 ___HD C:\Documents and Settings\Administrator\Šablony
2013-09-16 20:20 - 2013-09-16 20:20 - 00601286 _____ C:\Documents and Settings\Bob\Dokumenty\TurtleOdyssey2.swf
2013-09-16 19:53 - 2013-09-25 08:27 - 00000000 ____D C:\Program Files\Common Files\PC Tools
2013-09-16 19:48 - 2013-09-16 19:48 - 03068142 _____ C:\Documents and Settings\Bob\Dokumenty\kollen30 (1).swf
2013-09-16 19:34 - 2013-09-16 19:34 - 03068142 _____ C:\Documents and Settings\Bob\Dokumenty\kollen30.swf
2013-09-16 09:59 - 2013-09-21 18:38 - 00000004 _____ C:\Documents and Settings\Bob\Data aplikací\cache.ini
2013-09-16 09:47 - 2013-09-16 09:48 - 12246371 _____ C:\Documents and Settings\Bob\Dokumenty\12792 (3).mp4
2013-09-16 09:47 - 2013-09-16 09:47 - 45244956 _____ C:\Documents and Settings\Bob\Dokumenty\trailer_hpb.mp4
2013-09-16 09:47 - 2013-09-16 09:47 - 12246371 _____ C:\Documents and Settings\Bob\Dokumenty\12792 (2).mp4
2013-09-16 09:45 - 2013-09-16 09:46 - 12246371 _____ C:\Documents and Settings\Bob\Dokumenty\12792.mp4
2013-09-16 09:44 - 2013-09-16 09:44 - 00661944 _____ (Symantec Corporation) C:\Documents and Settings\Bob\Dokumenty\Nss.exe
2013-09-16 09:30 - 2013-09-16 09:30 - 57313928 _____ C:\Documents and Settings\Bob\Dokumenty\2118697.mp4
2013-09-16 05:45 - 2013-09-16 05:45 - 00000000 ____D C:\$WINDOWS.~BT
2013-09-16 05:40 - 2013-09-16 05:40 - 536870912 ___SH C:\WinPEpge.sys
2013-09-15 20:22 - 2013-09-15 20:22 - 00024491 _____ C:\Documents and Settings\Bob\Plocha\hs_err_pid2812.log
2013-09-15 19:29 - 2013-09-25 07:49 - 00015441 _____ C:\WINDOWS\setupapi.log
2013-09-15 16:46 - 2013-09-15 16:46 - 08290304 _____ C:\Documents and Settings\Bob\Dokumenty\cdbxp_setup_4.5.2.4214.msi
2013-09-15 16:28 - 2013-09-15 16:28 - 00098304 _____ C:\WINDOWS\Minidump\Mini091513-01.dmp
2013-09-15 16:19 - 2013-09-15 16:19 - 01069288 _____ (Solid State Networks) C:\Documents and Settings\Bob\Dokumenty\install_flashplayer11x32_chra_aaa_aih.exe
2013-09-15 14:31 - 2013-09-15 14:31 - 00000000 ___RD C:\Documents and Settings\LocalService\Oblíbené položky
2013-09-15 14:06 - 2013-09-15 14:06 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2013-09-14 20:35 - 2013-09-16 18:44 - 00000000 ____D C:\Documents and Settings\Bob\Dokumenty\Euro Truck Simulator 2
2013-09-14 19:59 - 2013-09-25 09:56 - 00000159 _____ C:\WINDOWS\wiadebug.log
2013-09-14 19:59 - 2013-09-25 09:56 - 00000049 _____ C:\WINDOWS\wiaservc.log
2013-09-14 19:59 - 2013-09-25 09:47 - 00032552 _____ C:\WINDOWS\SchedLgU.Txt
2013-09-14 19:59 - 2013-09-14 19:59 - 00000000 _____ C:\WINDOWS\Sti_Trace.log
2013-09-14 19:55 - 2013-09-14 19:55 - 00001700 _____ C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
2013-09-14 19:55 - 2013-09-14 19:55 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\avast! Free Antivirus
2013-09-14 19:55 - 2010-06-28 22:57 - 00038848 _____ (ALWIL Software) C:\WINDOWS\avastSS.scr
2013-09-14 19:54 - 2013-09-14 19:54 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Alwil Software
2013-09-14 19:52 - 2013-09-24 18:51 - 00000000 ____D C:\Documents and Settings\Bob\Data aplikací\Seznam.cz
2013-09-14 19:52 - 2013-09-14 19:52 - 00001462 _____ C:\Documents and Settings\Bob\Plocha\Goodgame Empire.lnk
2013-09-14 19:52 - 2013-09-14 19:52 - 00000000 ____D C:\Program Files\Seznam.cz
2013-09-14 19:52 - 2013-09-14 19:52 - 00000000 ____D C:\Documents and Settings\Bob\Data aplikací\DesktopIconGoodgame
2013-09-14 19:51 - 2013-09-14 19:51 - 00614816 _____ C:\Documents and Settings\Bob\Dokumenty\setup_av_free.exe
2013-09-14 19:47 - 2013-09-14 19:51 - 53785488 _____ C:\Documents and Settings\Bob\Dokumenty\avast_home_setup_5.0.594.exe
2013-09-14 19:46 - 2013-09-14 19:54 - 33034340 _____ C:\Documents and Settings\Bob\Dokumenty\avast_5.0.677.exe
2013-09-14 19:37 - 2013-09-14 19:54 - 57973656 _____ C:\Documents and Settings\Bob\Dokumenty\avast_5.1.864.exe
2013-09-14 19:34 - 2013-09-14 19:37 - 42718176 _____ C:\Documents and Settings\Bob\Dokumenty\Avast-5.0.677.exe
2013-09-14 19:15 - 2013-09-14 19:25 - 181929368 _____ C:\Documents and Settings\Bob\Dokumenty\avast!-Pro-AV-+-IS-v6.0.1000-Final-+-Crack-[Till-2050].rar
2013-09-14 19:14 - 2013-09-14 19:14 - 00014035 _____ C:\Documents and Settings\Bob\Dokumenty\[isoHunt] avast__Antivirus_Pro__6.0.1000_FULL.6591792.TPB (1).torrent
2013-09-14 19:13 - 2013-09-14 19:13 - 00014035 _____ C:\Documents and Settings\Bob\Dokumenty\[isoHunt] avast__Antivirus_Pro__6.0.1000_FULL.6591792.TPB.torrent
2013-09-14 19:07 - 2013-09-14 19:08 - 125843611 _____ C:\Documents and Settings\Bob\Dokumenty\eurotrucks_1_3_setup (1).rar
2013-09-14 19:05 - 2013-09-14 19:06 - 125843611 _____ C:\Documents and Settings\Bob\Dokumenty\eurotrucks_1_3_setup.rar
2013-09-14 19:02 - 2013-09-14 19:02 - 00000874 _____ C:\Documents and Settings\All Users\Plocha\advancet s.lnk
2013-09-14 19:02 - 2013-09-14 19:02 - 00000000 ____D C:\Documents and Settings\Bob\Data aplikací\Apple Computer
2013-09-14 19:02 - 2013-09-14 19:02 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A}
2013-09-14 19:02 - 2013-09-14 19:02 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\{BDDB56DE-AE4E-48A2-B856-FB60C8498453}
2013-09-14 19:01 - 2013-09-14 19:02 - 00000000 ____D C:\Documents and Settings\Bob\Data aplikací\IObit
2013-09-14 19:01 - 2013-09-14 19:02 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\IObit
