Pomooooc, vir INTERPOL.. nejde niiic

Zpráva

Duge77 · #1 Příspěvek od **Duge77** » 28 kvě 2014 18:46

Dobrý den,
objevil se mi na obrazovce virus interpol a uzamcel pocitac, problem je v tom, ze ho nemuzu spustit ani v nouzovem rezimu, zacne se vypinat, nedostanu se vubec do pc, je moznost jak se toho zbavit..? vlozil bych log, ale nic nejde..prosíím pomoc

#2 Příspěvek od **vyosek** » 28 kvě 2014 18:47

Zdravim

Zkuste tento postup http://forum.viry.cz/viewtopic.php?f=29&t=132523

Duge77 · #3 Příspěvek od **Duge77** » 28 kvě 2014 19:11

Ježíííš díky, normálně to už jede ok... Díky moooc, mám ještě něco udělat..?

#4 Příspěvek od **vyosek** » 28 kvě 2014 19:14

No super

Tak ted se mrknem co tam mame dale, dejte prosim log z RSIT http://forum.viry.cz/viewtopic.php?f=13&t=130786

Duge77 · #5 Příspěvek od **Duge77** » 28 kvě 2014 19:19

Logfile of random's system information tool 1.10 (written by random/random)
Run by Uživatel at 2014-05-28 20:17:54
Systém Microsoft Windows XP Professional Service Pack 2
System drive C: has 75 GB (32%) free of 238 GB
Total RAM: 894 MB (43% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:18:02, on 28.5.2014
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
C:\Program Files\CyberLink\Shared files\RichVideo.exe
C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\Opera\opera.exe
C:\Documents and Settings\Uživatel\Plocha\RSIT.exe
C:\Program Files\trend micro\Uživatel.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://toolbar.inbox.com/search/dispatc ... &%language
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll
R3 - URLSearchHook: (no name) - {D3D233D5-9F6D-436C-B6C7-E63F77503B30} - (no file)
O2 - BHO: (no name) - {11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5} - C:\PROGRA~1\SITERA~1\SiteRank.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: AppGraffiti - {6F6A5334-78E9-4D9B-8182-8B41EA8C39EF} - C:\PROGRA~1\APPGRA~1\APPGRA~1.DLL
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: (no name) - {CCB69577-088B-4004-9ED8-FF5BCC83A039} - C:\PROGRA~1\REBATE~1\RebateI.dll
O4 - HKLM\..\Run: [BCU] "C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe"
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Facebook Update] "C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: rebinfo - {AF808758-C780-404C-A4EE-4526323FD9B6} - C:\PROGRA~1\REBATE~1\RebateI.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: FencesShellExt - {1984DD45-52CF-49cd-AB77-18F378FEA264} - C:\Program Files\Stardock\Fences\FencesMenu.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AppleChargerSrv - Unknown owner - C:\WINDOWS\system32\AppleChargerSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Browser Configuration Utility Service (BCUService) - DeviceVM, Inc. - C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 8078 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\At1.job - C:\Program Files\HP\HP Deskjet 2510 series\Bin\HPCustPartic.exe /UA 11.0 /DDV 0x0a05"
C:\WINDOWS\tasks\At2.job - C:\Program Files\HP\HP Deskjet 2510 series\Bin\HPCustPartic.exe /UA 11.0 /DDV 0x0a05"
C:\WINDOWS\tasks\At3.job - C:\Program Files\HP\HP Deskjet 2510 series\Bin\HPCustPartic.exe /UA 11.0 /DDV 0x0a05"
C:\WINDOWS\tasks\At4.job - C:\Program Files\HP\HP Deskjet 2510 series\Bin\HPCustPartic.exe /UA 11.0 /DDV 0x0a05"
C:\WINDOWS\tasks\avast! Emergency Update.job - C:\Program Files\Alwil Software\Avast5\AvastEmUpdate.exe
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1078081533-515967899-839522115-1003Core.job - C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1078081533-515967899-839522115-1003UA.job - C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\User_Feed_Synchronization-{4CBC6D9E-9EC3-422A-AAB4-9E6B1B69A8AA}.job - C:\WINDOWS\system32\msfeedssync.exe sync

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5}]
C:\PROGRA~1\SITERA~1\SiteRank.dll [2012-02-20 342232]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-03-26 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}]
AppGraffiti - C:\PROGRA~1\APPGRA~1\APPGRA~1.DLL [2013-12-03 1038504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2014-05-02 436600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-10-09 4502400]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CCB69577-088B-4004-9ED8-FF5BCC83A039}]
C:\PROGRA~1\REBATE~1\RebateI.dll [2013-06-03 831624]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"BCU"=C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe [2009-10-15 375000]
"nwiz"=nwiz.exe /installquiet []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2010-03-16 110696]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2010-03-16 13670504]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2010-04-30 19523616]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
""= []
"AvastUI.exe"=C:\Program Files\Alwil Software\Avast5\AvastUI.exe [2014-05-26 3888648]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-17 15360]
"Facebook Update"=C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Facebook\Update\FacebookUpdate.exe [2013-10-22 138096]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2013-06-21 19875432]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\24x7HELP]
C:\Program Files\24x7Help\App24x7Help.exe /STARTUP []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2012-03-27 37296]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BMISR]
C:\Program Files\KYE\iSlim 1320\BM.exe [2009-09-28 217088]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2011-10-28 49208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LanguageShortcut]
C:\Program Files\CyberLink\PowerDVD\Language\Language.exe [2006-04-13 49152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCPowerSpeed]
C:\Program Files\PCPowerSpeed\PCPowerTray.exe [2011-09-26 385664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2005-12-07 30208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SiteRanker]
C:\Program Files\SiteRanker\SiteRankTray.exe [2011-09-12 320000]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files\Skype\Phone\Skype.exe [2013-06-21 19875432]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Uživatel^Nabídka Start^Programy^Po spuštění^KvetinkaProzeny.lnk]
C:\PROGRA~1\KVETIN~1\KVETIN~1\KVETIN~1.EXE []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Uživatel^Nabídka Start^Programy^Po spuštění^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
C:\PROGRA~1\MICROS~2\Office12\ONENOTEM.EXE [2009-02-26 97680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler]
FencesShellExt - {1984DD45-52CF-49cd-AB77-18F378FEA264} - C:\Program Files\Stardock\Fences\FencesMenu.dll [2010-06-22 202088]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37Crusader]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37CrusaderBoot]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37Crusader]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37CrusaderBoot]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Opera\pluginwrapper\opera_plugin_wrapper.exe"="C:\Program Files\Opera\pluginwrapper\opera_plugin_wrapper.exe:*:Enabled:Opera Internet Browser - Plugin wrapper"
"C:\Program Files\HP\HP Deskjet 2510 series\Bin\USBSetup.exe"="C:\Program Files\HP\HP Deskjet 2510 series\Bin\USBSetup.exe:LocalSubNet:Enabled:Instalace zařízení HP (HP Deskjet 2510 series)"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Facebook\Video\Skype\FacebookVideoCalling.exe"="C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Facebook\Video\Skype\FacebookVideoCalling.exe:*:Enabled:Facebook Video Calling Plugin"
"C:\Documents and Settings\Uživatel\Data aplikací\Dropbox\bin\Dropbox.exe"="C:\Documents and Settings\Uživatel\Data aplikací\Dropbox\bin\Dropbox.exe:*:Enabled:Dropbox"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=yv12vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
"MSVideo8"=VfWWDM32.dll
"VIDC.DVSD"=pdvcodec.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv

======List of files/folders created in the last 1 month======

2014-05-28 20:17:54 ----D---- C:\rsit
2014-05-28 20:17:54 ----D---- C:\Program Files\trend micro
2014-05-28 20:09:07 ----A---- C:\WINDOWS\system32\drivers\hitmanpro37.sys
2014-05-28 20:00:08 ----D---- C:\Documents and Settings\All Users\Data aplikací\HitmanPro
2014-05-28 19:35:13 ----SHD---- C:\WINDOWS\CSC
2014-05-28 19:35:04 ----A---- C:\WINDOWS\ntbtlog.txt
2014-05-28 12:30:06 ----D---- C:\Documents and Settings\All Users\Data aplikací\2992199F9A
2014-05-02 10:36:13 ----D---- C:\Documents and Settings\Uživatel\Data aplikací\DropboxMaster
2014-05-02 10:35:57 ----D---- C:\Program Files\Dropbox
2014-05-02 10:34:34 ----D---- C:\Documents and Settings\Uživatel\Data aplikací\Dropbox
2014-05-02 09:08:20 ----A---- C:\WINDOWS\system32\drivers\aswHwid.sys
2014-05-02 09:08:15 ----A---- C:\WINDOWS\avastSS.scr

