malware ( nejspíše)

Zpráva

#16 Příspěvek od **altrok** » 22 led 2015 17:47

Pokud jeste nemate, presunte ComboFix na plochu.

Otevrete Poznamkovy blok (Start -> Spustit -> notepad)

zkopirujte do nej skript nize a ulozte na plochu jako CFScript (Typ souboru: Textovy dokument)

Kód: Vybrat vše

KillAll::

Collect::
c:\documents and settings\All Users\Data aplikací\JobupOkulu\NegpiBoziy.qae
c:\documents and settings\Radek\Data aplikací\TZAC\tizek32.sys

Registry::
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"JobupOkulu"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AdobeAAMUpdater-1.0"=-
"SwitchBoard"=-
"AdobeCS5ServiceManager"=-
"NvBackend"=-
"SunJavaUpdateSched"=-
"Adobe ARM"=-
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\Program Files\\mIRC\\mirc.exe"=-
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"56285:TCP"=-
"56285:UDP"=-

Driver::
tizekdrv

Folder::
c:\documents and settings\All Users\Data aplikací\JobupOkulu
c:\documents and settings\Radek\Data aplikací\TZAC

File::
c:\windows\system32\404Fix.exe
c:\windows\system32\IEDFix.C.exe
c:\windows\system32\VACFix.exe
c:\windows\system32\IEDFix.exe
c:\windows\system32\WS2Fix.exe
c:\windows\system32\VCCLSID.exe
c:\windows\system32\SrchSTS.exe
c:\windows\system32\dumphive.exe
c:\windows\system32\Process.exe
c:\windows\Tasks\AdobeAAMUpdater-1.0-RADEKK-Radek.job
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
c:\windows\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
c:\windows\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
c:\windows\Tasks\User_Feed_Synchronization-{0C0BFD56-6838-43E8-9B02-CC06A10C1B08}.job

RegLock::
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]

ClearJavaCache::

Reboot::

Tento CFScript.txt chytte, doslova pretahnete nad ikonu ComboFixu a pustte.
Po restartu na Vas vyskoci log, jehoz obsah mi vlozte do dalsi odpovedi.

Pokud vyskoci hlaska "Pokus pouzit neplatnou operaci na klic registru, ktery je oznacen pro odstraneni", tak jen restartujte PC - registr se da do kupy - jedna se o vnitrni chybu, kterou zpusobuje CF a autor ji zatim neumi bohuzel opravit

Muze se stat, ze po aplikaci skriptu nenabehnou Windows. V tomto pripade restartuje PC a mackejte F8 a zvolte Posledni znamou konfiguraci

morphe · #17 Příspěvek od **morphe** » 22 led 2015 19:23

Zde log

ComboFix 15-01-22.02 - Radek 22.01.2015 18:56:43.5.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2047.996 [GMT 1:00]
Spuštěný z: c:\documents and settings\Radek\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Radek\Plocha\CFScript.txt
AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: avast! Antivirus *Disabled* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
FILE ::
"c:\windows\system32\404Fix.exe"
"c:\windows\system32\dumphive.exe"
"c:\windows\system32\IEDFix.C.exe"
"c:\windows\system32\IEDFix.exe"
"c:\windows\system32\Process.exe"
"c:\windows\system32\SrchSTS.exe"
"c:\windows\system32\VACFix.exe"
"c:\windows\system32\VCCLSID.exe"
"c:\windows\system32\WS2Fix.exe"
"c:\windows\Tasks\AdobeAAMUpdater-1.0-RADEKK-Radek.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
"c:\windows\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job"
"c:\windows\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job"
"c:\windows\Tasks\User_Feed_Synchronization-{0C0BFD56-6838-43E8-9B02-CC06A10C1B08}.job"
.
file zipped: c:\documents and settings\All Users\Data aplikací\JobupOkulu\NegpiBoziy.qae
file zipped: c:\documents and settings\Radek\Data aplikací\TZAC\tizek32.sys
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_TIZEKDRV
-------\Service_tizekdrv
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-12-22 do 2015-01-22 )))))))))))))))))))))))))))))))
.
.
2015-01-21 19:31 . 2015-01-21 19:31 512 ----a-w- C:\PhysicalMBR.bin
2015-01-14 18:55 . 2015-01-21 15:20 4544 ----a-w- c:\windows\system32\tmp.reg
2015-01-14 18:51 . 2008-08-09 14:37 82432 ----a-w- c:\windows\system32\404Fix.exe
2015-01-14 18:51 . 2008-07-02 12:33 82432 ----a-w- c:\windows\system32\IEDFix.C.exe
2015-01-14 18:51 . 2008-05-29 08:35 86528 ----a-w- c:\windows\system32\VACFix.exe
2015-01-14 18:51 . 2008-05-18 20:40 82944 ----a-w- c:\windows\system32\IEDFix.exe
2015-01-14 18:51 . 2007-10-03 23:36 25600 ----a-w- c:\windows\system32\WS2Fix.exe
2015-01-14 18:51 . 2007-09-05 23:22 289144 ----a-w- c:\windows\system32\VCCLSID.exe
2015-01-14 18:51 . 2006-04-27 16:49 288417 ----a-w- c:\windows\system32\SrchSTS.exe
2015-01-14 18:51 . 2004-07-31 17:50 51200 ----a-w- c:\windows\system32\dumphive.exe
2015-01-14 18:51 . 2003-06-05 20:13 53248 ----a-w- c:\windows\system32\Process.exe
2015-01-13 17:55 . 2015-01-20 19:17 -------- d-----w- c:\documents and settings\All Users\Data aplikací\JobupOkulu
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-01-22 17:11 . 2009-09-06 15:15 137464 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2015-01-22 17:10 . 2014-03-17 10:24 214520 ----a-w- c:\windows\system32\PnkBstrB.exe
2015-01-22 17:10 . 2009-02-28 14:26 214520 ----a-w- c:\windows\system32\PnkBstrB.xtr
2015-01-21 16:53 . 2009-09-06 15:15 214520 ----a-w- c:\windows\system32\PnkBstrB.ex0
2015-01-14 18:41 . 2012-06-08 21:10 701616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2015-01-14 18:41 . 2011-05-16 12:50 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-12-02 15:27 . 2013-05-13 07:03 770784 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-04-21 01:18 . 2012-06-05 18:14 97208 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-08-30 07:47 121968 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2013-05-13 39408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PinnacleDriverCheck"="c:\windows\system32\\PSDrvCheck.exe" [2004-03-10 406016]
"Print2PDF Print Monitor"="c:\program files\Software602\Print2PDF\Print2PDF.exe" [2011-10-04 220992]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2007-10-09 1036288]
"Start WingMan Profiler"="c:\program files\Logitech\Gaming Software\LWEMon.exe" [2010-06-14 153672]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-01-28 59720]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-08-30 4858968]
"Razer Lachesis Driver"="c:\program files\Razer\Lachesis 5600\LachesisSysTray.exe" [2011-03-09 837008]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2013-06-21 15677728]
"NvMediaCenter"="NvMCTray.dll" [2013-06-21 223008]
"nwiz"="c:\program files\NVIDIA Corporation\nview\nwiz.exe" [2013-06-21 2586912]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
GamePark klient 2.lnk - c:\program files\GamePark2\gpcl.exe [2013-8-9 409088]
Microsoft Office.lnk - c:\program files\Microsoft Office\Office10\OSA.EXE -b -l [2001-2-13 83360]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"d:\\Hry\\Call of duty 4\\iw3mp.exe"=
"c:\\Documents and Settings\\Radek\\temp\\TeamViewer\\Version4\\TeamViewer.exe"=
"d:\\Hry\\Call of duty 2\\Activision\\Call of Duty 2\\CoD2MP_s.exe"=
"c:\\Program Files\\Pinnacle\\Studio 10\\programs\\RM.exe"=
"c:\\Program Files\\Pinnacle\\Studio 10\\programs\\Studio.exe"=
"c:\\Program Files\\Pinnacle\\Studio 10\\programs\\PMSRegisterFile.exe"=
"c:\\Program Files\\Pinnacle\\Studio 10\\programs\\umi.exe"=
"d:\\install\\SiSoftware Sandra Professional Business 2009.SP2\\RpcAgentSrv.exe"=
"d:\\Hry\\Grid\\GRID.exe"=
"c:\\Program Files\\ICQ7.2\\ICQ.exe"=
"c:\\Program Files\\ICQ7.2\\aolload.exe"=
"d:\\Hry\\Assassin's Creed\\AssassinsCreed_Dx9.exe"=
"d:\\Hry\\Assassin's Creed\\AssassinsCreed_Dx10.exe"=
"d:\\Hry\\Assassin's Creed\\AssassinsCreed_Launcher.exe"=
"c:\\Program Files\\Common Files\\soft602\\langserv.exe"=
"c:\\Program Files\\Xfire\\Xfire.exe"=
"c:\\Program Files\\VideoLAN\\VLC\\vlc.exe"=
"d:\\install\\SiSoftware Sandra Professional Business 2009.SP2\\WNt500x86\\RpcSandraSrv.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"d:\\Hry\\Audiosurf\\engine\\QuestViewer.exe"=
"c:\\Program Files\\Common Files\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"=
"c:\\Program Files\\Farming Simulator 2013\\FarmingSimulator2013.exe"=
"c:\\Program Files\\Farming Simulator 2013\\FarmingSimulator2013Game.exe"=
"c:\\Documents and Settings\\Radek\\Data aplikací\\uTorrent\\utorrent.exe"=
"c:\\WINDOWS\\system32\\muzapp.exe"=
"c:\\Program Files\\TeamViewer\\Version9\\TeamViewer.exe"=
"c:\\Program Files\\TeamViewer\\Version9\\TeamViewer_Service.exe"=
"c:\\Program Files\\Google\\Chrome\\Application\\chrome.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NetService\\NvNetworkService.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
"AllowInboundEchoRequest"= 1 (0x1)
.
R0 aswRvrt;aswRvrt;c:\windows\system32\drivers\aswRvrt.sys [13.5.2013 8:03 49376]
R0 aswVmm;aswVmm;c:\windows\system32\drivers\aswVmm.sys [13.5.2013 8:03 177864]
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [2.2.2009 14:40 717296]
R1 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys [26.9.2013 9:36 21576]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [13.5.2013 8:03 770784]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [13.5.2013 8:03 369584]
R2 602XML Updater;602Updater;c:\program files\Common Files\soft602\602updsvc\602updsvc.exe [10.10.2011 13:55 85344]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [13.5.2013 8:03 29816]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [13.5.2013 8:03 66336]
R2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [30.3.2010 10:16 1107336]
R2 NvNetworkService;NVIDIA Network Service;c:\program files\NVIDIA Corporation\NetService\NvNetworkService.exe [10.10.2014 20:03 1795912]
R2 TeamViewer9;TeamViewer 9;c:\program files\TeamViewer\Version9\TeamViewer_Service.exe [14.4.2014 13:56 4972864]
R3 3xHybrid;Pinnacle PCTV 100i-110i-300i-310i-MCE;c:\windows\system32\drivers\3xHybrid.sys [19.3.2009 19:37 1121536]
S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [3.4.2014 20:21 315008]
S3 cglptnt;cglptnt;c:\totalcmd\CGLPTNT.SYS [1.2.2009 9:48 7888]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsu.sys [30.10.2013 12:17 137600]
S3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsuc.sys [30.10.2013 12:17 8576]
S3 Razerlow;Razer Copperhead Driver;c:\windows\system32\drivers\Razerlow.sys [13.5.2009 20:37 19020]
S3 SandraAgentSrv;SiSoftware Deployment Agent Service;d:\install\SiSoftware Sandra Professional Business 2009.SP2\RpcAgentSrv.exe [8.4.2009 15:00 98488]
S3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [19.2.2010 12:37 517096]
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-01-17 14:07 1087816 ----a-w- c:\program files\Google\Chrome\Application\39.0.2171.99\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2015-01-22 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-06-08 18:41]
.
2015-01-22 c:\windows\Tasks\AdobeAAMUpdater-1.0-RADEKK-Radek.job
- c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [2011-08-02 08:32]
.
2014-12-26 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2011-06-01 15:57]
.
2015-01-22 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2013-05-13 07:47]
.
2015-01-22 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-11-18 18:57]
.
2015-01-22 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-11-18 18:57]
.
2015-01-08 c:\windows\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
- c:\windows\system32\xp_eos.exe [2014-03-20 23:28]
.
2015-01-22 c:\windows\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
- c:\windows\system32\xp_eos.exe [2014-03-20 23:28]
.
2015-01-22 c:\windows\Tasks\User_Feed_Synchronization-{0C0BFD56-6838-43E8-9B02-CC06A10C1B08}.job
- c:\windows\system32\msfeedssync.exe [2007-08-13 02:31]
.
.
------- Doplňkový sken -------
.
uInternet Settings,ProxyOverride = <local>
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000
Trusted Zone: ote-cr.cz\portal
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\documents and settings\Radek\Data aplikací\Mozilla\Firefox\Profiles\gp69o8du.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.cz
FF - prefs.js: network.proxy.type - 0
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2015-01-22 19:04
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'explorer.exe'(1352)
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\windows\system32\RunDLL32.exe
c:\windows\ATKKBService.exe
c:\program files\NVIDIA Corporation\Update Core\NvBackend.exe
c:\program files\Java\jre7\bin\jqs.exe
c:\program files\Common Files\Nero\Nero BackItUp 4\NBService.exe
c:\program files\CDBurnerXP\NMSAccessU.exe
c:\windows\system32\nvsvc32.exe
c:\windows\system32\PnkBstrA.exe
c:\windows\system32\PnkBstrB.exe
c:\windows\system32\wscntfy.exe
.
**************************************************************************
.
Celkový čas: 2015-01-22 19:07:30 - počítač byl restartován
ComboFix-quarantined-files.txt 2015-01-22 18:07
ComboFix2.txt 2015-01-22 16:30
ComboFix3.txt 2013-12-27 17:20
ComboFix4.txt 2012-04-22 15:49
ComboFix5.txt 2015-01-22 17:55
.
Před spuštěním: Volných bajtů: 14 104 952 832
Po spuštění: Volných bajtů: 14 076 702 720
.
- - End Of File - - 625554B569C6A88F3C35A5D78DEF0DEA
413FC2A0C716421B3158746D63736515

#18 Příspěvek od **altrok** » 22 led 2015 20:59

Pokud nepouzivate, odinstalutje Google Toolbar. Nastalo nejake zlepseni?

Dejte novy log FRST.txt, prilozte i Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101

morphe · #19 Příspěvek od **morphe** » 22 led 2015 21:19

FRST

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 19-01-2015
Ran by Radek (administrator) on RADEKK on 22-01-2015 21:19:17
Running from C:\Documents and Settings\Radek\Plocha
Loaded Profiles: Radek (Available profiles: Radek & Administrator)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Software602) C:\Program Files\Software602\Print2PDF\Print2PDF.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\Core\smax4pnp.exe
(Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(Software602 a.s.) C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(Allstar Group, s.r.o.) C:\Program Files\GamePark2\gpcl.exe
(ASUSTeK COMPUTER INC.) C:\WINDOWS\ATKKBService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(LogMeIn Inc.) C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Nero AG) C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
() C:\Program Files\CDBurnerXP\NMSAccessU.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
() C:\WINDOWS\system32\PnkBstrA.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
() C:\WINDOWS\system32\PnkBstrB.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
(forum.viry.cz) C:\Documents and Settings\Radek\Plocha\FRSTLauncher.exe
(Microsoft Corporation) C:\WINDOWS\system32\cmd.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [PinnacleDriverCheck] => C:\WINDOWS\system32\\PSDrvCheck.exe [406016 2004-03-11] ()
HKLM\...\Run: [Print2PDF Print Monitor] => C:\Program Files\Software602\Print2PDF\Print2PDF.exe [220992 2011-10-04] (Software602)
HKLM\...\Run: [SoundMAXPnP] => C:\Program Files\Analog Devices\Core\smax4pnp.exe [1036288 2007-10-09] (Analog Devices, Inc.)
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [153672 2010-06-14] (Logitech Inc.)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-01-28] (Apple Inc.)
HKLM\...\Run: [avast] => C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-08-30] (AVAST Software)
HKLM\...\Run: [Razer Lachesis Driver] => C:\Program Files\Razer\Lachesis 5600\LachesisSysTray.exe [837008 2011-03-09] (Razer USA Ltd)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [NvMediaCenter] => RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2586912 2013-06-21] ()
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\GamePark klient 2.lnk
ShortcutTarget: GamePark klient 2.lnk -> C:\Program Files\GamePark2\gpcl.exe (Allstar Group, s.r.o.)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Microsoft Office.lnk
ShortcutTarget: Microsoft Office.lnk -> C:\Program Files\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-790525478-630328440-682003330-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... R}&ar=home
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-790525478-630328440-682003330-1003\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-790525478-630328440-682003330-1003\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\S-1-5-21-790525478-630328440-682003330-1003\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
URLSearchHook: HKLM - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046}
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-790525478-630328440-682003330-1003 -> {6A15FB7B-38D4-4E7E-810F-B914C548C3B8} URL = http://search.centrum.cz/index.php?char ... x&kibitz=0
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: JQSIEStartDetectorImpl Class -> {E7E6F031-17CE-4C07-BC86-EABFE594F69C} -> C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
Toolbar: HKLM - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKU\S-1-5-21-790525478-630328440-682003330-1003 -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
Toolbar: HKU\S-1-5-21-790525478-630328440-682003330-1003 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/ ... ontrol.cab
DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} http://www.nvidia.com/content/DriverDow ... eqlab3.cab
DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} http://download.divx.com/player/DivXBrowserPlugin.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {A996E48C-D3DC-4244-89F7-AFA33EC60679} https://portal.ote-cr.cz/otemarket/reso ... apicom.cab
DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/sh ... wflash.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Radek\Data aplikací\Mozilla\Firefox\Profiles\gp69o8du.default
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.cz
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_16_0_0_287.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @pandonetworks.com/PandoWebPlugin -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin: @real.com/nppl3260;version=6.0.12.69 -> C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.69 -> C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin: @software602.cz/602XML Filler -> C:\Program Files\Software602\602XML\Filler\npfiller.dll (Software602 a.s.)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-790525478-630328440-682003330-1003: @unity3d.com/UnityPlayer,version=1.0 -> C:\Documents and Settings\Radek\Local Settings\Data aplikací\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2011-10-23]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [2012-11-03]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-08-08]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-05-13]
FF Extension: No Name - C:\Documents and Settings\Radek\Data aplikací\Mozilla\Firefox\Profiles\gp69o8du.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [Not Found]

