VIRY.CZ

RogueKiller V8.8.10 [Feb 28 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operačný systém : Windows Vista (6.0.6002 Service Pack 2) 32 bits version
Spustené v : Normálny režim
Užívateľ : Danka [Práva Správcu]
Režim : Oprava HOSTS -- Dátum : 03/02/2014 09:32:28
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy : 0 ¤¤¤

¤¤¤ Záznamy Registrov : 0 ¤¤¤

¤¤¤ Ovládač : [NAHRATÉ] ¤¤¤

¤¤¤ Vonkajšie Hives: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Súbor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 localhost
::1 localhost


¤¤¤ Resetovaný HOSTS: ¤¤¤
127.0.0.1 localhost


Dokončené : << RKreport[0]_H_03022014_093228.txt >>
RKreport[0]_D_03022014_092919.txt;RKreport[0]_D_03022014_093135.txt;RKreport[0]_S_03022014_082550.txt
RKreport[0]_S_03022014_093130.txt

Udelejte kontrolu programem HD Tune
Stahnete http://www.slunecnice.cz/sw/hd-tune/ , nainstalujte a spustte jako spravce (pokud vam pri instalaci nabidne nejaky doplnek, odmitnete ho!)
V tom okne kliknete na posledni zalozku - Error Scan (pokud bude zatrzeny quick scan, tak zatrzitko zruste) a kliknete na Start.
Kontrola bude nejakou dobu trvat. Dejte vedet, jestli tam bylo nejake cervene policko.
Taky se podivejte na zalozku Health a opiste mi (vyfotte), co se tam pise. Melo by tam byt OK http://www.google.cz/imgres?um=1&hl=cs& ... s:20,i:143

začalo to robiť a už sa objavilo zatiaľ jedno červené políčko...testujem ďalej
Health ukazuje všetko OK,...zatiaľ

To neni dobre CDI hlasil jeden podezrely setor, tak se zrejme potvrdilo, ze neni v poradku. Teoreticky by tam dalsi cerveny byt nemel, aspon doufam. I tak to ale znamena, ze disk pomalu odchazi. A i to muze byt pricina problemu. Ale uvidime, az to docistime

skončilo to, jeden červený bod....Health OK...ak treba foto dáko pošlem

To nemusite posilat Jedine vasi fotku, to klidne muzete

Tak pokracujem dale



Pokud nemate, zazalohujte si radeji dulezita data (fotky, dokumenty, atd.)

Nepouzivejte ComboFix bez predchozi domluvy! Je to poruseni pravidel fora a ztratite tim narok na pomoc!

Stahnete ComboFix http://download.bleepingcomputer.com/sUBs/ComboFix.exe a ulozte ho na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Kliknete na ComboFix pravym mysidlem a levym na Spustit jako spravce
Odsouhlaste licencni podminky a nechte program pracovat. Jestli vam nabidne instalaci Konzoly pro zotaveni, souhlaste.
Po dobu skenu nic nespoustejte, nikam neklikejte.
Po dokonceni skenovani (muze dojit i k restartu pc) by se mel vytvorit log, ktery bude umisteny zde C:\ComboFix.txt
Jeho obsah sem zkopirujte

Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace
Kdyz windows nabehne, ale pri spousteni ruznych programu bude hlasena chyba, staci restartovat pc a bude to v poradku

bohužial musím odísť, večer to urobím a pozálohujem si veci....zatiaľ velmi pekne ďakujem

OK, budu tu nakukovat tak do 20:00, pak se budu pomalu chystat do rise snu, protoze brzy rano vstavam do prace. Takze pripadne napisu az zitra

Neni vubec zac!

