Prosím o kontrolu logu:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Pavel at 2016-03-12 18:29:24
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 29 GB (36%) free of 82 GB
Total RAM: 1910 MB (10% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:29:35, on 12.3.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18163)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe
C:\Program Files\Software602\Print2PDF\Print2PDF.exe
C:\Program Files\HP\HP Software Update\hpwuschd2.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\HP\HP Deskjet 5520 series\Bin\ScanToPCActivationApp.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\LaCie\Desktop Manager\LaCieDesktopManagerStatusItem.exe
C:\Program Files\DNS Unlocker\dnslakewood.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskmgr.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil32_21_0_0_182_ActiveX.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
D:\Install\RSIT\RSIT.exe
C:\Program Files\trend micro\Pavel.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.gboxapp.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [PMBVolumeWatcher] C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe
O4 - HKLM\..\Run: [Print2PDF Print Monitor] "C:\Program Files\Software602\Print2PDF\Print2PDF.exe" /server
O4 - HKLM\..\Run: [msstcwdiSrv] C:\Windows\inf\msstcwdi.vbe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [HP Deskjet 5520 series (NET)] "C:\Program Files\HP\HP Deskjet 5520 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN28A1B3W905SX:NW" -scfn "HP Deskjet 5520 series (NET)" -AutoStart 1
O4 - HKCU\..\Run: [LaCie Desktop Manager Startup] "C:\Program Files\LaCie\Desktop Manager\LaCieDesktopManagerStatusItem.exe"
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{755A10C0-B607-472F-8443-03674DC8DE32}: NameServer = 199.203.131.145,82.163.143.167
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_2125713eb213e7bb\aestsrv.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agrsmsvc.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard Company - C:\Windows\system32\Hpservice.exe
O23 - Service: LaCieDesktopManagerService - Unknown owner - C:\Program Files\LaCie\Desktop Manager\lacie_dm_service.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @C:\Program Files\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: PMBDeviceInfoProvider - Sony Corporation - C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_2125713eb213e7bb\STacSV.exe
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vcsFPService.exe
--
End of file - 6215 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\Superclean.job - c:\programdata\{8dada4fe-59bc-8aa1-8dad-da4fe59b93f9}\hqghumeaylnlf.exe --startup=1 --single
C:\Windows\tasks\Upd Inst-S-1485867228.job - c:\programdata\wideblue installer\upd inst\Upd Inst.exe /schedule /profile "c:\programdata\wideblue installer\upd inst\1485867228.ini"
======Registry dump======
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 1791272]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-04-20 143640]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-04-20 177432]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-04-20 176408]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2010-01-31 495708]
"PMBVolumeWatcher"=C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe [2010-03-24 599328]
"Print2PDF Print Monitor"=C:\Program Files\Software602\Print2PDF\Print2PDF.exe [2011-10-04 220992]
"msstcwdiSrv"=C:\Windows\inf\msstcwdi.vbe [2013-08-27 1558]
"HP Software Update"=C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2009-06-17 2363392]
"HP Deskjet 5520 series (NET)"=C:\Program Files\HP\HP Deskjet 5520 series\Bin\ScanToPCActivationApp.exe [2012-01-31 1818984]
"LaCie Desktop Manager Startup"=C:\Program Files\LaCie\Desktop Manager\LaCieDesktopManagerStatusItem.exe [2011-07-29 2456576]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-04-15 288768]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 3 months======
2016-03-12 18:29:24 ----D---- C:\rsit
2016-03-12 18:29:24 ----D---- C:\Program Files\trend micro
2016-03-09 18:57:18 ----D---- C:\Windows\temp
2016-03-09 18:57:17 ----A---- C:\ComboFix.txt
2016-03-09 18:55:59 ----SHD---- C:\$RECYCLE.BIN
2016-03-09 18:05:25 ----A---- C:\Windows\zip.exe
2016-03-09 18:05:25 ----A---- C:\Windows\SWSC.exe
2016-03-09 18:05:25 ----A---- C:\Windows\SWREG.exe
2016-03-09 18:05:25 ----A---- C:\Windows\sed.exe
2016-03-09 18:05:25 ----A---- C:\Windows\PEV.exe
2016-03-09 18:05:25 ----A---- C:\Windows\NIRCMD.exe
2016-03-09 18:05:25 ----A---- C:\Windows\MBR.exe
2016-03-09 18:05:25 ----A---- C:\Windows\grep.exe
2016-03-09 18:02:08 ----D---- C:\Qoobox
2016-03-09 18:01:35 ----D---- C:\Windows\erdnt
2016-03-09 17:48:36 ----D---- C:\Program Files\CCleaner
2016-03-09 17:35:11 ----D---- C:\Program Files\CleanUp!
2016-03-07 15:09:45 ----A---- C:\Windows\system32\gdi32.dll
2016-03-07 15:09:37 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-03-07 15:09:37 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-03-07 15:09:37 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-03-07 15:09:36 ----A---- C:\Windows\system32\occache.dll
2016-03-07 15:09:36 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-03-07 15:09:36 ----A---- C:\Windows\system32\iernonce.dll
2016-03-07 15:09:36 ----A---- C:\Windows\system32\iedkcs32.dll
2016-03-07 15:09:36 ----A---- C:\Windows\system32\ie4uinit.exe
2016-03-07 15:09:35 ----A---- C:\Windows\system32\urlmon.dll
2016-03-07 15:09:35 ----A---- C:\Windows\system32\msfeeds.dll
2016-03-07 15:09:35 ----A---- C:\Windows\system32\jsproxy.dll
2016-03-07 15:09:35 ----A---- C:\Windows\system32\jscript9diag.dll
2016-03-07 15:09:35 ----A---- C:\Windows\system32\ieUnatt.exe
2016-03-07 15:09:35 ----A---- C:\Windows\system32\ieapfltr.dll
2016-03-07 15:09:35 ----A---- C:\Windows\system32\dxtmsft.dll
2016-03-07 15:09:33 ----A---- C:\Windows\system32\webcheck.dll
2016-03-07 15:09:33 ----A---- C:\Windows\system32\msrating.dll
2016-03-07 15:09:33 ----A---- C:\Windows\system32\iesetup.dll
2016-03-07 15:09:32 ----A---- C:\Windows\system32\wininet.dll
2016-03-07 15:09:32 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-03-07 15:09:31 ----A---- C:\Windows\system32\ieui.dll
2016-03-07 15:09:31 ----A---- C:\Windows\system32\dxtrans.dll
2016-03-07 15:09:30 ----A---- C:\Windows\system32\ieframe.dll
2016-03-07 15:09:28 ----A---- C:\Windows\system32\mshtmled.dll
2016-03-07 15:09:27 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-03-07 15:09:27 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-03-07 15:09:26 ----A---- C:\Windows\system32\iertutil.dll