Chrome:
=======
CHR Profile: C:\Documents and Settings\Radek\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Skype Click to Call) - C:\Documents and Settings\Radek\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-03-24]
CHR Extension: (Peněženka Google) - C:\Documents and Settings\Radek\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-01-31]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 602XML Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 ATKKeyboardService; C:\WINDOWS\ATKKBService.exe [241664 2006-09-22] (ASUSTeK COMPUTER INC.) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-08-30] (AVAST Software)
R2 Hamachi2Svc; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [1107336 2010-03-30] (LogMeIn Inc.)
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2014-02-09] (Oracle Corporation)
S3 MSSQL$SONY_MEDIAMGR; C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe [7520337 2002-12-17] (Microsoft Corporation) [File not signed]
S3 MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [66112 2002-12-17] (Microsoft Corporation) [File not signed]
R2 NMSAccessU; C:\Program Files\CDBurnerXP\NMSAccessU.exe [71096 2008-10-20] ()
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1795912 2014-10-04] (NVIDIA Corporation)
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76888 2012-05-15] ()
R2 PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [214520 2015-01-22] ()
S3 SandraAgentSrv; D:\Install\SiSoftware Sandra Professional Business 2009.SP2\RpcAgentSrv.exe [98488 2008-12-11] (SiSoftware)
S3 SQLAgent$SONY_MEDIAMGR; C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE [311872 2002-12-17] (Microsoft Corporation) [File not signed]
S3 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S2 trufos; C:\WINDOWS\system32\svchost.exe [14336 2008-04-14] (Microsoft Corporation)
S3 SwPrv; C:\WINDOWS\system32\dllhost.exe /Processid:{41E9E6DA-3171-4C5C-9349-704DBC55C0AA}

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 3xHybrid; C:\WINDOWS\System32\DRIVERS\3xHybrid.sys [1121536 2006-11-22] (Philips Semiconductors GmbH)
R3 ASAPIW2K; C:\WINDOWS\System32\Drivers\ASAPIW2K.sys [11264 2005-01-10] (VOB Computersysteme GmbH) [File not signed]
R1 asuskbnt; C:\WINDOWS\System32\drivers\atkkbnt.sys [11008 2005-10-18] (ASUSTeK COMPUTER INC.) [File not signed]
R2 aswFsBlk; C:\WINDOWS\system32\Drivers\aswFsBlk.sys [29816 2013-08-30] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\Drivers\aswKbd.sys [21576 2013-08-30] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [66336 2013-08-30] (AVAST Software)
R1 AswRdr; C:\WINDOWS\system32\Drivers\AswRdr.sys [49760 2013-08-30] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49376 2013-08-30] ()
R1 aswSnx; C:\WINDOWS\system32\Drivers\aswSnx.sys [770784 2014-12-02] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\Drivers\aswSP.sys [369584 2013-08-30] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\Drivers\aswTdi.sys [56080 2013-08-30] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [177864 2013-08-30] ()
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
S3 cglptnt; C:\totalcmd\cglptnt.sys [7888 2008-08-08] (C. Ghisler & Co.) [File not signed]
R2 EIO; C:\WINDOWS\system32\drivers\EIO.sys [12288 2006-06-14] (ASUSTeK Computer Inc.) [File not signed]
S3 ENTECH; C:\WINDOWS\system32\DRIVERS\ENTECH.sys [21664 2004-10-25] (EnTech Taiwan) [File not signed]
R0 giveio; C:\WINDOWS\System32\giveio.sys [5248 1996-04-03] () [File not signed]
R3 hamachi; C:\WINDOWS\System32\DRIVERS\hamachi.sys [25280 2010-11-17] (LogMeIn, Inc.)
S3 MPE; C:\WINDOWS\System32\DRIVERS\MPE.sys [15232 2008-04-13] (Microsoft Corporation)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R1 PCLEPCI; C:\WINDOWS\system32\drivers\pclepci.sys [14165 2005-02-09] (Pinnacle Systems GmbH) [File not signed]
R3 PnkBstrK; C:\WINDOWS\system32\drivers\PnkBstrK.sys [137464 2015-01-22] ()
S3 Razerlow; C:\WINDOWS\System32\Drivers\Razerlow.sys [19020 2005-08-12] (Razer (Asia-Pacific) Pte Ltd) [File not signed]
S3 SANDRA; D:\Install\SiSoftware Sandra Professional Business 2009.SP2\WNt500x86\Sandra.sys [22432 2008-11-25] (SiSoftware)
R3 SenFiltService; C:\WINDOWS\System32\drivers\Senfilt.sys [392960 2006-03-18] (Sensaura)
R0 speedfan; C:\WINDOWS\System32\speedfan.sys [5248 2006-09-24] (Windows (R) 2000 DDK provider) [File not signed]
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [717296 2009-02-02] () [File not signed]
R1 StarOpen; C:\WINDOWS\system32\Drivers\StarOpen.sys [5632 2006-07-24] () [File not signed]
R3 WmBEnum; C:\WINDOWS\System32\drivers\WmBEnum.sys [22856 2010-04-27] (Logitech Inc.)
S3 WmFilter; C:\WINDOWS\System32\drivers\WmFilter.sys [37704 2010-04-27] (Logitech Inc.)
S3 WmHidLo; C:\WINDOWS\System32\drivers\WmHidLo.sys [31816 2010-04-27] (Logitech Inc.)
R3 WmVirHid; C:\WINDOWS\System32\drivers\WmVirHid.sys [15048 2010-04-27] (Logitech Inc.)
R3 WmXlCore; C:\WINDOWS\System32\drivers\WmXlCore.sys [66632 2010-04-27] (Logitech Inc.)
R3 yukonwxp; C:\WINDOWS\System32\DRIVERS\yk51x86.sys [248832 2006-07-26] (Marvell)
U3 ay3zjjkr; C:\WINDOWS\system32\Drivers\ay3zjjkr.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero size file/folder)
S3 ADIDTSFiltService; system32\drivers\adidts.sys [X]
R3 catchme; \??\C:\ComboFix\catchme.sys [X]
S4 IntelIde; No ImagePath
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U3 mbr; \??\C:\DOCUME~1\Radek\LOCALS~1\Temp\mbr.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-22 21:19 - 2015-01-22 21:19 - 00018343 _____ () C:\Documents and Settings\Radek\Plocha\FRST.txt
2015-01-22 21:19 - 2015-01-22 21:19 - 00000000 ____D () C:\FRST
2015-01-22 21:18 - 2015-01-22 21:18 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Radek\Plocha\FRSTLauncher.exe
2015-01-22 21:18 - 2015-01-22 21:18 - 00029696 _____ () C:\Documents and Settings\Radek\Local Settings\Data aplikací\MSGBOX.EXE
2015-01-22 21:18 - 2015-01-22 21:18 - 00015327 _____ () C:\Documents and Settings\Radek\Plocha\LM.bat
2015-01-22 21:17 - 2015-01-22 21:17 - 01118208 _____ (Farbar) C:\Documents and Settings\Radek\Plocha\FRST.exe
2015-01-22 19:23 - 2015-01-22 21:19 - 00000000 ____D () C:\Documents and Settings\Radek\Local Settings\temp
2015-01-22 19:23 - 2015-01-22 19:23 - 00000000 ____D () C:\Documents and Settings\NetworkService\Local Settings\temp
2015-01-22 19:23 - 2015-01-22 19:23 - 00000000 ____D () C:\Documents and Settings\LocalService\Local Settings\temp
2015-01-22 19:23 - 2015-01-22 19:23 - 00000000 ____D () C:\Documents and Settings\Default User\Local Settings\temp
2015-01-22 19:23 - 2015-01-22 19:23 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\temp
2015-01-22 19:07 - 2015-01-22 19:07 - 00014289 _____ () C:\ComboFix.txt
2015-01-22 18:56 - 2015-01-22 18:56 - 00001204 _____ () C:\CF-Submit.htm
2015-01-22 17:03 - 2015-01-22 17:03 - 05609462 ____R (Swearware) C:\Documents and Settings\Radek\Plocha\ComboFix.exe
2015-01-21 20:31 - 2015-01-21 20:31 - 00000512 _____ () C:\PhysicalMBR.bin
2015-01-18 14:02 - 2015-01-18 14:02 - 00000403 _____ () C:\WINDOWS\wmsetup.log
2015-01-15 20:27 - 2015-01-20 18:56 - 00006472 _____ () C:\WINDOWS\setupapi.log
2015-01-14 19:57 - 2015-01-21 16:24 - 00000240 _____ () C:\WINDOWS\setupact.log
2015-01-14 19:57 - 2015-01-14 19:57 - 00000000 _____ () C:\WINDOWS\setuperr.log
2015-01-14 19:55 - 2015-01-21 16:26 - 00002006 _____ () C:\rapport.txt
2015-01-14 19:55 - 2015-01-21 16:20 - 00004544 _____ () C:\WINDOWS\system32\tmp.reg
2015-01-14 19:55 - 2015-01-21 16:20 - 00000000 _____ () C:\WINDOWS\system32\tmp.txt
2015-01-14 19:51 - 2008-08-09 15:37 - 00082432 _____ (S!Ri.URZ) C:\WINDOWS\system32\404Fix.exe
2015-01-14 19:51 - 2008-07-02 13:33 - 00082432 _____ (S!Ri.URZ) C:\WINDOWS\system32\IEDFix.C.exe
2015-01-14 19:51 - 2008-05-29 09:35 - 00086528 _____ (S!Ri.URZ) C:\WINDOWS\system32\VACFix.exe
2015-01-14 19:51 - 2008-05-18 21:40 - 00082944 _____ (S!Ri.URZ) C:\WINDOWS\system32\IEDFix.exe
2015-01-14 19:51 - 2007-10-04 00:36 - 00025600 _____ () C:\WINDOWS\system32\WS2Fix.exe
2015-01-14 19:51 - 2007-09-06 00:22 - 00289144 _____ (S!Ri) C:\WINDOWS\system32\VCCLSID.exe
2015-01-14 19:51 - 2006-04-27 17:49 - 00288417 _____ (S!Ri) C:\WINDOWS\system32\SrchSTS.exe
2015-01-14 19:51 - 2004-07-31 18:50 - 00051200 _____ () C:\WINDOWS\system32\dumphive.exe
2015-01-14 19:51 - 2003-06-05 21:13 - 00053248 _____ (http://www.beyondlogic.org) C:\WINDOWS\system32\Process.exe
2015-01-13 18:55 - 2015-01-20 20:17 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\JobupOkulu

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-22 21:19 - 2009-01-31 23:26 - 00000000 ____D () C:\Documents and Settings\Radek\Plocha
2015-01-22 21:18 - 2009-01-31 23:26 - 00000000 ___HD () C:\Documents and Settings\Radek\Local Settings\Data aplikací
2015-01-22 21:17 - 2009-01-31 23:22 - 02058072 _____ () C:\WINDOWS\WindowsUpdate.log
2015-01-22 21:16 - 2013-07-21 15:56 - 00013642 _____ () C:\WINDOWS\system32\nvAppTimestamps
2015-01-22 21:16 - 2011-11-25 10:40 - 00000466 ____H () C:\WINDOWS\Tasks\User_Feed_Synchronization-{0C0BFD56-6838-43E8-9B02-CC06A10C1B08}.job
2015-01-22 21:12 - 2010-09-29 16:31 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Google
2015-01-22 21:12 - 2010-09-29 15:26 - 00000000 ____D () C:\Program Files\Google
2015-01-22 21:12 - 2010-09-29 15:26 - 00000000 ____D () C:\Documents and Settings\Radek\Local Settings\Data aplikací\Google
2015-01-22 21:06 - 2012-11-18 19:57 - 00000940 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-22 20:59 - 2009-02-01 13:18 - 00000000 ____D () C:\Documents and Settings\Radek\Data aplikací\Skype
2015-01-22 20:41 - 2012-06-08 22:10 - 00701616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-01-22 20:41 - 2012-06-08 22:10 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-01-22 20:41 - 2011-05-16 13:50 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-01-22 20:41 - 2009-01-31 23:25 - 00032582 _____ () C:\WINDOWS\SchedLgU.Txt
2015-01-22 20:18 - 2014-03-17 11:24 - 00214520 _____ () C:\WINDOWS\system32\PnkBstrB.exe
2015-01-22 20:18 - 2009-09-06 16:15 - 00137464 _____ () C:\WINDOWS\system32\Drivers\PnkBstrK.sys
2015-01-22 20:18 - 2009-02-28 15:26 - 00214520 _____ () C:\WINDOWS\system32\PnkBstrB.xtr
2015-01-22 20:11 - 2009-09-06 16:15 - 00214520 _____ () C:\WINDOWS\system32\PnkBstrB.ex0
2015-01-22 19:24 - 2014-04-04 17:46 - 00002283 _____ () C:\Documents and Settings\All Users\Plocha\Skype.lnk
2015-01-22 19:23 - 2012-04-22 14:53 - 00000000 ____D () C:\Qoobox
2015-01-22 19:04 - 2013-05-13 08:03 - 00000364 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job
2015-01-22 19:04 - 2004-08-18 13:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2015-01-22 19:03 - 2014-03-21 13:36 - 00000222 _____ () C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
2015-01-22 19:03 - 2012-11-18 19:57 - 00000936 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-22 19:03 - 2009-03-16 17:15 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2015-01-22 19:03 - 2009-03-16 17:15 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2015-01-22 19:03 - 2009-01-31 23:25 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-01-22 19:03 - 2004-08-18 13:00 - 00000227 _____ () C:\WINDOWS\system.ini
2015-01-22 19:02 - 2012-04-22 15:03 - 00008192 ____H () C:\WINDOWS\system32\config\SECURITY.tmp.LOG
2015-01-22 19:02 - 2012-04-22 14:54 - 00000000 ____D () C:\WINDOWS\ERDNT
2015-01-22 19:02 - 2009-02-01 00:14 - 00262144 _____ () C:\WINDOWS\system32\config\SECURITY.bak
2015-01-22 19:02 - 2009-02-01 00:14 - 00262144 _____ () C:\WINDOWS\system32\config\SAM.bak
2015-01-22 19:02 - 2009-02-01 00:13 - 40632320 _____ () C:\WINDOWS\system32\config\software.bak
2015-01-22 19:02 - 2009-02-01 00:13 - 07340032 _____ () C:\WINDOWS\system32\config\system.bak
2015-01-22 19:02 - 2009-02-01 00:13 - 00622592 _____ () C:\WINDOWS\system32\config\default.bak
2015-01-22 19:02 - 2009-01-31 23:26 - 00000272 ___SH () C:\Documents and Settings\Radek\ntuser.ini
2015-01-22 18:56 - 2009-01-31 23:26 - 00000000 __RHD () C:\Documents and Settings\Radek\Data aplikací
2015-01-22 02:00 - 2011-08-02 09:45 - 00000342 _____ () C:\WINDOWS\Tasks\AdobeAAMUpdater-1.0-RADEKK-Radek.job
2015-01-21 20:56 - 2009-02-01 09:43 - 00002565 _____ () C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft Word.lnk
2015-01-21 17:52 - 2009-03-19 09:56 - 00000000 ____D () C:\Documents and Settings\Radek\Data aplikací\mIRC
2015-01-21 17:15 - 2009-08-03 08:16 - 00000000 ____D () C:\Program Files\mIRC
2015-01-21 16:47 - 2009-01-31 23:26 - 00000000 ____D () C:\Documents and Settings\Radek
2015-01-21 16:43 - 2014-03-20 07:08 - 00000000 ____D () C:\AdwCleaner
2015-01-21 16:43 - 2009-02-01 00:15 - 00000000 __RHD () C:\Documents and Settings\All Users\Data aplikací
2015-01-21 16:43 - 2009-02-01 00:15 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy
2015-01-21 16:43 - 2009-01-31 23:26 - 00000000 ___RD () C:\Documents and Settings\Radek\Dokumenty
2015-01-21 16:34 - 2012-04-22 09:14 - 00000000 ____D () C:\Program Files\trend micro
2015-01-21 16:17 - 2010-03-26 20:18 - 00000000 ____D () C:\Documents and Settings\LocalService\Local Settings\Data aplikací\LogMeIn Hamachi
2015-01-20 21:02 - 2011-09-26 16:48 - 00000000 ____D () C:\Documents and Settings\Radek\Data aplikací\OpenOffice.org2
2015-01-20 18:57 - 2009-01-31 23:56 - 00133632 _____ () C:\Documents and Settings\Radek\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-01-19 20:09 - 2013-02-02 18:43 - 00000000 ____D () C:\Documents and Settings\Radek\Plocha\LUCKA
2015-01-17 23:24 - 2013-09-28 16:06 - 00000000 ____D () C:\Documents and Settings\Radek\Data aplikací\uTorrent
2015-01-15 18:34 - 2013-02-11 18:27 - 00000000 ____D () C:\Documents and Settings\Radek\Plocha\RADEK
2015-01-15 18:24 - 2009-02-01 14:29 - 00000000 ___RD () C:\Documents and Settings\Radek\Dokumenty\Filmy
2015-01-15 18:22 - 2010-12-15 20:33 - 00000000 ____D () C:\Documents and Settings\Radek\Dokumenty\FFOutput
2015-01-14 22:17 - 2013-08-08 22:35 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-01-12 16:14 - 2011-06-20 14:08 - 01990656 ___SH () C:\Documents and Settings\Radek\Plocha\Thumbs.db
2015-01-12 15:16 - 2013-02-07 13:37 - 00000000 ____D () C:\Documents and Settings\Radek\Plocha\TÁTA
2015-01-12 14:47 - 2009-02-01 09:43 - 00002473 _____ () C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft PowerPoint.lnk
2015-01-12 08:11 - 2009-02-04 15:59 - 00000000 ____D () C:\Program Files\SpeedFan
2015-01-08 15:00 - 2014-03-21 13:36 - 00000216 _____ () C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
2014-12-31 13:15 - 2009-02-01 00:25 - 110348472 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-12-29 13:45 - 2014-06-26 08:28 - 00000282 _____ () C:\Documents and Settings\Radek\BullseyeCoverageError.txt
2014-12-26 10:22 - 2012-07-25 20:14 - 00000284 _____ () C:\WINDOWS\Tasks\AppleSoftwareUpdate.job

