Prosím o kontrolu logu, mizí ikony, nečinné procesy CPU 97..

[ivo69]

Prosím o kontrolu logu, nečinné procesy využívají CPU na 96-98 při využití paměti 16Kb, mizí ikony, při načítání WIN XP někdy vyskočí chybová hlášení typu server nebyl nalezen, atp.
Děkuji!

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 04-01-2014
Ran by Ivo (administrator) on IP-31D2A6DDF451 on 04-01-2014 13:47:44
Running from C:\Documents and Settings\Ivo\Dokumenty\Downloads
Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\Toolbox2.0\Apache Tomcat 4.0\webapps\Toolbox\StatusClient\StatusClient.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\SOUNDMAN.EXE
(Creative Technology Ltd.) C:\Program Files\Creative\Creative Live! Cam\VideoFX\StartFX.exe
(Creative Technology Ltd.) C:\WINDOWS\V0220Mon.exe
(Software602) C:\Program Files\Software602\Print2PDF\PrnPack.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
() C:\Program Files\Hewlett-Packard\Toolbox2.0\Javasoft\JRE\1.3.1\bin\javaw.exe
(Apple Computer, Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
(Microsoft Corporation) C:\WINDOWS\system32\tcpsvcs.exe
(Microsoft Corporation) C:\WINDOWS\system32\snmp.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [StatusClient] - C:\Program Files\Hewlett-Packard\Toolbox2.0\Apache Tomcat 4.0\webapps\Toolbox\StatusClient\StatusClient.exe [36864 2002-12-16] (Hewlett-Packard)
HKLM\...\Run: [TomcatStartup] - C:\Program Files\Hewlett-Packard\Toolbox2.0\hpbpsttp.exe [155648 2003-03-31] (Hewlett-Packard)
HKLM\...\Run: [SoundMan] - C:\WINDOWS\SOUNDMAN.EXE [55296 2003-06-10] (Realtek Semiconductor Corp.)
HKLM\...\Run: [VTTimer] - C:\WINDOWS\system32\VTTimer.exe [36864 2003-05-07] (S3 Graphics, Inc.)
HKLM\...\Run: [AVFX Engine] - C:\Program Files\Creative\Creative Live! Cam\VideoFX\StartFX.exe [24576 2006-06-09] (Creative Technology Ltd.)
HKLM\...\Run: [V0220Mon.exe] - C:\WINDOWS\V0220Mon.exe [32768 2006-06-28] (Creative Technology Ltd.)
HKLM\...\Run: [PrintPack dispatcher] - C:\Program Files\Software602\Print2PDF\PrnPack.exe [2756608 2007-06-11] (Software602)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [286720 2007-06-29] (Apple Inc.)
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-26] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [BluetoothAuthenticationAgent] - rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
HKCU\...\Run: [Creative Live! Cam Manager] - C:\Program Files\Creative\Creative Live! Cam\Live! Cam Manager\CTLCMgr.exe [143360 2006-05-31] (Creative Technology Ltd.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.search.msn.com/{SUB_RFC1766}/ ... chasst.htm
HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKCU - DefaultScope {2E6AC206-04C3-452C-9760-EB9DB6A381D0} URL = http://www.google.cz/search?q={searchTe ... {startPage}
SearchScopes: HKCU - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} URL = http://www.crawler.com/search/dispatche ... tbid=60446
SearchScopes: HKCU - {2E6AC206-04C3-452C-9760-EB9DB6A381D0} URL = http://www.google.cz/search?q={searchTe ... {startPage}
SearchScopes: HKCU - {F8768202-07B0-4E9D-9E1E-4FC85823549F} URL = http://search.seznam.cz/searchScreen?w= ... rms}&mod=f
Toolbar: HKCU - &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
Toolbar: HKCU - &Odkazy - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKCU - No Name - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No File
DPF: {3D3B42C2-11BF-4732-A304-A01384B70D68} http://picasaweb.google.cz/s/v/56.20/uploader2.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/sh ... wflash.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 04 C:\WINDOWS\system32\pnrpnsp.dll [58880] (Microsoft Corporation)
Winsock: Catalog5 05 C:\WINDOWS\system32\pnrpnsp.dll [58880] (Microsoft Corporation)
Winsock: Catalog5 06 C:\Program Files\Bonjour\mdnsNSP.dll [94208] (Apple Computer, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

