VIRY.CZ

ešte sa chcem spýtať

ta ochrana USbfixom resp. ochrana diskových jednotiek bude funkčná pokiaľ nepreinštalujem windows ?

takúto kontrolu na malware môžem spraviť aj na druhom mojom PC však?

tu je log z FRST.txt

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:21-05-2014
Ran by Admin1 (administrator) on ADMIN-1 on 21-05-2014 16:48:15
Running from C:\Documents and Settings\Admin1\Plocha
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Czech
Internet Explorer Version 7
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
(Realtek Semiconductor Corp.) C:\DOCUME~1\Admin1\LOCALS~1\Temp\RtkBtMnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avwebgrd.exe
(Google Inc.) C:\Documents and Settings\Admin1\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Documents and Settings\Admin1\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Documents and Settings\Admin1\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Documents and Settings\Admin1\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1410344 2008-12-04] (Synaptics, Inc.)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [17508864 2009-02-13] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Alcmtr] => C:\WINDOWS\ALCMTR.EXE [57344 2008-06-19] (Realtek Semiconductor Corp.)
HKLM\...\Run: [AzMixerSel] => C:\Program Files\Realtek\Audio\Drivers\AzMixerSel.exe [53248 2006-07-17] (Realtek Semiconductor Corp.)
HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [689744 2014-03-15] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll (ATI Technologies Inc.)
HKU\S-1-5-21-1715567821-776561741-682003330-1003\...\Run: [Google Update] => C:\Documents and Settings\Admin1\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [135664 2011-08-02] (Google Inc.)
HKU\S-1-5-21-1715567821-776561741-682003330-1003\...\Policies\Explorer: [NoDriveAutoRun] 0xFFFFFFFF

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,ICQ Search = http://search.icq.com/search/results.ph ... &ch_id=osd
HKCU\Software\Microsoft\Internet Explorer\Main,Default_search_url = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Default_page_url = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
HKLM\Software\Microsoft\Internet Explorer\Main,Search bar = http://search.msn.com/spbasic.htm
HKLM\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages =
URLSearchHook: ATTENTION ==> Default URLSearchHook is missing.
SearchScopes: HKCU - DefaultScope {E88E0043-C9D4-4e33-8555-FEE4F5B63060} URL = http://go.mail.ru/search?q={searchTerms ... =1&fr=ietb
SearchScopes: HKCU - {E88E0043-C9D4-4e33-8555-FEE4F5B63060} URL = http://go.mail.ru/search?q={searchTerms ... =1&fr=ietb
BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
BHO: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Avira SearchFree Toolbar plus Web Protection - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO: JQSIEStartDetectorImpl Class - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
Toolbar: HKLM - Avira SearchFree Toolbar plus Web Protection - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKCU - &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
Toolbar: HKCU - &Odkazy - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
Toolbar: HKCU - Avira SearchFree Toolbar plus Web Protection - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} http://office.microsoft.com/_layouts/Cl ... wsdc32.cab
DPF: {62789780-B744-11D0-986B-00609731A21D} http://195.28.70.134/kapor2/lib/mgaxctrl.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Winsock: Catalog9 01 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 20 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.20 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Admin1\Data aplikací\Mozilla\Firefox\Profiles\7v32etnc.default
FF user.js: detected! => C:\Documents and Settings\Admin1\Data aplikací\Mozilla\Firefox\Profiles\7v32etnc.default\user.js
FF DefaultSearchEngine: http://www.mail.ru/
FF SelectedSearchEngine: mail.ru: Поиск в Интернете
FF Homepage: about:home
FF Keyword.URL: hxxp://search.sweetim.com/search.asp?barid=null&src=2&q=
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\WINDOWS\system32\Adobe\Director\np32dsw_1205146.dll (Adobe Systems, Inc.)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=6.0.12.69 - C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.69 - C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Documents and Settings\Admin1\Local Settings\Data aplikací\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Documents and Settings\Admin1\Local Settings\Data aplikací\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Documents and Settings\Admin1\Local Settings\Data aplikací\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF SearchPlugin: C:\Documents and Settings\Admin1\Data aplikací\Mozilla\Firefox\Profiles\7v32etnc.default\searchplugins\mailru---.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
FF Extension: FT DeepDark - C:\Documents and Settings\Admin1\Data aplikací\Mozilla\Firefox\Profiles\7v32etnc.default\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66} [2013-04-24]
FF Extension: Torntv - C:\Documents and Settings\Admin1\Data aplikací\Mozilla\Firefox\Profiles\7v32etnc.default\Extensions\torntv@torntv.com.xpi [2013-02-08]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2012-04-08]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} [2011-11-20]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-07-01]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
FF HKLM\...\Firefox\Extensions: [jqs@sun.com] - C:\Program Files\Java\jre6\lib\deploy\jqs\ff
FF Extension: Java Quick Starter - C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2011-11-20]