==================== Files in the root of some directories =======
2012-06-19 18:39 - 2013-05-09 15:53 - 0000132 _____ () C:\Documents and Settings\Radek\Data aplikací\Adobe AIFF Format CS5 Prefs
2013-05-09 15:53 - 2013-05-09 15:53 - 0000132 _____ () C:\Documents and Settings\Radek\Data aplikací\Adobe BMP Format CS5 Prefs
2010-03-23 20:40 - 2011-07-25 20:55 - 0000552 _____ () C:\Documents and Settings\Radek\Data aplikací\default.pls
2012-11-25 13:40 - 2012-11-25 13:40 - 0001166 _____ () C:\Documents and Settings\Radek\Data aplikací\filterclsid.dat
2009-02-02 14:29 - 2009-02-02 15:00 - 0022328 _____ () C:\Documents and Settings\Radek\Data aplikací\PnkBstrK.sys
2012-05-05 17:36 - 2012-05-05 17:36 - 0011099 _____ () C:\Documents and Settings\Radek\Data aplikací\TheHunterSettings_live.bin
2012-05-05 17:37 - 2012-05-05 17:37 - 0000043 _____ () C:\Documents and Settings\Radek\Data aplikací\TheHunterSettings_local.cfg
2009-01-31 23:56 - 2015-01-20 18:57 - 0133632 _____ () C:\Documents and Settings\Radek\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-01-22 21:18 - 2015-01-22 21:18 - 0029696 _____ () C:\Documents and Settings\Radek\Local Settings\Data aplikací\MSGBOX.EXE
2010-09-03 10:22 - 2010-10-29 13:51 - 0000600 _____ () C:\Documents and Settings\Radek\Local Settings\Data aplikací\PUTTY.RND

Files to move or delete:
====================
C:\Documents and Settings\Radek\.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================

morphe · #20 Příspěvek od **morphe** » 22 led 2015 21:20

FRST 2
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 19-01-2015
Ran by Radek (administrator) on RADEKK on 22-01-2015 21:19:17
Running from C:\Documents and Settings\Radek\Plocha
Loaded Profiles: Radek (Available profiles: Radek & Administrator)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Software602) C:\Program Files\Software602\Print2PDF\Print2PDF.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\Core\smax4pnp.exe
(Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(Software602 a.s.) C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(Allstar Group, s.r.o.) C:\Program Files\GamePark2\gpcl.exe
(ASUSTeK COMPUTER INC.) C:\WINDOWS\ATKKBService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(LogMeIn Inc.) C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Nero AG) C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
() C:\Program Files\CDBurnerXP\NMSAccessU.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
() C:\WINDOWS\system32\PnkBstrA.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
() C:\WINDOWS\system32\PnkBstrB.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
(forum.viry.cz) C:\Documents and Settings\Radek\Plocha\FRSTLauncher.exe
(Microsoft Corporation) C:\WINDOWS\system32\cmd.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [PinnacleDriverCheck] => C:\WINDOWS\system32\\PSDrvCheck.exe [406016 2004-03-11] ()
HKLM\...\Run: [Print2PDF Print Monitor] => C:\Program Files\Software602\Print2PDF\Print2PDF.exe [220992 2011-10-04] (Software602)
HKLM\...\Run: [SoundMAXPnP] => C:\Program Files\Analog Devices\Core\smax4pnp.exe [1036288 2007-10-09] (Analog Devices, Inc.)
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [153672 2010-06-14] (Logitech Inc.)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-01-28] (Apple Inc.)
HKLM\...\Run: [avast] => C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-08-30] (AVAST Software)
HKLM\...\Run: [Razer Lachesis Driver] => C:\Program Files\Razer\Lachesis 5600\LachesisSysTray.exe [837008 2011-03-09] (Razer USA Ltd)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [NvMediaCenter] => RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2586912 2013-06-21] ()
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\GamePark klient 2.lnk
ShortcutTarget: GamePark klient 2.lnk -> C:\Program Files\GamePark2\gpcl.exe (Allstar Group, s.r.o.)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Microsoft Office.lnk
ShortcutTarget: Microsoft Office.lnk -> C:\Program Files\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-790525478-630328440-682003330-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... R}&ar=home
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-790525478-630328440-682003330-1003\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-790525478-630328440-682003330-1003\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\S-1-5-21-790525478-630328440-682003330-1003\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
URLSearchHook: HKLM - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046}
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-790525478-630328440-682003330-1003 -> {6A15FB7B-38D4-4E7E-810F-B914C548C3B8} URL = http://search.centrum.cz/index.php?char ... x&kibitz=0
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: JQSIEStartDetectorImpl Class -> {E7E6F031-17CE-4C07-BC86-EABFE594F69C} -> C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
Toolbar: HKLM - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKU\S-1-5-21-790525478-630328440-682003330-1003 -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
Toolbar: HKU\S-1-5-21-790525478-630328440-682003330-1003 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/ ... ontrol.cab
DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} http://www.nvidia.com/content/DriverDow ... eqlab3.cab
DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} http://download.divx.com/player/DivXBrowserPlugin.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {A996E48C-D3DC-4244-89F7-AFA33EC60679} https://portal.ote-cr.cz/otemarket/reso ... apicom.cab
DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/sh ... wflash.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Radek\Data aplikací\Mozilla\Firefox\Profiles\gp69o8du.default
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.cz
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_16_0_0_287.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @pandonetworks.com/PandoWebPlugin -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin: @real.com/nppl3260;version=6.0.12.69 -> C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.69 -> C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin: @software602.cz/602XML Filler -> C:\Program Files\Software602\602XML\Filler\npfiller.dll (Software602 a.s.)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-790525478-630328440-682003330-1003: @unity3d.com/UnityPlayer,version=1.0 -> C:\Documents and Settings\Radek\Local Settings\Data aplikací\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2011-10-23]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [2012-11-03]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-08-08]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-05-13]
FF Extension: No Name - C:\Documents and Settings\Radek\Data aplikací\Mozilla\Firefox\Profiles\gp69o8du.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [Not Found]

Chrome:
=======
CHR Profile: C:\Documents and Settings\Radek\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Skype Click to Call) - C:\Documents and Settings\Radek\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-03-24]
CHR Extension: (Peněženka Google) - C:\Documents and Settings\Radek\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-01-31]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 602XML Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 ATKKeyboardService; C:\WINDOWS\ATKKBService.exe [241664 2006-09-22] (ASUSTeK COMPUTER INC.) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-08-30] (AVAST Software)
R2 Hamachi2Svc; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [1107336 2010-03-30] (LogMeIn Inc.)
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2014-02-09] (Oracle Corporation)
S3 MSSQL$SONY_MEDIAMGR; C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe [7520337 2002-12-17] (Microsoft Corporation) [File not signed]
S3 MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [66112 2002-12-17] (Microsoft Corporation) [File not signed]
R2 NMSAccessU; C:\Program Files\CDBurnerXP\NMSAccessU.exe [71096 2008-10-20] ()
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1795912 2014-10-04] (NVIDIA Corporation)
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76888 2012-05-15] ()
R2 PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [214520 2015-01-22] ()
S3 SandraAgentSrv; D:\Install\SiSoftware Sandra Professional Business 2009.SP2\RpcAgentSrv.exe [98488 2008-12-11] (SiSoftware)
S3 SQLAgent$SONY_MEDIAMGR; C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE [311872 2002-12-17] (Microsoft Corporation) [File not signed]
S3 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S2 trufos; C:\WINDOWS\system32\svchost.exe [14336 2008-04-14] (Microsoft Corporation)
S3 SwPrv; C:\WINDOWS\system32\dllhost.exe /Processid:{41E9E6DA-3171-4C5C-9349-704DBC55C0AA}

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 3xHybrid; C:\WINDOWS\System32\DRIVERS\3xHybrid.sys [1121536 2006-11-22] (Philips Semiconductors GmbH)
R3 ASAPIW2K; C:\WINDOWS\System32\Drivers\ASAPIW2K.sys [11264 2005-01-10] (VOB Computersysteme GmbH) [File not signed]
R1 asuskbnt; C:\WINDOWS\System32\drivers\atkkbnt.sys [11008 2005-10-18] (ASUSTeK COMPUTER INC.) [File not signed]
R2 aswFsBlk; C:\WINDOWS\system32\Drivers\aswFsBlk.sys [29816 2013-08-30] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\Drivers\aswKbd.sys [21576 2013-08-30] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [66336 2013-08-30] (AVAST Software)
R1 AswRdr; C:\WINDOWS\system32\Drivers\AswRdr.sys [49760 2013-08-30] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49376 2013-08-30] ()
R1 aswSnx; C:\WINDOWS\system32\Drivers\aswSnx.sys [770784 2014-12-02] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\Drivers\aswSP.sys [369584 2013-08-30] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\Drivers\aswTdi.sys [56080 2013-08-30] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [177864 2013-08-30] ()
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
S3 cglptnt; C:\totalcmd\cglptnt.sys [7888 2008-08-08] (C. Ghisler & Co.) [File not signed]
R2 EIO; C:\WINDOWS\system32\drivers\EIO.sys [12288 2006-06-14] (ASUSTeK Computer Inc.) [File not signed]
S3 ENTECH; C:\WINDOWS\system32\DRIVERS\ENTECH.sys [21664 2004-10-25] (EnTech Taiwan) [File not signed]
R0 giveio; C:\WINDOWS\System32\giveio.sys [5248 1996-04-03] () [File not signed]
R3 hamachi; C:\WINDOWS\System32\DRIVERS\hamachi.sys [25280 2010-11-17] (LogMeIn, Inc.)
S3 MPE; C:\WINDOWS\System32\DRIVERS\MPE.sys [15232 2008-04-13] (Microsoft Corporation)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R1 PCLEPCI; C:\WINDOWS\system32\drivers\pclepci.sys [14165 2005-02-09] (Pinnacle Systems GmbH) [File not signed]
R3 PnkBstrK; C:\WINDOWS\system32\drivers\PnkBstrK.sys [137464 2015-01-22] ()
S3 Razerlow; C:\WINDOWS\System32\Drivers\Razerlow.sys [19020 2005-08-12] (Razer (Asia-Pacific) Pte Ltd) [File not signed]
S3 SANDRA; D:\Install\SiSoftware Sandra Professional Business 2009.SP2\WNt500x86\Sandra.sys [22432 2008-11-25] (SiSoftware)
R3 SenFiltService; C:\WINDOWS\System32\drivers\Senfilt.sys [392960 2006-03-18] (Sensaura)
R0 speedfan; C:\WINDOWS\System32\speedfan.sys [5248 2006-09-24] (Windows (R) 2000 DDK provider) [File not signed]
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [717296 2009-02-02] () [File not signed]
R1 StarOpen; C:\WINDOWS\system32\Drivers\StarOpen.sys [5632 2006-07-24] () [File not signed]
R3 WmBEnum; C:\WINDOWS\System32\drivers\WmBEnum.sys [22856 2010-04-27] (Logitech Inc.)
S3 WmFilter; C:\WINDOWS\System32\drivers\WmFilter.sys [37704 2010-04-27] (Logitech Inc.)
S3 WmHidLo; C:\WINDOWS\System32\drivers\WmHidLo.sys [31816 2010-04-27] (Logitech Inc.)
R3 WmVirHid; C:\WINDOWS\System32\drivers\WmVirHid.sys [15048 2010-04-27] (Logitech Inc.)
R3 WmXlCore; C:\WINDOWS\System32\drivers\WmXlCore.sys [66632 2010-04-27] (Logitech Inc.)
R3 yukonwxp; C:\WINDOWS\System32\DRIVERS\yk51x86.sys [248832 2006-07-26] (Marvell)
U3 ay3zjjkr; C:\WINDOWS\system32\Drivers\ay3zjjkr.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero size file/folder)
S3 ADIDTSFiltService; system32\drivers\adidts.sys [X]
R3 catchme; \??\C:\ComboFix\catchme.sys [X]
S4 IntelIde; No ImagePath
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U3 mbr; \??\C:\DOCUME~1\Radek\LOCALS~1\Temp\mbr.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-22 21:19 - 2015-01-22 21:19 - 00018343 _____ () C:\Documents and Settings\Radek\Plocha\FRST.txt
2015-01-22 21:19 - 2015-01-22 21:19 - 00000000 ____D () C:\FRST
2015-01-22 21:18 - 2015-01-22 21:18 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Radek\Plocha\FRSTLauncher.exe
2015-01-22 21:18 - 2015-01-22 21:18 - 00029696 _____ () C:\Documents and Settings\Radek\Local Settings\Data aplikací\MSGBOX.EXE
2015-01-22 21:18 - 2015-01-22 21:18 - 00015327 _____ () C:\Documents and Settings\Radek\Plocha\LM.bat
2015-01-22 21:17 - 2015-01-22 21:17 - 01118208 _____ (Farbar) C:\Documents and Settings\Radek\Plocha\FRST.exe
2015-01-22 19:23 - 2015-01-22 21:19 - 00000000 ____D () C:\Documents and Settings\Radek\Local Settings\temp
2015-01-22 19:23 - 2015-01-22 19:23 - 00000000 ____D () C:\Documents and Settings\NetworkService\Local Settings\temp
2015-01-22 19:23 - 2015-01-22 19:23 - 00000000 ____D () C:\Documents and Settings\LocalService\Local Settings\temp
2015-01-22 19:23 - 2015-01-22 19:23 - 00000000 ____D () C:\Documents and Settings\Default User\Local Settings\temp
2015-01-22 19:23 - 2015-01-22 19:23 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\temp
2015-01-22 19:07 - 2015-01-22 19:07 - 00014289 _____ () C:\ComboFix.txt
2015-01-22 18:56 - 2015-01-22 18:56 - 00001204 _____ () C:\CF-Submit.htm
2015-01-22 17:03 - 2015-01-22 17:03 - 05609462 ____R (Swearware) C:\Documents and Settings\Radek\Plocha\ComboFix.exe
2015-01-21 20:31 - 2015-01-21 20:31 - 00000512 _____ () C:\PhysicalMBR.bin
2015-01-18 14:02 - 2015-01-18 14:02 - 00000403 _____ () C:\WINDOWS\wmsetup.log
2015-01-15 20:27 - 2015-01-20 18:56 - 00006472 _____ () C:\WINDOWS\setupapi.log
2015-01-14 19:57 - 2015-01-21 16:24 - 00000240 _____ () C:\WINDOWS\setupact.log
2015-01-14 19:57 - 2015-01-14 19:57 - 00000000 _____ () C:\WINDOWS\setuperr.log
2015-01-14 19:55 - 2015-01-21 16:26 - 00002006 _____ () C:\rapport.txt
2015-01-14 19:55 - 2015-01-21 16:20 - 00004544 _____ () C:\WINDOWS\system32\tmp.reg
2015-01-14 19:55 - 2015-01-21 16:20 - 00000000 _____ () C:\WINDOWS\system32\tmp.txt
2015-01-14 19:51 - 2008-08-09 15:37 - 00082432 _____ (S!Ri.URZ) C:\WINDOWS\system32\404Fix.exe
2015-01-14 19:51 - 2008-07-02 13:33 - 00082432 _____ (S!Ri.URZ) C:\WINDOWS\system32\IEDFix.C.exe
2015-01-14 19:51 - 2008-05-29 09:35 - 00086528 _____ (S!Ri.URZ) C:\WINDOWS\system32\VACFix.exe
2015-01-14 19:51 - 2008-05-18 21:40 - 00082944 _____ (S!Ri.URZ) C:\WINDOWS\system32\IEDFix.exe
2015-01-14 19:51 - 2007-10-04 00:36 - 00025600 _____ () C:\WINDOWS\system32\WS2Fix.exe
2015-01-14 19:51 - 2007-09-06 00:22 - 00289144 _____ (S!Ri) C:\WINDOWS\system32\VCCLSID.exe
2015-01-14 19:51 - 2006-04-27 17:49 - 00288417 _____ (S!Ri) C:\WINDOWS\system32\SrchSTS.exe
2015-01-14 19:51 - 2004-07-31 18:50 - 00051200 _____ () C:\WINDOWS\system32\dumphive.exe
2015-01-14 19:51 - 2003-06-05 21:13 - 00053248 _____ (http://www.beyondlogic.org) C:\WINDOWS\system32\Process.exe
2015-01-13 18:55 - 2015-01-20 20:17 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\JobupOkulu