Chrome:
=======
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\pdf.dll ()
CHR Plugin: (QuickTime Plug-in 7.2) - C:\Program Files\QuickTime\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.2) - C:\Program Files\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.2) - C:\Program Files\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.2) - C:\Program Files\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.2) - C:\Program Files\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.2) - C:\Program Files\QuickTime\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.2) - C:\Program Files\QuickTime\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Plugin: (Windows Presentation Foundation) - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (Google Docs) - C:\Documents and Settings\Ivo\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Documents and Settings\Ivo\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Documents and Settings\Ivo\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Documents and Settings\Ivo\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Google Wallet) - C:\Documents and Settings\Ivo\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0
CHR Extension: (Gmail) - C:\Documents and Settings\Ivo\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0

========================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440376 2013-12-26] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-26] (Avira Operations GmbH & Co. KG)
S3 LPDSVC; C:\Windows\system32\tcpsvcs.exe [19456 2001-10-25] (Microsoft Corporation)
S3 p2pgasvc; C:\Windows\system32\p2pgasvc.dll [105472 2008-04-14] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R3 ALCXWDM; C:\Windows\System32\drivers\ALCXWDM.SYS [752764 2003-06-19] (Realtek Semiconductor Corp.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [90400 2013-12-26] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [135648 2013-12-26] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-11-26] (Avira Operations GmbH & Co. KG)
R3 btaudio; C:\Windows\System32\drivers\btaudio.sys [401664 2006-05-12] (Broadcom Corporation.)
R3 BTDriver; C:\Windows\System32\DRIVERS\btport.sys [30363 2006-05-12] (Broadcom Corporation.)
R3 BTKRNL; C:\Windows\System32\DRIVERS\btkrnl.sys [1342602 2006-05-12] (Broadcom Corporation.)
R2 BTSERIAL; C:\WINDOWS\system32\drivers\btserial.sys [23271 2006-05-12] (Broadcom Corporation.)
R2 BTSLBCSP; C:\WINDOWS\system32\drivers\btslbcsp.sys [222876 2006-05-12] (Broadcom Corporation.)
R3 BTWDNDIS; C:\Windows\System32\DRIVERS\btwdndis.sys [148168 2006-05-12] (Broadcom Corporation.)
R3 btwmodem; C:\Windows\System32\DRIVERS\btwmodem.sys [30189 2006-05-12] (Broadcom Corporation.)
R3 BTWUSB; C:\Windows\System32\Drivers\btwusb.sys [57320 2006-05-12] (Broadcom Corporation.)
S3 CCDECODE; C:\Windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R3 FETNDIS; C:\Windows\System32\DRIVERS\fetnd5.sys [27165 2001-08-17] (VIA Technologies, Inc. )
R3 gameenum; C:\Windows\System32\DRIVERS\gameenum.sys [10624 2008-04-13] (Microsoft Corporation)
S3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2012-08-27] (Avira GmbH)
R1 Tcpip6; C:\Windows\System32\DRIVERS\tcpip6.sys [226880 2010-02-11] (Microsoft Corporation)
R2 UMAXPCLS; C:\Windows\System32\DRIVERS\umaxpcls.sys [22912 2001-08-17] (Microsoft Corporation)
R3 V0220Dev; C:\Windows\System32\DRIVERS\V0220Dev.sys [146112 2006-06-29] (Creative Technology Ltd.)
R3 V0220Vfx; C:\Windows\System32\DRIVERS\V0220Vfx.sys [6272 2006-06-08] (EyePower Games Pte. Ltd.)
R3 viagfx; C:\Windows\System32\DRIVERS\vtmini.sys [258944 2003-06-07] (Copyright (C) VIA/S3 Graphics, Inc.)
S2 aswMon2; No ImagePath
S3 aswRdr; No ImagePath
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S1 InCDPass; No ImagePath