Preji hezky den

ComboFix 14-02-24.02 - Danka . 03. 2014 16:41:50.1.1 - x86
Microsoft® Windows Vista™ Home Basic 6.0.6002.2.1250.421.1051.18.1470.402 [GMT 1:00]
Running from: c:\users\Danka\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Microsoft Security Essentials *Disabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\hpeDD91.dll
c:\programdata\hpeF03D.dll
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_cfajjdadjnjfiaongopenjclfpogiemb_0
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_cfajjdadjnjfiaongopenjclfpogiemb_0\2
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_cfajjdadjnjfiaongopenjclfpogiemb_0\3
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_delimgmbagokgmjffmedgcafjcakbedp_0
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_delimgmbagokgmjffmedgcafjcakbedp_0\10
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_delimgmbagokgmjffmedgcafjcakbedp_0\9
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfajjdadjnjfiaongopenjclfpogiemb
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfajjdadjnjfiaongopenjclfpogiemb\1.20.129_0\background.html
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfajjdadjnjfiaongopenjclfpogiemb\1.20.129_0\crossriderManifest.json
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfajjdadjnjfiaongopenjclfpogiemb\1.20.129_0\icons\actions\1.png
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfajjdadjnjfiaongopenjclfpogiemb\1.20.129_0\icons\icon128.png
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfajjdadjnjfiaongopenjclfpogiemb\1.20.129_0\icons\icon16.png
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfajjdadjnjfiaongopenjclfpogiemb\1.20.129_0\icons\icon48.png
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfajjdadjnjfiaongopenjclfpogiemb\1.20.129_0\js\api\cookie.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfajjdadjnjfiaongopenjclfpogiemb\1.20.129_0\js\api\chrome.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfajjdadjnjfiaongopenjclfpogiemb\1.20.129_0\js\api\message.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfajjdadjnjfiaongopenjclfpogiemb\1.20.129_0\js\background.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfajjdadjnjfiaongopenjclfpogiemb\1.20.129_0\js\lib\app_api.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfajjdadjnjfiaongopenjclfpogiemb\1.20.129_0\js\lib\async_api.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfajjdadjnjfiaongopenjclfpogiemb\1.20.129_0\js\lib\bg_app_api.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfajjdadjnjfiaongopenjclfpogiemb\1.20.129_0\js\lib\cookie_store.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfajjdadjnjfiaongopenjclfpogiemb\1.20.129_0\js\lib\data_store.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfajjdadjnjfiaongopenjclfpogiemb\1.20.129_0\js\lib\delegate.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfajjdadjnjfiaongopenjclfpogiemb\1.20.129_0\js\lib\events.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfajjdadjnjfiaongopenjclfpogiemb\1.20.129_0\js\lib\onBGDocumentLoad.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfajjdadjnjfiaongopenjclfpogiemb\1.20.129_0\js\lib\reports.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfajjdadjnjfiaongopenjclfpogiemb\1.20.129_0\js\lib\util.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfajjdadjnjfiaongopenjclfpogiemb\1.20.129_0\manifest.json
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfajjdadjnjfiaongopenjclfpogiemb\1.20.129_0\popup.html
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\_locales\ar\messages.json
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\_locales\en\messages.json
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\_locales\es\messages.json
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\_locales\fr\messages.json
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\_locales\pt\messages.json
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\_locales\pt_PT\messages.json
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\_locales\zh_TW\messages.json
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\background.html
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\crossriderManifest.json
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\extensionData\manifest.xml
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\extensionData\plugins.json
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\extensionData\plugins\1_base.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\extensionData\plugins\13_CrossriderAppUtils.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\extensionData\plugins\14_CrossriderUtils.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\extensionData\plugins\17_jQuery.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\extensionData\plugins\19_CHAppAPIWrapper.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\extensionData\plugins\21_debug.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\extensionData\plugins\22_resources.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\extensionData\plugins\28_initializer.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\extensionData\plugins\4_jquery_1_7_1.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\extensionData\plugins\47_resources_background.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\extensionData\plugins\64_appApiMessage.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\extensionData\plugins\72_appApiValidation.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\extensionData\plugins\78_CrossriderInfo.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\extensionData\plugins\80_CHPopupAppAPI.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\extensionData\plugins\97_resourceApiWrapper.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\extensionData\userCode\background.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\extensionData\userCode\extension.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\icons\actions\1.png
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\icons\icon128.png
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\icons\icon16.png
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\icons\icon48.png
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\js\api\cookie.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\js\api\chrome.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\js\api\message.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\js\api\pageAction.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\js\api\pageActionBG.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\js\background.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\js\lib\app_api.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\js\lib\bg_app_api.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\js\lib\consts.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\js\lib\cookie_store.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\js\lib\crossriderAPI.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\js\lib\delegate.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\js\lib\events.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\js\lib\extensionDataStore.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\js\lib\installer.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\js\lib\logFile.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\js\lib\logging.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\js\lib\onBGDocumentLoad.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\js\lib\popupResource\newPopup.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\js\lib\popupResource\popup.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\js\lib\reports.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\js\lib\storageWrapper.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\js\lib\updateManager.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\js\lib\util.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\js\lib\xhr.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\js\main.js
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\manifest.json
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Extensions\delimgmbagokgmjffmedgcafjcakbedp\1.25.66_0\popup.html
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\delimgmbagokgmjffmedgcafjcakbedp
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\delimgmbagokgmjffmedgcafjcakbedp\000700.log
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\delimgmbagokgmjffmedgcafjcakbedp\000701.ldb
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\delimgmbagokgmjffmedgcafjcakbedp\CURRENT
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\delimgmbagokgmjffmedgcafjcakbedp\LOCK
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\delimgmbagokgmjffmedgcafjcakbedp\LOG
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\delimgmbagokgmjffmedgcafjcakbedp\LOG.old
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\delimgmbagokgmjffmedgcafjcakbedp\MANIFEST-000698
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_cfajjdadjnjfiaongopenjclfpogiemb_0.localstorage-journal
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_cfajjdadjnjfiaongopenjclfpogiemb_0.localstorage
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_delimgmbagokgmjffmedgcafjcakbedp_0.localstorage-journal
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_delimgmbagokgmjffmedgcafjcakbedp_0.localstorage
c:\users\Danka\AppData\Local\Google\Chrome\User Data\Default\Preferences
.
.
((((((((((((((((((((((((( Files Created from 2014-02-02 to 2014-03-02 )))))))))))))))))))))))))))))))
.
.
2014-03-02 15:52 . 2014-03-02 15:52 -------- d-----w- c:\users\USER\AppData\Local\temp
2014-03-02 15:52 . 2014-03-02 15:52 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-03-02 08:43 . 2014-03-02 08:43 -------- d-----w- c:\program files\HD Tune
2014-03-01 19:36 . 2014-03-01 19:36 -------- d-----w- c:\program files\Stitch Art Easy 4.0
2014-03-01 15:04 . 2014-03-01 15:04 -------- d-----w- c:\users\Danka\AppData\Roaming\Malwarebytes
2014-03-01 15:04 . 2014-03-01 15:04 -------- d-----w- c:\programdata\Malwarebytes
2014-03-01 14:43 . 2014-03-01 14:51 -------- d-----w- C:\AdwCleaner
2014-03-01 14:27 . 2014-03-01 14:33 -------- d-----w- c:\program files\trend micro
2014-03-01 14:27 . 2014-03-01 14:28 -------- d-----w- C:\rsit
2014-03-01 08:13 . 2014-02-06 07:08 7947048 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{448B5A6B-00D7-402E-A324-11FC4AF872FE}\mpengine.dll
2014-02-28 18:49 . 2014-02-28 18:49 -------- d-----w- c:\windows\Migration
2014-02-27 09:55 . 2014-02-21 15:50 765968 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{DCA85FE0-E06B-4BEA-BF8A-F696D4D26DB5}\gapaengine.dll
2014-02-27 09:28 . 2014-02-06 07:08 7947048 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2014-02-13 17:10 . 2014-02-13 17:10 -------- d-----w- C:\6f0bd0120f18ba83b5547ba42b11a3f6
2014-02-12 15:25 . 2013-12-05 02:12 1248768 ----a-w- c:\windows\system32\msxml3.dll
2014-02-05 18:29 . 2014-02-05 18:29 -------- d-----w- c:\users\USER\AppData\Local\Facebook
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
8430-08-31 20:02 . 2009-07-17 21:05 398416 ----a-w- c:\windows\system\VBRUN300.DLL
2014-02-21 16:04 . 2012-08-13 15:41 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-02-21 16:04 . 2012-08-13 15:41 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-02-21 15:50 . 2012-10-07 18:21 765968 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2014-01-19 07:32 . 2009-10-02 17:48 231584 ------w- c:\windows\system32\MpSigStub.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-10-23 948440]
"SoundMan"="SOUNDMAN.EXE" [2008-09-10 604704]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\reset]
regedit [X]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2008-01-11 21:16 39792 ----a-w- c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM]
2006-03-20 16:34 213936 ----a-w- c:\program files\Common Files\InstallShield\UpdateService\ISUSPM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Monitor]
2006-11-03 10:01 319488 ----a-w- c:\windows\Pixart\Pac7311\Monitor.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
2006-01-12 15:40 155648 ----a-w- c:\program files\Common Files\Ahead\Lib\NeroCheck.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
2013-06-21 07:58 19875432 ----a-r- c:\program files\Skype\Phone\Skype.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]
2008-09-10 12:14 604704 ----a-w- c:\windows\SOUNDMAN.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\USBToolTip]
2007-02-20 09:07 199752 ----a-w- c:\progra~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VTTimer]
2006-09-14 16:54 53248 ----a-w- c:\windows\System32\VTTimer.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VTTrayp]
2007-04-25 13:41 176128 ----a-w- c:\windows\System32\VTTrayp.exe
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceNoNetwork REG_MULTI_SZ PLA DPS BFE mpssvc
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-02-21 16:21 1150280 ----a-w- c:\program files\Google\Chrome\Application\33.0.1750.117\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2014-03-02 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-13 16:04]
.
2014-03-01 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2845228576-1257421551-1014224335-1000Core.job
- c:\users\USER\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-02-05 18:29]
.
2014-03-02 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2845228576-1257421551-1014224335-1000UA.job
- c:\users\USER\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-02-05 18:29]
.
2014-03-01 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2845228576-1257421551-1014224335-1004Core.job
- c:\users\Danka\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-03-23 17:21]
.
2014-03-02 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2845228576-1257421551-1014224335-1004UA.job
- c:\users\Danka\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-03-23 17:21]
.
2014-03-02 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-08-13 15:41]
.
2014-03-02 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-08-13 15:41]
.
.
------- Supplementary Scan -------
.
uStart Page = https://www.google.sk/
IE: E&xportovať do programu Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.2.1
.
- - - - ORPHANS REMOVED - - - -
.
SafeBoot-WudfPf
SafeBoot-WudfRd
MSConfigStartUp-Bing Bar - c:\program files\MSN Toolbar\Platform\5.0.1449.0\mswinext.exe
MSConfigStartUp-ICQ - c:\program files\ICQ6\ICQ.exe
AddRemove-uTorrent - c:\program files\uTorrent\uTorrent.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2014-03-02 16:59
Windows 6.0.6002 Service Pack 2 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Microsoft Security Client\MsMpEng.exe
c:\program files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
c:\program files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
c:\program files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe
c:\program files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
c:\program files\Microsoft SQL Server\90\Shared\sqlwriter.exe
c:\program files\TeamViewer\Version5\TeamViewer_Service.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\TeamViewer\Version5\TeamViewer.exe
c:\windows\system32\conime.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\program files\Windows Media Player\wmpnscfg.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\windows\system32\Ribbons.scr
.
**************************************************************************
.
Completion time: 2014-03-02 17:03:32 - machine was rebooted
ComboFix-quarantined-files.txt 2014-03-02 16:03
.
Pre-Run: 19 323 994 112 bytes free
Post-Run: 19 417 460 736 bytes free
.
- - End Of File - - 56E74A42E0917884E12DD2C8F9D2E59A
5C616939100B85E558DA92B899A0FC36