2013-09-14 19:01 - 2013-09-14 19:01 - 01006912 _____ (IObit) C:\Documents and Settings\Bob\Dokumenty\advanced_systemcare_installer.exe
2013-09-14 18:57 - 2013-09-14 18:57 - 00000000 ____D C:\Documents and Settings\LocalService\Data aplikací\Macromedia
2013-09-14 18:57 - 2013-09-14 18:57 - 00000000 ____D C:\Documents and Settings\LocalService\Data aplikací\Adobe
2013-09-14 18:50 - 2013-09-14 18:50 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Euro Truck Simulator 2
2013-09-14 18:47 - 2013-09-14 18:50 - 00000000 ____D C:\Program Files\Euro Truck Simulator 2
2013-09-14 18:41 - 2013-09-14 18:41 - 00004368 _____ C:\Documents and Settings\Bob\Dokumenty\adobe-release-i386-1.0-1.noarch (1).rpm
2013-09-14 18:36 - 2013-09-14 18:36 - 00004368 _____ C:\Documents and Settings\Bob\Dokumenty\adobe-release-i386-1.0-1.noarch.rpm
2013-09-14 18:35 - 2013-09-14 19:29 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Adobe Flash Player 11.6.602.171
2013-09-14 18:35 - 2013-09-14 18:35 - 00000000 ____D C:\Program Files\Adobe Flash Player 11.6.602.171
2013-09-14 18:35 - 2013-09-14 18:35 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Adobe
2013-09-14 18:34 - 2013-09-14 18:34 - 04653542 _____ ( ) C:\Documents and Settings\Bob\Dokumenty\Adobe-Flash-Player-11.6.602.171.exe
2013-09-14 18:32 - 2013-09-14 18:32 - 00000000 ____D C:\Nová složka
2013-09-14 18:26 - 2013-09-14 18:26 - 00000000 ____D C:\Documents and Settings\All Users\Dokumenty\Nová složka
2013-09-14 18:23 - 2013-09-15 15:30 - 00000000 ____D C:\Documents and Settings\Bob\Local Settings\Data aplikací\Adobe
2013-09-14 18:22 - 2013-09-14 18:24 - 620534000 _____ (SCS Software ) C:\Documents and Settings\Bob\Dokumenty\euro-truck-simulator-2_1.3.1.exe
2013-09-14 18:13 - 2013-09-14 18:13 - 00000669 _____ C:\Documents and Settings\All Users\Plocha\Opera.lnk
2013-09-14 18:13 - 2013-09-14 18:13 - 00000669 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Opera.lnk
2013-09-14 18:13 - 2013-09-14 18:13 - 00000000 ____D C:\Program Files\Opera
2013-09-14 18:13 - 2013-09-14 18:13 - 00000000 ____D C:\Documents and Settings\Bob\Local Settings\Data aplikací\Opera Software
2013-09-14 18:13 - 2013-09-14 18:13 - 00000000 ____D C:\Documents and Settings\Bob\Data aplikací\Opera Software
2013-09-14 17:59 - 2013-09-14 17:59 - 00000000 ____D C:\Program Files\Common Files\Java
2013-09-14 17:59 - 2013-09-14 17:58 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2013-09-14 17:59 - 2013-09-14 17:58 - 00144896 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl
2013-09-14 17:58 - 2013-09-14 17:58 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2013-09-14 17:58 - 2013-09-14 17:58 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2013-09-14 17:58 - 2013-09-14 17:58 - 00094632 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2013-09-14 17:58 - 2013-09-14 17:58 - 00000000 ____D C:\Program Files\Java
2013-09-14 17:58 - 2013-09-14 17:58 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Java
2013-09-14 17:44 - 2013-09-14 17:47 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-09-14 17:41 - 2013-09-14 18:02 - 00000000 ____D C:\Documents and Settings\Bob\Data aplikací\.minecraft
2013-09-14 17:40 - 2013-09-14 17:40 - 00000000 ____D C:\Documents and Settings\Bob\Local Settings\Data aplikací\WMTools Downloaded Files
2013-09-14 17:35 - 2013-09-14 17:35 - 00001744 _____ C:\Documents and Settings\All Users\Nabídka Start\WinZip.lnk
2013-09-14 17:35 - 2013-09-14 17:35 - 00000000 ____D C:\Documents and Settings\Bob\Local Settings\Data aplikací\WinZip
2013-09-14 17:35 - 2013-09-14 17:35 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\WinZip
2013-09-14 17:34 - 2013-09-15 19:13 - 00037664 _____ (AVG Technologies) C:\WINDOWS\system32\Drivers\avgtpx86.sys
2013-09-14 17:34 - 2013-09-14 17:35 - 00000000 ____D C:\Program Files\WinZip
2013-09-14 17:34 - 2013-09-14 17:35 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\WinZip
2013-09-14 17:30 - 2013-09-14 17:30 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\NVIDIA
2013-09-14 17:29 - 2013-09-14 17:29 - 00000000 ____D C:\WINDOWS\Sun
2013-09-14 17:29 - 2013-09-14 17:29 - 00000000 ____D C:\Documents and Settings\Bob\Local Settings\Data aplikací\Sun
2013-09-14 17:21 - 2013-09-14 17:21 - 00000000 ____D C:\NVIDIA
2013-09-14 17:14 - 2013-09-14 17:58 - 00868264 _____ (Oracle Corporation) C:\WINDOWS\system32\npDeployJava1.dll
2013-09-14 17:14 - 2013-09-14 17:58 - 00790440 _____ (Oracle Corporation) C:\WINDOWS\system32\deployJava1.dll
2013-09-14 17:14 - 2013-09-14 17:14 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Sun
2013-09-14 17:13 - 2013-09-14 17:13 - 00000000 ____D C:\Documents and Settings\Bob\Data aplikací\Sun
2013-09-12 14:48 - 2013-09-12 14:48 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2876217$
2013-09-12 14:48 - 2013-09-12 14:48 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2864063$
2013-09-12 10:48 - 2013-09-12 10:48 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2876315$
2013-09-07 19:40 - 2013-09-07 19:40 - 00000834 _____ C:\Documents and Settings\Default User\Plocha\T-Mobile Internet Manager.lnk
2013-09-07 19:40 - 2013-09-07 19:40 - 00000834 _____ C:\Documents and Settings\Bob\Plocha\T-Mobile Internet Manager.lnk
2013-08-26 10:26 - 2013-08-26 10:26 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$