======List of files/folders modified in the last 1 month======

2014-05-28 20:17:54 ----RD---- C:\Program Files
2014-05-28 20:15:25 ----D---- C:\Documents and Settings\Uživatel\Data aplikací\Skype
2014-05-28 20:10:03 ----D---- C:\WINDOWS\system32
2014-05-28 20:10:02 ----D---- C:\WINDOWS\Temp
2014-05-28 20:09:07 ----D---- C:\WINDOWS\system32\drivers
2014-05-28 20:08:26 ----D---- C:\WINDOWS\system32\CatRoot2
2014-05-28 20:08:26 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-05-28 20:00:12 ----D---- C:\WINDOWS\Prefetch
2014-05-28 19:37:06 ----D---- C:\Documents and Settings
2014-05-28 19:35:13 ----D---- C:\WINDOWS
2014-05-21 20:19:30 ----D---- C:\Program Files\Opera
2014-05-14 18:41:51 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-05-09 22:08:03 ----SHD---- C:\WINDOWS\Installer
2014-05-04 09:31:50 ----SH---- C:\boot.ini
2014-05-04 09:31:50 ----D---- C:\WINDOWS\pss
2014-05-04 09:31:50 ----A---- C:\WINDOWS\win.ini
2014-05-04 09:31:50 ----A---- C:\WINDOWS\system.ini
2014-05-04 09:23:17 ----D---- C:\Documents and Settings\Uživatel\Data aplikací\uTorrent
2014-05-04 09:15:25 ----D---- C:\Program Files\CCleaner
2014-05-02 09:08:24 ----SD---- C:\WINDOWS\Tasks
2014-05-02 09:08:15 ----A---- C:\WINDOWS\system32\aswBoot.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-05-02 49944]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-05-02 180632]
R0 nvgts;nvgts; C:\WINDOWS\system32\DRIVERS\nvgts.sys [2010-04-08 168040]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 AmdPPM;Ovladač procesoru HwPState AMD; C:\WINDOWS\system32\DRIVERS\AmdPPM.sys [2007-04-16 33792]
R1 AppleCharger;AppleCharger; C:\WINDOWS\system32\DRIVERS\AppleCharger.sys [2010-04-27 19496]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2014-05-15 54832]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-05-15 777488]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-05-15 411680]
R1 aswTdi;aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [2014-05-02 57672]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-05-02 24184]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-05-02 67824]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2003-04-16 9600]
R3 hitmanpro37;HitmanPro 3.7 Support Driver; \??\C:\WINDOWS\system32\drivers\hitmanpro37.sys []
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2010-04-30 6032928]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2003-04-16 12160]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2010-03-15 10232352]
R3 NVENETFD;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2010-03-04 70912]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2010-03-04 13824]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-04 26496]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-17 14848]
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2009-11-18 1691480]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-04 17024]
S3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2009-11-18 1395800]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-04 85376]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-04 10880]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-04 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-04 15360]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2004-08-04 59264]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-04 31616]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-04 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2004-08-04 78464]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-04 19328]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2014-05-02 50344]
R2 BCUService;Browser Configuration Utility Service; C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe [2009-10-15 223464]
R2 ezGOSvc;Easybits GO Services for Windows; C:\WINDOWS\system32\svchost.exe [2004-08-17 14336]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-07-20 935208]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2010-03-16 154216]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo.exe [2005-08-08 167936]
R2 Skype C2C Service;Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-10-09 3275136]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-17 14336]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-07-03 136176]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-06-21 162408]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-14 257712]
S3 AppleChargerSrv;AppleChargerSrv; C:\WINDOWS\system32\AppleChargerSrv.exe [2010-04-06 31272]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-07-03 136176]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

#6 Příspěvek od **vyosek** » 28 kvě 2014 19:24

Nedivim se, ze tam chytnete kde co

Co chcete delat s timto. SP2 byl vydan v roce 2004, mame pulku 2014, co chcete delat na 10 let neaktualizovanem systemu

Jaky je problem s SP3 - chybove hlasky, nutnost overeni legality systemu?

Systém Microsoft Windows XP Professional Service Pack 2

Duge77 · #7 Příspěvek od **Duge77** » 28 kvě 2014 19:28

No jasně, k tomu jsem se ještě nedostal, není to můj PC mám ho v ruce teprve hodinu a to jsem s Váma řešil ho vůbec zapnout... jdu to řešit s majitelem.. děkuji.. jste opravdoví borci, klobouk dolů před Vámi

#8 Příspěvek od **vyosek** » 28 kvě 2014 19:30

Tak fajn, docistime a aktualizace nechte na zaver

Jen doufam, ze tu nekomu nepodporuji servis

Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe

Ulozte nejlepe na plochu
Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
Probehne vytvoreni zalohy a nasledne prohledavani
Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

Ulozte nejlepe na plochu
Ukoncete vsechny programy
Kliknete na Scan a nasledne Clean
Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

Duge77 · #9 Příspěvek od **Duge77** » 28 kvě 2014 19:41

Je to kamaradův PC, servis opravdu nemám, a opravdu Vaší práce a trpělivosti si moc vážím... tady je log:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Microsoft Windows XP x86
Ran by U§ivatel on st 28.05.2014 at 20:35:16,85
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Search Bar

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{183643C8-EE67-4574-9A38-927852E34163}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{54ECA872-DB2A-4C6B-BBB2-F3777C6786CC}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{8736C681-37A0-40C6-A0F0-4C083409151C}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{01C78433-6FDF-4E5A-A82D-B535C32E03DF}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{41349826-5C7F-4BF0-8279-5DAF1DE6E9AE}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{604EA016-1EDE-41E6-A23E-76CF8F2A4808}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{B3BA5582-79A9-464D-A7FA-711C5888C6E9}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{E9BBD270-4B87-4EE2-912F-6635674986C0}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{506F578A-91E1-46CE-830F-E2F4268E9966}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\appgraffiti
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\ctoolbar
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8736C681-37A0-40C6-A0F0-4C083409151C}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\appgraffiti
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\ctoolbar
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\appgraffiti.appgraffitijs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\cshared.tb4client
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\cshared.tb4script
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\cshared.tb4server
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\cshared.tb4server2
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\protocols\handler\rebinfo
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\rebatei.rebate informer bho
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\rebatei.rebateinformimagegen
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\rebateinf.rebateinfobj
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{11bf46c6-b3de-48bd-bf70-3ad85cab80b5}_is1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{6f6a5334-78e9-4d9b-8182-8b41ea8c39ef}_is1
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{C04B7D22-5AEC-4561-8F49-27F6269208F6}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CCB69577-088B-4004-9ED8-FF5BCC83A039}

~~~ Files

~~~ Folders

Successfully deleted: [Folder] "C:\Documents and Settings\U§ivatel\Data aplikacˇ\appgraffiti"
Successfully deleted: [Folder] "C:\Documents and Settings\U§ivatel\Data aplikacˇ\pcpowerspeed"
Successfully deleted: [Folder] "C:\Documents and Settings\U§ivatel\Data aplikacˇ\rebateinformer"
Successfully deleted: [Folder] "C:\Documents and Settings\U§ivatel\Data aplikacˇ\siteranker"
Successfully deleted: [Folder] "C:\Program Files\appgraffiti"
Successfully deleted: [Folder] "C:\Program Files\crawler"
Successfully deleted: [Folder] "C:\Program Files\pcpowerspeed"
Successfully deleted: [Folder] "C:\Program Files\rebateinformer"
Successfully deleted: [Folder] "C:\Program Files\siteranker"

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on st 28.05.2014 at 20:39:52,64
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Duge77 · #10 Příspěvek od **Duge77** » 28 kvě 2014 19:45

# AdwCleaner v3.211 - Report created 28/05/2014 at 20:43:09
# Updated 26/05/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 2 (32 bits)
# Username : Uživatel - U-664A3AC1C1034
# Running from : C:\Documents and Settings\Uživatel\Plocha\adwcleaner_3.211.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : BCUService

***** [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\All Users\Nabídka Start\Programy\AppGraffiti
Folder Deleted : C:\Documents and Settings\All Users\Nabídka Start\Programy\RebateInformer
Folder Deleted : C:\Documents and Settings\All Users\Nabídka Start\Programy\SiteRanker
Folder Deleted : C:\Program Files\DeviceVM
Folder Deleted : C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\PackageAware

***** [ Shortcuts ] *****

***** [ Registry ] *****

Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [siteranker@siteranker.com]
Key Deleted : HKLM\SOFTWARE\Classes\AddressBarSearch.SearchHook
Key Deleted : HKLM\SOFTWARE\Classes\AddressBarSearch.SearchHook.1
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [BCU]
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4EF645BD-65B0-4F98-AD56-D0437B7045F6}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AF808758-C780-404C-A4EE-4526323FD9B6}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DB35C569-5624-4CFC-8043-E5139F55A073}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{022C9F90-2E96-47D6-A971-107650154563}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{438B047C-C041-4D15-98CF-A97C6B366C28}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{77AA6435-2488-4A94-9FE5-49519DD2ED9B}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DB02BC6B-B0F0-4074-99E6-884B70FCB6AE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{4B3803EA-5230-4DC3-A7FC-33638F3D3542}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D7E97865-918F-41E4-9CD0-25AB1C574CE8}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{D3D233D5-9F6D-436C-B6C7-E63F77503B30}]
Key Deleted : HKCU\Software\DeviceVM
Key Deleted : HKCU\Software\SiteRanker
Key Deleted : HKLM\Software\DeviceVM
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5}_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{4EF645BD-65B0-4F98-AD56-D0437B7045F6}_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{612AD33D-9824-4E87-8396-92374E91C4BB}_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}_is1

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702

-\\ Google Chrome v35.0.1916.114

[ File : C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [4532 octets] - [28/05/2014 20:42:36]
AdwCleaner[S0].txt - [4539 octets] - [28/05/2014 20:43:09]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [4599 octets] ##########