Chrome:
=======
CHR HomePage: hxxp://www.google.sk/
CHR StartupUrls: "hxxp://www.google.sk/"
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Documents and Settings\Admin1\Local Settings\Data aplikací\Google\Chrome\Application\34.0.1847.137\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Documents and Settings\Admin1\Local Settings\Data aplikací\Google\Chrome\Application\34.0.1847.137\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Documents and Settings\Admin1\Local Settings\Data aplikací\Google\Chrome\Application\34.0.1847.137\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Skype Toolbars) - C:\Documents and Settings\Admin1\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.9.0.9216_0\npSkypeChromePlugin.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Java Deployment Toolkit 6.0.290.11) - C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll (Sun Microsystems, Inc.)
CHR Plugin: (Java(TM) Platform SE 6 U29) - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
CHR Plugin: (QuickTime Plug-in 7.0.3) - C:\Program Files\QuickTime\plugins\npqtplugin.dll (Apple Computer, Inc.)
CHR Plugin: (QuickTime Plug-in 7.0.3) - C:\Program Files\QuickTime\plugins\npqtplugin2.dll (Apple Computer, Inc.)
CHR Plugin: (QuickTime Plug-in 7.0.3) - C:\Program Files\QuickTime\plugins\npqtplugin3.dll (Apple Computer, Inc.)
CHR Plugin: (QuickTime Plug-in 7.0.3) - C:\Program Files\QuickTime\plugins\npqtplugin4.dll (Apple Computer, Inc.)
CHR Plugin: (QuickTime Plug-in 7.0.3) - C:\Program Files\QuickTime\plugins\npqtplugin5.dll (Apple Computer, Inc.)
CHR Plugin: (QuickTime Plug-in 7.0.3) - C:\Program Files\QuickTime\plugins\npqtplugin6.dll (Apple Computer, Inc.)
CHR Plugin: (QuickTime Plug-in 7.0.3) - C:\Program Files\QuickTime\plugins\npqtplugin7.dll (Apple Computer, Inc.)
CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (Google Update) - C:\Documents and Settings\Admin1\Local Settings\Data aplikací\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Unity Player) - C:\Documents and Settings\Admin1\Local Settings\Data aplikací\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
CHR Plugin: (RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Version Plugin) - C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
CHR Plugin: (Windows Presentation Foundation) - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (YouTube) - C:\Documents and Settings\Admin1\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2011-12-17]
CHR Extension: (Vyhledávání Google) - C:\Documents and Settings\Admin1\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2011-12-17]
CHR Extension: (AutocompletePro plugin for chrome) - C:\Documents and Settings\Admin1\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\defdhglnppeioeflggkmglipcecffkhk [2011-08-02]
CHR Extension: (Skype Click to Call) - C:\Documents and Settings\Admin1\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2011-08-21]
CHR Extension: (Peněženka Google) - C:\Documents and Settings\Admin1\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-01]
CHR Extension: (Gmail) - C:\Documents and Settings\Admin1\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2011-12-17]
CHR HKLM\...\Chrome\Extension: [aaaanggjopenpllbdidcpbendcjhbjme] - C:\Documents and Settings\Admin1\Local Settings\Data aplikací\APN\GoogleCRXs\aaaanggjopenpllbdidcpbendcjhbjme_7.14.1.0.crx [2012-02-22]
CHR HKLM\...\Chrome\Extension: [defdhglnppeioeflggkmglipcecffkhk] - C:\Program Files\AutocompletePro\chrome\autocompleteprochrome.crx [2011-08-02]
CHR HKLM\...\Chrome\Extension: [fjpdnoojnohifgekbkmnfbiobhcbedka] - C:\Program Files\outobox\fjpdnoojnohifgekbkmnfbiobhcbedka.crx [2011-08-02]
CHR HKLM\...\Chrome\Extension: [jbpkiefagocgkmemidfngdkamloieekf] - C:\Program Files\TornTV.com\torn11.crx [2011-08-02]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-07-12]
CHR StartMenuInternet: Google Chrome - C:\Documents and Settings\Admin1\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe

========================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440400 2014-03-15] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440400 2014-03-15] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [1017424 2014-03-15] (Avira Operations GmbH & Co. KG)
S4 ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [247608 2010-11-21] ()
S4 JavaQuickStarterService; C:\Program Files\Java\jre6\bin\jqs.exe [153376 2011-11-20] (Sun Microsystems, Inc.)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S4 Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3064000 2012-08-13] (Skype Technologies S.A.)
S4 TuneUp.Defrag; C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe [435016 2011-08-02] (TuneUp Software)
S4 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [1021256 2009-11-17] (TuneUp Software)
S4 UleadBurningHelper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [49152 2005-01-31] (Ulead Systems, Inc.)

==================== Drivers (Whitelisted) ====================

S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1684736 2008-08-05] (Creative)
R1 AmdPPM; C:\WINDOWS\System32\DRIVERS\AmdPPM.sys [33792 2007-04-16] (Advanced Micro Devices)
R3 AR5416; C:\WINDOWS\System32\DRIVERS\athw.sys [1346464 2008-12-29] (Atheros Communications, Inc.)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [90400 2013-12-18] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\System32\DRIVERS\avipbb.sys [135648 2013-12-18] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\System32\DRIVERS\avkmgr.sys [37352 2013-11-26] (Avira Operations GmbH & Co. KG)
S3 btaudio; C:\WINDOWS\System32\drivers\btaudio.sys [539576 2007-11-05] (Broadcom Corporation.)
R3 BTDriver; C:\WINDOWS\System32\DRIVERS\btport.sys [37424 2007-03-23] (Broadcom Corporation.)
R3 BTKRNL; C:\WINDOWS\System32\DRIVERS\btkrnl.sys [879528 2007-11-05] (Broadcom Corporation.)
S3 BTWDNDIS; C:\WINDOWS\System32\DRIVERS\btwdndis.sys [156392 2007-06-29] (Broadcom Corporation.)
S3 btwhid; C:\WINDOWS\System32\DRIVERS\btwhid.sys [55352 2007-03-31] (Broadcom Corporation.)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R2 Hardlock; C:\WINDOWS\system32\drivers\hardlock.sys [685056 2005-07-28] (Aladdin Knowledge Systems Ltd.)
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [49920 2007-11-01] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16496 2007-11-01] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21568 2007-11-01] (HP)
R3 HSFHWAZL; C:\WINDOWS\System32\DRIVERS\HSFHWAZL.sys [210688 2007-03-01] (Conexant Systems, Inc.)
R3 HSF_DPV; C:\WINDOWS\System32\DRIVERS\HSF_DPV.sys [988032 2007-03-01] (Conexant Systems, Inc.)
R3 k57w2k; C:\WINDOWS\System32\DRIVERS\k57xp32.sys [186880 2008-09-03] (Broadcom Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1389056 2006-01-04] (Creative Technology Ltd.)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R2 NSHE; C:\WINDOWS\system32\Drivers\NSHE.SYS [97792 2008-12-18] (T0r0 & Tecar Forum 2009)
S3 RSUSBSTOR; C:\WINDOWS\System32\Drivers\RTS5121.sys [158720 2008-10-07] (Realtek Semiconductor Corp.)
S3 RT-USB; C:\WINDOWS\System32\drivers\RT-USB.SYS [59464 2010-06-16] (Ross-Tech LLC)
R3 RTHDMIAzAudService; C:\WINDOWS\System32\drivers\RtHDMI.sys [3720832 2008-11-12] (Realtek Semiconductor Corp.)
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [691696 2011-08-02] ()
R1 ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [28520 2013-09-22] (Avira GmbH)
S3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [10064 2009-10-14] (TuneUp Software)