2016-03-07 15:09:25 ----A---- C:\Windows\system32\mshtml.dll
2016-03-07 15:09:24 ----A---- C:\Windows\system32\jscript9.dll
2016-03-07 15:09:22 ----A---- C:\Windows\system32\vbscript.dll
2016-03-07 15:09:22 ----A---- C:\Windows\system32\jscript.dll
2016-03-07 15:09:04 ----A---- C:\Windows\system32\advapi32.dll
2016-03-07 15:09:02 ----A---- C:\Windows\system32\generaltel.dll
2016-03-07 15:09:02 ----A---- C:\Windows\system32\appraiser.dll
2016-03-07 15:09:01 ----A---- C:\Windows\system32\invagent.dll
2016-03-07 15:09:01 ----A---- C:\Windows\system32\devinv.dll
2016-03-07 15:09:01 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-03-07 15:09:01 ----A---- C:\Windows\system32\acmigration.dll
2016-03-07 15:08:53 ----A---- C:\Windows\system32\kerberos.dll
2016-03-07 15:08:52 ----A---- C:\Windows\system32\schannel.dll
2016-03-07 15:08:51 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-03-07 15:08:48 ----A---- C:\Windows\system32\ntkrnlpa.exe
2016-03-07 15:08:48 ----A---- C:\Windows\system32\ncrypt.dll
2016-03-07 15:08:48 ----A---- C:\Windows\system32\lsasrv.dll
2016-03-07 15:08:48 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-03-07 15:08:47 ----A---- C:\Windows\system32\wdigest.dll
2016-03-07 15:08:47 ----A---- C:\Windows\system32\rpcrt4.dll
2016-03-07 15:08:47 ----A---- C:\Windows\system32\ntdll.dll
2016-03-07 15:08:47 ----A---- C:\Windows\system32\msv1_0.dll
2016-03-07 15:08:47 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-03-07 15:08:46 ----A---- C:\Windows\system32\TSpkg.dll
2016-03-07 15:08:46 ----A---- C:\Windows\system32\sspicli.dll
2016-03-07 15:08:46 ----A---- C:\Windows\system32\secur32.dll
2016-03-07 15:08:46 ----A---- C:\Windows\system32\lsass.exe
2016-03-07 15:08:46 ----A---- C:\Windows\system32\cryptbase.dll
2016-03-07 15:08:46 ----A---- C:\Windows\system32\credssp.dll
2016-03-07 15:08:45 ----A---- C:\Windows\system32\srcore.dll
2016-03-07 15:08:45 ----A---- C:\Windows\system32\srclient.dll
2016-03-07 15:08:45 ----A---- C:\Windows\system32\smss.exe
2016-03-07 15:08:45 ----A---- C:\Windows\system32\rstrui.exe
2016-03-07 15:08:45 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-03-07 15:08:45 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-03-07 15:08:45 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-03-07 15:08:45 ----A---- C:\Windows\system32\csrsrv.dll
2016-03-07 15:08:44 ----A---- C:\Windows\system32\sspisrv.dll
2016-03-07 15:08:44 ----A---- C:\Windows\system32\auditpol.exe
2016-03-07 15:08:44 ----A---- C:\Windows\system32\apisetschema.dll
2016-03-07 15:08:44 ----A---- C:\Windows\system32\adtschema.dll
2016-03-07 15:08:43 ----A---- C:\Windows\system32\msobjs.dll
2016-03-07 15:08:43 ----A---- C:\Windows\system32\msaudite.dll
2016-03-07 15:08:16 ----A---- C:\Windows\system32\aeinv.dll
2016-03-07 15:08:15 ----A---- C:\Windows\system32\aepic.dll
2016-03-07 15:08:13 ----A---- C:\Windows\system32\qedit.dll
2016-03-07 15:08:08 ----A---- C:\Windows\system32\win32k.sys
2016-03-07 15:05:59 ----A---- C:\Windows\system32\mapi32.dll
2016-03-07 15:05:58 ----A---- C:\Windows\system32\mapistub.dll
2016-03-07 15:05:58 ----A---- C:\Windows\system32\fixmapi.exe
2016-03-07 15:05:52 ----A---- C:\Windows\system32\WMVDECOD.DLL
2016-03-07 15:05:52 ----A---- C:\Windows\system32\msmpeg2adec.dll
2016-03-07 15:05:51 ----A---- C:\Windows\system32\WMADMOD.DLL
2016-03-07 15:05:51 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2016-03-07 15:05:51 ----A---- C:\Windows\system32\mf.dll
2016-03-07 15:05:48 ----A---- C:\Windows\system32\WMVSDECD.DLL
2016-03-07 15:05:48 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2016-03-07 15:05:48 ----A---- C:\Windows\system32\WMADMOE.DLL
2016-03-07 15:05:47 ----A---- C:\Windows\system32\WMVENCOD.DLL
2016-03-07 15:05:47 ----A---- C:\Windows\system32\wmpmde.dll
2016-03-07 15:05:47 ----A---- C:\Windows\system32\COLORCNV.DLL
2016-03-07 15:05:46 ----A---- C:\Windows\system32\WMVXENCD.DLL
2016-03-07 15:05:46 ----A---- C:\Windows\system32\mcmde.dll
2016-03-07 15:05:46 ----A---- C:\Windows\system32\evr.dll
2016-03-07 15:05:45 ----A---- C:\Windows\system32\quartz.dll
2016-03-07 15:05:44 ----A---- C:\Windows\system32\devenum.dll
2016-03-07 15:05:41 ----A---- C:\Windows\system32\WMVSENCD.DLL
2016-03-07 15:05:41 ----A---- C:\Windows\system32\qdvd.dll
2016-03-07 15:05:41 ----A---- C:\Windows\system32\MP43DECD.DLL
2016-03-07 15:05:41 ----A---- C:\Windows\system32\MFWMAAEC.DLL
2016-03-07 15:05:41 ----A---- C:\Windows\system32\mfplat.dll
2016-03-07 15:05:40 ----A---- C:\Windows\system32\WMALFXGFXDSP.dll
2016-03-07 15:05:40 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2016-03-07 15:05:40 ----A---- C:\Windows\system32\MPG4DECD.DLL
2016-03-07 15:05:39 ----A---- C:\Windows\system32\WMSPDMOE.DLL
2016-03-07 15:05:39 ----A---- C:\Windows\system32\VIDRESZR.DLL
2016-03-07 15:05:39 ----A---- C:\Windows\system32\SysFxUI.dll
2016-03-07 15:05:39 ----A---- C:\Windows\system32\qasf.dll
2016-03-07 15:05:38 ----A---- C:\Windows\system32\rrinstaller.exe
2016-03-07 15:05:38 ----A---- C:\Windows\system32\RESAMPLEDMO.DLL
2016-03-07 15:05:38 ----A---- C:\Windows\system32\MP4SDECD.DLL
2016-03-07 15:05:38 ----A---- C:\Windows\system32\MP3DMOD.DLL
2016-03-07 15:05:38 ----A---- C:\Windows\system32\mfvdsp.dll
2016-03-07 15:05:37 ----A---- C:\Windows\system32\mfps.dll
2016-03-07 15:05:37 ----A---- C:\Windows\system32\mfpmp.exe
2016-03-07 15:05:36 ----A---- C:\Windows\system32\drivers\portcls.sys
2016-03-07 15:05:35 ----A---- C:\Windows\system32\mferror.dll
2016-03-07 15:05:35 ----A---- C:\Windows\system32\ksuser.dll
2016-03-07 15:05:35 ----A---- C:\Windows\system32\drivers\drmkaud.sys
2016-03-07 15:05:35 ----A---- C:\Windows\system32\drivers\drmk.sys
2016-02-04 23:13:44 ----A---- C:\Windows\system32\msvcr120_clr0400.dll
2016-02-04 23:13:44 ----A---- C:\Windows\system32\msvcp120_clr0400.dll
2015-12-16 16:57:56 ----A---- C:\Windows\system32\DWrite.dll
2015-12-16 16:57:55 ----A---- C:\Windows\system32\user32.dll
2015-12-16 16:57:55 ----A---- C:\Windows\system32\FntCache.dll
2015-12-16 16:57:53 ----A---- C:\Windows\system32\comsvcs.dll
2015-12-16 16:57:53 ----A---- C:\Windows\system32\catsrvut.dll
2015-12-16 16:57:29 ----A---- C:\Windows\system32\tzres.dll
2015-12-16 16:57:15 ----A---- C:\Windows\system32\wucltux.dll
2015-12-16 16:57:15 ----A---- C:\Windows\system32\wuaueng.dll
2015-12-16 16:57:15 ----A---- C:\Windows\system32\wuapi.dll
2015-12-16 16:57:14 ----A---- C:\Windows\system32\wuwebv.dll
2015-12-16 16:57:14 ----A---- C:\Windows\system32\wups2.dll
2015-12-16 16:57:14 ----A---- C:\Windows\system32\wups.dll
2015-12-16 16:57:14 ----A---- C:\Windows\system32\wudriver.dll
2015-12-16 16:57:14 ----A---- C:\Windows\system32\wuauclt.exe