S4 IntelIde; No ImagePath
U5 ScsiPort; C:\Windows\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-04 13:45 - 2014-01-04 13:45 - 00000000 ____D C:\FRST
2014-01-01 22:06 - 2014-01-01 22:06 - 00014004 _____ C:\WINDOWS\KB2898785-IE8.log
2014-01-01 22:06 - 2014-01-01 22:06 - 00003649 _____ C:\WINDOWS\updspapi.log
2014-01-01 22:05 - 2014-01-01 22:05 - 00006744 _____ C:\WINDOWS\system32\TZLog.log
2014-01-01 22:05 - 2014-01-01 22:05 - 00005935 _____ C:\WINDOWS\KB2904266.log
2014-01-01 22:05 - 2014-01-01 22:05 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2904266$
2014-01-01 22:05 - 2014-01-01 22:05 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2898715$
2014-01-01 21:59 - 2014-01-01 21:59 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2893294$
2014-01-01 21:58 - 2014-01-01 22:10 - 00001084 _____ C:\WINDOWS\spupdsvc.log
2014-01-01 21:58 - 2014-01-01 22:06 - 00039410 _____ C:\WINDOWS\iis6.log
2014-01-01 21:58 - 2014-01-01 22:06 - 00037095 _____ C:\WINDOWS\FaxSetup.log
2014-01-01 21:58 - 2014-01-01 22:06 - 00017736 _____ C:\WINDOWS\ocgen.log
2014-01-01 21:58 - 2014-01-01 22:06 - 00016927 _____ C:\WINDOWS\tsoc.log
2014-01-01 21:58 - 2014-01-01 22:06 - 00012276 _____ C:\WINDOWS\comsetup.log
2014-01-01 21:58 - 2014-01-01 22:06 - 00011402 _____ C:\WINDOWS\msmqinst.log
2014-01-01 21:58 - 2014-01-01 22:06 - 00007446 _____ C:\WINDOWS\ntdtcsetup.log
2014-01-01 21:58 - 2014-01-01 22:06 - 00006498 _____ C:\WINDOWS\netfxocm.log
2014-01-01 21:58 - 2014-01-01 22:06 - 00002550 _____ C:\WINDOWS\MedCtrOC.log
2014-01-01 21:58 - 2014-01-01 22:06 - 00002316 _____ C:\WINDOWS\ocmsn.log
2014-01-01 21:58 - 2014-01-01 22:06 - 00001866 _____ C:\WINDOWS\tabletoc.log
2014-01-01 21:58 - 2014-01-01 22:06 - 00001854 _____ C:\WINDOWS\msgsocm.log
2014-01-01 21:58 - 2014-01-01 22:06 - 00001355 _____ C:\WINDOWS\imsins.log
2014-01-01 21:58 - 2014-01-01 22:06 - 00001355 _____ C:\WINDOWS\imsins.BAK
2014-01-01 21:58 - 2014-01-01 21:58 - 00000233 _____ C:\WINDOWS\wmsetup.log
2014-01-01 21:58 - 2014-01-01 21:58 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2893984$
2014-01-01 21:58 - 2014-01-01 21:58 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2892075$
2014-01-01 21:58 - 2014-01-01 21:58 - 00000000 _____ C:\WINDOWS\setuperr.log
2014-01-01 21:58 - 2014-01-01 21:58 - 00000000 _____ C:\WINDOWS\setupact.log
2014-01-01 21:55 - 2014-01-01 22:06 - 00012271 _____ C:\WINDOWS\KB2898715.log
2014-01-01 21:55 - 2014-01-01 21:59 - 00011157 _____ C:\WINDOWS\KB2893294.log
2014-01-01 21:55 - 2014-01-01 21:58 - 00011837 _____ C:\WINDOWS\KB2893984.log
2014-01-01 21:54 - 2014-01-01 21:58 - 00010560 _____ C:\WINDOWS\KB2892075.log
2014-01-01 21:40 - 2014-01-04 13:38 - 00000883 _____ C:\WINDOWS\setupapi.log
2014-01-01 20:40 - 2014-01-01 20:40 - 00001788 _____ C:\Documents and Settings\All Users\Plocha\Ekonomický systém POHODA 2013 START.lnk
2014-01-01 20:40 - 2014-01-01 20:40 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\STORMWARE Office
2014-01-01 20:40 - 2014-01-01 20:40 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\PDF Writer
2014-01-01 20:40 - 2013-10-04 08:42 - 00147456 _____ (STORMWARE) C:\WINDOWS\system32\bzpdfc.dll
2014-01-01 20:40 - 2013-09-01 11:59 - 01103872 _____ C:\WINDOWS\system32\CBLCtlsU.ocx
2014-01-01 20:40 - 2013-07-13 11:15 - 00805376 _____ C:\WINDOWS\system32\EditCtlsU.ocx
2014-01-01 20:40 - 2013-07-12 21:57 - 00539648 _____ C:\WINDOWS\system32\LblCtlsU.ocx
2014-01-01 20:40 - 2013-04-05 12:55 - 00476160 _____ C:\WINDOWS\system32\TabStripCtlU.ocx
2014-01-01 20:40 - 2013-03-28 22:13 - 00645632 _____ C:\WINDOWS\system32\BtnCtlsU.ocx
2014-01-01 20:40 - 2013-03-03 13:37 - 01061888 _____ C:\WINDOWS\system32\ExLvwU.ocx
2014-01-01 20:39 - 2014-01-01 20:40 - 00000000 ____D C:\Program Files\Common Files\STORMWARE Shared