R1 {1a147621-8c9a-4d6b-a557-6513a40d3207}t; C:\WINDOWS\System32\drivers\{1a147621-8c9a-4d6b-a557-6513a40d3207}t.sys [55224 2014-05-08] (StdLib)
U3 algnse05; C:\WINDOWS\system32\Drivers\algnse05.sys [0 ] (Microsoft Corporation)
S3 ALSysIO; \??\C:\DOCUME~1\Admin1\LOCALS~1\Temp\ALSysIO.sys [X]
S4 IntelIde; No ImagePath
S3 Rts516xIR; system32\DRIVERS\Rts516xIR.sys [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
S3 UIUSys; system32\DRIVERS\UIUSYS.SYS [X]
S3 USBCCID; system32\DRIVERS\Rts5161ccid.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-05-21 16:48 - 2014-05-21 16:49 - 00022285 _____ () C:\Documents and Settings\Admin1\Plocha\FRST.txt
2014-05-21 16:48 - 2014-05-21 16:48 - 00000000 ____D () C:\FRST
2014-05-21 16:46 - 2014-05-21 16:46 - 01056768 _____ (Farbar) C:\Documents and Settings\Admin1\Plocha\FRST.exe
2014-05-21 16:02 - 2014-05-21 16:14 - 00005377 _____ () C:\UsbFix [Clean 2] ADMIN-1.txt
2014-05-21 15:56 - 2014-05-21 15:56 - 00000000 ____D () C:\WINDOWS\CSC
2014-05-21 14:33 - 2014-05-21 14:33 - 00004187 ____N () C:\UsbFix [Clean 1] ADMIN-1.txt
2014-05-21 14:32 - 2014-05-21 14:32 - 01144875 _____ (El Desaparecido - SosVirus.net) C:\Documents and Settings\Admin1\Plocha\UsbFix.exe
2014-05-21 14:31 - 2014-05-21 14:31 - 01144875 _____ (El Desaparecido - SosVirus.net) C:\Documents and Settings\Admin1\Plocha\Nepotvrzeno 82198.crdownload
2014-05-21 14:30 - 2014-05-21 16:16 - 00000000 ____D () C:\UsbFix
2014-05-21 14:30 - 2014-05-21 14:30 - 00001364 _____ () C:\Documents and Settings\Admin1\Plocha\UsbFix.lnk
2014-05-21 11:54 - 2014-05-21 11:54 - 03051000 _____ (El Desaparecido - SosVirus.net - UsbFix.net) C:\Documents and Settings\Admin1\Plocha\UsbFix (1).exe
2014-05-21 11:52 - 2014-05-21 11:52 - 01144875 _____ (El Desaparecido - SosVirus.net) C:\Documents and Settings\Admin1\Plocha\Nepotvrzeno 348168.crdownload
2014-05-21 08:43 - 2014-05-21 08:43 - 00000000 ____D () C:\Documents and Settings\Admin1\Data aplikací\Malwarebytes
2014-05-21 08:42 - 2014-05-21 08:42 - 00000784 _____ () C:\Documents and Settings\All Users\Plocha\Malwarebytes Anti-Malware.lnk
2014-05-21 08:42 - 2014-05-21 08:42 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
2014-05-21 08:42 - 2014-05-21 08:42 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Malwarebytes' Anti-Malware
2014-05-21 02:36 - 2001-10-25 16:00 - 00000737 _____ () C:\WINDOWS\system32\Drivers\etc\hosts.20140521-023634.backup
2014-05-21 02:31 - 2014-05-21 13:11 - 00000000 ____D () C:\Documents and Settings\Admin1\Plocha\virus
2014-05-21 01:55 - 2014-05-21 08:42 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2014-05-21 01:55 - 2014-05-21 02:15 - 00050648 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-05-21 01:55 - 2014-05-21 02:10 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-05-21 01:55 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-05-16 14:42 - 2014-05-16 14:42 - 00628874 _____ () C:\Documents and Settings\Admin1\Plocha\krizovymanazment.rar
2014-05-15 18:01 - 2014-05-15 18:01 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-05-13 17:33 - 2014-05-08 16:56 - 00055224 _____ (StdLib) C:\WINDOWS\system32\Drivers\{1a147621-8c9a-4d6b-a557-6513a40d3207}t.sys
2014-05-12 22:51 - 2014-05-12 22:52 - 00000000 ____D () C:\Documents and Settings\Admin1\Plocha\POISTENIE
2014-05-04 20:09 - 2014-05-04 20:09 - 00000000 ____D () C:\Documents and Settings\Admin1\Plocha\občan zameranie
2014-05-02 17:56 - 2014-05-02 17:57 - 00006578 _____ () C:\WINDOWS\KB2964358-IE7.log
2014-04-26 20:31 - 2014-05-05 13:30 - 00000000 ____D () C:\Documents and Settings\Admin1\Plocha\slávka-teória- skrátena verzia