2015-12-16 16:57:14 ----A---- C:\Windows\system32\wuapp.exe
2015-12-16 16:57:14 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-12-16 16:57:14 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-12-16 16:57:06 ----A---- C:\Windows\system32\usp10.dll
2015-12-16 16:57:06 ----A---- C:\Windows\system32\els.dll
2015-12-16 16:57:05 ----A---- C:\Windows\system32\wshrm.dll
2015-12-16 16:57:05 ----A---- C:\Windows\system32\drivers\rmcast.sys
2015-12-16 16:39:32 ----D---- C:\ProgramData\{0b85cab5-20c8-0}
2015-12-16 16:39:30 ----D---- C:\ProgramData\{0f6637c7-60c8-1}
======List of files/folders modified in the last 3 months======
2016-03-12 18:29:24 ----RD---- C:\Program Files
2016-03-12 18:20:57 ----D---- C:\Windows\winsxs
2016-03-12 18:19:16 ----SHD---- C:\Windows\Installer
2016-03-12 18:19:16 ----D---- C:\Config.Msi
2016-03-12 18:16:11 ----D---- C:\Windows\Microsoft.NET
2016-03-12 18:15:07 ----D---- C:\Windows\system32\NDF
2016-03-12 18:14:02 ----D---- C:\Windows\System32
2016-03-12 18:08:19 ----D---- C:\Windows\system32\MRT
2016-03-12 18:08:19 ----D---- C:\Windows\debug
2016-03-12 18:08:18 ----A---- C:\Windows\system32\MRT.exe
2016-03-10 19:48:16 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2016-03-10 18:49:27 ----D---- C:\Windows\system32\catroot2
2016-03-10 17:33:10 ----A---- C:\Windows\system32\log.txt
2016-03-10 17:31:11 ----D---- C:\Windows\inf
2016-03-10 17:30:45 ----D---- C:\Windows
2016-03-09 18:54:04 ----A---- C:\Windows\system.ini
2016-03-09 18:51:52 ----D---- C:\Windows\system32\drivers
2016-03-09 18:51:52 ----D---- C:\Windows\AppPatch
2016-03-09 18:51:51 ----D---- C:\Program Files\Common Files
2016-03-09 18:46:46 ----D---- C:\Windows\system32\config
2016-03-09 18:19:23 ----SD---- C:\ProgramData\Microsoft
2016-03-09 18:13:13 ----D---- C:\Windows\system32\drivers\etc
2016-03-09 18:12:42 ----D---- C:\ProgramData
2016-03-09 18:05:42 ----SHD---- C:\System Volume Information
2016-03-09 17:56:40 ----D---- C:\Users\Pavel\AppData\Roaming\DAEMON Tools Lite
2016-03-09 17:54:58 ----D---- C:\Windows\Panther
2016-03-09 17:54:57 ----D---- C:\Windows\Logs
2016-03-09 17:48:44 ----D---- C:\Windows\system32\Tasks
2016-03-09 17:37:27 ----D---- C:\Temp
2016-03-07 16:41:11 ----D---- C:\Windows\system32\catroot
2016-03-07 16:35:17 ----A---- C:\Windows\Reimage.ini
2016-03-07 16:33:13 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-03-07 16:22:07 ----D---- C:\Windows\system32\sk-SK
2016-03-07 16:22:07 ----D---- C:\Windows\system32\en-US
2016-03-07 16:22:07 ----D---- C:\Windows\system32\cs-CZ
2016-03-07 16:22:05 ----D---- C:\Program Files\Internet Explorer
2016-03-07 16:22:04 ----SD---- C:\Windows\system32\CompatTel
2016-03-07 16:22:04 ----D---- C:\Windows\system32\appraiser
2016-03-07 16:21:59 ----D---- C:\Windows\system32\DriverStore
2016-03-07 16:21:11 ----D---- C:\Program Files\Microsoft Silverlight
2016-03-07 15:37:12 ----D---- C:\ProgramData\Skype
2016-03-07 15:37:11 ----RD---- C:\Program Files\Skype
2016-03-07 15:37:00 ----D---- C:\Users\Pavel\AppData\Roaming\Skype
2016-03-07 15:34:49 ----DC---- C:\Windows\system32\DRVSTORE
2016-03-07 14:57:33 ----D---- C:\Windows\Prefetch
2016-01-04 22:48:38 ----SD---- C:\Windows\system32\GWX
2016-01-04 18:37:40 ----D---- C:\Windows\rescache
2016-01-04 17:05:38 ----RSD---- C:\Windows\assembly
2016-01-04 16:57:44 ----D---- C:\Windows\ehome
2015-12-13 20:53:43 ----D---- C:\Windows\system32\migration
2015-12-13 20:53:39 ----D---- C:\Program Files\Windows Journal
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 25656]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R2 rimspci;rimspci; C:\Windows\system32\DRIVERS\rimspe86.sys [2009-10-26 48640]
R2 risdpcie;risdpcie; C:\Windows\system32\DRIVERS\risdpe86.sys [2009-10-28 47616]
R2 rixdpcie;rixdpcie; C:\Windows\system32\DRIVERS\rixdpe86.sys [2009-12-11 38912]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 35896]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2009-08-13 1163328]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
R3 HECI;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECI.sys [2009-09-18 41088]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2011-04-15 10786304]
R3 Impcd;Impcd; C:\Windows\system32\DRIVERS\Impcd.sys [2010-02-10 132352]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 269824]
R3 NETwNs32;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 32 Bit; C:\Windows\system32\DRIVERS\NETwNs32.sys [2011-01-19 7087616]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2009-07-02 1765168]
R3 STHDA;IDT High Definition Audio CODEC; C:\Windows\system32\DRIVERS\stwrt.sys [2010-01-31 423424]
R3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 9216]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
R3 TPM;Čip TPM; C:\Windows\system32\drivers\tpm.sys [2009-07-14 30720]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
R3 WinUSB;WinUSB Service; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
S1 MpKslf307e631;MpKslf307e631; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A286F297-4A75-4019-BC3E-2DECF11E81A1}\MpKslf307e631.sys []
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 catchme;catchme; \??\C:\Users\Pavel\AppData\Local\Temp\catchme.sys []
S3 cpuz134;cpuz134; \??\C:\Users\Pavel\AppData\Local\Temp\cpuz134\cpuz134_x32.sys []
S3 ewusbnet;HUAWEI USB-NDIS miniport; C:\Windows\system32\DRIVERS\ewusbnet.sys [2009-07-23 112128]
S3 HTCAND32;HTC Device Driver; C:\Windows\System32\Drivers\ANDROIDUSB.sys [2009-10-26 25088]
S3 htcnprot;HTC NDIS Protocol Driver; C:\Windows\system32\DRIVERS\htcnprot.sys [2012-12-07 23040]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2009-07-23 102912]
S3 hwusbfake;Huawei DataCard USB Fake; C:\Windows\system32\DRIVERS\ewusbfake.sys [2009-07-23 100736]
S3 NETw5s32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows 7 32 Bit; C:\Windows\system32\DRIVERS\NETw5s32.sys [2010-01-13 6755840]
S3 OXSDIDRV_x32;Oxford Semi eSATA Filter (x32); C:\Windows\system32\DRIVERS\OXSDIDRV_x32.sys [2009-09-28 52656]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2012-06-27 19072]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2015-06-11 15872]
S3 RT-USB;Ross-Tech USB driver; C:\Windows\system32\drivers\RT-USB.SYS [2010-06-16 59464]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 84992]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 28160]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 602XML Updater;602Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [2011-10-10 85344]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 AESTFilters;Andrea ST Filters Service; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_2125713eb213e7bb\aestsrv.exe [2009-03-02 81920]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [2009-03-27 14336]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2011-05-13 26168]