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-22 21:19 - 2009-01-31 23:26 - 00000000 ____D () C:\Documents and Settings\Radek\Plocha
2015-01-22 21:18 - 2009-01-31 23:26 - 00000000 ___HD () C:\Documents and Settings\Radek\Local Settings\Data aplikací
2015-01-22 21:17 - 2009-01-31 23:22 - 02058072 _____ () C:\WINDOWS\WindowsUpdate.log
2015-01-22 21:16 - 2013-07-21 15:56 - 00013642 _____ () C:\WINDOWS\system32\nvAppTimestamps
2015-01-22 21:16 - 2011-11-25 10:40 - 00000466 ____H () C:\WINDOWS\Tasks\User_Feed_Synchronization-{0C0BFD56-6838-43E8-9B02-CC06A10C1B08}.job
2015-01-22 21:12 - 2010-09-29 16:31 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Google
2015-01-22 21:12 - 2010-09-29 15:26 - 00000000 ____D () C:\Program Files\Google
2015-01-22 21:12 - 2010-09-29 15:26 - 00000000 ____D () C:\Documents and Settings\Radek\Local Settings\Data aplikací\Google
2015-01-22 21:06 - 2012-11-18 19:57 - 00000940 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-22 20:59 - 2009-02-01 13:18 - 00000000 ____D () C:\Documents and Settings\Radek\Data aplikací\Skype
2015-01-22 20:41 - 2012-06-08 22:10 - 00701616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-01-22 20:41 - 2012-06-08 22:10 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-01-22 20:41 - 2011-05-16 13:50 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-01-22 20:41 - 2009-01-31 23:25 - 00032582 _____ () C:\WINDOWS\SchedLgU.Txt
2015-01-22 20:18 - 2014-03-17 11:24 - 00214520 _____ () C:\WINDOWS\system32\PnkBstrB.exe
2015-01-22 20:18 - 2009-09-06 16:15 - 00137464 _____ () C:\WINDOWS\system32\Drivers\PnkBstrK.sys
2015-01-22 20:18 - 2009-02-28 15:26 - 00214520 _____ () C:\WINDOWS\system32\PnkBstrB.xtr
2015-01-22 20:11 - 2009-09-06 16:15 - 00214520 _____ () C:\WINDOWS\system32\PnkBstrB.ex0
2015-01-22 19:24 - 2014-04-04 17:46 - 00002283 _____ () C:\Documents and Settings\All Users\Plocha\Skype.lnk
2015-01-22 19:23 - 2012-04-22 14:53 - 00000000 ____D () C:\Qoobox
2015-01-22 19:04 - 2013-05-13 08:03 - 00000364 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job
2015-01-22 19:04 - 2004-08-18 13:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2015-01-22 19:03 - 2014-03-21 13:36 - 00000222 _____ () C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
2015-01-22 19:03 - 2012-11-18 19:57 - 00000936 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-22 19:03 - 2009-03-16 17:15 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2015-01-22 19:03 - 2009-03-16 17:15 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2015-01-22 19:03 - 2009-01-31 23:25 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-01-22 19:03 - 2004-08-18 13:00 - 00000227 _____ () C:\WINDOWS\system.ini
2015-01-22 19:02 - 2012-04-22 15:03 - 00008192 ____H () C:\WINDOWS\system32\config\SECURITY.tmp.LOG
2015-01-22 19:02 - 2012-04-22 14:54 - 00000000 ____D () C:\WINDOWS\ERDNT
2015-01-22 19:02 - 2009-02-01 00:14 - 00262144 _____ () C:\WINDOWS\system32\config\SECURITY.bak
2015-01-22 19:02 - 2009-02-01 00:14 - 00262144 _____ () C:\WINDOWS\system32\config\SAM.bak
2015-01-22 19:02 - 2009-02-01 00:13 - 40632320 _____ () C:\WINDOWS\system32\config\software.bak
2015-01-22 19:02 - 2009-02-01 00:13 - 07340032 _____ () C:\WINDOWS\system32\config\system.bak
2015-01-22 19:02 - 2009-02-01 00:13 - 00622592 _____ () C:\WINDOWS\system32\config\default.bak
2015-01-22 19:02 - 2009-01-31 23:26 - 00000272 ___SH () C:\Documents and Settings\Radek\ntuser.ini
2015-01-22 18:56 - 2009-01-31 23:26 - 00000000 __RHD () C:\Documents and Settings\Radek\Data aplikací
2015-01-22 02:00 - 2011-08-02 09:45 - 00000342 _____ () C:\WINDOWS\Tasks\AdobeAAMUpdater-1.0-RADEKK-Radek.job
2015-01-21 20:56 - 2009-02-01 09:43 - 00002565 _____ () C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft Word.lnk
2015-01-21 17:52 - 2009-03-19 09:56 - 00000000 ____D () C:\Documents and Settings\Radek\Data aplikací\mIRC
2015-01-21 17:15 - 2009-08-03 08:16 - 00000000 ____D () C:\Program Files\mIRC
2015-01-21 16:47 - 2009-01-31 23:26 - 00000000 ____D () C:\Documents and Settings\Radek
2015-01-21 16:43 - 2014-03-20 07:08 - 00000000 ____D () C:\AdwCleaner
2015-01-21 16:43 - 2009-02-01 00:15 - 00000000 __RHD () C:\Documents and Settings\All Users\Data aplikací
2015-01-21 16:43 - 2009-02-01 00:15 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy
2015-01-21 16:43 - 2009-01-31 23:26 - 00000000 ___RD () C:\Documents and Settings\Radek\Dokumenty
2015-01-21 16:34 - 2012-04-22 09:14 - 00000000 ____D () C:\Program Files\trend micro
2015-01-21 16:17 - 2010-03-26 20:18 - 00000000 ____D () C:\Documents and Settings\LocalService\Local Settings\Data aplikací\LogMeIn Hamachi
2015-01-20 21:02 - 2011-09-26 16:48 - 00000000 ____D () C:\Documents and Settings\Radek\Data aplikací\OpenOffice.org2
2015-01-20 18:57 - 2009-01-31 23:56 - 00133632 _____ () C:\Documents and Settings\Radek\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-01-19 20:09 - 2013-02-02 18:43 - 00000000 ____D () C:\Documents and Settings\Radek\Plocha\LUCKA
2015-01-17 23:24 - 2013-09-28 16:06 - 00000000 ____D () C:\Documents and Settings\Radek\Data aplikací\uTorrent
2015-01-15 18:34 - 2013-02-11 18:27 - 00000000 ____D () C:\Documents and Settings\Radek\Plocha\RADEK
2015-01-15 18:24 - 2009-02-01 14:29 - 00000000 ___RD () C:\Documents and Settings\Radek\Dokumenty\Filmy
2015-01-15 18:22 - 2010-12-15 20:33 - 00000000 ____D () C:\Documents and Settings\Radek\Dokumenty\FFOutput
2015-01-14 22:17 - 2013-08-08 22:35 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-01-12 16:14 - 2011-06-20 14:08 - 01990656 ___SH () C:\Documents and Settings\Radek\Plocha\Thumbs.db
2015-01-12 15:16 - 2013-02-07 13:37 - 00000000 ____D () C:\Documents and Settings\Radek\Plocha\TÁTA
2015-01-12 14:47 - 2009-02-01 09:43 - 00002473 _____ () C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft PowerPoint.lnk
2015-01-12 08:11 - 2009-02-04 15:59 - 00000000 ____D () C:\Program Files\SpeedFan
2015-01-08 15:00 - 2014-03-21 13:36 - 00000216 _____ () C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
2014-12-31 13:15 - 2009-02-01 00:25 - 110348472 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-12-29 13:45 - 2014-06-26 08:28 - 00000282 _____ () C:\Documents and Settings\Radek\BullseyeCoverageError.txt
2014-12-26 10:22 - 2012-07-25 20:14 - 00000284 _____ () C:\WINDOWS\Tasks\AppleSoftwareUpdate.job

==================== Files in the root of some directories =======
2012-06-19 18:39 - 2013-05-09 15:53 - 0000132 _____ () C:\Documents and Settings\Radek\Data aplikací\Adobe AIFF Format CS5 Prefs
2013-05-09 15:53 - 2013-05-09 15:53 - 0000132 _____ () C:\Documents and Settings\Radek\Data aplikací\Adobe BMP Format CS5 Prefs
2010-03-23 20:40 - 2011-07-25 20:55 - 0000552 _____ () C:\Documents and Settings\Radek\Data aplikací\default.pls
2012-11-25 13:40 - 2012-11-25 13:40 - 0001166 _____ () C:\Documents and Settings\Radek\Data aplikací\filterclsid.dat
2009-02-02 14:29 - 2009-02-02 15:00 - 0022328 _____ () C:\Documents and Settings\Radek\Data aplikací\PnkBstrK.sys
2012-05-05 17:36 - 2012-05-05 17:36 - 0011099 _____ () C:\Documents and Settings\Radek\Data aplikací\TheHunterSettings_live.bin
2012-05-05 17:37 - 2012-05-05 17:37 - 0000043 _____ () C:\Documents and Settings\Radek\Data aplikací\TheHunterSettings_local.cfg
2009-01-31 23:56 - 2015-01-20 18:57 - 0133632 _____ () C:\Documents and Settings\Radek\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-01-22 21:18 - 2015-01-22 21:18 - 0029696 _____ () C:\Documents and Settings\Radek\Local Settings\Data aplikací\MSGBOX.EXE
2010-09-03 10:22 - 2010-10-29 13:51 - 0000600 _____ () C:\Documents and Settings\Radek\Local Settings\Data aplikací\PUTTY.RND

Files to move or delete:
====================
C:\Documents and Settings\Radek\.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:97.65 GB) (Free:12.89 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: () (Fixed) (Total:200.43 GB) (Free:21.12 GB) NTFS

Available physical RAM: 1166.46 MB
Total physical RAM: 2047.11 MB
Percentage of memory in use: 43%

==================== MBR and Partition Table ==================

Disk: 0 (Size: 298.1 GB) (Disk ID: 00000001)
Partition 1: (Active) - (Size=97.7 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=200.4 GB) - (Type=OF Extended)

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\AdobeAAMUpdater-1.0-RADEKK-Radek.job => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
Task: C:\WINDOWS\Tasks\AppleSoftwareUpdate.job => C:\Program Files\Apple Software Update\SoftwareUpdate.exe
Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\User_Feed_Synchronization-{0C0BFD56-6838-43E8-9B02-CC06A10C1B08}.job => C:\WINDOWS\system32\msfeedssync.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:05EE1EEF

==================== Security Center ==================

AV: avast! Antivirus (Disabled - Up to date) {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: avast! Antivirus (Disabled) {7591DB91-41F0-48A3-B128-1A293FD8233D}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

morphe · #21 Příspěvek od **morphe** » 22 led 2015 21:21

Addition

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 19-01-2015
Ran by Radek at 2015-01-22 21:19:55
Running from C:\Documents and Settings\Radek\Plocha
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Disabled - Up to date) {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: avast! Antivirus (Disabled) {7591DB91-41F0-48A3-B128-1A293FD8233D}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