==================== One Month Modified Files and Folders =======

2013-10-25 10:10 - 2013-09-25 09:27 - 01042066 _____ C:\Documents and Settings\Bob\Plocha\adwcleaner.exe
2013-09-25 10:23 - 2013-09-25 10:23 - 00000000 ____D C:\FRST
2013-09-25 10:23 - 2008-11-13 16:19 - 00000000 ____D C:\Documents and Settings\Bob\Plocha
2013-09-25 10:22 - 2013-09-25 10:23 - 01088653 _____ (Farbar) C:\Documents and Settings\Bob\Plocha\FRST.exe
2013-09-25 10:01 - 2013-09-25 10:01 - 00018872 _____ C:\ComboFix.txt
2013-09-25 10:01 - 2013-09-21 18:51 - 00000000 ____D C:\Qoobox
2013-09-25 10:01 - 2008-11-13 16:17 - 00000000 __SHD C:\Documents and Settings\NetworkService
2013-09-25 09:58 - 2008-11-13 16:13 - 01493699 _____ C:\WINDOWS\WindowsUpdate.log
2013-09-25 09:56 - 2013-09-14 19:59 - 00000159 _____ C:\WINDOWS\wiadebug.log
2013-09-25 09:56 - 2013-09-14 19:59 - 00000049 _____ C:\WINDOWS\wiaservc.log
2013-09-25 09:56 - 2012-09-07 18:02 - 00000936 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-25 09:56 - 2008-11-13 16:18 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-09-25 09:56 - 2001-10-25 14:00 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl
2013-09-25 09:56 - 2001-10-25 14:00 - 00000227 _____ C:\WINDOWS\system.ini
2013-09-25 09:55 - 2008-11-13 17:02 - 00057344 _____ C:\WINDOWS\system32\config\SECURITY.bak
2013-09-25 09:55 - 2008-11-13 17:02 - 00028672 _____ C:\WINDOWS\system32\config\SAM.bak
2013-09-25 09:55 - 2008-11-13 17:00 - 33030144 _____ C:\WINDOWS\system32\config\software.bak
2013-09-25 09:55 - 2008-11-13 17:00 - 06553600 _____ C:\WINDOWS\system32\config\system.bak
2013-09-25 09:55 - 2008-11-13 17:00 - 00294912 _____ C:\WINDOWS\system32\config\default.bak
2013-09-25 09:55 - 2008-11-13 16:19 - 00000178 ___SH C:\Documents and Settings\Bob\ntuser.ini
2013-09-25 09:54 - 2013-09-24 18:20 - 00008192 ____H C:\WINDOWS\system32\config\SECURITY.tmp.LOG
2013-09-25 09:54 - 2013-09-21 18:50 - 00000000 ____D C:\WINDOWS\erdnt
2013-09-25 09:48 - 2008-11-13 16:19 - 00000000 __RHD C:\Documents and Settings\Bob\Data aplikací
2013-09-25 09:47 - 2013-09-14 19:59 - 00032552 _____ C:\WINDOWS\SchedLgU.Txt
2013-09-25 09:46 - 2013-09-25 09:46 - 00000000 ___RD C:\Documents and Settings\Bob\Nabídka Start\Programy\Nástroje pro správu
2013-09-25 09:46 - 2008-11-13 16:19 - 00000000 ___RD C:\Documents and Settings\Bob\Nabídka Start\Programy
2013-09-25 09:27 - 2013-09-24 22:52 - 00000000 ____D C:\AdwCleaner
2013-09-25 09:16 - 2013-09-25 09:16 - 00000000 ____D C:\WINDOWS\ERUNT
2013-09-25 09:15 - 2013-09-25 09:15 - 01030038 _____ (Thisisu) C:\Documents and Settings\Bob\Plocha\JRT.exe
2013-09-25 09:14 - 2008-11-13 17:03 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2013-09-25 08:45 - 2013-09-25 08:45 - 04689699 _____ C:\Qoobox.zip
2013-09-25 08:42 - 2012-09-07 18:02 - 00000940 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-25 08:30 - 2013-09-25 08:30 - 00090112 _____ C:\WINDOWS\Minidump\Mini092513-01.dmp
2013-09-25 08:30 - 2009-10-09 21:03 - 00000000 ____D C:\WINDOWS\Minidump
2013-09-25 08:27 - 2013-09-16 19:53 - 00000000 ____D C:\Program Files\Common Files\PC Tools
2013-09-25 08:27 - 2008-11-13 17:03 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2013-09-25 08:24 - 2009-08-09 07:53 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB973507$
2013-09-25 08:23 - 2008-11-13 17:03 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2013-09-25 08:23 - 2008-11-13 16:19 - 00000000 ___RD C:\Documents and Settings\Bob\Dokumenty
2013-09-25 08:03 - 2013-09-25 08:03 - 00000000 ____D C:\Documents and Settings\Bob\Data aplikací\Malwarebytes
2013-09-25 08:02 - 2013-09-25 08:02 - 00000784 _____ C:\Documents and Settings\All Users\Plocha\Malwarebytes Anti-Malware.lnk
2013-09-25 08:02 - 2013-09-25 08:02 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-09-25 08:02 - 2013-09-25 08:02 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Malwarebytes' Anti-Malware
2013-09-25 08:02 - 2013-09-25 08:02 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2013-09-25 07:53 - 2013-09-21 18:47 - 00000000 ____D C:\Program Files\trend micro