#11 Příspěvek od **vyosek** » 28 kvě 2014 19:50

Jdeme dale

Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize

Kód: Vybrat vše

autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts;

Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

Duge77 · #12 Příspěvek od **Duge77** » 28 kvě 2014 20:07

Zoek.exe v5.0.0.0 Updated 22-05-2014
Tool run by U§ivatel on st 28.05.2014 at 20:55:32,17.
Systém Microsoft Windows XP Professional 5.1.2600 Service Pack 2 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Documents and Settings\UIVATE~1\Plocha\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

28.5.2014 20:57:18 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1078081533-515967899-839522115-1003\Software\Microsoft\Internet Explorer\SearchScopes\{B7FBDEF9-6F1A-41b5-95FE-DF26C6120E3D} deleted successfully
HKEY_USERS\S-1-5-21-1078081533-515967899-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-1078081533-515967899-839522115-1003\Software\Microsoft\Internet Explorer\URLSearchHooks\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} deleted successfully

==== Deleting Services ======================

==== Deleting Files \ Folders ======================

C:\WINDOWS\tasks\At1.job deleted
C:\WINDOWS\tasks\At2.job deleted
C:\WINDOWS\tasks\At3.job deleted
C:\WINDOWS\tasks\At4.job deleted
C:\WINDOWS\System32\NEW1E4.tmp deleted
C:\WINDOWS\System32\NEW1EF.tmp deleted
C:\WINDOWS\System32\SET7D.tmp deleted
C:\WINDOWS\System32\SET82.tmp deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{20a82645-c095-46ed-80e3-08825760534b}"="c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension" [10.01.2011 09:20]

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx[09.10.2013 11:59]

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.seznam.cz/"
"Search Bar"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://www.seznam.cz/"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?FORM=UP97DF& ... -SearchBox"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchT ... {startPage}"
{BD9B1D2B-C0D0-414b-B40A-BB11E76BB981} Google Url="http://www.google.com/cse?cx=partner-pu ... 4067623346"

==== Reset Google Chrome ======================

Nothing found to reset

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\24x7HELP deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCPowerSpeed deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SiteRanker deleted successfully

==== Empty IE Cache ======================

C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\Administrator.U-664A3AC1C1034\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\Default User\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService\Local Settings\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Documents and Settings\UIVATE~1\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=9 folders=0 2118452 bytes)

==== Empty Temp Folders ======================

C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\DOCUME~1\UIVATE~1\LOCALS~1\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\RECYCLER successfully emptied

==== Deleting Files / Folders ======================

"C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Documents and Settings\UIVATE~1\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found

==== EOF on st 28.05.2014 at 21:05:21,32 ======================

#13 Příspěvek od **vyosek** » 28 kvě 2014 20:19

pekne prociteno

Poprosim o FRST http://forum.viry.cz/viewtopic.php?f=13&t=133100 a doladime zbytecky

Duge77 · #14 Příspěvek od **Duge77** » 28 kvě 2014 20:31

Additional scan result of Farbar Recovery Scan Tool (x86) Version:25-05-2014 02
Ran by Uživatel at 2014-05-28 21:28:48
Running from C:\Documents and Settings\Uživatel\Plocha
Boot Mode: Normal
==========================================================

==================== Security Center ========================

AV: avast! Antivirus (Disabled - Up to date) {7591DB91-41F0-48A3-B128-1A293FD8233D}