3DMark06 (HKLM\...\{1AE27FE6-05DB-40CB-A29E-2945980ACE27}) (Version: 1.0.2 - Futuremark)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 4.0.0.1390 - Adobe Systems Incorporated)
Adobe Community Help (HKLM\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Flash Player 16 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 16.0.0.287 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 16.0.0.287 - Adobe Systems Incorporated)
Adobe Media Player (HKLM\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Photoshop CS5 (HKLM\...\{15FEDA5F-141C-4127-8D7E-B962D1742728}) (Version: 12.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Advertising Center (Version: 0.0.0.1 - Nero AG) Hidden
Aktualizace NVIDIA 16.13.56 (Version: 16.13.56 - NVIDIA Corporation) Hidden
Aktualizace systému Windows Internet Explorer 7 (KB976749) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace systému Windows Internet Explorer 7 (KB980182) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace systému Windows Internet Explorer 8 (KB2447568) (HKLM\...\KB2447568-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB2141007) (HKLM\...\KB2141007) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB2345886) (HKLM\...\KB2345886) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB2467659) (HKLM\...\KB2467659) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB2541763) (HKLM\...\KB2541763) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB2607712) (HKLM\...\KB2607712) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB2616676) (HKLM\...\KB2616676) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB2641690) (HKLM\...\KB2641690) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB2661254-v2) (HKLM\...\KB2661254-v2) (Version: 2 - Microsoft Corporation)
Aktualizace systému Windows XP (KB2718704) (HKLM\...\KB2718704) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB2736233) (HKLM\...\KB2736233) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB2749655) (HKLM\...\KB2749655) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB2863058) (HKLM\...\KB2863058) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB2904266) (HKLM\...\KB2904266) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB2934207) (HKLM\...\KB2934207) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB951978) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace systému Windows XP (KB955759) (HKLM\...\KB955759) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB955839) (HKLM\...\KB955839) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB967715) (HKLM\...\KB967715) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB968389) (HKLM\...\KB968389) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB971029) (HKLM\...\KB971029) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB971737) (HKLM\...\KB971737) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB973687) (HKLM\...\KB973687) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB973815) (HKLM\...\KB973815) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení aplikace Windows Media Player (KB2378111) (HKLM\...\KB2378111_WM9) (Version: - Microsoft Corporation)
Aktualizace zabezpečení aplikace Windows Media Player (KB2834904) (HKLM\...\KB2834904_WM11) (Version: - Microsoft Corporation)
Aktualizace zabezpečení aplikace Windows Media Player (KB2834904-v2) (HKLM\...\KB2834904-v2_WM11) (Version: - Microsoft Corporation)
Aktualizace zabezpečení aplikace Windows Media Player (KB952069) (Version: - Microsoft Corporation) Hidden
Aktualizace zabezpečení aplikace Windows Media Player (KB954155) (HKLM\...\KB954155_WM9) (Version: - Microsoft Corporation)
Aktualizace zabezpečení aplikace Windows Media Player (KB968816) (HKLM\...\KB968816_WM9) (Version: - Microsoft Corporation)
Aktualizace zabezpečení aplikace Windows Media Player (KB973540) (HKLM\...\KB973540_WM9) (Version: - Microsoft Corporation)
Aktualizace zabezpečení aplikace Windows Media Player (KB975558) (HKLM\...\KB975558_WM8) (Version: - Microsoft Corporation)
Aktualizace zabezpečení aplikace Windows Media Player (KB978695) (HKLM\...\KB978695_WM9) (Version: - Microsoft Corporation)
Aktualizace zabezpečení aplikace Windows Media Player 11 (KB936782) (HKLM\...\KB936782_WMP11) (Version: - Microsoft Corporation)
Aktualizace zabezpečení aplikace Windows Media Player 11 (KB954154) (HKLM\...\KB954154_WM11) (Version: - Microsoft Corporation)
Aktualizace zabezpečení pro Microsoft Windows (KB2564958) (HKLM\...\KB2564958) (Version: - Microsoft Corporation)
Aktualizace zabezpečení produktu Windows XP (KB941569) (HKLM\...\KB941569) (Version: - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2183461) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2360131) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2416400) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2482017) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2497640) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2530548) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2544521) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2559049) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2586448) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB938127-v2) (Version: 2 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB956390) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB958215) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB960714) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB961260) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB963027) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB969897) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB972260) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB974455) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB976325) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB978207) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB982381) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2510531) (HKLM\...\KB2510531-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2544521) (HKLM\...\KB2544521-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2586448) (HKLM\...\KB2586448-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2618444) (HKLM\...\KB2618444-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2647516) (HKLM\...\KB2647516-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2675157) (HKLM\...\KB2675157-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2699988) (HKLM\...\KB2699988-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2722913) (HKLM\...\KB2722913-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2744842) (HKLM\...\KB2744842-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2761465) (HKLM\...\KB2761465-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2792100) (HKLM\...\KB2792100-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2797052) (HKLM\...\KB2797052-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2799329) (HKLM\...\KB2799329-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2809289) (HKLM\...\KB2809289-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2817183) (HKLM\...\KB2817183-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2829530) (HKLM\...\KB2829530-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2838727) (HKLM\...\KB2838727-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2846071) (HKLM\...\KB2846071-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2847204) (HKLM\...\KB2847204-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2862772) (HKLM\...\KB2862772-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2870699) (HKLM\...\KB2870699-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2879017) (HKLM\...\KB2879017-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2888505) (HKLM\...\KB2888505-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2898785) (HKLM\...\KB2898785-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2909210) (HKLM\...\KB2909210-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2909921) (HKLM\...\KB2909921-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2925418) (HKLM\...\KB2925418-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2936068) (HKLM\...\KB2936068-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2964358) (HKLM\...\KB2964358-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB982381) (HKLM\...\KB982381-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2079403) (HKLM\...\KB2079403) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2115168) (HKLM\...\KB2115168) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2121546) (HKLM\...\KB2121546) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2160329) (HKLM\...\KB2160329) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2229593) (HKLM\...\KB2229593) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2259922) (HKLM\...\KB2259922) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2279986) (HKLM\...\KB2279986) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2286198) (HKLM\...\KB2286198) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2296011) (HKLM\...\KB2296011) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2296199) (HKLM\...\KB2296199) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2347290) (HKLM\...\KB2347290) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2360937) (HKLM\...\KB2360937) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2387149) (HKLM\...\KB2387149) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2393802) (HKLM\...\KB2393802) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2412687) (HKLM\...\KB2412687) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2419632) (HKLM\...\KB2419632) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2423089) (HKLM\...\KB2423089) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2436673) (HKLM\...\KB2436673) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2440591) (HKLM\...\KB2440591) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2443105) (HKLM\...\KB2443105) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2476490) (HKLM\...\KB2476490) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2476687) (HKLM\...\KB2476687) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2478960) (HKLM\...\KB2478960) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2478971) (HKLM\...\KB2478971) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2479628) (HKLM\...\KB2479628) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2479943) (HKLM\...\KB2479943) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2481109) (HKLM\...\KB2481109) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2483185) (HKLM\...\KB2483185) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2485376) (HKLM\...\KB2485376) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2485663) (HKLM\...\KB2485663) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2503658) (HKLM\...\KB2503658) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2503665) (HKLM\...\KB2503665) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2506212) (HKLM\...\KB2506212) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2506223) (HKLM\...\KB2506223) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2507618) (HKLM\...\KB2507618) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2507938) (HKLM\...\KB2507938) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2508272) (HKLM\...\KB2508272) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2508429) (HKLM\...\KB2508429) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2509553) (HKLM\...\KB2509553) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2510581) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows XP (KB2511455) (HKLM\...\KB2511455) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2524375) (HKLM\...\KB2524375) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2535512) (HKLM\...\KB2535512) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2536276) (HKLM\...\KB2536276) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2536276-v2) (HKLM\...\KB2536276-v2) (Version: 2 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2544893) (HKLM\...\KB2544893) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2544893-v2) (HKLM\...\KB2544893-v2) (Version: 2 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2555917) (HKLM\...\KB2555917) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2562937) (HKLM\...\KB2562937) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2566454) (HKLM\...\KB2566454) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2567053) (HKLM\...\KB2567053) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2567680) (HKLM\...\KB2567680) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2570222) (HKLM\...\KB2570222) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2570947) (HKLM\...\KB2570947) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2584146) (HKLM\...\KB2584146) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2585542) (HKLM\...\KB2585542) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2592799) (HKLM\...\KB2592799) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2598479) (HKLM\...\KB2598479) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2603381) (HKLM\...\KB2603381) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2618451) (HKLM\...\KB2618451) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2619339) (HKLM\...\KB2619339) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2620712) (HKLM\...\KB2620712) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2621440) (HKLM\...\KB2621440) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2624667) (HKLM\...\KB2624667) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2631813) (HKLM\...\KB2631813) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2633171) (HKLM\...\KB2633171) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2639417) (HKLM\...\KB2639417) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2641653) (HKLM\...\KB2641653) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2646524) (HKLM\...\KB2646524) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2647518) (HKLM\...\KB2647518) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2653956) (HKLM\...\KB2653956) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2655992) (HKLM\...\KB2655992) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2659262) (HKLM\...\KB2659262) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2660465) (HKLM\...\KB2660465) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2661637) (HKLM\...\KB2661637) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2676562) (HKLM\...\KB2676562) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2685939) (HKLM\...\KB2685939) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2686509) (HKLM\...\KB2686509) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2691442) (HKLM\...\KB2691442) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2695962) (HKLM\...\KB2695962) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2698365) (HKLM\...\KB2698365) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2705219) (HKLM\...\KB2705219) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2707511) (HKLM\...\KB2707511) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2709162) (HKLM\...\KB2709162) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2712808) (HKLM\...\KB2712808) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2718523) (HKLM\...\KB2718523) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2719985) (HKLM\...\KB2719985) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2723135) (HKLM\...\KB2723135) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2724197) (HKLM\...\KB2724197) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2727528) (HKLM\...\KB2727528) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2731847) (HKLM\...\KB2731847) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2753842) (HKLM\...\KB2753842) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2753842-v2) (HKLM\...\KB2753842-v2) (Version: 2 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2757638) (HKLM\...\KB2757638) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2758857) (HKLM\...\KB2758857) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2761226) (HKLM\...\KB2761226) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2770660) (HKLM\...\KB2770660) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2778344) (HKLM\...\KB2778344) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2779030) (HKLM\...\KB2779030) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2780091) (HKLM\...\KB2780091) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2799494) (HKLM\...\KB2799494) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2802968) (HKLM\...\KB2802968) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2807986) (HKLM\...\KB2807986) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2808735) (HKLM\...\KB2808735) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2813170) (HKLM\...\KB2813170) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2813345) (HKLM\...\KB2813345) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2820197) (HKLM\...\KB2820197) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2820917) (HKLM\...\KB2820917) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2829361) (HKLM\...\KB2829361) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2834886) (HKLM\...\KB2834886) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2839229) (HKLM\...\KB2839229) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2845187) (HKLM\...\KB2845187) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2847311) (HKLM\...\KB2847311) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2849470) (HKLM\...\KB2849470) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2850851) (HKLM\...\KB2850851) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2850869) (HKLM\...\KB2850869) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2859537) (HKLM\...\KB2859537) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2862152) (HKLM\...\KB2862152) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2862330) (HKLM\...\KB2862330) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2862335) (HKLM\...\KB2862335) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2864063) (HKLM\...\KB2864063) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2868038) (HKLM\...\KB2868038) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2868626) (HKLM\...\KB2868626) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2876217) (HKLM\...\KB2876217) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2876315) (HKLM\...\KB2876315) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2876331) (HKLM\...\KB2876331) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2883150) (HKLM\...\KB2883150) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2884256) (HKLM\...\KB2884256) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2892075) (HKLM\...\KB2892075) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2893294) (HKLM\...\KB2893294) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2893984) (HKLM\...\KB2893984) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2898715) (HKLM\...\KB2898715) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2900986) (HKLM\...\KB2900986) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2914368) (HKLM\...\KB2914368) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2916036) (HKLM\...\KB2916036) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2922229) (HKLM\...\KB2922229) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2929961) (HKLM\...\KB2929961) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2930275) (HKLM\...\KB2930275) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB923561) (HKLM\...\KB923561) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB938464) (HKLM\...\KB938464) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB946648) (HKLM\...\KB946648) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB950762) (HKLM\...\KB950762) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB950974) (HKLM\...\KB950974) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB951066) (HKLM\...\KB951066) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB951376-v2) (HKLM\...\KB951376-v2) (Version: 2 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB951698) (HKLM\...\KB951698) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB951748) (HKLM\...\KB951748) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB952004) (HKLM\...\KB952004) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB952954) (HKLM\...\KB952954) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB954211) (HKLM\...\KB954211) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB954459) (HKLM\...\KB954459) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB954600) (HKLM\...\KB954600) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB955069) (HKLM\...\KB955069) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB956391) (HKLM\...\KB956391) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB956572) (HKLM\...\KB956572) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB956744) (HKLM\...\KB956744) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB956802) (HKLM\...\KB956802) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB956803) (HKLM\...\KB956803) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB956841) (HKLM\...\KB956841) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB956844) (HKLM\...\KB956844) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB957097) (HKLM\...\KB957097) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB958644) (HKLM\...\KB958644) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB958687) (HKLM\...\KB958687) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB958690) (HKLM\...\KB958690) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB958869) (HKLM\...\KB958869) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB959426) (HKLM\...\KB959426) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB960225) (HKLM\...\KB960225) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB960715) (HKLM\...\KB960715) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB960803) (HKLM\...\KB960803) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB960859) (HKLM\...\KB960859) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB961371) (HKLM\...\KB961371) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB961373) (HKLM\...\KB961373) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB961501) (HKLM\...\KB961501) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB968537) (HKLM\...\KB968537) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB969059) (HKLM\...\KB969059) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB969898) (HKLM\...\KB969898) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB969947) (HKLM\...\KB969947) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB970238) (HKLM\...\KB970238) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB970430) (HKLM\...\KB970430) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB971468) (HKLM\...\KB971468) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB971486) (HKLM\...\KB971486) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB971557) (HKLM\...\KB971557) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB971633) (HKLM\...\KB971633) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB971657) (HKLM\...\KB971657) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB971961) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows XP (KB972270) (HKLM\...\KB972270) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB973346) (HKLM\...\KB973346) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB973354) (HKLM\...\KB973354) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB973507) (HKLM\...\KB973507) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB973525) (HKLM\...\KB973525) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB973869) (HKLM\...\KB973869) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB973904) (HKLM\...\KB973904) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB974112) (HKLM\...\KB974112) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB974318) (HKLM\...\KB974318) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB974392) (HKLM\...\KB974392) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB974571) (HKLM\...\KB974571) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB975025) (HKLM\...\KB975025) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB975467) (HKLM\...\KB975467) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB975560) (HKLM\...\KB975560) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB975561) (HKLM\...\KB975561) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB975562) (HKLM\...\KB975562) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB975713) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows XP (KB977165) (HKLM\...\KB977165) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB977816) (HKLM\...\KB977816) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB977914) (HKLM\...\KB977914) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB978037) (HKLM\...\KB978037) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB978251) (HKLM\...\KB978251) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB978262) (HKLM\...\KB978262) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB978338) (HKLM\...\KB978338) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB978542) (HKLM\...\KB978542) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB978601) (HKLM\...\KB978601) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB978706) (HKLM\...\KB978706) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB979309) (HKLM\...\KB979309) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB979482) (HKLM\...\KB979482) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB979559) (HKLM\...\KB979559) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB979683) (HKLM\...\KB979683) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB979687) (HKLM\...\KB979687) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB980195) (HKLM\...\KB980195) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB980218) (HKLM\...\KB980218) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB980232) (HKLM\...\KB980232) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB980436) (HKLM\...\KB980436) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB981322) (HKLM\...\KB981322) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB981349) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows XP (KB981852) (HKLM\...\KB981852) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB981957) (HKLM\...\KB981957) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB981997) (HKLM\...\KB981997) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB982132) (HKLM\...\KB982132) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB982214) (HKLM\...\KB982214) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB982665) (HKLM\...\KB982665) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB982802) (HKLM\...\KB982802) (Version: 1 - Microsoft Corporation)
Aplikace KODAK Share Button (HKLM\...\{466D379F-D2A4-4F9B-86E2-E2CBA6056D87}) (Version: 3.00.0000.0000 - Eastman Kodak Company)
Apple Application Support (HKLM\...\{45C56AA7-ED1B-4800-A97F-EDDF3F3520B1}) (Version: 2.3.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{E14ADE0E-75F3-4A46-87E5-26692DD626EC}) (Version: 6.1.0.13 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Ashampoo Burning Studio 6 FREE (HKLM\...\Ashampoo Burning Studio 6 FREE_is1) (Version: 6.7.5 - ashampoo GmbH & Co. KG)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
Assassin's Creed (HKLM\...\{8CFA9151-6404-409A-AF22-4632D04582FD}) (Version: 1.02 - Ubisoft)
ASUS Enhanced Display Driver (HKLM\...\{315ACD04-BCEB-478B-9B1D-5431D0E6CB11}) (Version: 6.14.10.0139 - ASUSTeK COMPUTER INC.)
ASUS nVidia Driver (Version: 4.00.0000 - ASUSTek) Hidden
aTube Catcher (HKLM\...\aTube Catcher) (Version: 3.8.7918 - DsNET Corp)
aTube Catcher verze 3.8 (HKLM\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Audiosurf (HKLM\...\{D801B39E-CE01-409F-8E7C-B7976EA3C9DC}_is1) (Version: 33 - All of Nothing)
AutoUpdate (HKLM\...\{18D10072035C4515918F7E37EAFAACFC}) (Version: 1.1 - )
avast! Free Antivirus (HKLM\...\avast) (Version: 8.0.1497.0 - AVAST Software)
Call of Duty(R) 4 - Modern Warfare(TM) (HKLM\...\InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}) (Version: 1.7 - Activision)
Call of Duty(R) 4 - Modern Warfare(TM) (Version: 1.00.0000 - Activision) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (Version: - ) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (Version: 1.6 - Activision) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (Version: - ) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (Version: 1.7 - Activision) Hidden
Canon MP Navigator EX 2.0 (HKLM\...\MP Navigator EX 2.0) (Version: - )
Canon MP630 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP630_series) (Version: - )
Canon Utilities Easy-PhotoPrint EX (HKLM\...\Easy-PhotoPrint EX) (Version: - )
Canon Utilities Solution Menu (HKLM\...\CanonSolutionMenu) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 4.01 - Piriform)
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.2.4.1322 - CDBurnerXP)
CD-LabelPrint (HKLM\...\MediaNavigation.CDLabelPrint) (Version: - )
Defraggler (HKLM\...\Defraggler) (Version: 2.14 - Piriform)
DiscAPI (Studio 10) (Version: 2.10.0057 - Pinnacle Systems) Hidden
DivX (HKLM\...\{7B63B2922B174135AFC0E1377DD81EC2}) (Version: 6.2.2 - DivX, Inc.)
DolbyFiles (Version: 2.0 - Nero AG) Hidden
Důležitá aktualizace aplikace Windows Media Player 11 (KB959772) (HKLM\...\KB959772_WM11) (Version: - Microsoft Corporation)
DVD Shrink 3.2 (HKLM\...\DVD Shrink_is1) (Version: - DVD Shrink)
FarCry 3 version 5.1 (HKLM\...\{B810D852-DFD6-FC3-89A5-CC4D47756DAF}_is1) (Version: 5.1 - Black_Box)
FM Screen Capture Codec (Remove Only) (HKLM\...\FMCODEC) (Version: - )
FormatFactory 2.50 (HKLM\...\FormatFactory) (Version: 2.50 - Free Time)
GamePark (HKLM\...\GameParkClient_is1) (Version: - GamePark)
GamePark klient 2.0.9.0 (HKLM\...\{52E5D8A7-B129-4A29-AD4B-EBB749DCC3A3}_is1) (Version: 2.0.9.0 - GamePark)
GOM Player (HKLM\...\GOM Player) (Version: 2.2.64.5211 - Gretech Corporation)
Google Chrome (HKLM\...\Google Chrome) (Version: 39.0.2171.99 - Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
GRID (HKLM\...\{5A0B7BA5-4682-4273-81C2-69B17E649103}) (Version: 1.00.0000 - Codemasters)
Hamachi 1.0.2.5 (HKLM\...\Hamachi) (Version: - )
ICQ7.2 (HKLM\...\{72EFBFE4-C74F-4187-AEFD-73EA3BE968D6}) (Version: 7.2 - ICQ)
ImagXpress (Version: 7.0.74.0 - Nero AG) Hidden
IrfanView (remove only) (HKLM\...\IrfanView) (Version: 4.35 - Irfan Skiljan)
Java 7 Update 51 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle)
Java(TM) 6 Update 37 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216037FF}) (Version: 6.0.370 - Oracle)
K-Lite Mega Codec Pack 4.5.3 (HKLM\...\KLiteCodecPack_is1) (Version: 4.5.3 - )
League of Legends (HKLM\...\{92606477-9366-4D3B-8AE3-6BE4B29727AB}) (Version: 1.3 - Riot Games)
Logitech Gaming Software 5.10 (HKLM\...\{60D32CDC-E3BE-4578-BA10-29322307CDDC}) (Version: 5.10.127 - Logitech)
LogMeIn Hamachi (HKLM\...\LogMeIn Hamachi) (Version: 2.0.2.85 - LogMeIn, Inc.)
LogMeIn Hamachi (Version: 2.0.2.85 - LogMeIn, Inc.) Hidden
LongTermValidator (HKLM\...\{65F7DC6C-75E9-4111-922E-2E28F44EE813}) (Version: 1.1.8 - Název společnosti: Dignita)
Marvell Miniport Driver (HKLM\...\{C950420B-4182-49EA-850A-A6A2ABF06C6B}) (Version: 8.56.7.3 - Marvell)
Menu Templates - Starter Kit (Version: 9.0.4.0 - Nero AG) Hidden
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile CSY Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Extended CSY Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Compression Client Pack 1.0 for Windows XP (HKLM\...\MSCompPackV1) (Version: 1 - Microsoft Corporation)
Microsoft Office Word Viewer 2003 (HKLM\...\{90850409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office XP Professional s aplikací FrontPage (HKLM\...\{90280405-6000-11D3-8CFE-0050048383C9}) (Version: 10.0.6626.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 ENU (HKLM\...\{2F141715-E144-48C0-8562-D193B7AB85BC}) (Version: 4.0.8482.1 - Microsoft Corporation)
Microsoft SQL Server Desktop Engine (SONY_MEDIAMGR) (HKLM\...\{E09B48B5-E141-427A-AB0C-D3605127224A}) (Version: 8.00.761 - Microsoft Corporation)
Microsoft User-Mode Driver Framework Feature Pack 1.9 (HKLM\...\Wudf01009) (Version: - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 (HKLM\...\{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}) (Version: 9.0.21022.218 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Movie Templates - Starter Kit (Version: 9.0.4.0 - Nero AG) Hidden
Mozilla Firefox 12.0 (x86 cs) (HKLM\...\Mozilla Firefox 12.0 (x86 cs)) (Version: 12.0 - Mozilla)
MSVC90_x86 (Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
Nero 9 Trial (HKLM\...\{1cd7c8e3-ad06-4868-9a57-340da30d9576}) (Version: - Nero AG)
Nokia Connectivity Cable Driver (HKLM\...\{A57025CC-5F2E-4D01-B387-06DB10500D43}) (Version: 7.1.78.0 - Nokia)
NVIDIA GeForce Experience 2.1.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.3 - NVIDIA Corporation)
NVIDIA nView 140.62 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 140.62 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 320.49 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 320.49 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.13.0604 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0604 - NVIDIA Corporation)
OpenAL (HKLM\...\OpenAL) (Version: - )
OpenOffice.org 2.3 (HKLM\...\{519556CC-4382-4B35-80F5-DD8E9460EEAC}) (Version: 2.3.9221 - OpenOffice.org)
Oprava hotfix aplikace Windows Media Player 11 (KB939683) (HKLM\...\KB939683) (Version: - Microsoft Corporation)
Oprava Hotfix systému Windows XP (KB2158563) (HKLM\...\KB2158563) (Version: 1 - Microsoft Corporation)
Oprava Hotfix systému Windows XP (KB2443685) (HKLM\...\KB2443685) (Version: 1 - Microsoft Corporation)
Oprava Hotfix systému Windows XP (KB2570791) (HKLM\...\KB2570791) (Version: 1 - Microsoft Corporation)
Oprava Hotfix systému Windows XP (KB2633952) (HKLM\...\KB2633952) (Version: 1 - Microsoft Corporation)
Oprava Hotfix systému Windows XP (KB2756822) (HKLM\...\KB2756822) (Version: 1 - Microsoft Corporation)
Oprava Hotfix systému Windows XP (KB2779562) (HKLM\...\KB2779562) (Version: 1 - Microsoft Corporation)
Oprava Hotfix systému Windows XP (KB952287) (HKLM\...\KB952287) (Version: 1 - Microsoft Corporation)
Oprava Hotfix systému Windows XP (KB961118) (HKLM\...\KB961118) (Version: 1 - Microsoft Corporation)
Oprava Hotfix systému Windows XP (KB970653-v3) (HKLM\...\KB970653-v3) (Version: 3 - Microsoft Corporation)
Oprava Hotfix systému Windows XP (KB976098-v2) (HKLM\...\KB976098-v2) (Version: 2 - Microsoft Corporation)
Oprava Hotfix systému Windows XP (KB979306) (HKLM\...\KB979306) (Version: 1 - Microsoft Corporation)
Oprava Hotfix systému Windows XP (KB981793) (HKLM\...\KB981793) (Version: 1 - Microsoft Corporation)
Ovládací panel NVIDIA 320.49 (Version: 320.49 - NVIDIA Corporation) Hidden
PC Connectivity Solution (HKLM\...\{644F4910-E812-49AD-93EC-86828CB81A0D}) (Version: 12.0.27.0 - Nokia)
PDF Settings CS5 (Version: 10.0 - Adobe Systems Incorporated) Hidden
PhotoFiltre (HKLM\...\PhotoFiltre) (Version: - )
Pinnacle TVCenter Pro (HKLM\...\{F38ADCA4-AF7C-4C73-9021-6F1EA15D15EA}) (Version: - )
PSPad editor (HKLM\...\PSPad editor_is1) (Version: 4.5.7.2450 - Jan Fiala)
Quake 3 Arena Demo (HKLM\...\Quake 3 Arena Demo) (Version: - )
RAPID (Version: 1.00.0002 - Pinnacle Systems) Hidden
Razer Lachesis 5600 (HKLM\...\{580AEA6C-E35C-4470-818F-0F0A083EE1AD}) (Version: 3.00.08 - Razer USA Ltd.)
Registrace uživatele zařízení Canon MP630 series (HKLM\...\Registrace uživatele zařízení Canon MP630 series) (Version: - )
Sada Compatibility Pack pro systém Office 2007 (HKLM\...\{90120000-0020-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Samsung Mobile phone USB driver Software (HKLM\...\Samsung Mobile phone USB driver) (Version: - )
Samsung PC Studio 3 (HKLM\...\{C4A4722E-79F9-417C-BD72-8D359A090C97}) (Version: 3.2.1.71009 - Samsung Electronics Co., Ltd.)
Samsung PC Studio 3 (Version: 3.0.0.71009 - Samsung Electronics Co., Ltd.) Hidden
Samsung Story Album Viewer (HKLM\...\InstallShield_{698BBAD8-B116-495D-B879-0F07A533E57F}) (Version: 1.0.0.13054_1 - Samsung Electronics Co., Ltd.)
Samsung Story Album Viewer (Version: 1.0.0.13054_1 - Samsung Electronics Co., Ltd.) Hidden
save2pc 4.05 (HKLM\...\save2pc_is1) (Version: - FDRLab, Inc.)
SiSoftware Sandra Professional Business 2009.SP2 (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2196}_is1) (Version: 15.72.2009.1 - SiSoftware)
Skype Click to Call (HKLM\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 6.6.11664 - Skype Technologies S.A.)
Skype™ 6.21 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.21.104 - Skype Technologies S.A.)
SmartSound Quicktracks Plugin (HKLM\...\InstallShield_{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}) (Version: 3.0.2.7 - SmartSound Software Inc)
SmartSound Quicktracks Plugin (Version: 3.0.2.7 - SmartSound Software Inc) Hidden
Software602 Form Filler (HKLM\...\{92F124CB-D9AA-4E20-93E4-7A9442878FD2}) (Version: 4.10 - Software602 a.s.)
Software602 Print2PDF (HKLM\...\{32C74893-0243-4235-A6F3-201F0E5D2C03}) (Version: 9.1.11.0421 - Software602 a.s.)
Sony Media Manager 2.2 (HKLM\...\{878D2EB2-2D55-42A9-955E-1E08F28529FD}) (Version: 2.2.136 - Sony)
Sony Vegas 7.0 (HKLM\...\{DFB951D6-4270-42D8-B4B7-AA4B01911DC3}) (Version: 7.0.216 - Sony)
SoundMAX (HKLM\...\{F0A37341-D692-11D4-A984-009027EC0A9C}) (Version: 5.10.01.6310 - Analog Devices)
SoundTrax (Version: 4.4.37.1 - Nero AG) Hidden
SpeedFan (remove only) (HKLM\...\SpeedFan) (Version: - )
Spelling Dictionaries Support For Adobe Reader 9 (HKLM\...\{AC76BA86-7AD7-5464-3428-900000000004}) (Version: 9.0.0 - Adobe Systems Incorporated)
StepMania v5.0 beta 2a (remove only) (HKLM\...\StepMania 5) (Version: - StepMania Team)
Studio 10 (HKLM\...\{FDFE8A65-3DDD-4309-8194-559F41BF61F3}) (Version: 10.5 - Pinnacle Systems)
System Requirements Lab (HKLM\...\SystemRequirementsLab) (Version: - )
System Requirements Lab CYRI (HKLM\...\{F3FCB08B-E752-444D-86A0-0634A4F3B23D}) (Version: 6.0.8.0 - Husdawg, LLC)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: - TeamSpeak Systems GmbH)
TeamViewer 9 (HKLM\...\TeamViewer 9) (Version: 9.0.27614 - TeamViewer)
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: - )
Ulož.to File Manager verze 1.6 (HKLM\...\{8190420D-F4BA-4744-8940-A466F81AF89C}_is1) (Version: 1.6 - Nodus Technologies s.r.o.)
Unity Web Player (HKU\S-1-5-21-790525478-630328440-682003330-1003\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Vegas Pro 9.0 (HKLM\...\{D9D1A2FD-56B2-4F21-B959-745FE43CAB8C}) (Version: 9.0.1147 - Sony)
Virtual Cable Tester (HKLM\...\{3D654496-9C3D-4565-858C-3E551ECDA4E2}) (Version: 2.15.1.3 - Marvell)
Virtual DJ Home - Atomix Productions (HKLM\...\Virtual DJ Home - Atomix Productions) (Version: - )
VLC media player 1.1.11 (HKLM\...\VLC media player) (Version: 1.1.11 - VideoLAN)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Windows Driver Package - MOTOROLA (uisp) USB (09/08/2006 1.2.0.0) (HKLM\...\0D91165CEEB2095316E8A04A59CDF0AE4B957C61) (Version: 09/08/2006 1.2.0.0 - MOTOROLA)
Windows Driver Package - Razer (HidUsb) HIDClass (05/10/2007 1.00) (HKLM\...\D44822B3621EFD220D3A7DDA72DE5A4B6476748F) (Version: 05/10/2007 1.00 - Razer)
Windows Genuine Advantage Notifications (KB905474) (HKLM\...\WgaNotify) (Version: 1.9.0040.0 - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version: - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\WGA) (Version: 1.7.0069.2 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - )
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version: - )
Windows XP Service Pack 3 (HKLM\...\Windows XP Service Pack) (Version: 20080414.031517 - Microsoft Corporation)
WinRAR (HKLM\...\WinRAR archiver) (Version: - )
Xfire (remove only) (HKLM\...\Xfire) (Version: - )
Xvid 1.2.1 final uninstall (HKLM\...\Xvid_is1) (Version: 1.2 - Xvid team (Koepi))