2013-09-25 07:52 - 2013-09-25 07:53 - 00781909 _____ C:\Documents and Settings\Bob\Plocha\RSIT.exe
2013-09-25 07:49 - 2013-09-15 19:29 - 00015441 _____ C:\WINDOWS\setupapi.log
2013-09-24 22:55 - 2013-09-21 18:32 - 00000178 ___SH C:\Documents and Settings\Administrator\ntuser.ini
2013-09-24 22:54 - 2008-11-13 16:19 - 00000000 ___HD C:\Documents and Settings\Bob\Local Settings\Data aplikací
2013-09-24 22:54 - 2008-11-13 16:19 - 00000000 ____D C:\Documents and Settings\Bob
2013-09-24 19:04 - 2008-11-13 17:03 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start
2013-09-24 19:04 - 2008-11-13 16:19 - 00000000 ___RD C:\Documents and Settings\Bob\Nabídka Start
2013-09-24 19:01 - 2013-09-24 19:00 - 00000400 _____ C:\WINDOWS\system32\AppLog.log
2013-09-24 18:56 - 2013-09-21 18:33 - 00000000 ____D C:\WINDOWS\pss
2013-09-24 18:56 - 2008-11-13 17:03 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
2013-09-24 18:56 - 2008-11-13 16:52 - 00524288 _____ C:\WINDOWS\system32\config\ACEEvent.evt
2013-09-24 18:56 - 2008-11-13 16:19 - 00000000 ___RD C:\Documents and Settings\Bob\Nabídka Start\Programy\Po spuštění
2013-09-24 18:55 - 2008-11-13 17:00 - 00000211 ___SH C:\boot.ini
2013-09-24 18:55 - 2001-10-25 14:00 - 00000507 _____ C:\WINDOWS\win.ini
2013-09-24 18:52 - 2013-09-24 18:52 - 00000075 _____ C:\WINDOWS\setupact.log
2013-09-24 18:52 - 2013-09-24 18:52 - 00000000 _____ C:\WINDOWS\setuperr.log
2013-09-24 18:51 - 2013-09-14 19:52 - 00000000 ____D C:\Documents and Settings\Bob\Data aplikací\Seznam.cz
2013-09-24 18:20 - 2013-09-24 18:20 - 00000000 ____H C:\WINDOWS\system32\config\system.tmp.LOG
2013-09-24 18:20 - 2013-09-24 18:20 - 00000000 ____H C:\WINDOWS\system32\config\software.tmp.LOG
2013-09-24 18:20 - 2013-09-24 18:20 - 00000000 ____H C:\WINDOWS\system32\config\SAM.tmp.LOG
2013-09-24 18:20 - 2013-09-24 18:20 - 00000000 ____H C:\WINDOWS\system32\config\default.tmp.LOG
2013-09-24 18:19 - 2013-09-21 18:32 - 00000000 __RHD C:\Documents and Settings\Administrator\Data aplikací
2013-09-24 18:03 - 2013-09-25 09:44 - 05130004 ____R (Swearware) C:\Documents and Settings\Bob\Plocha\ComboFix.exe
2013-09-24 18:03 - 2013-09-21 18:47 - 05130004 ____R (Swearware) C:\Documents and Settings\Administrator\Plocha\ComboFix.exe
2013-09-24 18:02 - 2013-09-21 18:47 - 00781909 _____ C:\Documents and Settings\Administrator\Plocha\RSIT.exe
2013-09-21 18:51 - 2013-09-21 18:51 - 00000000 ___RD C:\Documents and Settings\Administrator\Nabídka Start\Programy\Nástroje pro správu
2013-09-21 18:51 - 2013-09-21 18:51 - 00000000 ___RD C:\Documents and Settings\Administrator\Dokumenty\Obrázky
2013-09-21 18:51 - 2013-09-21 18:51 - 00000000 ___RD C:\Documents and Settings\Administrator\Dokumenty\Hudba
2013-09-21 18:51 - 2013-09-21 18:51 - 00000000 ___RD C:\Documents and Settings\Administrator\Dokumenty\Filmy
2013-09-21 18:51 - 2013-09-21 18:32 - 00000000 ___RD C:\Documents and Settings\Administrator\Nabídka Start\Programy
2013-09-21 18:51 - 2013-09-21 18:32 - 00000000 ____D C:\Documents and Settings\Administrator\Dokumenty
2013-09-21 18:48 - 2013-09-21 18:47 - 00000000 ____D C:\rsit
2013-09-21 18:47 - 2013-09-21 18:32 - 00000000 ____D C:\Documents and Settings\Administrator\Plocha
2013-09-21 18:39 - 2013-09-21 18:39 - 00000000 __SHD C:\WINDOWS\CSC
2013-09-21 18:38 - 2013-09-16 09:59 - 00000004 _____ C:\Documents and Settings\Bob\Data aplikací\cache.ini
2013-09-21 18:32 - 2013-09-21 18:32 - 00000000 ____D C:\Documents and Settings\Administrator
2013-09-21 14:13 - 2012-02-16 11:06 - 00001324 _____ C:\WINDOWS\system32\d3d9caps.dat
2013-09-21 14:11 - 2013-07-10 15:03 - 00352768 _____ C:\Documents and Settings\Bob\Plocha\Minecraft.exe
2013-09-18 07:42 - 2012-09-21 20:02 - 00001813 _____ C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2013-09-16 20:20 - 2013-09-16 20:20 - 00601286 _____ C:\Documents and Settings\Bob\Dokumenty\TurtleOdyssey2.swf
2013-09-16 19:48 - 2013-09-16 19:48 - 03068142 _____ C:\Documents and Settings\Bob\Dokumenty\kollen30 (1).swf