R2 LaCieDesktopManagerService;LaCieDesktopManagerService; C:\Program Files\LaCie\Desktop Manager\lacie_dm_service.exe [2011-07-29 822272]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2009-06-17 73728]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-04-15 325656]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 NAUpdate;@C:\Program Files\Nero\Update\NASvc.exe,-200; C:\Program Files\Nero\Update\NASvc.exe [2010-05-04 503080]
R2 PassThru Service;Internet Pass-Through Service; C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe [2012-12-07 167424]
R2 PMBDeviceInfoProvider;PMBDeviceInfoProvider; C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe [2009-10-24 360224]
R2 STacSV;Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_2125713eb213e7bb\STacSV.exe [2010-01-31 229458]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-04-15 2533400]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\Windows\system32\vcsFPService.exe [2010-02-18 1664304]
S2 916e5338;Install Supporter; c:\progra~1\AssistantSvc.dll [2014-06-29 174928]
S2 ef0abbff;TurboNet; c:\progra~2\turbonet\TurboNetSvc.dll [2014-02-21 177488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-03-10 269504]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-12-12 102912]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2012-08-01 724888]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-08-04 1343400]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2014-04-11 45744]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Kontrola RSIT
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola RSIT
Zdravím!
Jak je na tom váš oper. systém s legalitou?
Jak je na tom váš oper. systém s legalitou?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola RSIT
Je to stroj HP zakoupený s oper. systémem W7. Byl užíván bez antivir ochrany a skáče v něm tolik oken s reklamou, že musí být odpojen ze sítě.
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola RSIT
Udělejte tento sken:
Stáhněte a spusťte OTL: http://oldtimer.geekstogo.com/OTL.exe . Spusťte, zaškrněte "Pro všechny uživatele", Kontrola na havěť LOP" a Kontrola na hvěť PURITY" a do dolního bílého okna zkopírujte:
Stáhněte a spusťte OTL: http://oldtimer.geekstogo.com/OTL.exe . Spusťte, zaškrněte "Pro všechny uživatele", Kontrola na havěť LOP" a Kontrola na hvěť PURITY" a do dolního bílého okna zkopírujte:
a klikněte na >Prohledat<. Dejte oba logy.CREATERESTOREPOINT
netsvcs
drivers32
savembr:0
/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
services.exe
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop
%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
%PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
%PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
%PROGRAMFILES%\Opera\opera.exe /md5
%PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5
%SystemDrive%\PhysicalMBR.bin /md5
*crack* /s
*keygen* /s
*loader* /s
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola RSIT
OTL Extras logfile created on: 12.3.2016 22:15:40 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = D:\Install\OTL
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.18230)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1,87 Gb Total Physical Memory | 0,39 Gb Available Physical Memory | 20,69% Memory free
3,73 Gb Paging File | 1,45 Gb Available in Paging File | 38,75% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 80,00 Gb Total Space | 28,63 Gb Free Space | 35,79% Space Free | Partition Type: NTFS
Drive D: | 213,99 Gb Total Space | 29,40 Gb Free Space | 13,74% Space Free | Partition Type: NTFS
Drive E: | 1,99 Gb Total Space | 1,99 Gb Free Space | 99,67% Space Free | Partition Type: FAT32
Computer Name: TOJEFUK | User Name: Pavel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 360 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1ADD8271-EF9A-4B69-994D-BB43FFD7B830}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{1F346CA8-FDF9-4AB5-9D01-9DF9EC5F53E7}" = lport=445 | protocol=6 | dir=in | app=system |
"{2BF4C92E-FA58-4806-9CD5-5155BDA27196}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{2C5F6B7B-3CCF-4EB0-9DFE-578A47E74EAE}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{3317B761-B8D3-40F8-A185-F589959A06E0}" = rport=139 | protocol=6 | dir=out | app=system |
"{37198B19-4E1E-40E5-AE26-E3FEB62A1093}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{3D416273-40A0-439E-A26C-426CF877724B}" = lport=138 | protocol=17 | dir=in | app=system |
"{47A20868-A3D6-4A6D-A638-D12AA289033F}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{5C710199-1F14-4427-8F2B-D6F57E37C149}" = rport=137 | protocol=17 | dir=out | app=system |
"{66B0672B-3714-48B4-84F5-7F2630774E1C}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{6F97C7F1-2C81-4F89-9FFB-614BE9DC5D17}" = lport=139 | protocol=6 | dir=in | app=system |
"{B0D5E72C-115A-4FFC-9F57-4F33E35EB60B}" = rport=445 | protocol=6 | dir=out | app=system |
"{C17247F9-07D5-4DC2-92FA-40F7A6BF5133}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{C7FFF92A-B647-4F75-8CDE-568D67F31F4D}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{C9A00185-542A-4BEC-8104-418CC66B567E}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{D602D69F-601D-496F-BD72-D9BE6452D087}" = rport=138 | protocol=17 | dir=out | app=system |
"{D73B3038-55F9-46AE-8E70-5B5B2D2AC1BF}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{E4D1733E-3F58-4150-9FA6-84FBFBFAFE4A}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{E88F48D1-BBE1-4C1D-A572-BD8FB36FA4AF}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{EBB7A6F7-F9F4-4FCD-A93F-28CF4F6D3DAB}" = lport=137 | protocol=17 | dir=in | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{030AE5CA-0F63-4A83-A2ED-4E009F4AF011}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{20F5E0C7-A2E6-4AE0-808C-DE4A384158E8}" = protocol=17 | dir=in | app=c:\program files\common files\soft602\langserv.exe |
"{9A2F45F9-EB3C-423D-8F22-8A920A38ACF9}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{A640B601-FB01-49D8-8B96-D7358AC775B8}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{D9515B50-640F-4559-8585-2AC9E2629EB9}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{E16D4558-2E44-450D-A06B-A06AA22A69CC}" = dir=in | app=c:\program files\hp\hp deskjet 5520 series\bin\devicesetup.exe |
"{F683EB25-2F1C-4583-A592-CD10B7EA98C7}" = dir=in | app=c:\program files\hp\hp deskjet 5520 series\bin\hpnetworkcommunicator.exe |