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{0000002F-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{0BE35203-8F91-11CE-9DE3-00AA004BB851}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{0BE35204-8F91-11CE-9DE3-00AA004BB851}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{444785F1-DE89-4295-863A-D46C3A781394}\InprocServer32 -> C:\Documents and Settings\Radek\Local Settings\Data aplikací\Unity\WebPlayer\loader\UnityWebPluginAX.ocx (Unity Technologies ApS)
CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{46763EE0-CAB2-11CE-8C20-00AA0051E5D4}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{B196B286-BAB4-101A-B69C-00AA00341D07}\InprocServer32 -> No File Path

==================== Restore Points =========================

20-12-2014 22:40:27 Kontrolní bod systému
21-12-2014 23:32:44 Kontrolní bod systému
22-12-2014 23:36:43 Kontrolní bod systému
25-12-2014 08:59:14 Kontrolní bod systému
26-12-2014 10:24:28 Kontrolní bod systému
28-12-2014 16:51:27 Kontrolní bod systému
29-12-2014 16:54:47 Kontrolní bod systému
30-12-2014 17:07:53 Kontrolní bod systému
04-01-2015 10:09:13 Kontrolní bod systému
05-01-2015 15:31:55 Kontrolní bod systému
07-01-2015 20:16:50 Kontrolní bod systému
09-01-2015 05:55:16 Kontrolní bod systému
10-01-2015 17:35:02 Kontrolní bod systému
11-01-2015 21:01:19 Kontrolní bod systému
13-01-2015 21:20:42 Kontrolní bod systému
14-01-2015 22:12:27 Software Distribution Service 3.0
16-01-2015 21:00:29 Kontrolní bod systému
17-01-2015 21:04:31 Kontrolní bod systému
19-01-2015 18:03:53 Kontrolní bod systému
20-01-2015 18:20:48 Kontrolní bod systému
21-01-2015 18:41:59 Kontrolní bod systému
21-01-2015 20:31:49 OTL Restore Point - 21.1.2015 20:31:46
22-01-2015 20:58:23 Kontrolní bod systému

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2012-04-22 15:10 - 2015-01-22 19:03 - 00000027 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\AdobeAAMUpdater-1.0-RADEKK-Radek.job => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
Task: C:\WINDOWS\Tasks\AppleSoftwareUpdate.job => C:\Program Files\Apple Software Update\SoftwareUpdate.exe
Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\User_Feed_Synchronization-{0C0BFD56-6838-43E8-9B02-CC06A10C1B08}.job => C:\WINDOWS\system32\msfeedssync.exe

==================== Loaded Modules (whitelisted) =============

2015-01-22 10:56 - 2015-01-22 09:17 - 02903552 _____ () C:\Program Files\AVAST Software\Avast\defs\15012201\algo.dll
2012-01-09 07:29 - 2010-12-02 02:13 - 00214528 _____ () C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\Software602.dll
2012-05-30 19:06 - 2012-05-30 19:06 - 00087912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2012-05-30 19:06 - 2012-05-30 19:06 - 01242512 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2009-04-17 19:50 - 2008-10-20 21:18 - 00071096 _____ () C:\Program Files\CDBurnerXP\NMSAccessU.exe
2009-09-06 16:15 - 2012-05-15 19:29 - 00076888 _____ () C:\WINDOWS\system32\PnkBstrA.exe
2009-02-02 14:37 - 2008-09-16 20:18 - 00132608 _____ () C:\Program Files\WinRAR\rarext.dll
2009-02-02 14:37 - 2008-10-11 22:18 - 00319488 _____ () C:\Program Files\WinRAR\rarlng.dll
2014-06-26 07:09 - 2009-11-16 19:31 - 00069632 _____ () C:\Program Files\PSPad editor\PSPadShell.dll
2004-08-18 13:00 - 2008-04-14 04:21 - 00014336 _____ () C:\WINDOWS\system32\msdmo.dll
2014-03-17 11:24 - 2015-01-22 20:18 - 00214520 _____ () C:\WINDOWS\system32\PnkBstrB.exe
2015-01-17 15:08 - 2015-01-09 01:35 - 09009480 _____ () C:\Program Files\Google\Chrome\Application\39.0.2171.99\pdf.dll
2015-01-17 15:08 - 2015-01-09 01:35 - 01677128 _____ () C:\Program Files\Google\Chrome\Application\39.0.2171.99\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:05EE1EEF

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

========================= Accounts: ==========================

Administrator (S-1-5-21-790525478-630328440-682003330-500 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Administrator
ASPNET (S-1-5-21-790525478-630328440-682003330-1089 - Limited - Enabled)
Guest (S-1-5-21-790525478-630328440-682003330-501 - Limited - Enabled)
HelpAssistant (S-1-5-21-790525478-630328440-682003330-1000 - Limited - Disabled)
Radek (S-1-5-21-790525478-630328440-682003330-1003 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Radek
SUPPORT_388945a0 (S-1-5-21-790525478-630328440-682003330-1002 - Limited - Disabled)

==================== Faulty Device Manager Devices =============

Name: Nokia 6300
Description: Nokia 6300
Class Guid: {EEC5AD98-8080-425F-922A-DABF3DE3F69A}
Manufacturer: Nokia
Service: WUDFRd
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

==================== Event log errors: =========================

Application errors:
==================
Error: (01/21/2015 05:21:04 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Zablokovaná aplikace CoD2MP_s.exe, verze 0.0.0.0, zablokovaný modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error: (01/21/2015 04:55:08 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Zablokovaná aplikace CoD2MP_s.exe, verze 0.0.0.0, zablokovaný modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error: (01/17/2015 11:21:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace lachesissystray.exe, verze 3.0.1.1, chybující modul lachesissystray.exe, verze 3.0.1.1, adresa chyby 0x00005b14.
Zpracování události, specifické pro médium ([lachesissystray.exe!ws!])

Error: (01/17/2015 02:04:39 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Zablokovaná aplikace CoD2MP_s.exe, verze 0.0.0.0, zablokovaný modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error: (01/11/2015 08:31:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace lachesissystray.exe, verze 3.0.1.1, chybující modul lachesissystray.exe, verze 3.0.1.1, adresa chyby 0x00005b14.
Zpracování události, specifické pro médium ([lachesissystray.exe!ws!])

Error: (01/09/2015 05:37:23 AM) (Source: crypt32) (EventID: 8) (User: )
Description: Načtení automatické aktualizace pořadového čísla kořenového seznamu jiného výrobce z: <http://www.download.windowsupdate.com/m ... ootseq.txt> se nezdařilo. Chyba: Daná operace se vrátila, protože vypršel časový limit.

Error: (12/26/2014 07:56:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace lachesissystray.exe, verze 3.0.1.1, chybující modul lachesissystray.exe, verze 3.0.1.1, adresa chyby 0x00005b14.
Zpracování události, specifické pro médium ([lachesissystray.exe!ws!])

Error: (12/17/2014 04:16:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace lachesissystray.exe, verze 3.0.1.1, chybující modul lachesissystray.exe, verze 3.0.1.1, adresa chyby 0x00005b14.
Zpracování události, specifické pro médium ([lachesissystray.exe!ws!])

Error: (12/17/2014 03:28:23 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Načtení automatické aktualizace pořadového čísla kořenového seznamu jiného výrobce z: <http://www.download.windowsupdate.com/m ... ootseq.txt> se nezdařilo. Chyba: Daná operace se vrátila, protože vypršel časový limit.

Error: (12/15/2014 11:26:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace lachesissystray.exe, verze 3.0.1.1, chybující modul lachesissystray.exe, verze 3.0.1.1, adresa chyby 0x00005b14.
Zpracování události, specifické pro médium ([lachesissystray.exe!ws!])

System errors:
=============
Error: (01/22/2015 07:02:16 PM) (Source: PlugPlayManager) (EventID: 11) (User: )
Description: Zařízení Root\LEGACY_TIZEKDRV\0000 se již v systému nenachází, přestože nebylo nejdříve připraveno k odebrání.

Error: (01/22/2015 06:56:37 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Zařazování tisku byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/22/2015 06:56:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Apple Mobile Device byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (01/22/2015 06:56:36 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Java Quick Starter byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/22/2015 06:56:36 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba 602Updater byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/22/2015 06:56:36 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba LogMeIn Hamachi 2.0 Tunneling Engine byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/22/2015 06:56:36 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NVIDIA Network Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/22/2015 06:56:36 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NVIDIA Driver Helper Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/22/2015 06:56:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba TeamViewer 9 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 2000 milisekund: Restartovat službu.

Error: (01/22/2015 06:56:36 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Služba brány aplikačního rozhraní byla neočekávaně ukončena. Tento stav nastal již 1krát.

Microsoft Office Sessions:
=========================
Error: (01/21/2015 05:21:04 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: CoD2MP_s.exe0.0.0.0hungapp0.0.0.000000000

Error: (01/21/2015 04:55:08 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: CoD2MP_s.exe0.0.0.0hungapp0.0.0.000000000

Error: (01/17/2015 11:21:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: lachesissystray.exe3.0.1.1lachesissystray.exe3.0.1.100005b14

Error: (01/17/2015 02:04:39 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: CoD2MP_s.exe0.0.0.0hungapp0.0.0.000000000

Error: (01/11/2015 08:31:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: lachesissystray.exe3.0.1.1lachesissystray.exe3.0.1.100005b14

Error: (01/09/2015 05:37:23 AM) (Source: crypt32) (EventID: 8) (User: )
Description: http://www.download.windowsupdate.com/m ... eq.txtDaná operace se vrátila, protože vypršel časový limit.