==================== One Month Modified Files and Folders =======

2014-05-21 16:49 - 2014-05-21 16:48 - 00022285 _____ () C:\Documents and Settings\Admin1\Plocha\FRST.txt
2014-05-21 16:48 - 2014-05-21 16:48 - 00000000 ____D () C:\FRST
2014-05-21 16:48 - 2011-08-02 09:16 - 00000000 ____D () C:\Documents and Settings\Admin1\Plocha
2014-05-21 16:46 - 2014-05-21 16:46 - 01056768 _____ (Farbar) C:\Documents and Settings\Admin1\Plocha\FRST.exe
2014-05-21 16:44 - 2011-08-02 11:22 - 00000488 _____ () C:\WINDOWS\Tasks\Automatic troubleshooting.job
2014-05-21 16:44 - 2001-10-25 16:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2014-05-21 16:42 - 2011-08-02 09:10 - 01807134 _____ () C:\WINDOWS\WindowsUpdate.log
2014-05-21 16:41 - 2014-03-16 13:09 - 00000224 _____ () C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
2014-05-21 16:41 - 2014-01-11 22:37 - 00000936 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-21 16:41 - 2011-08-04 20:11 - 08405015 _____ () C:\WINDOWS\TempFile
2014-05-21 16:41 - 2011-08-02 11:03 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-05-21 16:41 - 2011-08-02 11:03 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2014-05-21 16:41 - 2011-08-02 10:18 - 00121808 _____ () C:\WINDOWS\system32\ativvaxx.cap
2014-05-21 16:41 - 2011-08-02 09:15 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-05-21 16:40 - 2011-08-02 09:16 - 00000178 ___SH () C:\Documents and Settings\Admin1\ntuser.ini
2014-05-21 16:16 - 2014-05-21 14:30 - 00000000 ____D () C:\UsbFix
2014-05-21 16:14 - 2014-05-21 16:02 - 00005377 _____ () C:\UsbFix [Clean 2] ADMIN-1.txt
2014-05-21 16:14 - 2011-08-02 09:16 - 00000000 ___RD () C:\Documents and Settings\Admin1\Nabídka Start\Programy\Po spuštění
2014-05-21 15:56 - 2014-05-21 15:56 - 00000000 ____D () C:\WINDOWS\CSC
2014-05-21 14:33 - 2014-05-21 14:33 - 00004187 ____N () C:\UsbFix [Clean 1] ADMIN-1.txt
2014-05-21 14:32 - 2014-05-21 14:32 - 01144875 _____ (El Desaparecido - SosVirus.net) C:\Documents and Settings\Admin1\Plocha\UsbFix.exe
2014-05-21 14:32 - 2011-08-02 09:16 - 00000000 ___RD () C:\Documents and Settings\Admin1\Dokumenty
2014-05-21 14:31 - 2014-05-21 14:31 - 01144875 _____ (El Desaparecido - SosVirus.net) C:\Documents and Settings\Admin1\Plocha\Nepotvrzeno 82198.crdownload
2014-05-21 14:31 - 2013-03-20 21:39 - 00054156 ____H () C:\WINDOWS\QTFont.qfn
2014-05-21 14:30 - 2014-05-21 14:30 - 00001364 _____ () C:\Documents and Settings\Admin1\Plocha\UsbFix.lnk
2014-05-21 14:13 - 2013-02-17 10:10 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-05-21 14:07 - 2011-08-02 20:26 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB979559_0$