"{FB439141-5364-4A77-91F6-4B95450D5095}" = protocol=6 | dir=in | app=c:\program files\common files\soft602\langserv.exe |
"{FD31B27B-C36D-4F03-BA75-0D5EAF8BA8F0}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{08208143-777D-4A06-BB54-71BF0AD1BB70}" = IPTInstaller
"{17CA32D1-73BD-4990-B8F6-369D8D34B05D}" = Microsoft Antimalware Service CS-CZ Language Pack
"{2436F2A8-4B7E-4B6C-AE4E-604C84AA6A4F}" = Nero Core Components 10
"{24786573-2814-4FFC-A593-4DA10A0C8B73}" = Základní software zařízení HP Deskjet 5520 series
"{32C74893-0243-4235-A6F3-201F0E5D2C03}" = Software602 Print2PDF
"{3845209F-142E-4F48-B61A-AA34D2DB54BB}_is1" = LaCie Desktop Manager 1.4.1.84
"{3911CF56-9EF2-39BA-846A-C27BD3CD0685}" = Microsoft .NET Framework 4.5.2
"{399C37FB-08AF-493B-BFED-20FBD85EDF7F}" = HP Webcam Driver
"{415FA9AD-DA10-4ABE-97B6-5051D4795C90}" = HP FWUpdateEDO2
"{43BEEE26-01A8-4EEE-8632-2353261E3B55}" = RemoteComms driver
"{50779A29-834E-4E36-BBEB-B7CABC67A825}" = Microsoft Security Client CS-CZ Language Pack
"{523B2B1B-D8DB-4B41-90FF-C4D799E2758A}" = Nero ControlCenter 10 Help (CHM)
"{555868C6-49FB-484F-BB43-8980651A1B00}" = Nero BurnRights 10 Help (CHM)
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}" = Nero Update
"{69EDC871-8A8A-34A8-B511-FF7CE3C4B0B7}" = Microsoft .NET Framework 4.5.2 (CSY)
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{6DFB899F-17A2-48F0-A533-ED8D6866CF38}" = Nero Control Center 10
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7390478C-8581-415E-92E9-2997D9306B81}" = PC Connectivity Solution
"{78365FC6-09CA-4AC3-BC01-70FB46596047}" = Validity Fingerprint Driver
"{7A5D731D-B4B3-490E-B339-75685712BAAB}" = Nero Burning ROM 10
"{82EF29B1-9B60-4142-A155-0599216DD053}" = LightScribe System Software
"{846B5DED-DC8C-4E1A-B5B4-9F5B39A0CACE}" = HPDiagnosticAlert
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0405-0000-0000000FF1CE}" = Sada Compatibility Pack pro systém Office 2007
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{912D30CF-F39E-4B31-AD9A-123C6B794EE2}" = HP Update
"{924C3DC2-8E4E-432E-F973-9A2174A39774}" = ssafe saveu
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029" = Microsoft .NET Framework 4.5.2 (čeština)
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.2
"{943CFD7D-5336-47AF-9418-E02473A5A517}" = Nero BurnRights 10
"{9B6B24BE-80E7-46C4-9FA5-B167D5E0F345}" = Nero BurningROM 10 Help (CHM)
"{AC76BA86-0804-1033-1959-001824166751}" = Adobe Refresh Manager
"{AC76BA86-7AD7-1029-7B44-AB0000000001}" = Adobe Reader XI (11.0.15) - Czech
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{B1810804-A69C-4D67-98F7-1C469484B829}" = Studie vylepšování produktu HP Deskjet 5520 series
"{B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C}" = PMB
"{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}" = IDT Audio
"{E3B64CC5-C011-40C0-92BC-7316CD5E5688}" = Microsoft_VC100_CRT_SP1_x86
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F58F1453-FD7C-4629-BDA3-643E95E2B167}" = HP Deskjet 5520 series Nápověda
"{F5CC2EF8-20A4-4366-A681-3FE849E65809}" = RICOH Media Driver
"{FA37AF66-D12A-4BC7-B1DE-3D50C05A4EDB}" = Software602 Form Filler
"{FE041B02-234C-4AAA-9511-80DF6482A458}" = RICOH Media Driver v2.13.17.01
"{FE83F463-7E61-4B18-9FA0-B94B90A0B6B9}" = Nero Burning ROM 10
"6D07236E1D2F8479C88537ED0B7EB5D15ABBF7D5" = Balíček ovladače systému Windows - Ross-Tech USB Driver Package (11/16/2007 6.0.2.0)
"Adobe Flash Player ActiveX" = Adobe Flash Player 21 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 20 NPAPI
"B4DFFB06B716298277125094C48185BFE8B5A7E1" = Balíček ovladače systému Windows - Ross-Tech USB Driver Package (06/16/2010 2.06.02)
"BSPlayerf" = BS.Player FREE
"C79A3D5A32F77A371781A114DED85F082849F61E" = Balíček ovladače systému Windows - Ross-Tech USB Driver Package (08/16/2011 2.08.14)
"CCleaner" = CCleaner
"CleanUp!" = CleanUp!
"HP Photo Creations" = HP Photo Creations
"Marvell Miniport Driver" = Marvell Miniport Driver
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"VCDS Release 12.12" = VCDS Release 12.12.2
"WinRAR archiver" = WinRAR
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-2818709041-2535762957-1205763504-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 23.11.2012 16:23:06 | Computer Name = Tojefuk | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.
Error - 24.11.2012 15:52:01 | Computer Name = Tojefuk | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.
Error - 24.11.2012 16:10:53 | Computer Name = Tojefuk | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.
Error - 25.11.2012 15:52:43 | Computer Name = Tojefuk | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.
Error - 26.11.2012 16:15:32 | Computer Name = Tojefuk | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.
Error - 27.11.2012 17:56:17 | Computer Name = Tojefuk | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.
Error - 28.11.2012 15:32:44 | Computer Name = Tojefuk | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.
Error - 29.11.2012 15:20:09 | Computer Name = Tojefuk | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.
Error - 2.12.2012 3:39:15 | Computer Name = Tojefuk | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.
Error - 2.12.2012 18:04:23 | Computer Name = Tojefuk | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.
[ System Events ]
Error - 12.3.2016 14:46:32 | Computer Name = Tojefuk | Source = Service Control Manager | ID = 7031
Description = Služba Ochrana softwaru byla nečekaně ukončena. Stalo se to 1 krát.
Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.
Error - 12.3.2016 14:46:32 | Computer Name = Tojefuk | Source = Service Control Manager | ID = 7031
Description = Služba Microsoft .NET Framework NGEN v4.0.30319_X86 byla nečekaně
ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund:
Restartovat službu.
Error - 12.3.2016 14:46:34 | Computer Name = Tojefuk | Source = Service Control Manager | ID = 7034
Description = Služba Nero Update byla neočekávaně ukončena. Tento stav nastal již
1krát.
Error - 12.3.2016 14:46:34 | Computer Name = Tojefuk | Source = Service Control Manager | ID = 7034
Description = Služba Intel(R) Management & Security Application User Notification
Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error - 12.3.2016 14:46:34 | Computer Name = Tojefuk | Source = Service Control Manager | ID = 7031
Description = Služba Instalační služba systému Windows byla nečekaně ukončena. Stalo
se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat
službu.
Error - 12.3.2016 14:46:34 | Computer Name = Tojefuk | Source = Service Control Manager | ID = 7034
Description = Služba Adobe Acrobat Update Service byla neočekávaně ukončena. Tento
stav nastal již 1krát.