Error: (12/26/2014 07:56:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: lachesissystray.exe3.0.1.1lachesissystray.exe3.0.1.100005b14

Error: (12/17/2014 04:16:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: lachesissystray.exe3.0.1.1lachesissystray.exe3.0.1.100005b14

Error: (12/17/2014 03:28:23 PM) (Source: crypt32) (EventID: 8) (User: )
Description: http://www.download.windowsupdate.com/m ... eq.txtDaná operace se vrátila, protože vypršel časový limit.

Error: (12/15/2014 11:26:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: lachesissystray.exe3.0.1.1lachesissystray.exe3.0.1.100005b14

==================== Memory info ===========================

Processor: Intel(R) Core(TM)2 CPU 6400 @ 2.13GHz
Percentage of memory in use: 43%
Total physical RAM: 2047.11 MB
Available physical RAM: 1166.46 MB
Total Pagefile: 3939.26 MB
Available Pagefile: 3148.29 MB
Total Virtual: 2047.88 MB
Available Virtual: 1919.49 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:97.65 GB) (Free:12.89 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: () (Fixed) (Total:200.43 GB) (Free:21.12 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 298.1 GB) (Disk ID: 00000001)
Partition 1: (Active) - (Size=97.7 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=200.4 GB) - (Type=OF Extended)

==================== End Of Log ============================

morphe · #22 Příspěvek od **morphe** » 22 led 2015 21:22

Jinak už vse slape už to tu avast neskace jak zbesilej , že mam v pc malware

#23 Příspěvek od **altrok** » 22 led 2015 21:33

ComboFix mel pri druhem spusteni neco uploadovat (nahravat na internet). Vyskocilo nejake okno s chybou nebo potvrzenim o uploadu?

Jeste mi neutikejte, radej si proverime, ze je pryc.

Pokud nepouzivate, odinstalujte Skype Click to Call. Dostal se Vam velice pravdepodobne jako nezadany pri instalaci Skypu - http://forum.viry.cz/viewtopic.php?p=1374439#p1374439

Odinstalujte stare verze javy Java 7 Update 51 a Java(TM) 6 Update 37. Pokud Javu pouzivate, pak nainstalujte novou z java.com (opet pozor na adwary viz zminovany topic). Z bezpecnostniho hlediska (exploity) je lepsi ji nemit.

Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
znovu spustte FRST a kliknete na Fix

po restartu na Vas vyskoci fixlog (pripadne bude ulozen na Plose), jehoz obsah mi vlozte do pristi odpovedi

Kód: Vybrat vše

Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-790525478-630328440-682003330-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
URLSearchHook: HKLM - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046}
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-790525478-630328440-682003330-1003 -> {6A15FB7B-38D4-4E7E-810F-B914C548C3B8} URL = http://search.centrum.cz/index.php?charset=utf-8&q={searchTerms}&mt=2&mts=1&sec=mix&kibitz=0
Toolbar: HKU\S-1-5-21-790525478-630328440-682003330-1003 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File

FF NetworkProxy: "type", 0
FF Plugin: @pandonetworks.com/PandoWebPlugin -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
S3 ADIDTSFiltService; system32\drivers\adidts.sys [X]
S4 IntelIde; No ImagePath

2015-01-14 19:51 - 2008-08-09 15:37 - 00082432 _____ (S!Ri.URZ) C:\WINDOWS\system32\404Fix.exe
2015-01-14 19:51 - 2008-07-02 13:33 - 00082432 _____ (S!Ri.URZ) C:\WINDOWS\system32\IEDFix.C.exe
2015-01-14 19:51 - 2008-05-29 09:35 - 00086528 _____ (S!Ri.URZ) C:\WINDOWS\system32\VACFix.exe
2015-01-14 19:51 - 2008-05-18 21:40 - 00082944 _____ (S!Ri.URZ) C:\WINDOWS\system32\IEDFix.exe
2015-01-14 19:51 - 2007-10-04 00:36 - 00025600 _____ () C:\WINDOWS\system32\WS2Fix.exe
2015-01-14 19:51 - 2007-09-06 00:22 - 00289144 _____ (S!Ri) C:\WINDOWS\system32\VCCLSID.exe
2015-01-14 19:51 - 2006-04-27 17:49 - 00288417 _____ (S!Ri) C:\WINDOWS\system32\SrchSTS.exe
2015-01-14 19:51 - 2004-07-31 18:50 - 00051200 _____ () C:\WINDOWS\system32\dumphive.exe
2015-01-14 19:51 - 2003-06-05 21:13 - 00053248 _____ (http://www.beyondlogic.org) C:\WINDOWS\system32\Process.exe
2015-01-13 18:55 - 2015-01-20 20:17 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\JobupOkulu
C:\Documents and Settings\Radek\.exe

CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{0000002F-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{0BE35203-8F91-11CE-9DE3-00AA004BB851}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{0BE35204-8F91-11CE-9DE3-00AA004BB851}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{46763EE0-CAB2-11CE-8C20-00AA0051E5D4}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{B196B286-BAB4-101A-B69C-00AA00341D07}\InprocServer32 -> No File Path

Task: C:\WINDOWS\Tasks\AdobeAAMUpdater-1.0-RADEKK-Radek.job => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
Task: C:\WINDOWS\Tasks\AppleSoftwareUpdate.job => C:\Program Files\Apple Software Update\SoftwareUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\User_Feed_Synchronization-{0C0BFD56-6838-43E8-9B02-CC06A10C1B08}.job => C:\WINDOWS\system32\msfeedssync.exe
AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:05EE1EEF
Hosts:
EmptyTemp:
End

morphe · #24 Příspěvek od **morphe** » 23 led 2015 16:43

-Ano mate pravdu Combofix se chtel propojit s webovym servrem, ale naskytla se nejaka chyba omlouvam se zapomel jsem na to upozornit.

-Zde je log z FRST.
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 19-01-2015
Ran by Radek at 2015-01-23 16:31:51 Run:1
Running from C:\Documents and Settings\Radek\Plocha
Loaded Profiles: Radek (Available profiles: Radek & Administrator)
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-790525478-630328440-682003330-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
URLSearchHook: HKLM - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046}
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-790525478-630328440-682003330-1003 -> {6A15FB7B-38D4-4E7E-810F-B914C548C3B8} URL = http://search.centrum.cz/index.php?char ... x&kibitz=0
Toolbar: HKU\S-1-5-21-790525478-630328440-682003330-1003 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File

FF NetworkProxy: "type", 0
FF Plugin: @pandonetworks.com/PandoWebPlugin -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
S3 ADIDTSFiltService; system32\drivers\adidts.sys [X]
S4 IntelIde; No ImagePath

2015-01-14 19:51 - 2008-08-09 15:37 - 00082432 _____ (S!Ri.URZ) C:\WINDOWS\system32\404Fix.exe
2015-01-14 19:51 - 2008-07-02 13:33 - 00082432 _____ (S!Ri.URZ) C:\WINDOWS\system32\IEDFix.C.exe
2015-01-14 19:51 - 2008-05-29 09:35 - 00086528 _____ (S!Ri.URZ) C:\WINDOWS\system32\VACFix.exe
2015-01-14 19:51 - 2008-05-18 21:40 - 00082944 _____ (S!Ri.URZ) C:\WINDOWS\system32\IEDFix.exe
2015-01-14 19:51 - 2007-10-04 00:36 - 00025600 _____ () C:\WINDOWS\system32\WS2Fix.exe
2015-01-14 19:51 - 2007-09-06 00:22 - 00289144 _____ (S!Ri) C:\WINDOWS\system32\VCCLSID.exe
2015-01-14 19:51 - 2006-04-27 17:49 - 00288417 _____ (S!Ri) C:\WINDOWS\system32\SrchSTS.exe
2015-01-14 19:51 - 2004-07-31 18:50 - 00051200 _____ () C:\WINDOWS\system32\dumphive.exe
2015-01-14 19:51 - 2003-06-05 21:13 - 00053248 _____ (http://www.beyondlogic.org) C:\WINDOWS\system32\Process.exe
2015-01-13 18:55 - 2015-01-20 20:17 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\JobupOkulu
C:\Documents and Settings\Radek\.exe

CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{0000002F-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{0BE35203-8F91-11CE-9DE3-00AA004BB851}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{0BE35204-8F91-11CE-9DE3-00AA004BB851}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{46763EE0-CAB2-11CE-8C20-00AA0051E5D4}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{B196B286-BAB4-101A-B69C-00AA00341D07}\InprocServer32 -> No File Path

Task: C:\WINDOWS\Tasks\AdobeAAMUpdater-1.0-RADEKK-Radek.job => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
Task: C:\WINDOWS\Tasks\AppleSoftwareUpdate.job => C:\Program Files\Apple Software Update\SoftwareUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\User_Feed_Synchronization-{0C0BFD56-6838-43E8-9B02-CC06A10C1B08}.job => C:\WINDOWS\system32\msfeedssync.exe
AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:05EE1EEF
Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
"HKU\S-1-5-21-790525478-630328440-682003330-1003\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
HKLM\Software\Microsoft\Internet Explorer\URLSearchHooks\\ => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKU\S-1-5-21-790525478-630328440-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A15FB7B-38D4-4E7E-810F-B914C548C3B8}" => Key deleted successfully.
HKCR\CLSID\{6A15FB7B-38D4-4E7E-810F-B914C548C3B8} => Key not found.
HKU\S-1-5-21-790525478-630328440-682003330-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => value deleted successfully.
HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => Key not found.
Firefox Proxy settings were reset.
"HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin" => Key deleted successfully.
ADIDTSFiltService => Service deleted successfully.
IntelIde => Service deleted successfully.
C:\WINDOWS\system32\404Fix.exe => Moved successfully.
C:\WINDOWS\system32\IEDFix.C.exe => Moved successfully.
C:\WINDOWS\system32\VACFix.exe => Moved successfully.
C:\WINDOWS\system32\IEDFix.exe => Moved successfully.
C:\WINDOWS\system32\WS2Fix.exe => Moved successfully.
C:\WINDOWS\system32\VCCLSID.exe => Moved successfully.
C:\WINDOWS\system32\SrchSTS.exe => Moved successfully.
C:\WINDOWS\system32\dumphive.exe => Moved successfully.
C:\WINDOWS\system32\Process.exe => Moved successfully.
C:\Documents and Settings\All Users\Data aplikací\JobupOkulu => Moved successfully.
C:\Documents and Settings\Radek\.exe => Moved successfully.
"HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{0000002F-0000-0000-C000-000000000046}" => Key deleted successfully.
"HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{00020420-0000-0000-C000-000000000046}" => Key deleted successfully.
"HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{00020421-0000-0000-C000-000000000046}" => Key deleted successfully.
"HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{00020422-0000-0000-C000-000000000046}" => Key deleted successfully.
"HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{00020423-0000-0000-C000-000000000046}" => Key deleted successfully.
"HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{00020424-0000-0000-C000-000000000046}" => Key deleted successfully.
"HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{00020425-0000-0000-C000-000000000046}" => Key deleted successfully.
"HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{0BE35203-8F91-11CE-9DE3-00AA004BB851}" => Key deleted successfully.
"HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{0BE35204-8F91-11CE-9DE3-00AA004BB851}" => Key deleted successfully.
"HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{46763EE0-CAB2-11CE-8C20-00AA0051E5D4}" => Key deleted successfully.
"HKU\S-1-5-21-790525478-630328440-682003330-1003_Classes\CLSID\{B196B286-BAB4-101A-B69C-00AA00341D07}" => Key deleted successfully.
C:\WINDOWS\Tasks\AdobeAAMUpdater-1.0-RADEKK-Radek.job => Moved successfully.
C:\WINDOWS\Tasks\AppleSoftwareUpdate.job => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job => Moved successfully.
C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job => Moved successfully.
C:\WINDOWS\Tasks\User_Feed_Synchronization-{0C0BFD56-6838-43E8-9B02-CC06A10C1B08}.job => Moved successfully.
C:\Documents and Settings\All Users\Data aplikací\TEMP => ":05EE1EEF" ADS removed successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 538.4 MB temporary data.

The system needed a reboot.

==== End of Fixlog 16:32:12 ====

#25 Příspěvek od **altrok** » 24 led 2015 01:51

dvakrat kliknete na C:\CF-Submit.htm, pak by vsechno melo probihat samo

dejte pak jeste novy log z FRST... staci ze samotneho FRST.exe a jen frst.txt (Addition.txt uz netreba)

morphe · #26 Příspěvek od **morphe** » 24 led 2015 10:21

Klikl jsem 2x na danný soubor a vyskocilo mi okno prohlizece a stalo se jen tohle.
zde je prnscreen
Obrázek

#27 Příspěvek od **altrok** » 24 led 2015 13:41

Udelejte, co se pise na screenu, tzn. vyberte soubor (tucne napsana cesta) a kliknete na Send.

morphe · #28 Příspěvek od **morphe** » 24 led 2015 13:58

Zde log z FRST
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 24-01-2015 01
Ran by Radek (administrator) on RADEKK on 24-01-2015 13:58:09
Running from C:\Documents and Settings\Radek\Plocha
Loaded Profiles: Radek (Available profiles: Radek & Administrator)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Software602) C:\Program Files\Software602\Print2PDF\Print2PDF.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\Core\smax4pnp.exe
(Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Razer USA Ltd) C:\Program Files\Razer\Lachesis 5600\LachesisSysTray.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(Allstar Group, s.r.o.) C:\Program Files\GamePark2\gpcl.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Software602 a.s.) C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(ASUSTeK COMPUTER INC.) C:\WINDOWS\ATKKBService.exe
(LogMeIn Inc.) C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
(Nero AG) C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
() C:\Program Files\CDBurnerXP\NMSAccessU.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
() C:\WINDOWS\system32\PnkBstrA.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
() C:\WINDOWS\system32\PnkBstrB.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [PinnacleDriverCheck] => C:\WINDOWS\system32\\PSDrvCheck.exe [406016 2004-03-11] ()
HKLM\...\Run: [Print2PDF Print Monitor] => C:\Program Files\Software602\Print2PDF\Print2PDF.exe [220992 2011-10-04] (Software602)
HKLM\...\Run: [SoundMAXPnP] => C:\Program Files\Analog Devices\Core\smax4pnp.exe [1036288 2007-10-09] (Analog Devices, Inc.)
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [153672 2010-06-14] (Logitech Inc.)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-01-28] (Apple Inc.)
HKLM\...\Run: [avast] => C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-08-30] (AVAST Software)
HKLM\...\Run: [Razer Lachesis Driver] => C:\Program Files\Razer\Lachesis 5600\LachesisSysTray.exe [837008 2011-03-09] (Razer USA Ltd)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [NvMediaCenter] => RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2586912 2013-06-21] ()
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\GamePark klient 2.lnk
ShortcutTarget: GamePark klient 2.lnk -> C:\Program Files\GamePark2\gpcl.exe (Allstar Group, s.r.o.)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Microsoft Office.lnk
ShortcutTarget: Microsoft Office.lnk -> C:\Program Files\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... R}&ar=home
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-790525478-630328440-682003330-1003\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.centrum.cz/
HKU\S-1-5-21-790525478-630328440-682003330-1003\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\S-1-5-21-790525478-630328440-682003330-1003\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
BHO: No Name -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> No File
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll No File
BHO: JQSIEStartDetectorImpl Class -> {E7E6F031-17CE-4C07-BC86-EABFE594F69C} -> C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll No File
Toolbar: HKLM - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKU\S-1-5-21-790525478-630328440-682003330-1003 -> &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/ ... ontrol.cab
DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} http://www.nvidia.com/content/DriverDow ... eqlab3.cab
DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} http://download.divx.com/player/DivXBrowserPlugin.cab
DPF: {A996E48C-D3DC-4244-89F7-AFA33EC60679} https://portal.ote-cr.cz/otemarket/reso ... apicom.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/sh ... wflash.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Radek\Data aplikací\Mozilla\Firefox\Profiles\gp69o8du.default
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.cz
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_16_0_0_287.dll ()
FF Plugin: @java.com/DTPlugin -> C:\Program Files\Java\jre6\bin\dtplugin\npDeployJava1.dll No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=6.0.12.69 -> C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.69 -> C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin: @software602.cz/602XML Filler -> C:\Program Files\Software602\602XML\Filler\npfiller.dll (Software602 a.s.)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-790525478-630328440-682003330-1003: @unity3d.com/UnityPlayer,version=1.0 -> C:\Documents and Settings\Radek\Local Settings\Data aplikací\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2011-10-23]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-08-08]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-05-13]
FF Extension: No Name - C:\Documents and Settings\Radek\Data aplikací\Mozilla\Firefox\Profiles\gp69o8du.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [Not Found]