==================== Installed Programs ======================

µTorrent (HKLM\...\uTorrent) (Version: 3.3.0.29544 - BitTorrent Inc.)
7-Zip 9.22beta (HKLM\...\7-Zip) (Version: - )
Adobe AIR (HKLM\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe AIR (Version: 2.5.1.17730 - Adobe Systems Inc.) Hidden
Adobe Flash Player 13 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Reader 9.5.1 - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-A95000000001}) (Version: 9.5.1 - Adobe Systems Incorporated)
Advertising Center (Version: 0.0.0.1 - Nero AG) Hidden
Aktualizace systému Windows Internet Explorer 8 (KB976662) (HKLM\...\KB976662-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB898461) (HKLM\...\KB898461) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB925720) (HKLM\...\KB925720) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB955759) (HKLM\...\KB955759) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB967715) (HKLM\...\KB967715) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB968389) (HKLM\...\KB968389) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB971737) (HKLM\...\KB971737) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB973687) (HKLM\...\KB973687) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB973815) (HKLM\...\KB973815) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení aplikace Windows Media Player (KB952069) (Version: - Microsoft Corporation) Hidden
Aktualizace zabezpečení aplikace Windows Media Player (KB954155) (Version: - Microsoft Corporation) Hidden
Aktualizace zabezpečení aplikace Windows Media Player (KB973540) (Version: - Microsoft Corporation) Hidden
Aktualizace zabezpečení aplikace Windows Media Player (KB978695) (Version: - Microsoft Corporation) Hidden
Aktualizace zabezpečení aplikace Windows Media Player (KB979402) (Version: - Microsoft Corporation) Hidden
Aktualizace zabezpečení aplikace Windows Media Player 11 (KB954154) (HKLM\...\KB954154_WM11) (Version: - Microsoft Corporation)
Aktualizace zabezpečení produktu Windows XP (KB941569) (HKLM\...\KB941569) (Version: - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB971961) (HKLM\...\KB971961-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB981332) (HKLM\...\KB981332-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB982381) (HKLM\...\KB982381-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2229593) (HKLM\...\KB2229593) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB923561) (HKLM\...\KB923561) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB923789) (HKLM\...\KB923789) (Version: - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB944338-v2) (Version: 2 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows XP (KB946648) (HKLM\...\KB946648) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB950762) (HKLM\...\KB950762) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB950974) (HKLM\...\KB950974) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB951376-v2) (HKLM\...\KB951376-v2) (Version: 2 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB951748) (HKLM\...\KB951748) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB952004) (HKLM\...\KB952004) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB952954) (HKLM\...\KB952954) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB955069) (HKLM\...\KB955069) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB956572) (HKLM\...\KB956572) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB956802) (HKLM\...\KB956802) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB956803) (HKLM\...\KB956803) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB956844) (HKLM\...\KB956844) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB958470) (HKLM\...\KB958470) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB958644) (HKLM\...\KB958644) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB958869) (HKLM\...\KB958869) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB959426) (HKLM\...\KB959426) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB960225) (HKLM\...\KB960225) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB960803) (HKLM\...\KB960803) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB960859) (HKLM\...\KB960859) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB961501) (HKLM\...\KB961501) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB969059) (HKLM\...\KB969059) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB970238) (HKLM\...\KB970238) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB970430) (HKLM\...\KB970430) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB971032) (HKLM\...\KB971032) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB971468) (HKLM\...\KB971468) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB971657) (HKLM\...\KB971657) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB971961) (HKLM\...\KB971961) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB972270) (HKLM\...\KB972270) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB973507) (HKLM\...\KB973507) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB973869) (HKLM\...\KB973869) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB973904) (HKLM\...\KB973904) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB974112) (HKLM\...\KB974112) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB974318) (HKLM\...\KB974318) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB974392) (HKLM\...\KB974392) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB974571) (HKLM\...\KB974571) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB975025) (HKLM\...\KB975025) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB975467) (HKLM\...\KB975467) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB975560) (HKLM\...\KB975560) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB975561) (HKLM\...\KB975561) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB975562) (HKLM\...\KB975562) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB975713) (HKLM\...\KB975713) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB977816) (HKLM\...\KB977816) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB977914) (HKLM\...\KB977914) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB978037) (HKLM\...\KB978037) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB978338) (HKLM\...\KB978338) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB978542) (HKLM\...\KB978542) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB978601) (HKLM\...\KB978601) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB978706) (HKLM\...\KB978706) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB979309) (HKLM\...\KB979309) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB979482) (HKLM\...\KB979482) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB979559) (HKLM\...\KB979559) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB979683) (HKLM\...\KB979683) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB980195) (HKLM\...\KB980195) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB980218) (HKLM\...\KB980218) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB980232) (HKLM\...\KB980232) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB981350) (HKLM\...\KB981350) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB982381) (HKLM\...\KB982381) (Version: 1 - Microsoft Corporation)
AMD Processor Driver (HKLM\...\{C151CE54-E7EA-4804-854B-F515368B0798}) (Version: 1.3.2.0053 - AMD)
avast! Free Antivirus (HKLM\...\avast) (Version: 9.0.2018 - Avast Software)
Browser Configuration Utility (HKLM\...\{A2F991E7-DDCD-42B7-AFEC-47789A099FDC}) (Version: 1.1.18.0 - DeviceVM Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.13 - Piriform)
Dropbox (HKCU\...\Dropbox) (Version: 2.6.24 - Dropbox, Inc.)
EasyBits GO (HKCU\...\Game Organizer) (Version: - EasyBits Media)
Enable S3 for USB Device (HKLM\...\Enable S3 for USB Device) (Version: - )
Facebook Video Calling 2.0.0.447 (HKLM\...\{8DF41A9F-FE13-43E8-A003-5F9B55A011EE}) (Version: 2.0.447 - Skype Limited)
Fences (HKLM\...\Fences) (Version: - Stardock Corporation)
Fences (Version: 1.0 - Stardock Corporation) Hidden
Folder Size 2.6.0.0 (HKLM\...\{2DFA85ED-588F-4CE3-A175-29E52C3804A8}_is1) (Version: 2.6.0.0 - MindGems, Inc.)
Google Chrome (HKLM\...\Google Chrome) (Version: 35.0.1916.114 - Google Inc.)