==================== One Month Modified Files and Folders =======

2014-01-04 13:45 - 2014-01-04 13:45 - 00000000 ____D C:\FRST
2014-01-04 13:38 - 2014-01-01 21:40 - 00000883 _____ C:\WINDOWS\setupapi.log
2014-01-04 13:22 - 2013-08-13 14:05 - 00000934 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-04 13:20 - 2006-12-28 19:24 - 01644987 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-04 13:18 - 2013-08-13 14:05 - 00000930 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-04 13:18 - 2007-01-01 10:47 - 00000035 _____ C:\WINDOWS\ppdrv.ini
2014-01-04 13:18 - 2006-12-28 20:12 - 00000159 _____ C:\WINDOWS\wiadebug.log
2014-01-04 13:18 - 2006-12-28 20:12 - 00000048 _____ C:\WINDOWS\wiaservc.log
2014-01-04 13:18 - 2006-12-28 19:31 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-04 13:10 - 2006-12-28 19:35 - 00000272 ___SH C:\Documents and Settings\Ivo\ntuser.ini
2014-01-04 13:10 - 2006-12-28 19:35 - 00000000 ____D C:\Documents and Settings\Ivo
2014-01-04 13:10 - 2006-12-28 19:31 - 00032494 _____ C:\WINDOWS\SchedLgU.Txt
2014-01-03 14:07 - 2001-10-25 15:00 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl
2014-01-01 22:10 - 2014-01-01 21:58 - 00001084 _____ C:\WINDOWS\spupdsvc.log
2014-01-01 22:08 - 2006-12-28 20:08 - 00251880 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2014-01-01 22:06 - 2014-01-01 22:06 - 00014004 _____ C:\WINDOWS\KB2898785-IE8.log
2014-01-01 22:06 - 2014-01-01 22:06 - 00003649 _____ C:\WINDOWS\updspapi.log
2014-01-01 22:06 - 2014-01-01 21:58 - 00039410 _____ C:\WINDOWS\iis6.log
2014-01-01 22:06 - 2014-01-01 21:58 - 00037095 _____ C:\WINDOWS\FaxSetup.log
2014-01-01 22:06 - 2014-01-01 21:58 - 00017736 _____ C:\WINDOWS\ocgen.log
2014-01-01 22:06 - 2014-01-01 21:58 - 00016927 _____ C:\WINDOWS\tsoc.log
2014-01-01 22:06 - 2014-01-01 21:58 - 00012276 _____ C:\WINDOWS\comsetup.log
2014-01-01 22:06 - 2014-01-01 21:58 - 00011402 _____ C:\WINDOWS\msmqinst.log
2014-01-01 22:06 - 2014-01-01 21:58 - 00007446 _____ C:\WINDOWS\ntdtcsetup.log
2014-01-01 22:06 - 2014-01-01 21:58 - 00006498 _____ C:\WINDOWS\netfxocm.log
2014-01-01 22:06 - 2014-01-01 21:58 - 00002550 _____ C:\WINDOWS\MedCtrOC.log
2014-01-01 22:06 - 2014-01-01 21:58 - 00002316 _____ C:\WINDOWS\ocmsn.log
2014-01-01 22:06 - 2014-01-01 21:58 - 00001866 _____ C:\WINDOWS\tabletoc.log
2014-01-01 22:06 - 2014-01-01 21:58 - 00001854 _____ C:\WINDOWS\msgsocm.log
2014-01-01 22:06 - 2014-01-01 21:58 - 00001355 _____ C:\WINDOWS\imsins.log
2014-01-01 22:06 - 2014-01-01 21:58 - 00001355 _____ C:\WINDOWS\imsins.BAK
2014-01-01 22:06 - 2014-01-01 21:55 - 00012271 _____ C:\WINDOWS\KB2898715.log
2014-01-01 22:06 - 2011-12-08 20:37 - 00000000 ____D C:\WINDOWS\ie8updates
2014-01-01 22:05 - 2014-01-01 22:05 - 00006744 _____ C:\WINDOWS\system32\TZLog.log
2014-01-01 22:05 - 2014-01-01 22:05 - 00005935 _____ C:\WINDOWS\KB2904266.log
2014-01-01 22:05 - 2014-01-01 22:05 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2904266$