2013-09-16 19:34 - 2013-09-16 19:34 - 03068142 _____ C:\Documents and Settings\Bob\Dokumenty\kollen30.swf
2013-09-16 19:25 - 2008-11-13 16:11 - 00000000 ____D C:\WINDOWS\system32\Macromed
2013-09-16 18:44 - 2013-09-14 20:35 - 00000000 ____D C:\Documents and Settings\Bob\Dokumenty\Euro Truck Simulator 2
2013-09-16 09:58 - 2008-11-14 12:05 - 00000069 ____C C:\WINDOWS\NeroDigital.ini
2013-09-16 09:58 - 2008-11-14 11:57 - 00000101 _____ C:\Documents and Settings\Bob\default.pls
2013-09-16 09:48 - 2013-09-16 09:47 - 12246371 _____ C:\Documents and Settings\Bob\Dokumenty\12792 (3).mp4
2013-09-16 09:47 - 2013-09-16 09:47 - 45244956 _____ C:\Documents and Settings\Bob\Dokumenty\trailer_hpb.mp4
2013-09-16 09:47 - 2013-09-16 09:47 - 12246371 _____ C:\Documents and Settings\Bob\Dokumenty\12792 (2).mp4
2013-09-16 09:46 - 2013-09-16 09:45 - 12246371 _____ C:\Documents and Settings\Bob\Dokumenty\12792.mp4
2013-09-16 09:44 - 2013-09-16 09:44 - 00661944 _____ (Symantec Corporation) C:\Documents and Settings\Bob\Dokumenty\Nss.exe
2013-09-16 09:30 - 2013-09-16 09:30 - 57313928 _____ C:\Documents and Settings\Bob\Dokumenty\2118697.mp4
2013-09-16 05:45 - 2013-09-16 05:45 - 00000000 ____D C:\$WINDOWS.~BT
2013-09-16 05:40 - 2013-09-16 05:40 - 536870912 ___SH C:\WinPEpge.sys
2013-09-15 20:22 - 2013-09-15 20:22 - 00024491 _____ C:\Documents and Settings\Bob\Plocha\hs_err_pid2812.log
2013-09-15 19:13 - 2013-09-14 17:34 - 00037664 _____ (AVG Technologies) C:\WINDOWS\system32\Drivers\avgtpx86.sys
2013-09-15 16:46 - 2013-09-15 16:46 - 08290304 _____ C:\Documents and Settings\Bob\Dokumenty\cdbxp_setup_4.5.2.4214.msi
2013-09-15 16:33 - 2008-12-17 00:28 - 00009216 _____ C:\Documents and Settings\Bob\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-09-15 16:28 - 2013-09-15 16:28 - 00098304 _____ C:\WINDOWS\Minidump\Mini091513-01.dmp
2013-09-15 16:19 - 2013-09-15 16:19 - 01069288 _____ (Solid State Networks) C:\Documents and Settings\Bob\Dokumenty\install_flashplayer11x32_chra_aaa_aih.exe
2013-09-15 15:30 - 2013-09-14 18:23 - 00000000 ____D C:\Documents and Settings\Bob\Local Settings\Data aplikací\Adobe
2013-09-15 14:31 - 2013-09-15 14:31 - 00000000 ___RD C:\Documents and Settings\LocalService\Oblíbené položky
2013-09-15 14:31 - 2008-11-13 16:18 - 00000000 __SHD C:\Documents and Settings\LocalService
2013-09-15 14:18 - 2012-02-16 16:27 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\PCPowerSpeed
2013-09-15 14:06 - 2013-09-15 14:06 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2013-09-14 19:59 - 2013-09-14 19:59 - 00000000 _____ C:\WINDOWS\Sti_Trace.log
2013-09-14 19:58 - 2008-11-14 11:07 - 10485760 _____ C:\WINDOWS\system32\config\Antivirus.Evt
2013-09-14 19:58 - 2008-11-13 21:00 - 00000000 ____D C:\Program Files\Alwil Software
2013-09-14 19:58 - 2008-11-13 17:02 - 00145216 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-09-14 19:55 - 2013-09-14 19:55 - 00001700 _____ C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
2013-09-14 19:55 - 2013-09-14 19:55 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\avast! Free Antivirus
2013-09-14 19:55 - 2008-11-13 16:14 - 00002553 _____ C:\WINDOWS\system32\CONFIG.NT
2013-09-14 19:54 - 2013-09-14 19:54 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Alwil Software
2013-09-14 19:54 - 2013-09-14 19:46 - 33034340 _____ C:\Documents and Settings\Bob\Dokumenty\avast_5.0.677.exe
2013-09-14 19:54 - 2013-09-14 19:37 - 57973656 _____ C:\Documents and Settings\Bob\Dokumenty\avast_5.1.864.exe
2013-09-14 19:52 - 2013-09-14 19:52 - 00001462 _____ C:\Documents and Settings\Bob\Plocha\Goodgame Empire.lnk
2013-09-14 19:52 - 2013-09-14 19:52 - 00000000 ____D C:\Program Files\Seznam.cz
2013-09-14 19:52 - 2013-09-14 19:52 - 00000000 ____D C:\Documents and Settings\Bob\Data aplikací\DesktopIconGoodgame
2013-09-14 19:51 - 2013-09-14 19:51 - 00614816 _____ C:\Documents and Settings\Bob\Dokumenty\setup_av_free.exe
2013-09-14 19:51 - 2013-09-14 19:47 - 53785488 _____ C:\Documents and Settings\Bob\Dokumenty\avast_home_setup_5.0.594.exe