Otevrete si poznamkovy blok a zkopirujte do nej tento skript Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev CFScript a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Pretahntete mysi tento vytvoreny textovy dokument nad ikonu ComboFix a pustte.
ComboFix by se mel spustit a vykonat prikazy.
Az skonci (muze dojit k restartu pc), mel by se objevit novy log, ten mi sem zase zkopirujte.

Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace
Kdyz windows nabehne, ale pri spousteni ruznych programu bude hlasena chyba, staci restartovat pc a bude to v poradku

ComboFix 14-02-24.02 - Danka . 03. 2014 19:12:50.2.1 - x86
Microsoft® Windows Vista™ Home Basic 6.0.6002.2.1250.421.1051.18.1470.718 [GMT 1:00]
Running from: c:\users\Danka\Desktop\ComboFix.exe
Command switches used :: c:\users\Danka\Desktop\CFScript.txt
AV: Microsoft Security Essentials *Disabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Microsoft Security Essentials *Disabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\Tasks\Adobe Flash Player Updater.job"
"c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2845228576-1257421551-1014224335-1000Core.job"
"c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2845228576-1257421551-1014224335-1000UA.job"
"c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2845228576-1257421551-1014224335-1004Core.job"
"c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2845228576-1257421551-1014224335-1004UA.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\Skype\Toolbars
c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_Skype C2C Service
-------\Service_Skype C2C Service
.
.
((((((((((((((((((((((((( Files Created from 2014-02-02 to 2014-03-02 )))))))))))))))))))))))))))))))
.
.
2014-03-02 18:22 . 2014-03-02 18:22 -------- d-----w- c:\users\USER\AppData\Local\temp
2014-03-02 18:22 . 2014-03-02 18:22 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-03-02 16:10 . 2014-02-06 07:08 7947048 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C3EAF7CE-012D-4F43-A4B9-0C9CC501CDB0}\mpengine.dll
2014-03-02 08:43 . 2014-03-02 08:43 -------- d-----w- c:\program files\HD Tune
2014-03-01 19:36 . 2014-03-01 19:36 -------- d-----w- c:\program files\Stitch Art Easy 4.0
2014-03-01 15:04 . 2014-03-01 15:04 -------- d-----w- c:\users\Danka\AppData\Roaming\Malwarebytes
2014-03-01 15:04 . 2014-03-01 15:04 -------- d-----w- c:\programdata\Malwarebytes
2014-03-01 14:43 . 2014-03-01 14:51 -------- d-----w- C:\AdwCleaner
2014-03-01 14:27 . 2014-03-01 14:33 -------- d-----w- c:\program files\trend micro
2014-03-01 14:27 . 2014-03-01 14:28 -------- d-----w- C:\rsit
2014-03-01 08:13 . 2014-02-06 07:08 7947048 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2014-02-28 18:49 . 2014-02-28 18:49 -------- d-----w- c:\windows\Migration
2014-02-27 09:55 . 2014-02-21 15:50 765968 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{DCA85FE0-E06B-4BEA-BF8A-F696D4D26DB5}\gapaengine.dll
2014-02-13 17:10 . 2014-02-13 17:10 -------- d-----w- C:\6f0bd0120f18ba83b5547ba42b11a3f6
2014-02-12 15:25 . 2013-12-05 02:12 1248768 ----a-w- c:\windows\system32\msxml3.dll
2014-02-05 18:29 . 2014-02-05 18:29 -------- d-----w- c:\users\USER\AppData\Local\Facebook
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
8430-08-31 20:02 . 2009-07-17 21:05 398416 ----a-w- c:\windows\system\VBRUN300.DLL
2014-02-21 16:04 . 2012-08-13 15:41 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-02-21 16:04 . 2012-08-13 15:41 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-02-21 15:50 . 2012-10-07 18:21 765968 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2014-01-19 07:32 . 2009-10-02 17:48 231584 ------w- c:\windows\system32\MpSigStub.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-10-23 948440]
"SoundMan"="SOUNDMAN.EXE" [2008-09-10 604704]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Monitor]
2006-11-03 10:01 319488 ----a-w- c:\windows\Pixart\Pac7311\Monitor.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]
2008-09-10 12:14 604704 ----a-w- c:\windows\SOUNDMAN.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\USBToolTip]
2007-02-20 09:07 199752 ----a-w- c:\progra~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VTTimer]
2006-09-14 16:54 53248 ----a-w- c:\windows\System32\VTTimer.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VTTrayp]
2007-04-25 13:41 176128 ----a-w- c:\windows\System32\VTTrayp.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceNoNetwork REG_MULTI_SZ PLA DPS BFE mpssvc
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-02-21 16:21 1150280 ----a-w- c:\program files\Google\Chrome\Application\33.0.1750.117\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2014-03-02 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-13 16:04]
.
2014-03-01 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2845228576-1257421551-1014224335-1000Core.job
- c:\users\USER\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-02-05 18:29]
.
2014-03-02 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2845228576-1257421551-1014224335-1000UA.job
- c:\users\USER\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-02-05 18:29]
.
2014-03-02 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2845228576-1257421551-1014224335-1004Core.job
- c:\users\Danka\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-03-23 17:21]
.
2014-03-02 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2845228576-1257421551-1014224335-1004UA.job
- c:\users\Danka\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-03-23 17:21]
.
2014-03-02 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-08-13 15:41]
.
2014-03-02 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-08-13 15:41]
.
.
------- Supplementary Scan -------
.
uStart Page = https://www.google.sk/
IE: E&xportovať do programu Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.2.1
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2014-03-02 19:25
Windows 6.0.6002 Service Pack 2 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Microsoft Security Client\MsMpEng.exe
c:\program files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
c:\program files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
c:\program files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
c:\program files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
c:\program files\Microsoft SQL Server\90\Shared\sqlwriter.exe
c:\program files\TeamViewer\Version5\TeamViewer_Service.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\TeamViewer\Version5\TeamViewer.exe
c:\windows\system32\conime.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\program files\Windows Media Player\wmpnscfg.exe
c:\program files\Windows Media Player\wmpnetwk.exe
.
**************************************************************************
.
Completion time: 2014-03-02 19:29:38 - machine was rebooted
ComboFix-quarantined-files.txt 2014-03-02 18:29
ComboFix2.txt 2014-03-02 16:03
.
Pre-Run: 19 238 227 968 bytes free
Post-Run: 19 122 114 560 bytes free
.
- - End Of File - - F779E2E982F5F572778DBB31C850C784
5C616939100B85E558DA92B899A0FC36