2014-05-21 14:06 - 2011-08-02 09:16 - 00000000 ____D () C:\Documents and Settings\Admin1
2014-05-21 14:06 - 2011-08-02 09:15 - 00032536 _____ () C:\WINDOWS\SchedLgU.Txt
2014-05-21 14:06 - 2001-10-25 16:00 - 00000740 _____ () C:\WINDOWS\win.ini
2014-05-21 14:05 - 2014-01-11 22:37 - 00000940 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-21 14:02 - 2011-08-18 22:25 - 00000000 ____D () C:\Program Files\Xilisoft Download Youtube Toolbar
2014-05-21 14:02 - 2011-08-02 09:16 - 00000000 __RHD () C:\Documents and Settings\Admin1\Data aplikací
2014-05-21 13:40 - 2011-08-02 19:26 - 00001030 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1715567821-776561741-682003330-1003UA.job
2014-05-21 13:11 - 2014-05-21 02:31 - 00000000 ____D () C:\Documents and Settings\Admin1\Plocha\virus
2014-05-21 11:56 - 2011-08-02 12:32 - 00002565 _____ () C:\Documents and Settings\Admin1\Plocha\Microsoft Office Word 2007.lnk
2014-05-21 11:54 - 2014-05-21 11:54 - 03051000 _____ (El Desaparecido - SosVirus.net - UsbFix.net) C:\Documents and Settings\Admin1\Plocha\UsbFix (1).exe
2014-05-21 11:52 - 2014-05-21 11:52 - 01144875 _____ (El Desaparecido - SosVirus.net) C:\Documents and Settings\Admin1\Plocha\Nepotvrzeno 348168.crdownload
2014-05-21 11:19 - 2011-08-02 22:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2478971$
2014-05-21 10:35 - 2013-12-15 19:06 - 00000000 ____D () C:\Documents and Settings\Admin1\Plocha\OSTATNE
2014-05-21 10:05 - 2011-08-02 09:16 - 00000000 ___HD () C:\Documents and Settings\Admin1\Local Settings\Data aplikací
2014-05-21 09:40 - 2011-08-02 19:26 - 00000978 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1715567821-776561741-682003330-1003Core.job
2014-05-21 08:43 - 2014-05-21 08:43 - 00000000 ____D () C:\Documents and Settings\Admin1\Data aplikací\Malwarebytes
2014-05-21 08:42 - 2014-05-21 08:42 - 00000784 _____ () C:\Documents and Settings\All Users\Plocha\Malwarebytes Anti-Malware.lnk
2014-05-21 08:42 - 2014-05-21 08:42 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
2014-05-21 08:42 - 2014-05-21 08:42 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Malwarebytes' Anti-Malware
2014-05-21 08:42 - 2014-05-21 01:55 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2014-05-21 08:42 - 2011-08-02 11:00 - 00000000 ___RD () C:\Documents and Settings\All Users\Nabídka Start\Programy
2014-05-21 08:42 - 2011-08-02 11:00 - 00000000 ____D () C:\Documents and Settings\All Users\Plocha
2014-05-21 04:52 - 2011-08-02 18:59 - 00000000 ____D () C:\WINDOWS\system32\NtmsData
2014-05-21 02:55 - 2011-08-02 11:00 - 00876632 _____ () C:\WINDOWS\setupapi.log
2014-05-21 02:53 - 2011-08-02 09:08 - 00000000 ____D () C:\WINDOWS\Registration