2013-09-14 19:39 - 2008-11-13 16:52 - 00027624 _____ C:\Documents and Settings\Bob\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2013-09-14 19:37 - 2013-09-14 19:34 - 42718176 _____ C:\Documents and Settings\Bob\Dokumenty\Avast-5.0.677.exe
2013-09-14 19:29 - 2013-09-14 18:35 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Adobe Flash Player 11.6.602.171
2013-09-14 19:29 - 2010-10-19 08:54 - 00000000 ____D C:\Documents and Settings\Bob\Plocha\Nepoužívané odkazy plochy
2013-09-14 19:25 - 2013-09-14 19:15 - 181929368 _____ C:\Documents and Settings\Bob\Dokumenty\avast!-Pro-AV-+-IS-v6.0.1000-Final-+-Crack-[Till-2050].rar
2013-09-14 19:14 - 2013-09-14 19:14 - 00014035 _____ C:\Documents and Settings\Bob\Dokumenty\[isoHunt] avast__Antivirus_Pro__6.0.1000_FULL.6591792.TPB (1).torrent
2013-09-14 19:13 - 2013-09-14 19:13 - 00014035 _____ C:\Documents and Settings\Bob\Dokumenty\[isoHunt] avast__Antivirus_Pro__6.0.1000_FULL.6591792.TPB.torrent
2013-09-14 19:08 - 2013-09-14 19:07 - 125843611 _____ C:\Documents and Settings\Bob\Dokumenty\eurotrucks_1_3_setup (1).rar
2013-09-14 19:06 - 2013-09-14 19:05 - 125843611 _____ C:\Documents and Settings\Bob\Dokumenty\eurotrucks_1_3_setup.rar
2013-09-14 19:02 - 2013-09-14 19:02 - 00000874 _____ C:\Documents and Settings\All Users\Plocha\advancet s.lnk
2013-09-14 19:02 - 2013-09-14 19:02 - 00000000 ____D C:\Documents and Settings\Bob\Data aplikací\Apple Computer
2013-09-14 19:02 - 2013-09-14 19:02 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A}
2013-09-14 19:02 - 2013-09-14 19:02 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\{BDDB56DE-AE4E-48A2-B856-FB60C8498453}
2013-09-14 19:02 - 2013-09-14 19:01 - 00000000 ____D C:\Documents and Settings\Bob\Data aplikací\IObit
2013-09-14 19:02 - 2013-09-14 19:01 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\IObit
2013-09-14 19:02 - 2008-11-13 16:19 - 00000000 ___HD C:\Documents and Settings\Bob\Šablony
2013-09-14 19:01 - 2013-09-14 19:01 - 01006912 _____ (IObit) C:\Documents and Settings\Bob\Dokumenty\advanced_systemcare_installer.exe
2013-09-14 18:57 - 2013-09-14 18:57 - 00000000 ____D C:\Documents and Settings\LocalService\Data aplikací\Macromedia
2013-09-14 18:57 - 2013-09-14 18:57 - 00000000 ____D C:\Documents and Settings\LocalService\Data aplikací\Adobe
2013-09-14 18:57 - 2008-11-13 16:18 - 00000000 ____D C:\Documents and Settings\LocalService\Data aplikací
2013-09-14 18:50 - 2013-09-14 18:50 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Euro Truck Simulator 2
2013-09-14 18:50 - 2013-09-14 18:47 - 00000000 ____D C:\Program Files\Euro Truck Simulator 2
2013-09-14 18:41 - 2013-09-14 18:41 - 00004368 _____ C:\Documents and Settings\Bob\Dokumenty\adobe-release-i386-1.0-1.noarch (1).rpm
2013-09-14 18:36 - 2013-09-14 18:36 - 00004368 _____ C:\Documents and Settings\Bob\Dokumenty\adobe-release-i386-1.0-1.noarch.rpm
2013-09-14 18:35 - 2013-09-14 18:35 - 00000000 ____D C:\Program Files\Adobe Flash Player 11.6.602.171
2013-09-14 18:35 - 2013-09-14 18:35 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Adobe
2013-09-14 18:34 - 2013-09-14 18:34 - 04653542 _____ ( ) C:\Documents and Settings\Bob\Dokumenty\Adobe-Flash-Player-11.6.602.171.exe
2013-09-14 18:32 - 2013-09-14 18:32 - 00000000 ____D C:\Nová složka
2013-09-14 18:26 - 2013-09-14 18:26 - 00000000 ____D C:\Documents and Settings\All Users\Dokumenty\Nová složka
2013-09-14 18:26 - 2008-11-13 17:03 - 00000000 ___RD C:\Documents and Settings\All Users\Dokumenty
2013-09-14 18:24 - 2013-09-14 18:22 - 620534000 _____ (SCS Software ) C:\Documents and Settings\Bob\Dokumenty\euro-truck-simulator-2_1.3.1.exe
2013-09-14 18:13 - 2013-09-14 18:13 - 00000669 _____ C:\Documents and Settings\All Users\Plocha\Opera.lnk
2013-09-14 18:13 - 2013-09-14 18:13 - 00000669 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Opera.lnk
2013-09-14 18:13 - 2013-09-14 18:13 - 00000000 ____D C:\Program Files\Opera