Error - 12.3.2016 14:46:34 | Computer Name = Tojefuk | Source = Service Control Manager | ID = 7031
Description = Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát.
Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.
Error - 12.3.2016 14:47:32 | Computer Name = Tojefuk | Source = Service Control Manager | ID = 7000
Description = Služba Služba zařazování tisku neuspěla při spuštění v důsledku následující
chyby: %%3
Error - 12.3.2016 14:48:41 | Computer Name = Tojefuk | Source = Service Control Manager | ID = 7009
Description = Při čekání na připojení služby Install Supporter bylo dosaženo časového
limitu (30000 ms).
Error - 12.3.2016 15:34:56 | Computer Name = Tojefuk | Source = DCOM | ID = 10001
Description =
< End of report >
OTL by OldTimer - Version 3.2.69.0 Folder = D:\Install\OTL
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.18230)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1,87 Gb Total Physical Memory | 0,39 Gb Available Physical Memory | 20,69% Memory free
3,73 Gb Paging File | 1,45 Gb Available in Paging File | 38,75% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 80,00 Gb Total Space | 28,63 Gb Free Space | 35,79% Space Free | Partition Type: NTFS
Drive D: | 213,99 Gb Total Space | 29,40 Gb Free Space | 13,74% Space Free | Partition Type: NTFS
Drive E: | 1,99 Gb Total Space | 1,99 Gb Free Space | 99,67% Space Free | Partition Type: FAT32
Computer Name: TOJEFUK | User Name: Pavel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 360 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1ADD8271-EF9A-4B69-994D-BB43FFD7B830}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{1F346CA8-FDF9-4AB5-9D01-9DF9EC5F53E7}" = lport=445 | protocol=6 | dir=in | app=system |
"{2BF4C92E-FA58-4806-9CD5-5155BDA27196}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{2C5F6B7B-3CCF-4EB0-9DFE-578A47E74EAE}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{3317B761-B8D3-40F8-A185-F589959A06E0}" = rport=139 | protocol=6 | dir=out | app=system |
"{37198B19-4E1E-40E5-AE26-E3FEB62A1093}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{3D416273-40A0-439E-A26C-426CF877724B}" = lport=138 | protocol=17 | dir=in | app=system |
"{47A20868-A3D6-4A6D-A638-D12AA289033F}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{5C710199-1F14-4427-8F2B-D6F57E37C149}" = rport=137 | protocol=17 | dir=out | app=system |
"{66B0672B-3714-48B4-84F5-7F2630774E1C}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{6F97C7F1-2C81-4F89-9FFB-614BE9DC5D17}" = lport=139 | protocol=6 | dir=in | app=system |
"{B0D5E72C-115A-4FFC-9F57-4F33E35EB60B}" = rport=445 | protocol=6 | dir=out | app=system |
"{C17247F9-07D5-4DC2-92FA-40F7A6BF5133}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{C7FFF92A-B647-4F75-8CDE-568D67F31F4D}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{C9A00185-542A-4BEC-8104-418CC66B567E}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{D602D69F-601D-496F-BD72-D9BE6452D087}" = rport=138 | protocol=17 | dir=out | app=system |
"{D73B3038-55F9-46AE-8E70-5B5B2D2AC1BF}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{E4D1733E-3F58-4150-9FA6-84FBFBFAFE4A}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{E88F48D1-BBE1-4C1D-A572-BD8FB36FA4AF}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{EBB7A6F7-F9F4-4FCD-A93F-28CF4F6D3DAB}" = lport=137 | protocol=17 | dir=in | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{030AE5CA-0F63-4A83-A2ED-4E009F4AF011}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{20F5E0C7-A2E6-4AE0-808C-DE4A384158E8}" = protocol=17 | dir=in | app=c:\program files\common files\soft602\langserv.exe |
"{9A2F45F9-EB3C-423D-8F22-8A920A38ACF9}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{A640B601-FB01-49D8-8B96-D7358AC775B8}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{D9515B50-640F-4559-8585-2AC9E2629EB9}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{E16D4558-2E44-450D-A06B-A06AA22A69CC}" = dir=in | app=c:\program files\hp\hp deskjet 5520 series\bin\devicesetup.exe |
"{F683EB25-2F1C-4583-A592-CD10B7EA98C7}" = dir=in | app=c:\program files\hp\hp deskjet 5520 series\bin\hpnetworkcommunicator.exe |
"{FB439141-5364-4A77-91F6-4B95450D5095}" = protocol=6 | dir=in | app=c:\program files\common files\soft602\langserv.exe |
"{FD31B27B-C36D-4F03-BA75-0D5EAF8BA8F0}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{08208143-777D-4A06-BB54-71BF0AD1BB70}" = IPTInstaller
"{17CA32D1-73BD-4990-B8F6-369D8D34B05D}" = Microsoft Antimalware Service CS-CZ Language Pack
"{2436F2A8-4B7E-4B6C-AE4E-604C84AA6A4F}" = Nero Core Components 10
"{24786573-2814-4FFC-A593-4DA10A0C8B73}" = Základní software zařízení HP Deskjet 5520 series
"{32C74893-0243-4235-A6F3-201F0E5D2C03}" = Software602 Print2PDF
"{3845209F-142E-4F48-B61A-AA34D2DB54BB}_is1" = LaCie Desktop Manager 1.4.1.84
"{3911CF56-9EF2-39BA-846A-C27BD3CD0685}" = Microsoft .NET Framework 4.5.2
"{399C37FB-08AF-493B-BFED-20FBD85EDF7F}" = HP Webcam Driver
"{415FA9AD-DA10-4ABE-97B6-5051D4795C90}" = HP FWUpdateEDO2
"{43BEEE26-01A8-4EEE-8632-2353261E3B55}" = RemoteComms driver
"{50779A29-834E-4E36-BBEB-B7CABC67A825}" = Microsoft Security Client CS-CZ Language Pack
"{523B2B1B-D8DB-4B41-90FF-C4D799E2758A}" = Nero ControlCenter 10 Help (CHM)
"{555868C6-49FB-484F-BB43-8980651A1B00}" = Nero BurnRights 10 Help (CHM)
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}" = Nero Update
"{69EDC871-8A8A-34A8-B511-FF7CE3C4B0B7}" = Microsoft .NET Framework 4.5.2 (CSY)
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{6DFB899F-17A2-48F0-A533-ED8D6866CF38}" = Nero Control Center 10
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7390478C-8581-415E-92E9-2997D9306B81}" = PC Connectivity Solution
"{78365FC6-09CA-4AC3-BC01-70FB46596047}" = Validity Fingerprint Driver
"{7A5D731D-B4B3-490E-B339-75685712BAAB}" = Nero Burning ROM 10
"{82EF29B1-9B60-4142-A155-0599216DD053}" = LightScribe System Software
"{846B5DED-DC8C-4E1A-B5B4-9F5B39A0CACE}" = HPDiagnosticAlert
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0405-0000-0000000FF1CE}" = Sada Compatibility Pack pro systém Office 2007
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{912D30CF-F39E-4B31-AD9A-123C6B794EE2}" = HP Update
"{924C3DC2-8E4E-432E-F973-9A2174A39774}" = ssafe saveu
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029" = Microsoft .NET Framework 4.5.2 (čeština)
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.2
"{943CFD7D-5336-47AF-9418-E02473A5A517}" = Nero BurnRights 10
"{9B6B24BE-80E7-46C4-9FA5-B167D5E0F345}" = Nero BurningROM 10 Help (CHM)
"{AC76BA86-0804-1033-1959-001824166751}" = Adobe Refresh Manager
"{AC76BA86-7AD7-1029-7B44-AB0000000001}" = Adobe Reader XI (11.0.15) - Czech
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{B1810804-A69C-4D67-98F7-1C469484B829}" = Studie vylepšování produktu HP Deskjet 5520 series
"{B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C}" = PMB
"{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}" = IDT Audio
"{E3B64CC5-C011-40C0-92BC-7316CD5E5688}" = Microsoft_VC100_CRT_SP1_x86
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F58F1453-FD7C-4629-BDA3-643E95E2B167}" = HP Deskjet 5520 series Nápověda
"{F5CC2EF8-20A4-4366-A681-3FE849E65809}" = RICOH Media Driver
"{FA37AF66-D12A-4BC7-B1DE-3D50C05A4EDB}" = Software602 Form Filler
"{FE041B02-234C-4AAA-9511-80DF6482A458}" = RICOH Media Driver v2.13.17.01
"{FE83F463-7E61-4B18-9FA0-B94B90A0B6B9}" = Nero Burning ROM 10
"6D07236E1D2F8479C88537ED0B7EB5D15ABBF7D5" = Balíček ovladače systému Windows - Ross-Tech USB Driver Package (11/16/2007 6.0.2.0)
"Adobe Flash Player ActiveX" = Adobe Flash Player 21 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 20 NPAPI
"B4DFFB06B716298277125094C48185BFE8B5A7E1" = Balíček ovladače systému Windows - Ross-Tech USB Driver Package (06/16/2010 2.06.02)
"BSPlayerf" = BS.Player FREE
"C79A3D5A32F77A371781A114DED85F082849F61E" = Balíček ovladače systému Windows - Ross-Tech USB Driver Package (08/16/2011 2.08.14)
"CCleaner" = CCleaner
"CleanUp!" = CleanUp!