Google Update Helper (Version: 1.3.24.7 - Google Inc.) Hidden
Grand Theft Auto Vice City (HKLM\...\{4B35F00C-E63D-40DC-9839-DF15A33EAC46}) (Version: 1.00.000 - )
High Definition Audio Driver Package - KB888111 (HKLM\...\KB888111WXPSP2) (Version: 20040219.000000 - Microsoft Corporation)
HP Deskjet 2510 series Nápověda (HKLM\...\{4E95855F-EC7C-43B2-ABEA-467DCEB811DD}) (Version: 27.0.0 - Hewlett Packard)
HP Deskjet 2510 series Setup Guide (HKLM\...\{216C7F38-4BBC-4E9A-8392-C9FA21B54386}) (Version: 27.0.0 - Hewlett Packard)
HP Photo Creations (HKLM\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Update (HKLM\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
iSlim 1320 (HKLM\...\{2B920F84-9016-408C-BCC3-D19E7CF30880}) (Version: 1.0.5.4 - KYE)
K-Lite Codec Pack 6.4.0 (Full) (HKLM\...\KLiteCodecPack_is1) (Version: 6.4.0 - )
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft Compression Client Pack 1.0 for Windows XP (HKLM\...\MSCompPackV1) (Version: 1 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Access MUI (Czech) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Czech) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (Czech) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Czech) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Czech) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Czech) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2007 (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (Czech) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Software Update for Web Folders (Czech) 12 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft User-Mode Driver Framework Feature Pack 1.0 (HKLM\...\Wudf01000) (Version: - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 6 Service Pack 2 (KB973686) (HKLM\...\{56EA8BC0-3751-4B93-BC9D-6651CC36E5AA}) (Version: 6.20.2003.0 - Microsoft Corporation)
Nero 9 Essentials (HKLM\...\{3c96ff05-2139-487e-a82e-3537e48fdb9e}) (Version: - Nero AG)
Nero ControlCenter (Version: 9.0.0.1 - Nero AG) Hidden
Nero Installer (Version: 4.4.9.0 - Nero AG) Hidden
Nero Online Upgrade (Version: 1.3.0.0 - Nero AG) Hidden
Nero StartSmart (Version: 9.4.12.100 - Nero AG) Hidden
Nero StartSmart OEM (Version: 9.4.10.100 - Nero AG) Hidden
neroxml (Version: 1.0.0 - Nero AG) Hidden
NVIDIA Display Control Panel (HKLM\...\NVIDIA Display Control Panel) (Version: 6.14.11.9713 - NVIDIA Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10.57.35 - NVIDIA Corporation)
NVIDIA nView Desktop Manager (HKLM\...\NVIDIA nView Desktop Manager) (Version: 6.14.10.00 - NVIDIA Corporation)
ON_OFF Charge B10.0427.1 (HKLM\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
Opera 12.14 (HKLM\...\Opera 12.14.1738) (Version: 12.14.1738 - Opera Software ASA)
Oprava hotfix aplikace Windows Media Player 11 (KB939683) (HKLM\...\KB939683) (Version: - Microsoft Corporation)
Oprava Hotfix systému Windows XP (KB935448) (HKLM\...\KB935448) (Version: 1 - Microsoft Corporation)
Oprava Hotfix systému Windows XP (KB952287) (HKLM\...\KB952287) (Version: 1 - Microsoft Corporation)
Oprava Hotfix systému Windows XP (KB961118) (HKLM\...\KB961118) (Version: 1 - Microsoft Corporation)
Oprava Hotfix systému Windows XP (KB981793) (HKLM\...\KB981793) (Version: 1 - Microsoft Corporation)
PC Power Speed 1.0.0.0 (HKLM\...\{B0C56FD7-493D-44DD-B007-BBB5117D6E6F}_is1) (Version: - Crawler, LLC.)
Photo DVD Maker Professional 8.30 (HKLM\...\Photo DVD Maker Professional) (Version: 8.30 - Anvsoft Inc.)
PowerDVD (HKLM\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: 7.0.1702.0 - CyberLink Corporation)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 5.10.0.6101 - Realtek Semiconductor Corp.)
Skype Click to Call (HKLM\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 6.13.13771 - Skype Technologies S.A.)
Skype™ 6.6 (HKLM\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.6.106 - Skype Technologies S.A.)
Studie vylepšování produktu HP Deskjet 2510 series (HKLM\...\{68EE3C7E-E0D5-4A16-A82A-4AE5661E4071}) (Version: 28.0.1313.0 - Hewlett-Packard Co.)
SweetMovieLife 1.0E (HKLM\...\{56F6A91D-46D4-4919-ABE6-55BD17DEB039}) (Version: - )
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 7.55a - Ghisler Software GmbH)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687267) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{B5B7C5DB-74C3-43E0-8413-0C6C1CA4DED0}) (Version: - Microsoft)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version: - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\WGA) (Version: 1.7.0069.2 - Microsoft Corporation)
Windows Imaging Component (HKLM\...\WIC) (Version: 3.0.0.0 - Microsoft Corporation)
Windows Installer 3.1 (KB893803) (HKLM\...\KB893803v2) (Version: 3.1 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - )
Windows Media Format 11 runtime (Version: - Microsoft Corporation) Hidden
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version: - )
Windows Media Player 11 (Version: - Microsoft Corporation) Hidden
Základní software zařízení HP Deskjet 2510 series (HKLM\...\{334C56D0-0979-4541-A078-C2411642EC55}) (Version: 28.0.1313.0 - Hewlett-Packard Co.)

==================== Restore Points =========================

28-02-2014 05:35:31 Kontrolní bod systému
01-03-2014 18:46:09 Kontrolní bod systému
03-03-2014 13:12:34 Kontrolní bod systému
04-03-2014 14:01:33 Kontrolní bod systému
05-03-2014 14:43:21 Kontrolní bod systému
06-03-2014 15:47:15 Kontrolní bod systému
07-03-2014 16:07:35 Kontrolní bod systému
08-03-2014 20:59:02 Kontrolní bod systému
10-03-2014 07:36:16 Kontrolní bod systému
11-03-2014 16:46:12 Kontrolní bod systému
13-03-2014 20:22:31 Kontrolní bod systému
15-03-2014 13:55:44 Kontrolní bod systému
16-03-2014 18:30:55 Kontrolní bod systému
18-03-2014 14:27:07 Kontrolní bod systému
19-03-2014 15:00:07 Kontrolní bod systému
20-03-2014 15:25:01 Kontrolní bod systému
21-03-2014 19:53:36 Kontrolní bod systému
22-03-2014 21:14:00 Kontrolní bod systému
23-03-2014 22:03:29 Kontrolní bod systému
25-03-2014 05:25:02 Kontrolní bod systému
26-03-2014 13:38:30 Kontrolní bod systému
27-03-2014 13:58:53 Kontrolní bod systému
28-03-2014 14:58:37 Kontrolní bod systému
29-03-2014 15:17:35 Kontrolní bod systému
31-03-2014 11:15:37 Kontrolní bod systému
01-04-2014 12:23:57 Kontrolní bod systému
02-04-2014 13:13:46 Kontrolní bod systému
03-04-2014 02:49:14 avast! antivirus system restore point
04-04-2014 09:22:56 Kontrolní bod systému
05-04-2014 17:27:21 Kontrolní bod systému
06-04-2014 19:06:02 Kontrolní bod systému
07-04-2014 19:11:24 Kontrolní bod systému
09-04-2014 04:07:43 Kontrolní bod systému
10-04-2014 08:56:10 Kontrolní bod systému
11-04-2014 11:35:19 Kontrolní bod systému
12-04-2014 19:47:26 Kontrolní bod systému
14-04-2014 03:24:35 Kontrolní bod systému
15-04-2014 11:32:22 Kontrolní bod systému
16-04-2014 11:41:05 Kontrolní bod systému
17-04-2014 12:30:52 Kontrolní bod systému
18-04-2014 13:25:31 Kontrolní bod systému
19-04-2014 20:23:32 Kontrolní bod systému
20-04-2014 21:11:59 Kontrolní bod systému
22-04-2014 08:19:29 Kontrolní bod systému
23-04-2014 10:34:49 Kontrolní bod systému
24-04-2014 10:42:33 Kontrolní bod systému
25-04-2014 11:30:45 Kontrolní bod systému
26-04-2014 16:28:39 Kontrolní bod systému
27-04-2014 19:22:56 Kontrolní bod systému
28-04-2014 21:32:14 Kontrolní bod systému
30-04-2014 06:24:49 Kontrolní bod systému
01-05-2014 06:26:07 Kontrolní bod systému
02-05-2014 07:07:51 avast! antivirus system restore point
03-05-2014 09:36:46 Kontrolní bod systému
04-05-2014 09:41:42 Kontrolní bod systému
05-05-2014 09:44:53 Kontrolní bod systému
06-05-2014 09:49:35 Kontrolní bod systému
07-05-2014 16:13:52 Kontrolní bod systému
09-05-2014 18:01:01 Kontrolní bod systému
10-05-2014 19:09:59 Kontrolní bod systému
11-05-2014 21:31:34 Kontrolní bod systému
13-05-2014 05:51:35 Kontrolní bod systému
14-05-2014 12:50:58 Kontrolní bod systému
15-05-2014 17:05:28 Kontrolní bod systému
16-05-2014 18:01:12 Kontrolní bod systému
17-05-2014 18:04:16 Kontrolní bod systému
19-05-2014 09:06:55 Kontrolní bod systému
20-05-2014 16:33:41 Kontrolní bod systému
21-05-2014 16:48:15 Kontrolní bod systému
22-05-2014 17:43:55 Kontrolní bod systému
23-05-2014 17:58:48 Kontrolní bod systému
24-05-2014 20:01:18 Kontrolní bod systému
25-05-2014 21:16:45 Kontrolní bod systému
27-05-2014 09:40:40 Kontrolní bod systému
28-05-2014 18:57:18 zoek.exe restore point