2013-09-14 18:13 - 2013-09-14 18:13 - 00000000 ____D C:\Documents and Settings\Bob\Local Settings\Data aplikací\Opera Software
2013-09-14 18:13 - 2013-09-14 18:13 - 00000000 ____D C:\Documents and Settings\Bob\Data aplikací\Opera Software
2013-09-14 18:02 - 2013-09-14 17:41 - 00000000 ____D C:\Documents and Settings\Bob\Data aplikací\.minecraft
2013-09-14 17:59 - 2013-09-14 17:59 - 00000000 ____D C:\Program Files\Common Files\Java
2013-09-14 17:58 - 2013-09-14 17:59 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2013-09-14 17:58 - 2013-09-14 17:59 - 00144896 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl
2013-09-14 17:58 - 2013-09-14 17:58 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2013-09-14 17:58 - 2013-09-14 17:58 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2013-09-14 17:58 - 2013-09-14 17:58 - 00094632 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2013-09-14 17:58 - 2013-09-14 17:58 - 00000000 ____D C:\Program Files\Java
2013-09-14 17:58 - 2013-09-14 17:58 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Java
2013-09-14 17:58 - 2013-09-14 17:14 - 00868264 _____ (Oracle Corporation) C:\WINDOWS\system32\npDeployJava1.dll
2013-09-14 17:58 - 2013-09-14 17:14 - 00790440 _____ (Oracle Corporation) C:\WINDOWS\system32\deployJava1.dll
2013-09-14 17:47 - 2013-09-14 17:44 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-09-14 17:40 - 2013-09-14 17:40 - 00000000 ____D C:\Documents and Settings\Bob\Local Settings\Data aplikací\WMTools Downloaded Files
2013-09-14 17:35 - 2013-09-14 17:35 - 00001744 _____ C:\Documents and Settings\All Users\Nabídka Start\WinZip.lnk
2013-09-14 17:35 - 2013-09-14 17:35 - 00000000 ____D C:\Documents and Settings\Bob\Local Settings\Data aplikací\WinZip
2013-09-14 17:35 - 2013-09-14 17:35 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\WinZip
2013-09-14 17:35 - 2013-09-14 17:34 - 00000000 ____D C:\Program Files\WinZip
2013-09-14 17:35 - 2013-09-14 17:34 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\WinZip
2013-09-14 17:30 - 2013-09-14 17:30 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\NVIDIA
2013-09-14 17:29 - 2013-09-14 17:29 - 00000000 ____D C:\WINDOWS\Sun
2013-09-14 17:29 - 2013-09-14 17:29 - 00000000 ____D C:\Documents and Settings\Bob\Local Settings\Data aplikací\Sun
2013-09-14 17:21 - 2013-09-14 17:21 - 00000000 ____D C:\NVIDIA
2013-09-14 17:14 - 2013-09-14 17:14 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Sun
2013-09-14 17:13 - 2013-09-14 17:13 - 00000000 ____D C:\Documents and Settings\Bob\Data aplikací\Sun
2013-09-12 14:50 - 2009-07-03 15:49 - 00000000 ____D C:\WINDOWS\ie8updates
2013-09-12 14:50 - 2008-11-14 11:28 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2013-09-12 14:48 - 2013-09-12 14:48 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2876217$
2013-09-12 14:48 - 2013-09-12 14:48 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2864063$
2013-09-12 13:25 - 2008-11-13 17:04 - 00807612 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-09-12 13:24 - 2008-11-13 16:54 - 00000000 ____D C:\WINDOWS\security
2013-09-12 10:48 - 2013-09-12 10:48 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2876315$
2013-09-07 19:40 - 2013-09-21 18:32 - 00000834 _____ C:\Documents and Settings\Administrator\Plocha\T-Mobile Internet Manager.lnk
2013-09-07 19:40 - 2013-09-07 19:40 - 00000834 _____ C:\Documents and Settings\Default User\Plocha\T-Mobile Internet Manager.lnk
2013-09-07 19:40 - 2013-09-07 19:40 - 00000834 _____ C:\Documents and Settings\Bob\Plocha\T-Mobile Internet Manager.lnk
2013-09-07 19:40 - 2013-03-15 11:52 - 00000840 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\T-Mobile Internet Manager.lnk
2013-09-07 19:40 - 2013-03-15 11:52 - 00000000 ____D C:\Program Files\T-Mobile
2013-09-07 19:40 - 2008-11-13 17:03 - 00000000 ____D C:\Documents and Settings\Default User\Plocha
2013-09-01 16:57 - 2008-12-25 22:56 - 76725432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-08-26 10:26 - 2013-08-26 10:26 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$