Dejte novy log z RSIT

a k tomu

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).

Logfile of random's system information tool 1.09 (written by random/random)
Run by Danka at 2014-03-02 19:38:50
Microsoft® Windows Vista™ Home Basic Service Pack 2
System drive C: has 18 GB (23%) free of 79 GB
Total RAM: 1470 MB (55% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:39:48, on 2. 3. 2014
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16533)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\conime.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Windows\SOUNDMAN.EXE
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\system32\notepad.exe
C:\Windows\Explorer.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\Danka\Desktop\mozes zmazat\RSIT (1).exe
C:\Program Files\trend micro\Danka.exe
C:\Windows\system32\SearchFilterHost.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} (SpinTop DRM Control) - file:///C:/Program%20Files/Bejeweled%203/Images/stg_drm.ocx
O16 - DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} (ArmHelper Control) - file:///C:/Program%20Files/Bejeweled%203/Images/armhelper.ocx
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: Sony Ericsson OMSI download service (OMSI download service) - Unknown owner - C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TeamViewer 5 (TeamViewer5) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe

--
End of file - 4325 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2845228576-1257421551-1014224335-1000Core.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2845228576-1257421551-1014224335-1000UA.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2845228576-1257421551-1014224335-1004Core.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2845228576-1257421551-1014224335-1004UA.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2013-10-23 948440]
"SoundMan"=C:\Windows\SOUNDMAN.EXE [2008-09-10 604704]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Monitor]
C:\Windows\PixArt\PAC7311\Monitor.exe [2006-11-03 319488]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]
C:\Windows\SOUNDMAN.EXE [2008-09-10 604704]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\USBToolTip]
C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe [2007-02-20 199752]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VTTimer]
C:\Windows\system32\VTTimer.exe [2006-09-14 53248]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VTTrayp]
C:\Windows\system32\VTtrayp.exe [2007-04-25 176128]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=yv12vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
"vidc.mjpg"=pvmjpg30.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux3"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2014-03-02 19:29:42 ----D---- C:\Windows\temp
2014-03-02 19:29:40 ----A---- C:\ComboFix.txt
2014-03-02 19:28:57 ----SHD---- C:\$RECYCLE.BIN
2014-03-02 16:38:50 ----A---- C:\Windows\zip.exe
2014-03-02 16:38:50 ----A---- C:\Windows\SWSC.exe
2014-03-02 16:38:50 ----A---- C:\Windows\SWREG.exe
2014-03-02 16:38:50 ----A---- C:\Windows\sed.exe
2014-03-02 16:38:50 ----A---- C:\Windows\PEV.exe
2014-03-02 16:38:50 ----A---- C:\Windows\NIRCMD.exe
2014-03-02 16:38:50 ----A---- C:\Windows\MBR.exe
2014-03-02 16:38:50 ----A---- C:\Windows\grep.exe
2014-03-02 16:38:32 ----D---- C:\Qoobox
2014-03-02 16:37:53 ----D---- C:\Windows\erdnt
2014-03-02 09:43:49 ----D---- C:\Program Files\HD Tune
2014-03-01 20:36:05 ----D---- C:\Program Files\Stitch Art Easy 4.0
2014-03-01 16:04:45 ----D---- C:\Users\Danka\AppData\Roaming\Malwarebytes
2014-03-01 16:04:26 ----D---- C:\ProgramData\Malwarebytes
2014-03-01 15:43:50 ----D---- C:\AdwCleaner
2014-03-01 15:27:54 ----D---- C:\rsit
2014-03-01 15:27:54 ----D---- C:\Program Files\trend micro
2014-02-28 19:49:26 ----D---- C:\Windows\Migration
2014-02-13 18:10:06 ----D---- C:\6f0bd0120f18ba83b5547ba42b11a3f6
2014-02-13 17:14:51 ----A---- C:\Windows\system32\vbscript.dll
2014-02-13 17:14:51 ----A---- C:\Windows\system32\mshtmled.dll
2014-02-13 17:14:44 ----A---- C:\Windows\system32\ieui.dll
2014-02-13 17:14:43 ----A---- C:\Windows\system32\jsproxy.dll
2014-02-13 17:14:38 ----A---- C:\Windows\system32\ieUnatt.exe
2014-02-13 17:14:37 ----A---- C:\Windows\system32\wininet.dll
2014-02-13 17:14:37 ----A---- C:\Windows\system32\msfeeds.dll
2014-02-13 17:14:33 ----A---- C:\Windows\system32\jscript.dll
2014-02-13 17:14:29 ----A---- C:\Windows\system32\url.dll
2014-02-13 17:14:29 ----A---- C:\Windows\system32\jscript9.dll
2014-02-13 17:14:23 ----A---- C:\Windows\system32\iertutil.dll
2014-02-13 17:14:17 ----A---- C:\Windows\system32\urlmon.dll
2014-02-13 17:14:04 ----A---- C:\Windows\system32\ieframe.dll
2014-02-13 17:13:32 ----A---- C:\Windows\system32\mshtml.dll
2014-02-12 16:25:35 ----A---- C:\Windows\system32\msxml3.dll