2014-05-21 02:15 - 2014-05-21 01:55 - 00050648 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-05-21 02:10 - 2014-05-21 01:55 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-05-21 01:55 - 2011-08-02 11:00 - 00000000 __RHD () C:\Documents and Settings\All Users\Data aplikací
2014-05-21 01:54 - 2011-08-02 09:09 - 00000000 ____D () C:\WINDOWS\system32\Restore
2014-05-21 01:11 - 2011-08-02 15:05 - 00000069 _____ () C:\WINDOWS\NeroDigital.ini
2014-05-20 15:32 - 2014-02-16 10:11 - 00000000 ____D () C:\Documents and Settings\Admin1\Plocha\TEÓRIA
2014-05-18 22:02 - 2014-02-16 10:12 - 00000000 ____D () C:\Documents and Settings\Admin1\Plocha\OBCAN
2014-05-18 20:28 - 2011-08-02 11:29 - 00000000 ____D () C:\Documents and Settings\Admin1\Data aplikací\Skype
2014-05-16 17:35 - 2014-02-16 10:11 - 00000000 ____D () C:\Documents and Settings\Admin1\Plocha\MANAŽMENT KS v VS
2014-05-16 14:51 - 2011-08-03 22:34 - 00002347 _____ () C:\Documents and Settings\All Users\Nabídka Start\Programy\Adobe Reader X.lnk
2014-05-16 14:47 - 2011-08-02 19:31 - 00002266 _____ () C:\Documents and Settings\Admin1\Plocha\Google Chrome.lnk
2014-05-16 14:42 - 2014-05-16 14:42 - 00628874 _____ () C:\Documents and Settings\Admin1\Plocha\krizovymanazment.rar
2014-05-15 18:16 - 2013-02-17 10:10 - 00692400 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-05-15 18:16 - 2011-08-20 20:30 - 00070832 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-05-15 18:06 - 2013-07-29 21:41 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-05-15 18:06 - 2011-08-02 12:27 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2014-05-15 18:02 - 2011-08-02 20:20 - 90547776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-05-15 18:01 - 2014-05-15 18:01 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-05-15 13:05 - 2011-08-02 09:08 - 00075914 _____ () C:\WINDOWS\wmsetup.log
2014-05-15 09:45 - 2014-03-20 08:34 - 00000000 ____D () C:\Documents and Settings\Admin1\Plocha\TLAČ
2014-05-12 22:52 - 2014-05-12 22:51 - 00000000 ____D () C:\Documents and Settings\Admin1\Plocha\POISTENIE
2014-05-12 15:12 - 2011-10-22 13:19 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-05-12 15:01 - 2011-08-02 11:29 - 00002187 _____ () C:\Documents and Settings\All Users\Plocha\Safari.lnk
2014-05-12 14:11 - 2013-10-23 21:10 - 00000000 ____D () C:\Documents and Settings\Admin1\Plocha\MIESTA V SIETI
2014-05-10 21:38 - 2011-08-03 22:28 - 00000000 ____D () C:\Documents and Settings\Admin1\Local Settings\Data aplikací\Adobe
2014-05-08 16:56 - 2014-05-13 17:33 - 00055224 _____ (StdLib) C:\WINDOWS\system32\Drivers\{1a147621-8c9a-4d6b-a557-6513a40d3207}t.sys