2014-01-01 22:05 - 2014-01-01 22:05 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2898715$
2014-01-01 22:05 - 2013-08-29 19:21 - 00000000 ____D C:\WINDOWS\system32\MRT
2014-01-01 21:59 - 2014-01-01 21:59 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2893294$
2014-01-01 21:59 - 2014-01-01 21:55 - 00011157 _____ C:\WINDOWS\KB2893294.log
2014-01-01 21:59 - 2007-10-14 10:25 - 88123800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-01-01 21:58 - 2014-01-01 21:58 - 00000233 _____ C:\WINDOWS\wmsetup.log
2014-01-01 21:58 - 2014-01-01 21:58 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2893984$
2014-01-01 21:58 - 2014-01-01 21:58 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2892075$
2014-01-01 21:58 - 2014-01-01 21:58 - 00000000 _____ C:\WINDOWS\setuperr.log
2014-01-01 21:58 - 2014-01-01 21:58 - 00000000 _____ C:\WINDOWS\setupact.log
2014-01-01 21:58 - 2014-01-01 21:55 - 00011837 _____ C:\WINDOWS\KB2893984.log
2014-01-01 21:58 - 2014-01-01 21:54 - 00010560 _____ C:\WINDOWS\KB2892075.log
2014-01-01 21:50 - 2006-12-28 19:35 - 00000000 ____D C:\Documents and Settings\Ivo\Plocha
2014-01-01 21:49 - 2013-08-28 13:47 - 00000000 ____D C:\Program Files\123 Flash Banner
2014-01-01 21:49 - 2006-12-28 19:35 - 00000000 ___RD C:\Documents and Settings\Ivo\Nabídka Start\Programy
2014-01-01 21:42 - 2007-01-05 14:02 - 00000030 _____ C:\WINDOWS\TextSpy.ini
2014-01-01 21:12 - 2011-07-30 16:34 - 00000682 _____ C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
2014-01-01 21:12 - 2007-10-23 12:10 - 00000000 ____D C:\Program Files\CCleaner
2014-01-01 20:43 - 2013-08-20 16:40 - 00000000 ____D C:\Program Files\Mozilla Thunderbird
2014-01-01 20:40 - 2014-01-01 20:40 - 00001788 _____ C:\Documents and Settings\All Users\Plocha\Ekonomický systém POHODA 2013 START.lnk
2014-01-01 20:40 - 2014-01-01 20:40 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\STORMWARE Office
2014-01-01 20:40 - 2014-01-01 20:40 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\PDF Writer
2014-01-01 20:40 - 2014-01-01 20:39 - 00000000 ____D C:\Program Files\Common Files\STORMWARE Shared
2014-01-01 20:40 - 2013-01-15 13:29 - 00000000 ____D C:\Program Files\STORMWARE
2014-01-01 20:40 - 2006-12-28 20:09 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2014-01-01 20:40 - 2006-12-28 20:09 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy
2014-01-01 20:40 - 2006-12-28 20:08 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2014-01-01 14:26 - 2007-02-09 11:05 - 00030208 _____ C:\Documents and Settings\Ivo\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-12-26 22:27 - 2012-10-13 08:24 - 00000000 ____D C:\rybolov24.cz
2013-12-26 20:23 - 2012-10-13 14:03 - 00135648 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2013-12-26 20:23 - 2012-10-13 14:03 - 00090400 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2013-12-06 13:33 - 2013-08-13 14:07 - 00001813 _____ C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk

Some content of TEMP:
====================
C:\Documents and Settings\Ivo\Local Settings\temp\avgnt.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe
[2004-08-17 14:49] - [2008-04-14 04:22] - 1034240 ____A (Microsoft Corporation) 27afd587c462e280ee046b8cca3c2cd1

C:\Windows\System32\winlogon.exe
[2004-08-17 14:49] - [2008-04-14 04:22] - 0507904 ____A (Microsoft Corporation) cddb1f8e1aea356f3ad106f2cf9b7fea

C:\Windows\System32\svchost.exe
[2004-08-17 14:49] - [2008-04-14 04:22] - 0014336 ____A (Microsoft Corporation) be4a520e29b6391f49e79ccc52044d93

C:\Windows\System32\services.exe
[2004-08-17 14:49] - [2009-02-09 12:25] - 0111104 ____A (Microsoft Corporation) 9ef697af07bb8dd82c3b02ca953a95b7

C:\Windows\System32\User32.dll
[2004-08-17 14:49] - [2008-04-14 04:22] - 0578560 ____A (Microsoft Corporation) e16e0990967374e76f3e40cacafd3d53

C:\Windows\System32\userinit.exe
[2004-08-17 14:49] - [2008-04-14 04:22] - 0026112 ____A (Microsoft Corporation) 7dc1830f22e7d275b438127b68030239

C:\Windows\System32\rpcss.dll
[2004-08-17 14:49] - [2009-02-09 11:56] - 0401408 ____A (Microsoft Corporation) be27674d1cbc3214aec84b4336a38bbf

C:\Windows\System32\Drivers\volsnap.sys
[2004-08-17 14:44] - [2008-04-14 03:12] - 0052480 ____A (Microsoft Corporation) 28a4b296b47782173c346e376cb374d1


==================== End Of Log ============================

[Rudy]

Zdravím!

Otevřte poznámkový blok a zkopírujte do něj:

Start
SearchScopes: HKCU - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} URL = http://www.crawler.com/search/dispatche ... tp=bs&qkw={searchTerms}&tbid=60446
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKCU - No Name - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No File
C:\Documents and Settings\Ivo\Local Settings\temp
AlternateDataStreams: C:\Documents and Settings\Ivo\Plocha\SENSAS 2009_CZ-2.pdf:SummaryInformation
AlternateDataStreams: C:\Documents and Settings\Ivo\Plocha\SENSAS 2009_CZ-2.pdf:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
End

Uložte do C:\Documents and Settings\Ivo\Dokumenty\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[ivo69]

Zdravím a děkuji za odpověď.
Posílám log po provedení akce:

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 04-01-2014
Ran by Ivo at 2014-01-04 23:28:04 Run:1
Running from C:\Documents and Settings\Ivo\Dokumenty\Downloads
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
SearchScopes: HKCU - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} URL = http://www.crawler.com/search/dispatche ... tp=bs&qkw={searchTerms}&tbid=60446
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKCU - No Name - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No File
C:\Documents and Settings\Ivo\Local Settings\temp
AlternateDataStreams: C:\Documents and Settings\Ivo\Plocha\SENSAS 2009_CZ-2.pdf:SummaryInformation
AlternateDataStreams: C:\Documents and Settings\Ivo\Plocha\SENSAS 2009_CZ-2.pdf:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
End



*****************

HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => Value deleted successfully.
HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4B3803EA-5230-4DC3-A7FC-33638F3D3542} => Value deleted successfully.
HKCR\CLSID\{4B3803EA-5230-4DC3-A7FC-33638F3D3542} => Key not found.
C:\Documents and Settings\Ivo\Local Settings\temp => Moved successfully.
C:\Documents and Settings\Ivo\Plocha\SENSAS 2009_CZ-2.pdf => ":SummaryInformation" ADS removed successfully.
C:\Documents and Settings\Ivo\Plocha\SENSAS 2009_CZ-2.pdf => ":{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}" ADS removed successfully.