======List of files/folders modified in the last 1 month======

2014-03-02 19:39:01 ----D---- C:\Windows\Prefetch
2014-03-02 19:29:44 ----D---- C:\Windows\system32\drivers
2014-03-02 19:29:42 ----D---- C:\Windows
2014-03-02 19:25:23 ----A---- C:\Windows\system.ini
2014-03-02 19:25:13 ----D---- C:\Windows\system32\drivers\etc
2014-03-02 19:23:04 ----D---- C:\Windows\system32\config
2014-03-02 19:22:51 ----SHD---- C:\System Volume Information
2014-03-02 19:21:55 ----D---- C:\ProgramData\Skype
2014-03-02 19:18:22 ----D---- C:\Windows\System32
2014-03-02 19:18:21 ----D---- C:\Windows\AppPatch
2014-03-02 19:18:19 ----D---- C:\Program Files\Common Files
2014-03-02 19:08:58 ----D---- C:\aa
2014-03-02 16:51:06 ----D---- C:\ProgramData
2014-03-02 16:14:18 ----D---- C:\Windows\system32\Tasks
2014-03-02 09:43:49 ----RD---- C:\Program Files
2014-03-01 22:16:25 ----D---- C:\Windows\Microsoft.NET
2014-03-01 19:59:27 ----SHD---- C:\Windows\Installer
2014-03-01 19:16:42 ----D---- C:\Users\Danka\AppData\Roaming\Skype
2014-03-01 19:12:18 ----D---- C:\Program Files\Opera
2014-03-01 19:10:51 ----D---- C:\Program Files\Google
2014-03-01 18:51:36 ----D---- C:\Windows\PolicyDefinitions
2014-03-01 18:49:21 ----D---- C:\DOWNLOAD
2014-03-01 17:02:29 ----D---- C:\Program Files\uTorrent
2014-03-01 17:02:22 ----D---- C:\Users\Danka\AppData\Roaming\uTorrent
2014-03-01 15:51:08 ----D---- C:\ProgramData\ICQ
2014-03-01 15:22:04 ----D---- C:\Windows\system32\catroot2
2014-03-01 09:41:26 ----HD---- C:\Program Files\InstallShield Installation Information
2014-03-01 09:40:17 ----D---- C:\Program Files\Electronic Arts
2014-03-01 09:37:56 ----D---- C:\Users\Danka\AppData\Roaming\.minecraft
2014-03-01 09:12:09 ----D---- C:\ProgramData\Electronic Arts
2014-03-01 09:08:59 ----D---- C:\Program Files\Microsoft
2014-03-01 08:51:54 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-03-01 08:36:43 ----D---- C:\Windows\Debug
2014-02-28 20:18:30 ----RSD---- C:\Windows\assembly
2014-02-28 20:17:39 ----D---- C:\Windows\inf
2014-02-28 19:59:27 ----D---- C:\Windows\system32\en-US
2014-02-28 19:49:27 ----SD---- C:\ProgramData\Microsoft
2014-02-21 17:04:17 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2014-02-13 18:49:50 ----D---- C:\Windows\winsxs
2014-02-13 18:31:40 ----D---- C:\Windows\system32\migration
2014-02-13 18:31:39 ----D---- C:\Program Files\Internet Explorer
2014-02-13 18:09:44 ----D---- C:\Windows\system32\MRT
2014-02-13 17:53:30 ----A---- C:\Windows\system32\mrt.exe
2014-02-13 17:34:07 ----D---- C:\Windows\system32\catroot
2014-02-05 19:29:29 ----D---- C:\Windows\Tasks

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2013-09-27 214696]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2008-02-04 716272]
R0 videX32;videX32; C:\Windows\system32\DRIVERS\videX32.sys [2006-10-17 9216]
R0 xfilt;VIA SATA IDE Hot-plug Driver; C:\Windows\system32\DRIVERS\xfilt.sys [2006-10-18 17920]
R3 Afc;PPdus ASPI Shell; C:\Windows\system32\drivers\Afc.sys [2005-02-23 11776]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\Windows\system32\drivers\RTKVAC.SYS [2008-09-16 4127648]
R3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
R3 FETNDIS;VIA Rhine-Family Fast Ethernet Adapter Driver Service; C:\Windows\system32\DRIVERS\fetnd5.sys [2006-11-02 45568]
R3 MarvinBus;Pinnacle Marvin Bus; C:\Windows\system32\DRIVERS\MarvinBus.sys [2005-09-23 171520]
R3 PAC7311;VGA USB Camera; C:\Windows\system32\DRIVERS\PA707UCM.SYS [2006-11-08 530304]
R3 seehcri;Sony Ericsson seehcri Device Driver; C:\Windows\system32\DRIVERS\seehcri.sys [2008-01-09 27632]
R3 usbaudio;USB Audio Driver (WDM); C:\Windows\system32\drivers\usbaudio.sys [2013-07-12 73344]
R3 viagfx;viagfx; C:\Windows\system32\DRIVERS\vtmini.sys [2007-04-28 283904]
R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560]
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 k510bus;Sony Ericsson K510 Driver driver (WDM); C:\Windows\system32\DRIVERS\k510bus.sys [2006-02-17 58288]
S3 mbr;mbr; \??\C:\Users\Danka\AppData\Local\Temp\mbr.sys []
S3 MSDV;Microsoft DV Camera and VCR; C:\Windows\system32\DRIVERS\msdv.sys [2008-01-19 52608]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2013-09-27 104768]
S3 s1018bus;Sony Ericsson Device 1018 driver (WDM); C:\Windows\system32\DRIVERS\s1018bus.sys [2008-11-04 86696]
S3 s1018mdfl;Sony Ericsson Device 1018 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s1018mdfl.sys [2008-11-04 15016]
S3 s1018mdm;Sony Ericsson Device 1018 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s1018mdm.sys [2008-11-04 114472]
S3 s1018mgmt;Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s1018mgmt.sys [2008-11-04 108328]
S3 s1018nd5;Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS); C:\Windows\system32\DRIVERS\s1018nd5.sys [2008-11-04 26024]
S3 s1018obex;Sony Ericsson Device 1018 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s1018obex.sys [2008-11-04 104616]
S3 s1018unic;Sony Ericsson Device 1018 USB Ethernet Emulation (WDM); C:\Windows\system32\DRIVERS\s1018unic.sys [2008-11-04 109736]
S3 sonypvs1;Sony Digital Imaging Video2; C:\Windows\system32\DRIVERS\sonypvs1.sys [2002-10-15 102220]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 35328]
S3 VIAudio;VIA AC'97 Audio Controller; C:\Windows\system32\drivers\ac97via.sys [2006-11-02 68096]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 BcmSqlStartupSvc;Spúšacia služba produktu Business Contact Manager SQL Server; C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe [2009-02-23 30312]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 IviRegMgr;IviRegMgr; C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe [2007-01-04 112152]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-10-23 22208]
R2 OMSI download service;Sony Ericsson OMSI download service; C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe [2009-04-30 90112]
R2 SQLBrowser;SQL Server Browser; c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2010-12-10 238944]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2010-12-10 86880]
R2 TeamViewer5;TeamViewer 5; C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe [2010-05-21 173352]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-08-13 136176]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-06-21 162408]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-21 257928]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-08-13 136176]
S3 MSSQL$MSSMLBIZ;SQL Server (MSSMLBIZ); c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2010-12-10 29293408]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2006-10-09 724992]
S3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2013-10-23 280288]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-09-11 770168]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2010-12-10 44384]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