==================== Hosts content: ==========================

2003-04-16 13:00 - 2014-05-28 20:57 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\Alwil Software\Avast5\AvastEmUpdate.exe
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1078081533-515967899-839522115-1003Core.job => C:\Documents and Settings\U~ivatel\Local Settings\Data aplikací\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1078081533-515967899-839522115-1003UA.job => C:\Documents and Settings\U~ivatel\Local Settings\Data aplikací\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\User_Feed_Synchronization-{4CBC6D9E-9EC3-422A-AAB4-9E6B1B69A8AA}.job => C:\WINDOWS\system32\msfeedssync.exe

==================== Loaded Modules (whitelisted) =============

2014-05-28 19:40 - 2014-05-28 19:40 - 02259456 _____ () C:\Program Files\Alwil Software\Avast5\defs\14052801\algo.dll
2013-11-29 09:55 - 2013-11-29 09:55 - 19336120 _____ () C:\Program Files\Alwil Software\Avast5\libcef.dll
2004-08-17 15:49 - 2004-08-17 15:49 - 00014336 _____ () C:\WINDOWS\system32\msdmo.dll
2011-09-17 18:19 - 2011-05-29 08:20 - 00073600 _____ () c:\windows\system32\ezgosvc.dll
2011-01-10 09:01 - 2005-08-08 14:54 - 00167936 ____N () C:\Program Files\CyberLink\Shared files\RichVideo.exe

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:A31FAD21

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{1a3e09be-1e45-494b-9174-d7385b45bbf5} => ""=""

==================== EXE Association (whitelisted) =============

==================== Disabled items from MSCONFIG ==============

MSCONFIG\startupfolder: C:^Documents and Settings^Uživatel^Nabídka Start^Programy^Po spuštění^KvetinkaProzeny.lnk => C:\WINDOWS\pss\KvetinkaProzeny.lnkStartup
MSCONFIG\startupfolder: C:^Documents and Settings^Uživatel^Nabídka Start^Programy^Po spuštění^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk => C:\WINDOWS\pss\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnkStartup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: BMISR => C:\Program Files\KYE\iSlim 1320\BM.exe
MSCONFIG\startupreg: HP Software Update => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: LanguageShortcut => "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"
MSCONFIG\startupreg: RemoteControl => "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
MSCONFIG\startupreg: Skype => "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (05/28/2014 07:38:40 PM) (Source: Userenv) (EventID: 1090) (User: NT AUTHORITY)
Description: Systém Windows nemohl protokolovat stav relace modulu snap-in RSoP. Pokus o připojení ke službě WMI se nezdařil. Pro toto použití zásad již nebude prováděno žádné protokolování modulu snap-in RSoP.

Error: (05/27/2014 11:32:37 PM) (Source: Application Hang) (EventID: 1001) (User: )
Description: Chybný blok 1180947459

Error: (05/27/2014 11:32:35 PM) (Source: Application Hang) (EventID: 1001) (User: )
Description: Chybný blok 1180947459

Error: (05/27/2014 11:32:31 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Zablokovaná aplikace iexplore.exe, verze 8.0.6001.18702, zablokovaný modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error: (05/27/2014 11:32:30 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Zablokovaná aplikace iexplore.exe, verze 8.0.6001.18702, zablokovaný modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error: (05/27/2014 10:30:21 PM) (Source: Application Hang) (EventID: 1001) (User: )
Description: Chybný blok 1180947459

Error: (05/27/2014 10:30:17 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Zablokovaná aplikace iexplore.exe, verze 8.0.6001.18702, zablokovaný modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error: (05/23/2014 03:46:29 PM) (Source: Google Update) (EventID: 20) (User: U-664A3AC1C1034)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7

Error: (05/20/2014 06:12:58 PM) (Source: Application Hang) (EventID: 1001) (User: )
Description: Chybný blok 1930941211

Error: (05/20/2014 06:12:52 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Zablokovaná aplikace Fences.exe, verze 1.0.1.0, zablokovaný modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

System errors:
=============
Error: (05/28/2014 08:43:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Nero BackItUp Scheduler 4.0 neuspěla při spuštění v důsledku následující chyby:
%%1053

Error: (05/28/2014 08:43:11 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Vypršel časový limit (30000 milisekund) čekání na připojení služby Nero BackItUp Scheduler 4.0.

Error: (05/28/2014 08:43:09 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Služba brány aplikačního rozhraní byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (05/28/2014 08:43:09 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Skype C2C Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (05/28/2014 08:43:09 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Zařazování tisku byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (05/28/2014 08:43:09 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Cyberlink RichVideo Service(CRVS) byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (05/28/2014 08:43:09 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Nero BackItUp Scheduler 4.0 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 500 milisekund: Restartovat službu.

Error: (05/28/2014 08:43:09 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Browser Configuration Utility Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (05/28/2014 08:43:09 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NVIDIA Display Driver Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (05/28/2014 08:10:09 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba HitmanPro 3.7 Crusader (Boot) ukončena s chybou 0 (0x0), specifickou pro službu.

Microsoft Office Sessions:
=========================
Error: (01/14/2012 05:18:10 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 101 seconds with 60 seconds of active time. This session ended with a crash.

==================== Memory info ===========================

Percentage of memory in use: 55%
Total physical RAM: 894.42 MB
Available physical RAM: 396.72 MB
Total Pagefile: 2167.63 MB
Available Pagefile: 1668.42 MB
Total Virtual: 2047.88 MB
Available Virtual: 1953.91 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:232.88 GB) (Free:73.83 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: (PRED DINOSAURY) (CDROM) (Total:7.89 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 233 GB) (Disk ID: E4B631CD)
Partition 1: (Active) - (Size=233 GB) - (Type=07 NTFS)

==================== End Of Log ============================

Duge77 · #15 Příspěvek od **Duge77** » 28 kvě 2014 20:34

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:25-05-2014 02
Ran by Uživatel (administrator) on U-664A3AC1C1034 on 28-05-2014 21:28:29
Running from C:\Documents and Settings\Uživatel\Plocha
Platform: Systém Microsoft Windows XP Professional Service Pack 2 (X86) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\avastui.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Nero AG) C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
() C:\Program Files\CyberLink\Shared files\RichVideo.exe
(Skype Technologies S.A.) C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Opera Software) C:\Program Files\Opera\opera.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [nwiz] => nwiz.exe /installquiet
HKLM\...\Run: [NvMediaCenter] => C:\WINDOWS\system32\NvMcTray.dll [110696 2010-03-16] (NVIDIA Corporation)
HKLM\...\Run: [NvCplDaemon] => C:\WINDOWS\system32\NvCpl.dll [13670504 2010-03-16] (NVIDIA Corporation)
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [19523616 2010-04-30] (Realtek Semiconductor Corp.)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Alwil Software\Avast5\AvastUI.exe [3888648 2014-05-26] (AVAST Software)
HKU\S-1-5-21-1078081533-515967899-839522115-1003\...\Run: [Facebook Update] => C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Facebook\Update\FacebookUpdate.exe [138096 2013-10-22] (Facebook Inc.)
HKU\S-1-5-21-1078081533-515967899-839522115-1003\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [19875432 2013-06-21] (Skype Technologies S.A.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
URLSearchHook: ATTENTION ==> Default URLSearchHook is missing.
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchT ... {startPage}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchT ... {startPage}
SearchScopes: HKCU - {BD9B1D2B-C0D0-414b-B40A-BB11E76BB981} URL = http://www.google.com/cse?cx=partner-pu ... 4067623346
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
BHO: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Toolbar: HKCU - &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
Toolbar: HKCU - &Odkazy - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 212.24.128.8 82.119.240.3

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []

Chrome:
=======
CHR HomePage: hxxp://www.msn.com/?pc=UP97&ocid=UP97DHP
CHR StartupUrls: "hxxp://www.msn.com/?pc=UP97&ocid=UP97DHP",
"hxxp://www.google.com"
CHR DefaultSearchKeyword: bing.com
CHR DefaultSearchProvider: Bing
CHR DefaultSearchURL: http://www.bing.com/search?q={searchTerms}
CHR DefaultNewTabURL:
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\34.0.1847.131\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\34.0.1847.131\pdf.dll No File
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\34.0.1847.131\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Windows Presentation Foundation) - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (YouTube) - C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-07-04]
CHR Extension: (Vyhledávání Google) - C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-07-04]
CHR Extension: (Skype Click to Call) - C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2013-12-07]
CHR Extension: (Peněženka Google) - C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-26]
CHR Extension: (Gmail) - C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-07-04]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-10-09]

========================== Services (Whitelisted) =================

S3 AppleChargerSrv; C:\WINDOWS\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [50344 2014-05-02] (AVAST Software)
R2 ezGOSvc; C:\WINDOWS\system32\ezGOSvc.dll [73600 2011-05-29] ()
R2 RichVideo; C:\Program Files\CyberLink\Shared files\RichVideo.exe [167936 2005-08-08] ()
R2 Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3275136 2013-10-09] (Skype Technologies S.A.)