==== End of Fixlog ====

[ivo69]

server.zaneprazdnen.gif (57.3 KiB) Zobrazeno 859 x

Pro úplnost ještě dodávám chybové hlášení, které se mi většinou po spuštění objeví na obrazovce a několikrát jej musím přepnout, než přestane nabíhat. Toto se děje i nyní po provedení fixlistu...

[Rudy]

OK. Dejte log ComboFix:

Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se

jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine

aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,

pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k

nezadoucim kolizim s rezidentem antispyware.

[ivo69]

Zdravím a posílám log. Děkuji!

ComboFix 14-01-04.03 - Ivo 05.01.2014 12:31:09.6.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.991.350 [GMT 1:00]
Spuštěný z: c:\documents and settings\Ivo\Dokumenty\Downloads\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Ivo\WINDOWS
c:\windows\system32\TZLog.log
c:\windows\unin0405.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-12-05 do 2014-01-05 )))))))))))))))))))))))))))))))
.
.
2014-01-04 23:55 . 2014-01-04 23:55 -------- d-----w- c:\windows\Cookies
2014-01-04 23:55 . 2014-01-04 23:55 -------- d-----w- c:\windows\PHOTOCD
2014-01-04 23:55 . 1998-05-06 17:19 58368 ----a-w- c:\windows\pfpick.dll
2014-01-04 23:55 . 1998-05-06 17:19 20992 ----a-w- c:\windows\icccodes.dll
2014-01-04 12:45 . 2014-01-04 12:45 -------- d-----w- C:\FRST
2014-01-01 19:40 . 2014-01-01 19:40 -------- d-----w- c:\documents and settings\All Users\Data aplikací\PDF Writer
2014-01-01 19:40 . 2013-10-04 07:42 147456 ----a-w- c:\windows\system32\bzpdfc.dll
2014-01-01 19:40 . 2013-09-01 10:59 1103872 ----a-w- c:\windows\system32\CBLCtlsU.ocx
2014-01-01 19:40 . 2013-07-13 10:15 805376 ----a-w- c:\windows\system32\EditCtlsU.ocx
2014-01-01 19:40 . 2013-07-12 20:57 539648 ----a-w- c:\windows\system32\LblCtlsU.ocx
2014-01-01 19:40 . 2013-04-05 11:55 476160 ----a-w- c:\windows\system32\TabStripCtlU.ocx
2014-01-01 19:40 . 2013-03-28 21:13 645632 ----a-w- c:\windows\system32\BtnCtlsU.ocx
2014-01-01 19:40 . 2013-03-03 12:37 1061888 ----a-w- c:\windows\system32\ExLvwU.ocx
2014-01-01 19:39 . 2014-01-01 19:40 -------- d-----w- c:\program files\Common Files\STORMWARE Shared
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-12-26 19:23 . 2012-10-13 13:03 90400 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2013-12-26 19:23 . 2012-10-13 13:03 135648 ----a-w- c:\windows\system32\drivers\avipbb.sys
2013-11-26 07:02 . 2012-10-13 13:03 37352 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2013-11-13 03:00 . 2004-08-17 13:49 150528 ----a-w- c:\windows\system32\imagehlp.dll
2013-11-07 05:38 . 2004-08-17 13:49 591360 ----a-w- c:\windows\system32\rpcrt4.dll
2013-11-06 01:36 . 2008-05-05 06:25 7168 ----a-w- c:\windows\system32\xpsp4res.dll
2013-10-30 02:51 . 2004-08-17 13:44 1879040 ----a-w- c:\windows\system32\win32k.sys
2013-10-29 07:45 . 2004-08-17 13:49 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
2013-10-29 07:45 . 2004-08-17 13:49 920064 ----a-w- c:\windows\system32\wininet.dll
2013-10-29 07:45 . 2004-08-17 13:49 43520 ----a-w- c:\windows\system32\licmgr10.dll
2013-10-29 07:45 . 2004-08-17 13:49 18944 ----a-w- c:\windows\system32\corpol.dll
2013-10-29 00:45 . 2004-08-17 13:44 385024 ----a-w- c:\windows\system32\html.iec
2013-10-23 23:45 . 2004-08-17 13:49 172032 ----a-w- c:\windows\system32\scrrun.dll
2013-10-12 15:57 . 2004-08-17 13:49 279552 ----a-w- c:\windows\system32\oakley.dll
2013-10-09 13:13 . 2004-08-17 13:49 287744 ----a-w- c:\windows\system32\gdi32.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Creative Live! Cam Manager"="c:\program files\Creative\Creative Live! Cam\Live! Cam Manager\CTLCMgr.exe" [2006-05-31 143360]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StatusClient"="c:\program files\Hewlett-Packard\Toolbox2.0\Apache Tomcat 4.0\webapps\Toolbox\StatusClient\StatusClient.exe" [2002-12-16 36864]