OTL Extras logfile created on: 2. 3. 2014 19:47:34 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Danka\Downloads
Windows Vista Home Basic Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000041B | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy

1,44 Gb Total Physical Memory | 0,71 Gb Available Physical Memory | 49,30% Memory free
3,35 Gb Paging File | 2,63 Gb Available in Paging File | 78,52% Paging File free
Paging file location(s): c:\pagefile.sys 2000 2000 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 76,69 Gb Total Space | 17,85 Gb Free Space | 23,27% Space Free | Partition Type: NTFS

Computer Name: DANKA-PC | User Name: Danka | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = Opera.HTML] -- Reg Error: Key error. File not found

[HKEY_USERS\S-1-5-21-2845228576-1257421551-1014224335-1004\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Opera\opera.exe"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1552A201-68EF-4D68-8D47-B3489C438D84}" = protocol=17 | dir=in | app=c:\program files\pinnacle\studio 14\programs\rm.exe |
"{2E9CEB9C-D439-404C-B399-F99CBED8F2FD}" = protocol=17 | dir=in | app=c:\program files\opera\opera.exe |
"{300EC25F-7CBC-4612-AB77-20DB98CAF4DC}" = protocol=17 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"{3D15A126-4FA6-453A-8FEF-847FC0571C48}" = protocol=6 | dir=in | app=c:\program files\pinnacle\studio 14\programs\studio.exe |
"{5F5B28F7-BF6E-433A-8C5C-0151DE95FC4C}" = protocol=6 | dir=in | app=c:\program files\opera\opera.exe |
"{65282943-0766-4D57-B21D-51C0FF6C8FFA}" = protocol=6 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"{754DA8EC-70B0-47F6-AC0B-1F049EFF2A57}" = protocol=17 | dir=in | app=c:\program files\pinnacle\studio 14\programs\studio.exe |
"{7A1F9B54-9FDB-452F-B396-70F865B63C0D}" = protocol=6 | dir=in | app=c:\program files\hp\hp deskjet 2050 j510 series\bin\usbsetup.exe |
"{7BA02E64-ADA7-4499-B483-52B4C312F50F}" = dir=in | app=c:\users\danka\appdata\local\facebook\video\skype\facebookvideocalling.exe |
"{7EA81FE2-6A67-4923-8C7C-A7807E47916A}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version5\teamviewer.exe |
"{8417D9E9-1BC1-4659-9399-3BB3CD2DCD8C}" = protocol=17 | dir=in | app=c:\program files\pinnacle\studio 14\programs\umi.exe |
"{86F2FCAF-0A4C-4721-8350-55D237B27896}" = protocol=6 | dir=in | app=c:\program files\skype\phone\skype.exe |
"{AD6177EF-13F3-402F-B79D-4D0CD79C36D3}" = protocol=17 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"{ADA92073-4204-4F73-846A-3456EC266A24}" = protocol=6 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"{B5795E3A-9691-4C11-92F3-57F2BC4CEC9D}" = protocol=6 | dir=in | app=c:\program files\pinnacle\studio 14\programs\umi.exe |
"{B8FF055E-EA85-467F-849E-6A9FB72A4D3E}" = protocol=6 | dir=in | app=c:\program files\pinnacle\studio 14\programs\rm.exe |
"{D25066BD-B4B3-4ED8-8C05-963D4B70B1CF}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version5\teamviewer.exe |
"{F4337FA9-DA4B-461F-ADC7-61A4A477A1DB}" = protocol=17 | dir=in | app=c:\program files\hp\hp deskjet 2050 j510 series\bin\usbsetup.exe |
"TCP Query User{0B748BEB-9A3D-4875-9A3B-7DE933BC4C77}C:\program files\electronic arts\eadm\core.exe" = protocol=6 | dir=in | app=c:\program files\electronic arts\eadm\core.exe |
"TCP Query User{15BF6B8B-A591-491D-B839-798282B27205}C:\program files\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\program files\skype\phone\skype.exe |
"TCP Query User{1B43FD3A-2CE9-49F4-A9F9-D73567617C75}C:\program files\t-com softphone slovak\t-com softphone slovak.exe" = protocol=6 | dir=in | app=c:\program files\t-com softphone slovak\t-com softphone slovak.exe |
"TCP Query User{36D048FA-A431-4286-99CA-F97875CFB9F9}C:\program files\icqlite\icqlite.exe" = protocol=6 | dir=in | app=c:\program files\icqlite\icqlite.exe |
"TCP Query User{3846A28D-ED45-4F8C-8E50-D678BF36B7E9}C:\program files\icq6.5\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq6.5\icq.exe |
"TCP Query User{3956D0B9-BEE8-4BA3-A856-7BA202FB44BD}C:\users\user\appdata\local\facebook\video\skype\facebookvideocalling.exe" = protocol=6 | dir=in | app=c:\users\user\appdata\local\facebook\video\skype\facebookvideocalling.exe |
"TCP Query User{44336496-8E46-4D2C-A4AD-103912202888}C:\program files\utorrent\utorrent.exe" = protocol=6 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"TCP Query User{6B4066E5-A0A1-4626-8A4D-013FDF8B9D18}C:\program files\java\jre7\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\java.exe |
"TCP Query User{881723EF-3462-4738-86D2-150E1FE45BDF}C:\windows\system32\office2007\mirc.exe" = protocol=6 | dir=in | app=c:\windows\system32\office2007\mirc.exe |
"TCP Query User{9EB57216-F5B7-4872-8DC4-CF34E56E4FF9}C:\program files\t-com softphone slovak\t-com softphone slovak.exe" = protocol=6 | dir=in | app=c:\program files\t-com softphone slovak\t-com softphone slovak.exe |
"TCP Query User{9F270F08-0CE6-49E1-A845-EF1CB895E24B}C:\program files\pinnacle\studio 14\programs\studio.exe" = protocol=6 | dir=in | app=c:\program files\pinnacle\studio 14\programs\studio.exe |
"TCP Query User{A46BC60C-FD4B-4A55-9C04-6F59739D922C}C:\program files\electronic arts\eadm\core.exe" = protocol=6 | dir=in | app=c:\program files\electronic arts\eadm\core.exe |
"TCP Query User{B2F42661-08F7-4162-AAD6-185F219D692A}C:\program files\nero\nero 7\nero home\nerohome.exe" = protocol=6 | dir=in | app=c:\program files\nero\nero 7\nero home\nerohome.exe |
"TCP Query User{C5642C36-A41A-4206-A8D9-BFB310499ADE}C:\program files\opera\opera.exe" = protocol=6 | dir=in | app=c:\program files\opera\opera.exe |
"UDP Query User{0B327F52-E869-4AEC-9C3A-F1C421670376}C:\program files\skype\phone\skype.exe" = protocol=17 | dir=in | app=c:\program files\skype\phone\skype.exe |
"UDP Query User{10A774AA-A1EF-4109-B54C-7DD3C9B08F83}C:\program files\t-com softphone slovak\t-com softphone slovak.exe" = protocol=17 | dir=in | app=c:\program files\t-com softphone slovak\t-com softphone slovak.exe |
"UDP Query User{2598C24A-7F0D-4058-A550-4331C332B06A}C:\program files\nero\nero 7\nero home\nerohome.exe" = protocol=17 | dir=in | app=c:\program files\nero\nero 7\nero home\nerohome.exe |
"UDP Query User{29DE588C-C334-4784-AE72-51310A36D305}C:\program files\java\jre7\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\java.exe |
"UDP Query User{2DAE2467-5624-4094-B9CB-0B876C3D619D}C:\program files\utorrent\utorrent.exe" = protocol=17 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"UDP Query User{35973A2D-6C17-471F-838A-76789CAD6E34}C:\program files\icq6.5\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq6.5\icq.exe |