"HP Photo Creations" = HP Photo Creations
"Marvell Miniport Driver" = Marvell Miniport Driver
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"VCDS Release 12.12" = VCDS Release 12.12.2
"WinRAR archiver" = WinRAR
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-2818709041-2535762957-1205763504-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 23.11.2012 16:23:06 | Computer Name = Tojefuk | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.
Error - 24.11.2012 15:52:01 | Computer Name = Tojefuk | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.
Error - 24.11.2012 16:10:53 | Computer Name = Tojefuk | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.
Error - 25.11.2012 15:52:43 | Computer Name = Tojefuk | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.
Error - 26.11.2012 16:15:32 | Computer Name = Tojefuk | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.
Error - 27.11.2012 17:56:17 | Computer Name = Tojefuk | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.
Error - 28.11.2012 15:32:44 | Computer Name = Tojefuk | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.
Error - 29.11.2012 15:20:09 | Computer Name = Tojefuk | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.
Error - 2.12.2012 3:39:15 | Computer Name = Tojefuk | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.
Error - 2.12.2012 18:04:23 | Computer Name = Tojefuk | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.
[ System Events ]
Error - 12.3.2016 14:46:32 | Computer Name = Tojefuk | Source = Service Control Manager | ID = 7031
Description = Služba Ochrana softwaru byla nečekaně ukončena. Stalo se to 1 krát.
Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.
Error - 12.3.2016 14:46:32 | Computer Name = Tojefuk | Source = Service Control Manager | ID = 7031
Description = Služba Microsoft .NET Framework NGEN v4.0.30319_X86 byla nečekaně
ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund:
Restartovat službu.
Error - 12.3.2016 14:46:34 | Computer Name = Tojefuk | Source = Service Control Manager | ID = 7034
Description = Služba Nero Update byla neočekávaně ukončena. Tento stav nastal již
1krát.
Error - 12.3.2016 14:46:34 | Computer Name = Tojefuk | Source = Service Control Manager | ID = 7034
Description = Služba Intel(R) Management & Security Application User Notification
Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error - 12.3.2016 14:46:34 | Computer Name = Tojefuk | Source = Service Control Manager | ID = 7031
Description = Služba Instalační služba systému Windows byla nečekaně ukončena. Stalo
se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat
službu.
Error - 12.3.2016 14:46:34 | Computer Name = Tojefuk | Source = Service Control Manager | ID = 7034
Description = Služba Adobe Acrobat Update Service byla neočekávaně ukončena. Tento
stav nastal již 1krát.
Error - 12.3.2016 14:46:34 | Computer Name = Tojefuk | Source = Service Control Manager | ID = 7031
Description = Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát.
Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.
Error - 12.3.2016 14:47:32 | Computer Name = Tojefuk | Source = Service Control Manager | ID = 7000
Description = Služba Služba zařazování tisku neuspěla při spuštění v důsledku následující
chyby: %%3
Error - 12.3.2016 14:48:41 | Computer Name = Tojefuk | Source = Service Control Manager | ID = 7009
Description = Při čekání na připojení služby Install Supporter bylo dosaženo časového
limitu (30000 ms).
Error - 12.3.2016 15:34:56 | Computer Name = Tojefuk | Source = DCOM | ID = 10001
Description =
< End of report >
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola RSIT
Znovu spustte OTL jako spravce
Do spodniho okna vlozte nasledujici text:
Po restartu se objevi novy log, ten sem dejte.
Do spodniho okna vlozte nasledujici text:
Kliknete na Opravit a nechte program pracovat. Pri otazce na restart souhlaste.:OTL
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\S-1-5-21-2818709041-2535762957-1205763504-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IESR02
FF - prefs.js..sweetim.toolbar.previous.browser.search.defaultenginename: ""
FF - prefs.js..sweetim.toolbar.previous.browser.search.selectedEngine: ""
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - prefs.js..extensions.0Hvm2dI2DxkDY44R.scode:
C:\Windows\inf\msstcwdi.vbe
O4 - HKLM..\Run: [msstcwdiSrv] C:\Windows\inf\msstcwdi.vbe ()
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
:commands
[EMPTYTEMP]
[EMPTYFLASH]
[RESETHOSTS]
[Purity]
[CreateRestorePoint]
Po restartu se objevi novy log, ten sem dejte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola RSIT
All processes killed
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-2818709041-2535762957-1205763504-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/GENUINE\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\msstcwdiSrv deleted successfully.
C:\Windows\inf\msstcwdi.vbe moved successfully.
C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skype-ie-addon-data\ deleted successfully.
Invalid CLSID key: C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
File C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
========== FILES ==========
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Pavel
->Temp folder emptied: 21602441 bytes
->Temporary Internet Files folder emptied: 131375988 bytes
->Java cache emptied: 368543 bytes
->FireFox cache emptied: 77122761 bytes
->Flash cache emptied: 2047 bytes
User: Public
->Temp folder emptied: 0 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 9884516 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 229,00 mb
[EMPTYFLASH]
User: All Users
User: Default
User: Default User
User: Pavel
->Flash cache emptied: 0 bytes
User: Public
Total Flash Files Cleaned = 0,00 mb
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
Restore point Set: OTL Restore Point
OTL by OldTimer - Version 3.2.69.0 log created on 03132016_101540
Files\Folders moved on Reboot...