"TomcatStartup"="c:\program files\Hewlett-Packard\Toolbox2.0\hpbpsttp.exe" [2003-03-31 155648]
"SoundMan"="SOUNDMAN.EXE" [2003-06-10 55296]
"VTTimer"="VTTimer.exe" [2003-05-07 36864]
"AVFX Engine"="c:\program files\Creative\Creative Live! Cam\VideoFX\StartFX.exe" [2006-06-08 24576]
"V0220Mon.exe"="c:\windows\V0220Mon.exe" [2006-06-28 32768]
"PrintPack dispatcher"="c:\program files\Software602\Print2PDF\PrnPack.exe" [2007-06-11 2756608]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2007-06-29 286720]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2013-12-26 684600]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
Adobe Gamma Loader.exe.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2014-1-5 108544]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Bluetooth.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\Bluetooth.lnk
backup=c:\windows\pss\Bluetooth.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^Ivo^Nabídka Start^Programy^Po spuštění^Jabbim.lnk]
path=c:\documents and settings\Ivo\Nabídka Start\Programy\Po spuštění\Jabbim.lnk
backup=c:\windows\pss\Jabbim.lnkStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
2008-04-14 03:22 1695232 ------w- c:\program files\Messenger\msmsgs.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
2009-06-25 13:12 1414144 ----a-w- c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Hewlett-Packard\\Toolbox2.0\\Javasoft\\JRE\\1.3.1\\bin\\javaw.exe"=
"c:\\WINDOWS\\system32\\usmt\\migwiz.exe"=
"c:\\totalcmd\\TOTALCMD.EXE"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Download\\StrongDC++\\sdc230\\StrongDC.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3587:TCP"= 3587:TCP:Skupiny sítě Peer-to-Peer
"3540:UDP"= 3540:UDP:Protokol PNRP (Peer Name Resolution Protocol)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
"AllowInboundEchoRequest"= 1 (0x1)
.
R1 avkmgr;avkmgr;c:\windows\system32\drivers\avkmgr.sys [13.10.2012 14:03 37352]
R2 AntiVirSchedulerService;Avira Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [13.10.2012 14:03 440376]
R3 V0220Dev;Live! Cam Video IM;c:\windows\system32\drivers\V0220Dev.sys [30.3.2007 19:30 146112]
R3 V0220Vfx;V0220VFX;c:\windows\system32\drivers\V0220Vfx.sys [30.3.2007 19:30 6272]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
p2psvc REG_MULTI_SZ p2psvc p2pimsvc p2pgasvc PNRPSvc
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-12-06 12:14 1210320 ----a-w- c:\program files\Google\Chrome\Application\31.0.1650.63\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-01-05 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-08-13 13:04]
.
2014-01-05 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-08-13 13:04]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://seznam.cz/
uInternet Settings,ProxyOverride = <local>;*.local
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Send To &Bluetooth - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
TCP: DhcpNameServer = 192.168.1.1
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-Adobe Photoshop 5.0 CZ - c:\windows\UNIN0405.EXE
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2014-01-05 12:41
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
Celkový čas: 2014-01-05 12:44:54
ComboFix-quarantined-files.txt 2014-01-05 11:44
ComboFix2.txt 2013-09-02 22:08
ComboFix3.txt 2013-09-01 23:21
.
Před spuštěním: Volných bajtů: 63 126 728 704
Po spuštění: Volných bajtů: 63 385 997 312
.
- - End Of File - - 989383744ABE433560D34996BE57F24D
413FC2A0C716421B3158746D63736515

[Rudy]

Několik položek CF smazal, zbytek logu vypadý čistý. Nastala nějaká změna?

[ivo69]

Při restartu chybová hláška nevyskočila, tak uvidíme. Dám vědět, zatím díky.

[Rudy]

Zatím není zač!