"UDP Query User{4314375B-06EB-4329-AC75-208324F36A40}C:\windows\system32\office2007\mirc.exe" = protocol=17 | dir=in | app=c:\windows\system32\office2007\mirc.exe |
"UDP Query User{4E78E64D-6641-49FD-B37C-50CB033D2CEB}C:\program files\pinnacle\studio 14\programs\studio.exe" = protocol=17 | dir=in | app=c:\program files\pinnacle\studio 14\programs\studio.exe |
"UDP Query User{509944CD-7B96-498F-B6EF-48F5F0528CB5}C:\program files\opera\opera.exe" = protocol=17 | dir=in | app=c:\program files\opera\opera.exe |
"UDP Query User{9FE10DCE-9D30-4F59-B991-CEF67A7A28DD}C:\program files\icqlite\icqlite.exe" = protocol=17 | dir=in | app=c:\program files\icqlite\icqlite.exe |
"UDP Query User{ABF9B2E9-DE38-440E-81AD-D3CCE2CA5473}C:\program files\electronic arts\eadm\core.exe" = protocol=17 | dir=in | app=c:\program files\electronic arts\eadm\core.exe |
"UDP Query User{CCB545C6-383E-4387-B32D-321D9F9DD5EC}C:\users\user\appdata\local\facebook\video\skype\facebookvideocalling.exe" = protocol=17 | dir=in | app=c:\users\user\appdata\local\facebook\video\skype\facebookvideocalling.exe |
"UDP Query User{D6CF944F-78EB-4BCE-80BA-1DEC6250C36B}C:\program files\t-com softphone slovak\t-com softphone slovak.exe" = protocol=17 | dir=in | app=c:\program files\t-com softphone slovak\t-com softphone slovak.exe |
"UDP Query User{F427A637-6721-46FB-BFF2-F3F109EA5062}C:\program files\electronic arts\eadm\core.exe" = protocol=17 | dir=in | app=c:\program files\electronic arts\eadm\core.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}" = Windows Live ID Sign-in Assistant
"{0CD47142-BA4F-46B0-AA92-2675864928B8}" = Microsoft Security Client
"{1DDF840B-A50A-491E-BF44-6D6964C451A8}" = VGA USB Camera
"{20471B27-D702-4FE8-8DEC-0702CC8C0A85}" = InterVideo WinDVD 8
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{2AFFFDD7-ED85-4A90-8C52-5DA9EBDC9B8F}" = Microsoft SQL Server 2005 Express Edition (MSSMLBIZ)
"{2FFE93F0-BB72-4E52-8761-354D1AAA9387}" = Sony Ericsson PC Suite 6.009.00
"{4903D172-DCCB-392F-93A3-34CA9D47FE3D}" = Microsoft .NET Framework 4.5.1
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.6
"{5033F411-4848-49D6-BAC2-DAA06AFA0AFC}" = HP Deskjet 2050 J510 series Basic Device Software
"{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}" = Microsoft SQL Server Setup Support Files (English)
"{5C29CB8B-AC1E-4114-8D68-9CD080140D4A}" = Sony USB Driver
"{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}" = Activation Assistant for the 2007 Microsoft Office suites
"{6DE721A5-5E89-4D74-994C-652BB3C0672E}" = Ovladače videa společnosti Pinnacle
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7670D32F-DAE6-4E49-8C8B-B3F08B5B1686}" = Microsoft SQL Server Native Client
"{787D1A33-A97B-4245-87C0-7174609A540C}" = HP Update
"{7A3DF2E2-CF13-44FB-A93E-F71D5381DB3F}" = HP Deskjet 2050 J510 series Help
"{7fdab897-38ab-4a51-b2bf-e6374b1cc04f}" = Business Contact Manager for Outlook 2007 SP2
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8DF41A9F-FE13-43E8-A003-5F9B55A011EE}" = Facebook Video Calling 2.0.0.447
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISER_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISER_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISER_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISER_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISER_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISER_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISER_{0B7A4B67-2A38-42B1-9857-662FAB361E08}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISER_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISER_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISER_{FDF9A959-241A-4662-A8DE-7DED9C22D160}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISER_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISER_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISER_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISER_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
"{90120000-00BA-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
"{90120000-0114-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_ENTERPRISE_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{91120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.1
"{9C344D4A-69B8-430E-B463-BAA1A83D7F68}" = HP Deskjet 2050 J510 series Product Improvement Study
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A939D341-5A04-4E0A-BB55-3E65B386432D}" = Súčasti Microsoft Office Small Business Connectivity
"{AADD1C8F-D59F-4D55-A726-768C71A205A8}" = Pinnacle Studio 14
"{AC76BA86-7AD7-1033-7B44-A81200000003}" = Adobe Reader 8.1.2
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{BED6356D-6D21-4E8D-BEEB-FD2938E91BDE}" = T-Com Softphone Slovak
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D5068583-D569-468B-9755-5FBF5848F46F}" = Sony Picture Utility
"{DABF43D9-1104-4764-927B-5BED1274A3B0}" = Runtime
"{E031338C-839D-4EDD-9537-99B653C39D81}" = Autodesk MapGuide(R) Viewer ActiveX Control Release 6.5
"{E7084B89-69E0-46B3-A118-8F99D06988CD}" = Microsoft SQL Server VSS Writer
"{F14B8ECC-BDA0-4987-9201-D7B7DBE11051}" = Nero 7 Ultra Edition
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"Activation Assistant for the 2007 Microsoft Office suites" = Activation Assistant for the 2007 Microsoft Office suites
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 12 Plugin
"Bejeweled 3" = Bejeweled 3
"BSPlayerp" = BS.Player PRO
"Business Contact Manager" = Business Contact Manager for Outlook 2007 SP2
"CCleaner" = CCleaner (remove only)
"Coupon Printer for Windows5.0.0.0" = Coupon Printer for Windows
"DVD Shrink_is1" = DVD Shrink 3.2
"ENTERPRISE" = Microsoft Office Enterprise 2007
"ENTERPRISER" = Zkušební verze produktu Microsoft Office Enterprise 2007
"Google Chrome" = Google Chrome
"HD Tune_is1" = HD Tune 2.55
"HP Photo Creations" = HP Photo Creations
"InstallShield_{20471B27-D702-4FE8-8DEC-0702CC8C0A85}" = InterVideo WinDVD 8
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platform Device Manager
"KLiteCodecPack_is1" = K-Lite Codec Pack 5.1.0 (Full)
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft Security Client" = Microsoft Security Essentials
"Microsoft SQL Server 2005" = Microsoft SQL Server 2005
"Sony MHS Camera Driver" = Sony MHS Camera Driver
"stax-Pinnacle_is1" = SureThing Express Labeler
"Stitch Art Easy! 4.0_is1" = Stitch Art Easy! 4.0 Beta 2
"TeamViewer 5" = TeamViewer 5
"Totalcmd" = Total Commander (Remove or Repair)
"VIA/S3G UniChrome Family Win2K/XP/Server2003 Display" = VIA/S3G Display Driver 6.14.10.0364
"VLC media player" = VLC media player 2.0.1
"WinRAR archiver" = WinRAR archivátor