Chrome:
=======
CHR Profile: C:\Documents and Settings\Radek\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (Peněženka Google) - C:\Documents and Settings\Radek\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-01-31]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 602XML Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 ATKKeyboardService; C:\WINDOWS\ATKKBService.exe [241664 2006-09-22] (ASUSTeK COMPUTER INC.) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-08-30] (AVAST Software)
R2 Hamachi2Svc; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [1107336 2010-03-30] (LogMeIn Inc.)
S3 MSSQL$SONY_MEDIAMGR; C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe [7520337 2002-12-17] (Microsoft Corporation) [File not signed]
S3 MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [66112 2002-12-17] (Microsoft Corporation) [File not signed]
R2 NMSAccessU; C:\Program Files\CDBurnerXP\NMSAccessU.exe [71096 2008-10-20] ()
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1795912 2014-10-04] (NVIDIA Corporation)
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76888 2012-05-15] ()
R2 PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [214520 2015-01-24] ()
S3 SandraAgentSrv; D:\Install\SiSoftware Sandra Professional Business 2009.SP2\RpcAgentSrv.exe [98488 2008-12-11] (SiSoftware)
S3 SQLAgent$SONY_MEDIAMGR; C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE [311872 2002-12-17] (Microsoft Corporation) [File not signed]
S3 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S2 trufos; C:\WINDOWS\system32\svchost.exe [14336 2008-04-14] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 3xHybrid; C:\WINDOWS\System32\DRIVERS\3xHybrid.sys [1121536 2006-11-22] (Philips Semiconductors GmbH)
R3 ASAPIW2K; C:\WINDOWS\System32\Drivers\ASAPIW2K.sys [11264 2005-01-10] (VOB Computersysteme GmbH) [File not signed]
R1 asuskbnt; C:\WINDOWS\System32\drivers\atkkbnt.sys [11008 2005-10-18] (ASUSTeK COMPUTER INC.) [File not signed]
R2 aswFsBlk; C:\WINDOWS\system32\Drivers\aswFsBlk.sys [29816 2013-08-30] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\Drivers\aswKbd.sys [21576 2013-08-30] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [66336 2013-08-30] (AVAST Software)
R1 AswRdr; C:\WINDOWS\system32\Drivers\AswRdr.sys [49760 2013-08-30] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49376 2013-08-30] ()
R1 aswSnx; C:\WINDOWS\system32\Drivers\aswSnx.sys [770784 2014-12-02] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\Drivers\aswSP.sys [369584 2013-08-30] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\Drivers\aswTdi.sys [56080 2013-08-30] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [177864 2013-08-30] ()
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
S3 cglptnt; C:\totalcmd\cglptnt.sys [7888 2008-08-08] (C. Ghisler & Co.) [File not signed]
R2 EIO; C:\WINDOWS\system32\drivers\EIO.sys [12288 2006-06-14] (ASUSTeK Computer Inc.) [File not signed]
S3 ENTECH; C:\WINDOWS\system32\DRIVERS\ENTECH.sys [21664 2004-10-25] (EnTech Taiwan) [File not signed]
R0 giveio; C:\WINDOWS\System32\giveio.sys [5248 1996-04-03] () [File not signed]
R3 hamachi; C:\WINDOWS\System32\DRIVERS\hamachi.sys [25280 2010-11-17] (LogMeIn, Inc.)
S3 MPE; C:\WINDOWS\System32\DRIVERS\MPE.sys [15232 2008-04-13] (Microsoft Corporation)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R1 PCLEPCI; C:\WINDOWS\system32\drivers\pclepci.sys [14165 2005-02-09] (Pinnacle Systems GmbH) [File not signed]
R3 PnkBstrK; C:\WINDOWS\system32\drivers\PnkBstrK.sys [137464 2015-01-24] ()
S3 Razerlow; C:\WINDOWS\System32\Drivers\Razerlow.sys [19020 2005-08-12] (Razer (Asia-Pacific) Pte Ltd) [File not signed]
S3 SANDRA; D:\Install\SiSoftware Sandra Professional Business 2009.SP2\WNt500x86\Sandra.sys [22432 2008-11-25] (SiSoftware)
R3 SenFiltService; C:\WINDOWS\System32\drivers\Senfilt.sys [392960 2006-03-18] (Sensaura)
R0 speedfan; C:\WINDOWS\System32\speedfan.sys [5248 2006-09-24] (Windows (R) 2000 DDK provider) [File not signed]
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [717296 2009-02-02] () [File not signed]
R1 StarOpen; C:\WINDOWS\system32\Drivers\StarOpen.sys [5632 2006-07-24] () [File not signed]
R3 WmBEnum; C:\WINDOWS\System32\drivers\WmBEnum.sys [22856 2010-04-27] (Logitech Inc.)
S3 WmFilter; C:\WINDOWS\System32\drivers\WmFilter.sys [37704 2010-04-27] (Logitech Inc.)
S3 WmHidLo; C:\WINDOWS\System32\drivers\WmHidLo.sys [31816 2010-04-27] (Logitech Inc.)
R3 WmVirHid; C:\WINDOWS\System32\drivers\WmVirHid.sys [15048 2010-04-27] (Logitech Inc.)
R3 WmXlCore; C:\WINDOWS\System32\drivers\WmXlCore.sys [66632 2010-04-27] (Logitech Inc.)
R3 yukonwxp; C:\WINDOWS\System32\DRIVERS\yk51x86.sys [248832 2006-07-26] (Marvell)
U3 al40d3pj; C:\WINDOWS\system32\Drivers\al40d3pj.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero size file/folder)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-24 13:57 - 2015-01-24 13:57 - 00000000 ____D () C:\Documents and Settings\Radek\Plocha\FRST-OlderVersion
2015-01-22 21:20 - 2015-01-22 21:20 - 00033098 _____ () C:\Documents and Settings\Radek\Plocha\FRST2.txt
2015-01-22 21:19 - 2015-01-24 13:58 - 00015858 _____ () C:\Documents and Settings\Radek\Plocha\FRST.txt
2015-01-22 21:19 - 2015-01-24 13:58 - 00000000 ____D () C:\FRST
2015-01-22 21:19 - 2015-01-22 21:20 - 00072825 _____ () C:\Documents and Settings\Radek\Plocha\Addition.txt
2015-01-22 21:18 - 2015-01-22 21:18 - 00029696 _____ () C:\Documents and Settings\Radek\Local Settings\Data aplikací\MSGBOX.EXE
2015-01-22 21:18 - 2015-01-22 21:18 - 00015327 _____ () C:\Documents and Settings\Radek\Plocha\LM.bat
2015-01-22 21:17 - 2015-01-24 13:57 - 01120768 _____ (Farbar) C:\Documents and Settings\Radek\Plocha\FRST.exe
2015-01-22 19:23 - 2015-01-24 13:58 - 00000000 ____D () C:\Documents and Settings\Radek\Local Settings\temp
2015-01-22 19:23 - 2015-01-22 19:23 - 00000000 ____D () C:\Documents and Settings\NetworkService\Local Settings\temp
2015-01-22 19:23 - 2015-01-22 19:23 - 00000000 ____D () C:\Documents and Settings\LocalService\Local Settings\temp
2015-01-22 19:23 - 2015-01-22 19:23 - 00000000 ____D () C:\Documents and Settings\Default User\Local Settings\temp
2015-01-22 19:23 - 2015-01-22 19:23 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\temp
2015-01-22 19:07 - 2015-01-22 19:07 - 00014289 _____ () C:\ComboFix.txt
2015-01-22 18:56 - 2015-01-22 18:56 - 00001204 _____ () C:\CF-Submit.htm
2015-01-22 17:03 - 2015-01-22 17:03 - 05609462 ____R (Swearware) C:\Documents and Settings\Radek\Plocha\ComboFix.exe
2015-01-21 20:31 - 2015-01-21 20:31 - 00000512 _____ () C:\PhysicalMBR.bin
2015-01-14 19:55 - 2015-01-21 16:26 - 00002006 _____ () C:\rapport.txt
2015-01-14 19:55 - 2015-01-21 16:20 - 00004544 _____ () C:\WINDOWS\system32\tmp.reg
2015-01-14 19:55 - 2015-01-21 16:20 - 00000000 _____ () C:\WINDOWS\system32\tmp.txt

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-24 13:58 - 2009-01-31 23:26 - 00000000 ____D () C:\Documents and Settings\Radek\Plocha
2015-01-24 13:41 - 2012-06-08 22:10 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-01-24 13:16 - 2013-07-21 15:56 - 00013642 _____ () C:\WINDOWS\system32\nvAppTimestamps
2015-01-24 12:10 - 2014-03-17 11:24 - 00214520 _____ () C:\WINDOWS\system32\PnkBstrB.exe
2015-01-24 12:10 - 2009-09-06 16:15 - 00137464 _____ () C:\WINDOWS\system32\Drivers\PnkBstrK.sys
2015-01-24 12:10 - 2009-02-28 15:26 - 00214520 _____ () C:\WINDOWS\system32\PnkBstrB.xtr
2015-01-24 11:42 - 2009-01-31 23:22 - 02095474 _____ () C:\WINDOWS\WindowsUpdate.log
2015-01-24 10:33 - 2009-09-06 16:15 - 00214520 _____ () C:\WINDOWS\system32\PnkBstrB.ex0
2015-01-24 10:15 - 2013-05-13 08:03 - 00000364 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job
2015-01-24 10:15 - 2009-03-16 17:15 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2015-01-24 10:15 - 2009-03-16 17:15 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2015-01-24 10:15 - 2004-08-18 13:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2015-01-24 10:14 - 2009-01-31 23:25 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-01-23 22:50 - 2010-03-26 20:18 - 00000000 ____D () C:\Documents and Settings\LocalService\Local Settings\Data aplikací\LogMeIn Hamachi
2015-01-23 22:50 - 2009-01-31 23:26 - 00000272 ___SH () C:\Documents and Settings\Radek\ntuser.ini
2015-01-23 22:50 - 2009-01-31 23:25 - 00032582 _____ () C:\WINDOWS\SchedLgU.Txt
2015-01-23 22:49 - 2013-09-28 16:06 - 00000000 ____D () C:\Documents and Settings\Radek\Data aplikací\uTorrent
2015-01-23 22:49 - 2009-01-31 23:26 - 00000000 ____D () C:\Documents and Settings\Radek
2015-01-23 16:31 - 2009-02-01 00:15 - 00000000 __RHD () C:\Documents and Settings\All Users\Data aplikací
2015-01-23 16:26 - 2009-02-01 13:18 - 00000000 ____D () C:\Documents and Settings\Radek\Data aplikací\Skype
2015-01-23 16:10 - 2014-04-04 17:46 - 00002283 _____ () C:\Documents and Settings\All Users\Plocha\Skype.lnk
2015-01-23 16:06 - 2010-09-29 15:26 - 00000000 ____D () C:\Program Files\Google
2015-01-22 21:18 - 2009-01-31 23:26 - 00000000 ___HD () C:\Documents and Settings\Radek\Local Settings\Data aplikací
2015-01-22 21:12 - 2010-09-29 16:31 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Google
2015-01-22 21:12 - 2010-09-29 15:26 - 00000000 ____D () C:\Documents and Settings\Radek\Local Settings\Data aplikací\Google
2015-01-22 20:41 - 2012-06-08 22:10 - 00701616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-01-22 20:41 - 2011-05-16 13:50 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-01-22 19:23 - 2012-04-22 14:53 - 00000000 ____D () C:\Qoobox
2015-01-22 19:03 - 2004-08-18 13:00 - 00000227 _____ () C:\WINDOWS\system.ini
2015-01-22 19:02 - 2012-04-22 15:03 - 00008192 ____H () C:\WINDOWS\system32\config\SECURITY.tmp.LOG
2015-01-22 19:02 - 2012-04-22 14:54 - 00000000 ____D () C:\WINDOWS\ERDNT
2015-01-22 19:02 - 2009-02-01 00:14 - 00262144 _____ () C:\WINDOWS\system32\config\SECURITY.bak
2015-01-22 19:02 - 2009-02-01 00:14 - 00262144 _____ () C:\WINDOWS\system32\config\SAM.bak
2015-01-22 19:02 - 2009-02-01 00:13 - 40632320 _____ () C:\WINDOWS\system32\config\software.bak
2015-01-22 19:02 - 2009-02-01 00:13 - 07340032 _____ () C:\WINDOWS\system32\config\system.bak
2015-01-22 19:02 - 2009-02-01 00:13 - 00622592 _____ () C:\WINDOWS\system32\config\default.bak
2015-01-22 18:56 - 2009-01-31 23:26 - 00000000 __RHD () C:\Documents and Settings\Radek\Data aplikací
2015-01-21 20:56 - 2009-02-01 09:43 - 00002565 _____ () C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft Word.lnk
2015-01-21 17:52 - 2009-03-19 09:56 - 00000000 ____D () C:\Documents and Settings\Radek\Data aplikací\mIRC
2015-01-21 17:15 - 2009-08-03 08:16 - 00000000 ____D () C:\Program Files\mIRC
2015-01-21 16:43 - 2014-03-20 07:08 - 00000000 ____D () C:\AdwCleaner
2015-01-21 16:43 - 2009-02-01 00:15 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy
2015-01-21 16:43 - 2009-01-31 23:26 - 00000000 ___RD () C:\Documents and Settings\Radek\Dokumenty
2015-01-21 16:34 - 2012-04-22 09:14 - 00000000 ____D () C:\Program Files\trend micro
2015-01-20 21:02 - 2011-09-26 16:48 - 00000000 ____D () C:\Documents and Settings\Radek\Data aplikací\OpenOffice.org2
2015-01-20 18:57 - 2009-01-31 23:56 - 00133632 _____ () C:\Documents and Settings\Radek\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-01-19 20:09 - 2013-02-02 18:43 - 00000000 ____D () C:\Documents and Settings\Radek\Plocha\LUCKA
2015-01-15 18:34 - 2013-02-11 18:27 - 00000000 ____D () C:\Documents and Settings\Radek\Plocha\RADEK
2015-01-15 18:24 - 2009-02-01 14:29 - 00000000 ___RD () C:\Documents and Settings\Radek\Dokumenty\Filmy
2015-01-15 18:22 - 2010-12-15 20:33 - 00000000 ____D () C:\Documents and Settings\Radek\Dokumenty\FFOutput
2015-01-14 22:17 - 2013-08-08 22:35 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-01-12 16:14 - 2011-06-20 14:08 - 01990656 ___SH () C:\Documents and Settings\Radek\Plocha\Thumbs.db
2015-01-12 15:16 - 2013-02-07 13:37 - 00000000 ____D () C:\Documents and Settings\Radek\Plocha\TÁTA
2015-01-12 14:47 - 2009-02-01 09:43 - 00002473 _____ () C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft PowerPoint.lnk
2015-01-12 08:11 - 2009-02-04 15:59 - 00000000 ____D () C:\Program Files\SpeedFan
2014-12-31 13:15 - 2009-02-01 00:25 - 110348472 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-12-29 13:45 - 2014-06-26 08:28 - 00000282 _____ () C:\Documents and Settings\Radek\BullseyeCoverageError.txt

==================== Files in the root of some directories =======

2012-06-19 18:39 - 2013-05-09 15:53 - 0000132 _____ () C:\Documents and Settings\Radek\Data aplikací\Adobe AIFF Format CS5 Prefs
2013-05-09 15:53 - 2013-05-09 15:53 - 0000132 _____ () C:\Documents and Settings\Radek\Data aplikací\Adobe BMP Format CS5 Prefs
2010-03-23 20:40 - 2011-07-25 20:55 - 0000552 _____ () C:\Documents and Settings\Radek\Data aplikací\default.pls
2012-11-25 13:40 - 2012-11-25 13:40 - 0001166 _____ () C:\Documents and Settings\Radek\Data aplikací\filterclsid.dat
2009-02-02 14:29 - 2009-02-02 15:00 - 0022328 _____ () C:\Documents and Settings\Radek\Data aplikací\PnkBstrK.sys
2012-05-05 17:36 - 2012-05-05 17:36 - 0011099 _____ () C:\Documents and Settings\Radek\Data aplikací\TheHunterSettings_live.bin
2012-05-05 17:37 - 2012-05-05 17:37 - 0000043 _____ () C:\Documents and Settings\Radek\Data aplikací\TheHunterSettings_local.cfg
2009-01-31 23:56 - 2015-01-20 18:57 - 0133632 _____ () C:\Documents and Settings\Radek\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-01-22 21:18 - 2015-01-22 21:18 - 0029696 _____ () C:\Documents and Settings\Radek\Local Settings\Data aplikací\MSGBOX.EXE
2010-09-03 10:22 - 2010-10-29 13:51 - 0000600 _____ () C:\Documents and Settings\Radek\Local Settings\Data aplikací\PUTTY.RND

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================

#29 Příspěvek od **altrok** » 24 led 2015 14:03

Takze jeste uklidime.

Prejmenujte ComboFix na Uninstall a spustte jako spravce
ComboFix se odinstaluje.

Stahnete a spustte DelFix - https://toolslib.net/downloads/viewdownload/2-delfix/
Oznacte jen moznost "Remove disinfection tools"
kliknete na Run

A pokud nejsou dotazy ci jine problemy, je to ode mne vse.

morphe · #30 Příspěvek od **morphe** » 24 led 2015 14:09

KDyž jsme to udělal s tim combofixem hodina se chyba , že stem nemuze najit uninstall.exe nebo tak něco nasledne CF zmizel

Hned na to vyskocila tabulka od avastu a ze bych chycem malware a presunut do truhly

Já už fakt nevím a vámi uvedeny program mi nejde stahnou protoze url okdazu se mi proste nechce nacist

VIRY.CZ

malware ( nejspíše)

Re: malware ( nejspíše)

Re: malware ( nejspíše)

Re: malware ( nejspíše)

Re: malware ( nejspíše)

Re: malware ( nejspíše)

Re: malware ( nejspíše)

Re: malware ( nejspíše)

Re: malware ( nejspíše)

Re: malware ( nejspíše)

Re: malware ( nejspíše)

Re: malware ( nejspíše)

Re: malware ( nejspíše)

Re: malware ( nejspíše)

Re: malware ( nejspíše)

Re: malware ( nejspíše)