Files to move or delete:
====================
C:\Documents and Settings\Bob\Data aplikací\cache.ini

==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe
[2004-08-17 15:49] - [2008-04-14 05:22] - 1034240 ____A (Microsoft Corporation) 27afd587c462e280ee046b8cca3c2cd1

C:\Windows\System32\winlogon.exe
[2004-08-17 15:49] - [2008-04-14 05:22] - 0507904 ____A (Microsoft Corporation) cddb1f8e1aea356f3ad106f2cf9b7fea

C:\Windows\System32\svchost.exe
[2004-08-17 15:49] - [2008-04-14 05:22] - 0014336 ____A (Microsoft Corporation) be4a520e29b6391f49e79ccc52044d93

C:\Windows\System32\services.exe
[2004-08-17 15:49] - [2009-02-09 13:25] - 0111104 ____A (Microsoft Corporation) 9ef697af07bb8dd82c3b02ca953a95b7

C:\Windows\System32\User32.dll
[2004-08-17 15:49] - [2008-04-14 05:22] - 0578560 ____A (Microsoft Corporation) e16e0990967374e76f3e40cacafd3d53

C:\Windows\System32\userinit.exe
[2004-08-17 15:49] - [2008-04-14 05:22] - 0026112 ____A (Microsoft Corporation) 7dc1830f22e7d275b438127b68030239

C:\Windows\System32\Drivers\volsnap.sys
[2004-08-17 15:44] - [2008-04-14 04:12] - 0052480 ____A (Microsoft Corporation) 28a4b296b47782173c346e376cb374d1

==================== End Of Log ============================

#15 Příspěvek od **vyosek** » 25 zář 2013 09:36

Jeste se zeptam, ten Avast mate free verzi nebo nejakou cracknutou??

VIRY.CZ

prosím o kontrolu pomalé pc

prosím o kontrolu pomalé pc

Re: prosím o kontrolu pomalé pc

Re: prosím o kontrolu pomalé pc

Re: prosím o kontrolu pomalé pc

Re: prosím o kontrolu pomalé pc

Re: prosím o kontrolu pomalé pc

Re: prosím o kontrolu pomalé pc

Re: prosím o kontrolu pomalé pc

Re: prosím o kontrolu pomalé pc

Re: prosím o kontrolu pomalé pc

Re: prosím o kontrolu pomalé pc

Re: prosím o kontrolu pomalé pc

Re: prosím o kontrolu pomalé pc

Re: prosím o kontrolu pomalé pc

Re: prosím o kontrolu pomalé pc