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 1. 3. 2014 12:39:10 | Computer Name = Danka-PC | Source = ESENT | ID = 467
Description = Windows (2476) Windows: Database C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb:
Index System_ItemFolderPathDisplayNarrow41b of table SystemIndex_0A is corrupted
(0).

Error - 1. 3. 2014 13:43:35 | Computer Name = Danka-PC | Source = ESENT | ID = 467
Description = Windows (2476) Windows: Database C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb:
Index System_ItemFolderPathDisplayNarrow41b of table SystemIndex_0A is corrupted
(0).

Error - 1. 3. 2014 13:52:45 | Computer Name = Danka-PC | Source = Application Error | ID = 1000
Description = Chybová aplikácia Explorer.EXE, verzia 6.0.6002.18005, časová značka
0x49e01da5, chybový modul SHDOCVW.dll, verzia 6.0.6002.18392, časová značka 0x4d385da7,
kód výnimky 0xc0000005, odstup chyby 0x0000c3a1, identifikácia procesu 0x110, čas
spustenia aplikácie 0x01cf3576f52cc735.

Error - 1. 3. 2014 14:55:19 | Computer Name = Danka-PC | Source = LoadPerf | ID = 3012
Description =

Error - 1. 3. 2014 14:55:19 | Computer Name = Danka-PC | Source = LoadPerf | ID = 3012
Description =

Error - 1. 3. 2014 14:55:19 | Computer Name = Danka-PC | Source = LoadPerf | ID = 3011
Description =

Error - 1. 3. 2014 14:55:21 | Computer Name = Danka-PC | Source = LoadPerf | ID = 3012
Description =

Error - 1. 3. 2014 14:55:21 | Computer Name = Danka-PC | Source = LoadPerf | ID = 3012
Description =

Error - 1. 3. 2014 14:55:21 | Computer Name = Danka-PC | Source = LoadPerf | ID = 3011
Description =

Error - 2. 3. 2014 3:04:43 | Computer Name = Danka-PC | Source = Application Error | ID = 1000
Description = Chybová aplikácia Explorer.EXE, verzia 6.0.6002.18005, časová značka
0x49e01da5, chybový modul SHDOCVW.dll, verzia 6.0.6002.18392, časová značka 0x4d385da7,
kód výnimky 0xc0000005, odstup chyby 0x0000c3a1, identifikácia procesu 0x9f4, čas
spustenia aplikácie 0x01cf35e5adb43289.

[ OSession Events ]
Error - 14. 5. 2013 10:58:24 | Computer Name = Danka-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 3, Application Name: Microsoft Office PowerPoint, Application
Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session
lasted 7083 seconds with 4320 seconds of active time. This session ended with a
crash.

[ System Events ]
Error - 2. 3. 2014 14:12:00 | Computer Name = Danka-PC | Source = Service Control Manager | ID = 7034
Description =

Error - 2. 3. 2014 14:12:00 | Computer Name = Danka-PC | Source = Service Control Manager | ID = 7034
Description =

Error - 2. 3. 2014 14:12:00 | Computer Name = Danka-PC | Source = Service Control Manager | ID = 7034
Description =

Error - 2. 3. 2014 14:12:00 | Computer Name = Danka-PC | Source = Service Control Manager | ID = 7034
Description =

Error - 2. 3. 2014 14:12:00 | Computer Name = Danka-PC | Source = Service Control Manager | ID = 7031
Description =

Error - 2. 3. 2014 14:12:01 | Computer Name = Danka-PC | Source = Service Control Manager | ID = 7031
Description =

Error - 2. 3. 2014 14:18:03 | Computer Name = Danka-PC | Source = Service Control Manager | ID = 7030
Description =

Error - 2. 3. 2014 14:22:44 | Computer Name = Danka-PC | Source = Service Control Manager | ID = 7030
Description =

Error - 2. 3. 2014 14:22:55 | Computer Name = Danka-PC | Source = Service Control Manager | ID = 7030
Description =

Error - 2. 3. 2014 14:25:04 | Computer Name = Danka-PC | Source = LSM | ID = 1048
Description =


< End of report >



Na dnes už stačilo, dokonca si myslím, že vzhladom na to, na čo je tento počítač sa mohol preinšalovať...ale ďakujem

Bohuzel jste sem nedala ten nejdulezitejsi log OTL by mel vytvorit dva logy a prave ten druhy je podstatny. Jinak pokud chcete preinstalovat, branit vam nebudu, jen mi to napiste, at to zbytecne nesepisuju