==================== Drivers (Whitelisted) ====================

S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
R1 AmdPPM; C:\WINDOWS\System32\DRIVERS\AmdPPM.sys [33792 2007-04-16] (Advanced Micro Devices)
R1 AppleCharger; C:\WINDOWS\System32\DRIVERS\AppleCharger.sys [19496 2010-04-27] ()
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24184 2014-05-02] ()
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [67824 2014-05-02] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [54832 2014-05-15] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944 2014-05-02] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [777488 2014-05-15] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [411680 2014-05-15] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57672 2014-05-02] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [180632 2014-05-02] ()
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2004-08-04] (Microsoft Corporation)
S3 hitmanpro37; C:\WINDOWS\system32\drivers\hitmanpro37.sys [30976 2014-05-28] ()
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2004-08-04] (Microsoft Corporation)
R3 NVENETFD; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [70912 2010-03-04] (NVIDIA Corporation)
R0 nvgts; C:\WINDOWS\System32\DRIVERS\nvgts.sys [168040 2010-04-08] (NVIDIA Corporation)
R3 nvnetbus; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [13824 2010-03-04] (NVIDIA Corporation)
S3 Secdrv; C:\WINDOWS\System32\DRIVERS\secdrv.sys [27440 2004-07-17] ()
S3 gdrv; \??\C:\WINDOWS\gdrv.sys [X]
S4 IntelIde; No ImagePath
U1 WS2IFSL;

==================== NetSvcs (Whitelisted) ===================

NETSVC: ezGOSvc -> C:\WINDOWS\system32\ezGOSvc.dll ()

==================== One Month Created Files and Folders ========

2014-05-28 21:28 - 2014-05-28 21:28 - 00012267 _____ () C:\Documents and Settings\Uživatel\Plocha\FRST.txt
2014-05-28 21:26 - 2014-05-28 21:26 - 00029696 _____ () C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\MSGBOX.EXE
2014-05-28 21:26 - 2014-05-28 21:26 - 00015327 _____ () C:\Documents and Settings\Uživatel\Plocha\LM.bat
2014-05-28 21:25 - 2014-05-28 21:25 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Uživatel\Plocha\FRSTLauncher.exe
2014-05-28 21:24 - 2014-05-28 21:28 - 00000000 ____D () C:\FRST
2014-05-28 21:22 - 2014-05-28 21:22 - 01056256 _____ (Farbar) C:\Documents and Settings\Uživatel\Plocha\FRST.exe
2014-05-28 21:04 - 2014-05-28 20:55 - 00024064 _____ () C:\WINDOWS\zoek-delete.exe
2014-05-28 20:57 - 2014-05-28 21:05 - 00006895 _____ () C:\zoek-results.log
2014-05-28 20:52 - 2014-05-28 21:01 - 00000000 ____D () C:\zoek_backup
2014-05-28 20:46 - 2014-05-28 21:19 - 00000000 ____D () C:\Documents and Settings\Uživatel\Plocha\ANTIVIR PGM
2014-05-28 20:42 - 2014-05-28 20:43 - 00000000 ____D () C:\AdwCleaner
2014-05-28 20:42 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\WINDOWS\system32\sqlite3.dll
2014-05-28 20:35 - 2014-05-28 20:35 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-05-28 20:17 - 2014-05-28 20:18 - 00000000 ____D () C:\rsit
2014-05-28 20:17 - 2014-05-28 20:18 - 00000000 ____D () C:\Program Files\trend micro
2014-05-28 20:09 - 2014-05-28 20:09 - 00030976 _____ () C:\WINDOWS\system32\Drivers\hitmanpro37.sys
2014-05-28 20:08 - 2014-05-28 20:08 - 00010114 _____ () C:\WINDOWS\system32\.crusader
2014-05-28 20:00 - 2014-05-28 20:08 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\HitmanPro
2014-05-28 19:37 - 2014-05-28 19:38 - 00000178 ___SH () C:\Documents and Settings\Administrator.U-664A3AC1C1034\ntuser.ini
2014-05-28 19:37 - 2014-05-28 19:37 - 00000000 ____D () C:\Documents and Settings\Administrator.U-664A3AC1C1034
2014-05-28 19:37 - 2011-12-06 01:56 - 00000000 ___HD () C:\Documents and Settings\Administrator.U-664A3AC1C1034\Local Settings\Data aplikací
2014-05-28 19:37 - 2011-12-06 01:56 - 00000000 ____D () C:\Documents and Settings\Administrator.U-664A3AC1C1034\Local Settings\Data aplikací\Microsoft Help
2014-05-28 19:37 - 2011-03-21 17:11 - 00000000 __RHD () C:\Documents and Settings\Administrator.U-664A3AC1C1034\Data aplikací
2014-05-28 19:37 - 2011-03-21 17:11 - 00000000 ____D () C:\Documents and Settings\Administrator.U-664A3AC1C1034\Data aplikací\Macromedia
2014-05-28 19:37 - 2011-01-10 09:01 - 00001684 _____ () C:\Documents and Settings\Administrator.U-664A3AC1C1034\Plocha\CyberLink PowerDVD.lnk
2014-05-28 19:37 - 2011-01-10 09:01 - 00000000 ___RD () C:\Documents and Settings\Administrator.U-664A3AC1C1034\Nabídka Start\Programy
2014-05-28 19:37 - 2011-01-10 09:01 - 00000000 ____D () C:\Documents and Settings\Administrator.U-664A3AC1C1034\Plocha
2014-05-28 19:37 - 2011-01-10 09:01 - 00000000 ____D () C:\Documents and Settings\Administrator.U-664A3AC1C1034\Nabídka Start\Programy\CyberLink PowerDVD
2014-05-28 19:37 - 2011-01-07 15:44 - 00000000 ___RD () C:\Documents and Settings\Administrator.U-664A3AC1C1034\Nabídka Start\Programy\Po spuštění
2014-05-28 19:37 - 2011-01-07 15:44 - 00000000 ___RD () C:\Documents and Settings\Administrator.U-664A3AC1C1034\Nabídka Start
2014-05-28 19:37 - 2011-01-07 15:44 - 00000000 ___HD () C:\Documents and Settings\Administrator.U-664A3AC1C1034\Okolní tiskárny
2014-05-28 19:37 - 2011-01-07 15:44 - 00000000 ___HD () C:\Documents and Settings\Administrator.U-664A3AC1C1034\Okolní síť
2014-05-28 19:37 - 2011-01-07 15:44 - 00000000 ____D () C:\Documents and Settings\Administrator.U-664A3AC1C1034\Oblíbené položky
2014-05-28 19:37 - 2011-01-07 15:44 - 00000000 ____D () C:\Documents and Settings\Administrator.U-664A3AC1C1034\Dokumenty
2014-05-28 19:37 - 2011-01-07 14:58 - 00001599 _____ () C:\Documents and Settings\Administrator.U-664A3AC1C1034\Nabídka Start\Programy\Vzdálená pomoc.lnk
2014-05-28 19:37 - 2011-01-07 14:58 - 00000792 _____ () C:\Documents and Settings\Administrator.U-664A3AC1C1034\Nabídka Start\Programy\Windows Media Player.lnk
2014-05-28 19:37 - 2011-01-07 14:58 - 00000000 ___RD () C:\Documents and Settings\Administrator.U-664A3AC1C1034\Nabídka Start\Programy\Příslušenství
2014-05-28 19:37 - 2011-01-07 14:54 - 00000000 ___HD () C:\Documents and Settings\Administrator.U-664A3AC1C1034\Šablony
2014-05-28 19:35 - 2014-05-28 19:36 - 00000000 __SHD () C:\WINDOWS\CSC
2014-05-28 19:35 - 2014-05-28 19:35 - 00000020 ___SH () C:\Documents and Settings\Administrator\ntuser.ini
2014-05-28 19:35 - 2014-05-28 19:35 - 00000000 ____D () C:\Documents and Settings\Administrator
2014-05-28 19:35 - 2011-12-06 01:56 - 00000000 ___HD () C:\Documents and Settings\Administrator\Local Settings\Data aplikací
2014-05-28 19:35 - 2011-12-06 01:56 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Microsoft Help
2014-05-28 19:35 - 2011-03-21 17:11 - 00000000 __RHD () C:\Documents and Settings\Administrator\Data aplikací
2014-05-28 19:35 - 2011-03-21 17:11 - 00000000 ____D () C:\Documents and Settings\Administrator\Data aplikací\Macromedia
2014-05-28 19:35 - 2011-01-10 09:01 - 00001684 _____ () C:\Documents and Settings\Administrator\Plocha\CyberLink PowerDVD.lnk
2014-05-28 19:35 - 2011-01-10 09:01 - 00000000 ___RD () C:\Documents and Settings\Administrator\Nabídka Start\Programy
2014-05-28 19:35 - 2011-01-10 09:01 - 00000000 ____D () C:\Documents and Settings\Administrator\Plocha
2014-05-28 19:35 - 2011-01-10 09:01 - 00000000 ____D () C:\Documents and Settings\Administrator\Nabídka Start\Programy\CyberLink PowerDVD
2014-05-28 19:35 - 2011-01-07 15:44 - 00000000 ___RD () C:\Documents and Settings\Administrator\Nabídka Start\Programy\Po spuštění
2014-05-28 19:35 - 2011-01-07 15:44 - 00000000 ___RD () C:\Documents and Settings\Administrator\Nabídka Start
2014-05-28 19:35 - 2011-01-07 15:44 - 00000000 ___HD () C:\Documents and Settings\Administrator\Okolní tiskárny
2014-05-28 19:35 - 2011-01-07 15:44 - 00000000 ___HD () C:\Documents and Settings\Administrator\Okolní síť
2014-05-28 19:35 - 2011-01-07 15:44 - 00000000 ____D () C:\Documents and Settings\Administrator\Oblíbené položky
2014-05-28 19:35 - 2011-01-07 15:44 - 00000000 ____D () C:\Documents and Settings\Administrator\Dokumenty
2014-05-28 19:35 - 2011-01-07 14:58 - 00001599 _____ () C:\Documents and Settings\Administrator\Nabídka Start\Programy\Vzdálená pomoc.lnk
2014-05-28 19:35 - 2011-01-07 14:58 - 00000792 _____ () C:\Documents and Settings\Administrator\Nabídka Start\Programy\Windows Media Player.lnk
2014-05-28 19:35 - 2011-01-07 14:58 - 00000000 ___RD () C:\Documents and Settings\Administrator\Nabídka Start\Programy\Příslušenství
2014-05-28 19:35 - 2011-01-07 14:54 - 00000000 ___HD () C:\Documents and Settings\Administrator\Šablony
2014-05-28 19:20 - 2014-05-28 19:58 - 00016131 _____ () C:\WINDOWS\setupapi.log
2014-05-28 19:20 - 2014-05-28 19:20 - 00000075 _____ () C:\WINDOWS\setupact.log
2014-05-28 19:20 - 2014-05-28 19:20 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-05-28 12:30 - 2014-05-28 20:07 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\2992199F9A
2014-05-27 19:11 - 2014-05-27 19:11 - 00000610 _____ () C:\Documents and Settings\Uživatel\Plocha\1PONOVIL.htm
2014-05-27 10:50 - 2014-05-27 10:50 - 00000614 _____ () C:\Documents and Settings\Uživatel\Plocha\1.htm
2014-05-27 10:50 - 2014-05-27 10:50 - 00000605 _____ () C:\Documents and Settings\Uživatel\Plocha\2.htm
2014-05-27 10:43 - 2014-05-27 10:43 - 00000633 _____ () C:\Documents and Settings\Uživatel\Dokumenty\url (2).htm
2014-05-27 10:40 - 2014-05-27 10:40 - 00000688 _____ () C:\Documents and Settings\Uživatel\Dokumenty\url (1).htm
2014-05-02 10:36 - 2014-05-02 10:36 - 00000000 ____D () C:\Documents and Settings\Uživatel\Data aplikací\DropboxMaster
2014-05-02 10:35 - 2014-05-02 10:36 - 00000000 ____D () C:\Program Files\Dropbox
2014-05-02 10:35 - 2014-05-02 10:35 - 00000000 ____D () C:\Documents and Settings\Uživatel\Nabídka Start\Programy\Dropbox
2014-05-02 10:34 - 2014-05-02 10:36 - 00000000 ____D () C:\Documents and Settings\Uživatel\Data aplikací\Dropbox
2014-05-02 09:08 - 2014-05-02 09:08 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2014-05-02 09:08 - 2014-05-02 09:08 - 00024184 _____ () C:\WINDOWS\system32\Drivers\aswHwid.sys