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\VSNJHD86\afr[3].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\VSNJHD86\afr[4].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\VSNJHD86\context[1].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\VSNJHD86\context[2].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\VSNJHD86\p-01-0VIaSjnOLg[1].gif moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\VSNJHD86\p-01-0VIaSjnOLg[2].gif moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\UP1VDB6U\log_ctxjs_popularity[2].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\UP1VDB6U\viewtopic[3].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\T918O9CT\context[2].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\S2QG7W9T\cJZKeOuBrn4kERxqtaUH3T8E0i7KZn-EPnyo3HZu7kw[1].woff moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\S2QG7W9T\DXI1ORHCpsQm3Vp6mXoaTXhCUOGz7vYGh680lGh-uXM[1].woff moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\S2QG7W9T\EInbV5DfGHOiMmvb1Xr-hnhCUOGz7vYGh680lGh-uXM[1].woff moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\S2QG7W9T\k3k702ZOKiLJc3WVjuplzHhCUOGz7vYGh680lGh-uXM[1].woff moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\S2QG7W9T\MTP_ySUJH_bn48VBG8sNSnhCUOGz7vYGh680lGh-uXM[1].woff moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\S2QG7W9T\pix[2].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\S2QG7W9T\PRmiXeptR36kaC0GEAetxh_xHqYgAV9Bl_ZQbYUxnQU[1].woff moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\S2QG7W9T\Store[1].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NPR8UT3G\fontawesome-webfont[1].eot moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NPR8UT3G\log_ctxjs_popularity[3].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\MI9GOLV1\afr[3].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\MI9GOLV1\afr[4].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\MI9GOLV1\viewtopic[1].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\JUNMH3ZJ\pixels[1].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\FM08MSHU\activator[2].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\FM08MSHU\viewforum[1].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\7TX3VRCW\context[1].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\3VCTW6S1\fontawesome-webfont[1].eot moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\3VCTW6S1\gk5FxslNkTTHtojXrkp-xF1YPouZEKgzpqZW9wN-3Ek[1].woff moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\3VCTW6S1\gk5FxslNkTTHtojXrkp-xONSK5BxN3NFS4EJkViHIqo[1].woff moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\3VCTW6S1\jIXlqT1WKafUSwj6s9AzV6XnXbwdDC8wAz6IIzmCDUP3rGVtsTkPsbDajuO5ueQw[1].woff moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\3VCTW6S1\PRmiXeptR36kaC0GEAetxjqR_3kx9_hJXbbyU8S6IN0[1].woff moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\3VCTW6S1\PRmiXeptR36kaC0GEAetxkCDe67GEgBv_HnyvHTfdew[1].woff moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\3VCTW6S1\PRmiXeptR36kaC0GEAetxn5HxGBcBvicCpTp6spHfNo[1].woff moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\3VCTW6S1\server[1].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\3VCTW6S1\Store[2].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\3VCTW6S1\xjAJXh38I15wypJXxuGMBobN6UDyHWBl620a-IRfuBk[1].woff moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1VFWY31V\mon[1].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1VFWY31V\pix[1].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1VFWY31V\pix[2].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1VFWY31V\server[2].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\AntiPhishing\4A72F430-B40C-4D36-A068-CE33ADA5ADF9.dat moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\MSIMGSIZ.DAT moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-2818709041-2535762957-1205763504-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/GENUINE\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\msstcwdiSrv deleted successfully.
C:\Windows\inf\msstcwdi.vbe moved successfully.
C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skype-ie-addon-data\ deleted successfully.
Invalid CLSID key: C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
File C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
========== FILES ==========
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Pavel
->Temp folder emptied: 21602441 bytes
->Temporary Internet Files folder emptied: 131375988 bytes
->Java cache emptied: 368543 bytes
->FireFox cache emptied: 77122761 bytes
->Flash cache emptied: 2047 bytes
User: Public
->Temp folder emptied: 0 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 9884516 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 229,00 mb
[EMPTYFLASH]
User: All Users
User: Default
User: Default User
User: Pavel
->Flash cache emptied: 0 bytes
User: Public
Total Flash Files Cleaned = 0,00 mb
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
Restore point Set: OTL Restore Point
OTL by OldTimer - Version 3.2.69.0 log created on 03132016_101540
Files\Folders moved on Reboot...
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\VSNJHD86\afr[3].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\VSNJHD86\afr[4].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\VSNJHD86\context[1].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\VSNJHD86\context[2].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\VSNJHD86\p-01-0VIaSjnOLg[1].gif moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\VSNJHD86\p-01-0VIaSjnOLg[2].gif moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\UP1VDB6U\log_ctxjs_popularity[2].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\UP1VDB6U\viewtopic[3].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\T918O9CT\context[2].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\S2QG7W9T\cJZKeOuBrn4kERxqtaUH3T8E0i7KZn-EPnyo3HZu7kw[1].woff moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\S2QG7W9T\DXI1ORHCpsQm3Vp6mXoaTXhCUOGz7vYGh680lGh-uXM[1].woff moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\S2QG7W9T\EInbV5DfGHOiMmvb1Xr-hnhCUOGz7vYGh680lGh-uXM[1].woff moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\S2QG7W9T\k3k702ZOKiLJc3WVjuplzHhCUOGz7vYGh680lGh-uXM[1].woff moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\S2QG7W9T\MTP_ySUJH_bn48VBG8sNSnhCUOGz7vYGh680lGh-uXM[1].woff moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\S2QG7W9T\pix[2].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\S2QG7W9T\PRmiXeptR36kaC0GEAetxh_xHqYgAV9Bl_ZQbYUxnQU[1].woff moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\S2QG7W9T\Store[1].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NPR8UT3G\fontawesome-webfont[1].eot moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NPR8UT3G\log_ctxjs_popularity[3].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\MI9GOLV1\afr[3].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\MI9GOLV1\afr[4].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\MI9GOLV1\viewtopic[1].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\JUNMH3ZJ\pixels[1].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\FM08MSHU\activator[2].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\FM08MSHU\viewforum[1].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\7TX3VRCW\context[1].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\3VCTW6S1\fontawesome-webfont[1].eot moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\3VCTW6S1\gk5FxslNkTTHtojXrkp-xF1YPouZEKgzpqZW9wN-3Ek[1].woff moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\3VCTW6S1\gk5FxslNkTTHtojXrkp-xONSK5BxN3NFS4EJkViHIqo[1].woff moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\3VCTW6S1\jIXlqT1WKafUSwj6s9AzV6XnXbwdDC8wAz6IIzmCDUP3rGVtsTkPsbDajuO5ueQw[1].woff moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\3VCTW6S1\PRmiXeptR36kaC0GEAetxjqR_3kx9_hJXbbyU8S6IN0[1].woff moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\3VCTW6S1\PRmiXeptR36kaC0GEAetxkCDe67GEgBv_HnyvHTfdew[1].woff moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\3VCTW6S1\PRmiXeptR36kaC0GEAetxn5HxGBcBvicCpTp6spHfNo[1].woff moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\3VCTW6S1\server[1].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\3VCTW6S1\Store[2].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\3VCTW6S1\xjAJXh38I15wypJXxuGMBobN6UDyHWBl620a-IRfuBk[1].woff moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1VFWY31V\mon[1].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1VFWY31V\pix[1].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1VFWY31V\pix[2].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1VFWY31V\server[2].htm moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\AntiPhishing\4A72F430-B40C-4D36-A068-CE33ADA5ADF9.dat moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\MSIMGSIZ.DAT moved successfully.
C:\Users\Pavel\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola RSIT
Smazáno. Vše by mělo být OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola RSIT
Skutečně to vypadá opraveně. Děkuji za pomoc.
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola RSIT
Rádo se stalo! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?