==================== One Month Modified Files and Folders =======

2014-05-28 21:28 - 2014-05-28 21:28 - 00012267 _____ () C:\Documents and Settings\Uživatel\Plocha\FRST.txt
2014-05-28 21:28 - 2014-05-28 21:24 - 00000000 ____D () C:\FRST
2014-05-28 21:28 - 2011-01-07 15:12 - 00000000 ____D () C:\Documents and Settings\Uživatel\Plocha
2014-05-28 21:26 - 2014-05-28 21:26 - 00029696 _____ () C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\MSGBOX.EXE
2014-05-28 21:26 - 2014-05-28 21:26 - 00015327 _____ () C:\Documents and Settings\Uživatel\Plocha\LM.bat
2014-05-28 21:26 - 2011-01-07 15:12 - 00000000 ___HD () C:\Documents and Settings\Uživatel\Local Settings\Data aplikací
2014-05-28 21:25 - 2014-05-28 21:25 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Uživatel\Plocha\FRSTLauncher.exe
2014-05-28 21:25 - 2012-09-16 09:28 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-05-28 21:22 - 2014-05-28 21:22 - 01056256 _____ (Farbar) C:\Documents and Settings\Uživatel\Plocha\FRST.exe
2014-05-28 21:19 - 2014-05-28 20:46 - 00000000 ____D () C:\Documents and Settings\Uživatel\Plocha\ANTIVIR PGM
2014-05-28 21:10 - 2012-07-08 19:28 - 00000366 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job
2014-05-28 21:08 - 2012-07-03 22:58 - 00000944 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-28 21:06 - 2011-02-15 12:37 - 00000000 ____D () C:\Documents and Settings\Uživatel\Data aplikací\Skype
2014-05-28 21:06 - 2011-01-07 15:46 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-05-28 21:06 - 2011-01-07 15:46 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2014-05-28 21:06 - 2011-01-07 14:57 - 01359124 _____ () C:\WINDOWS\WindowsUpdate.log
2014-05-28 21:05 - 2014-05-28 20:57 - 00006895 _____ () C:\zoek-results.log
2014-05-28 21:05 - 2012-07-03 22:58 - 00000940 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-28 21:05 - 2011-01-07 15:11 - 00032376 _____ () C:\WINDOWS\SchedLgU.Txt
2014-05-28 21:05 - 2011-01-07 15:11 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-05-28 21:05 - 2010-03-16 04:37 - 00276202 _____ () C:\WINDOWS\system32\NvApps.xml
2014-05-28 21:01 - 2014-05-28 20:52 - 00000000 ____D () C:\zoek_backup
2014-05-28 20:55 - 2014-05-28 21:04 - 00024064 _____ () C:\WINDOWS\zoek-delete.exe
2014-05-28 20:43 - 2014-05-28 20:42 - 00000000 ____D () C:\AdwCleaner
2014-05-28 20:43 - 2011-01-07 15:44 - 00000000 ___RD () C:\Documents and Settings\All Users\Nabídka Start\Programy
2014-05-28 20:36 - 2011-01-07 15:12 - 00000000 __RHD () C:\Documents and Settings\Uživatel\Data aplikací
2014-05-28 20:35 - 2014-05-28 20:35 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-05-28 20:20 - 2011-01-10 09:37 - 00000472 ____H () C:\WINDOWS\Tasks\User_Feed_Synchronization-{4CBC6D9E-9EC3-422A-AAB4-9E6B1B69A8AA}.job
2014-05-28 20:18 - 2014-05-28 20:17 - 00000000 ____D () C:\rsit
2014-05-28 20:18 - 2014-05-28 20:17 - 00000000 ____D () C:\Program Files\trend micro
2014-05-28 20:09 - 2014-05-28 20:09 - 00030976 _____ () C:\WINDOWS\system32\Drivers\hitmanpro37.sys
2014-05-28 20:08 - 2014-05-28 20:08 - 00010114 _____ () C:\WINDOWS\system32\.crusader
2014-05-28 20:08 - 2014-05-28 20:00 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\HitmanPro
2014-05-28 20:08 - 2011-06-25 16:37 - 00000000 ____D () C:\Documents and Settings\Uživatel\Dokumenty\Stažené
2014-05-28 20:07 - 2014-05-28 12:30 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\2992199F9A
2014-05-28 20:07 - 2011-01-07 15:12 - 00000000 ___RD () C:\Documents and Settings\Uživatel\Nabídka Start\Programy\Po spuštění
2014-05-28 20:00 - 2011-01-07 15:43 - 00000000 __RHD () C:\Documents and Settings\All Users\Data aplikací
2014-05-28 19:58 - 2014-05-28 19:20 - 00016131 _____ () C:\WINDOWS\setupapi.log
2014-05-28 19:42 - 2011-01-07 15:12 - 00000178 ___SH () C:\Documents and Settings\Uživatel\ntuser.ini
2014-05-28 19:38 - 2014-05-28 19:37 - 00000178 ___SH () C:\Documents and Settings\Administrator.U-664A3AC1C1034\ntuser.ini
2014-05-28 19:37 - 2014-05-28 19:37 - 00000000 ____D () C:\Documents and Settings\Administrator.U-664A3AC1C1034
2014-05-28 19:36 - 2014-05-28 19:35 - 00000000 __SHD () C:\WINDOWS\CSC
2014-05-28 19:35 - 2014-05-28 19:35 - 00000020 ___SH () C:\Documents and Settings\Administrator\ntuser.ini
2014-05-28 19:35 - 2014-05-28 19:35 - 00000000 ____D () C:\Documents and Settings\Administrator
2014-05-28 19:20 - 2014-05-28 19:20 - 00000075 _____ () C:\WINDOWS\setupact.log
2014-05-28 19:20 - 2014-05-28 19:20 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-05-28 09:43 - 2013-10-22 15:38 - 00001004 _____ () C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1078081533-515967899-839522115-1003UA.job
2014-05-28 00:04 - 2011-01-07 15:12 - 00000000 ___RD () C:\Documents and Settings\Uživatel\Oblíbené položky
2014-05-27 19:11 - 2014-05-27 19:11 - 00000610 _____ () C:\Documents and Settings\Uživatel\Plocha\1PONOVIL.htm
2014-05-27 15:43 - 2013-10-22 15:38 - 00000982 _____ () C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1078081533-515967899-839522115-1003Core.job
2014-05-27 10:50 - 2014-05-27 10:50 - 00000614 _____ () C:\Documents and Settings\Uživatel\Plocha\1.htm
2014-05-27 10:50 - 2014-05-27 10:50 - 00000605 _____ () C:\Documents and Settings\Uživatel\Plocha\2.htm
2014-05-27 10:43 - 2014-05-27 10:43 - 00000633 _____ () C:\Documents and Settings\Uživatel\Dokumenty\url (2).htm
2014-05-27 10:43 - 2011-01-07 15:12 - 00000000 ___RD () C:\Documents and Settings\Uživatel\Dokumenty
2014-05-27 10:40 - 2014-05-27 10:40 - 00000688 _____ () C:\Documents and Settings\Uživatel\Dokumenty\url (1).htm
2014-05-24 16:10 - 2012-07-03 23:01 - 00001813 _____ () C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2014-05-23 18:27 - 2011-01-12 17:30 - 00069120 _____ () C:\Documents and Settings\Uživatel\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-05-23 18:26 - 2011-01-07 15:12 - 00000000 ___RD () C:\Documents and Settings\Uživatel\Dokumenty\Obrázky
2014-05-21 20:19 - 2011-06-25 17:26 - 00000000 ____D () C:\Program Files\Opera
2014-05-20 18:10 - 2003-04-16 13:00 - 00002278 _____ () C:\WINDOWS\system32\wpa.dbl
2014-05-15 18:05 - 2011-06-20 22:14 - 00777488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2014-05-15 18:05 - 2011-01-10 08:57 - 00411680 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2014-05-15 18:05 - 2011-01-10 08:57 - 00054832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswrdr.sys
2014-05-14 18:41 - 2012-09-16 09:28 - 00692400 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-05-14 18:41 - 2011-06-26 12:21 - 00070832 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-05-11 15:38 - 2013-12-07 00:10 - 00002265 _____ () C:\Documents and Settings\All Users\Plocha\Skype.lnk
2014-05-04 09:31 - 2012-08-03 14:16 - 00000000 ____D () C:\WINDOWS\pss
2014-05-04 09:31 - 2011-01-07 15:42 - 00000211 ___SH () C:\boot.ini
2014-05-04 09:31 - 2003-04-16 13:00 - 00000582 _____ () C:\WINDOWS\win.ini
2014-05-04 09:31 - 2003-04-16 13:00 - 00000227 _____ () C:\WINDOWS\system.ini
2014-05-04 09:23 - 2011-06-25 16:35 - 00000000 ____D () C:\Documents and Settings\Uživatel\Data aplikací\uTorrent
2014-05-04 09:22 - 2011-01-07 15:12 - 00000000 ____D () C:\Documents and Settings\Uživatel
2014-05-04 09:15 - 2011-06-25 17:01 - 00000682 _____ () C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
2014-05-04 09:15 - 2011-06-25 17:01 - 00000000 ____D () C:\Program Files\CCleaner
2014-05-02 10:36 - 2014-05-02 10:36 - 00000000 ____D () C:\Documents and Settings\Uživatel\Data aplikací\DropboxMaster
2014-05-02 10:36 - 2014-05-02 10:35 - 00000000 ____D () C:\Program Files\Dropbox
2014-05-02 10:36 - 2014-05-02 10:34 - 00000000 ____D () C:\Documents and Settings\Uživatel\Data aplikací\Dropbox
2014-05-02 10:36 - 2011-01-07 15:44 - 00000000 ____D () C:\Documents and Settings\All Users\Plocha
2014-05-02 10:35 - 2014-05-02 10:35 - 00000000 ____D () C:\Documents and Settings\Uživatel\Nabídka Start\Programy\Dropbox
2014-05-02 10:35 - 2011-01-07 15:12 - 00000000 ___RD () C:\Documents and Settings\Uživatel\Nabídka Start\Programy
2014-05-02 09:08 - 2014-05-02 09:08 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2014-05-02 09:08 - 2014-05-02 09:08 - 00024184 _____ () C:\WINDOWS\system32\Drivers\aswHwid.sys
2014-05-02 09:08 - 2013-03-16 15:27 - 00180632 _____ () C:\WINDOWS\system32\Drivers\aswVmm.sys
2014-05-02 09:08 - 2013-03-16 15:27 - 00067824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswmonflt.sys
2014-05-02 09:08 - 2013-03-16 15:27 - 00049944 _____ () C:\WINDOWS\system32\Drivers\aswRvrt.sys
2014-05-02 09:08 - 2011-06-20 22:14 - 00776976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys.1400169936734
2014-05-02 09:08 - 2011-01-10 08:57 - 00057672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2014-05-02 09:08 - 2011-01-10 08:57 - 00054832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswrdr.sys.1400169936734
2014-05-02 09:08 - 2011-01-10 08:57 - 00001744 _____ () C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
2014-05-02 09:08 - 2011-01-10 08:56 - 00271264 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2014-05-01 10:27 - 2011-12-05 19:39 - 00002563 _____ () C:\Documents and Settings\Uživatel\Plocha\Microsoft Office Word 2007.lnk

==================== Bamital & volsnap Check =================

C:\WINDOWS\explorer.exe
[2004-08-17 15:49] - [2004-08-17 15:49] - 1032704 ____A (Microsoft Corporation) 53114d57ab73a406ac7f602227781a99

C:\WINDOWS\system32\winlogon.exe
[2004-08-17 15:49] - [2011-01-10 09:05] - 0502272 ____A (Microsoft Corporation) 427e6ded3a2369d3432a683eb489ee14

C:\WINDOWS\system32\svchost.exe
[2004-08-17 15:49] - [2004-08-17 15:49] - 0014336 ____A (Microsoft Corporation) dfba2915b0bf58abb288cd4c9318cb3f

C:\WINDOWS\system32\services.exe
[2004-08-17 15:49] - [2009-02-09 12:11] - 0111104 ____A (Microsoft Corporation) 4f9f7b567970b524f31d9970a23f7c24

C:\WINDOWS\system32\User32.dll
[2004-08-17 15:49] - [2004-08-17 15:49] - 0577024 ____A (Microsoft Corporation) 1b4ccc59980da34e75f20e42b283b027

C:\WINDOWS\system32\userinit.exe
[2004-08-17 15:49] - [2004-08-17 15:49] - 0024576 ____A (Microsoft Corporation) 836f7960362ff95c5d49e40b891f2cfc

C:\WINDOWS\system32\rpcss.dll
[2004-08-17 15:49] - [2009-02-09 12:22] - 0399360 ____A (Microsoft Corporation) 2b269c916766bdb43404f043b763427d

ATTENTION ======> If the system is having audio adware rpcss.dll is patched. Google the MD5, if the MD5 is unique the file is infected.
C:\WINDOWS\system32\Drivers\volsnap.sys
[2004-08-17 15:44] - [2004-08-17 15:44] - 0052480 ____A (Microsoft Corporation) cd8cce067f7e9cbd762c00bdddecaa34

==================== End Of Log ============================

VIRY.CZ

Pomooooc, vir INTERPOL.. nejde niiic

Pomooooc, vir INTERPOL.. nejde niiic

Re: Pomooooc, vir INTERPOL.. nejde niiic

Re: Pomooooc, vir INTERPOL.. nejde niiic

Re: Pomooooc, vir INTERPOL.. nejde niiic

Re: Pomooooc, vir INTERPOL.. nejde niiic

Re: Pomooooc, vir INTERPOL.. nejde niiic

Re: Pomooooc, vir INTERPOL.. nejde niiic

Re: Pomooooc, vir INTERPOL.. nejde niiic

Re: Pomooooc, vir INTERPOL.. nejde niiic

Re: Pomooooc, vir INTERPOL.. nejde niiic

Re: Pomooooc, vir INTERPOL.. nejde niiic

Re: Pomooooc, vir INTERPOL.. nejde niiic

Re: Pomooooc, vir INTERPOL.. nejde niiic

Re: Pomooooc, vir INTERPOL.. nejde niiic

Re: Pomooooc, vir INTERPOL.. nejde niiic