2014-05-08 15:00 - 2014-03-16 13:09 - 00000218 _____ () C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
2014-05-05 18:25 - 2014-01-27 23:00 - 00000000 ____D () C:\Documents and Settings\Admin1\Plocha\Zástupca D-sys
2014-05-05 13:30 - 2014-04-26 20:31 - 00000000 ____D () C:\Documents and Settings\Admin1\Plocha\slávka-teória- skrátena verzia
2014-05-04 20:09 - 2014-05-04 20:09 - 00000000 ____D () C:\Documents and Settings\Admin1\Plocha\občan zameranie
2014-05-04 12:51 - 2014-03-10 19:21 - 00002273 _____ () C:\Documents and Settings\All Users\Plocha\Skype.lnk
2014-05-02 17:57 - 2014-05-02 17:56 - 00006578 _____ () C:\WINDOWS\KB2964358-IE7.log
2014-05-02 17:57 - 2011-08-02 19:42 - 00394364 _____ () C:\WINDOWS\updspapi.log
2014-05-02 17:57 - 2011-08-02 11:01 - 02081519 _____ () C:\WINDOWS\FaxSetup.log
2014-05-02 17:57 - 2011-08-02 11:01 - 01010087 _____ () C:\WINDOWS\ocgen.log
2014-05-02 17:57 - 2011-08-02 11:01 - 00956853 _____ () C:\WINDOWS\tsoc.log
2014-05-02 17:57 - 2011-08-02 11:01 - 00659272 _____ () C:\WINDOWS\msmqinst.log
2014-05-02 17:57 - 2011-08-02 11:01 - 00591787 _____ () C:\WINDOWS\comsetup.log
2014-05-02 17:57 - 2011-08-02 11:01 - 00365264 _____ () C:\WINDOWS\netfxocm.log
2014-05-02 17:57 - 2011-08-02 11:01 - 00357508 _____ () C:\WINDOWS\ntdtcsetup.log
2014-05-02 17:57 - 2011-08-02 11:01 - 00295011 _____ () C:\WINDOWS\iis6.log
2014-05-02 17:57 - 2011-08-02 11:01 - 00145417 _____ () C:\WINDOWS\MedCtrOC.log
2014-05-02 17:57 - 2011-08-02 11:01 - 00108897 _____ () C:\WINDOWS\ocmsn.log
2014-05-02 17:57 - 2011-08-02 11:01 - 00105282 _____ () C:\WINDOWS\tabletoc.log
2014-05-02 17:57 - 2011-08-02 11:01 - 00104489 _____ () C:\WINDOWS\msgsocm.log
2014-05-02 17:57 - 2011-08-02 11:01 - 00001355 _____ () C:\WINDOWS\imsins.log
2014-05-02 17:56 - 2011-08-02 23:05 - 00000000 ____D () C:\WINDOWS\ie7updates
2014-04-30 10:01 - 2010-04-16 18:08 - 03628032 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mshtml.dll
2014-04-30 10:01 - 2004-08-17 15:49 - 03628032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-04-27 22:07 - 2011-08-02 12:32 - 00065536 _____ () C:\WINDOWS\system32\config\ODiag.evt

Some content of TEMP:
====================
C:\Documents and Settings\Admin1\Local Settings\Temp\avgnt.exe
C:\Documents and Settings\Admin1\Local Settings\Temp\RtkBtMnt.exe


==================== Bamital & volsnap Check =================

C:\WINDOWS\explorer.exe
[2004-08-17 15:49] - [2008-04-14 05:22] - 1034240 ____A (Microsoft Corporation) 27afd587c462e280ee046b8cca3c2cd1

C:\WINDOWS\system32\winlogon.exe
[2004-08-17 15:49] - [2008-04-14 05:22] - 0507904 ____A (Microsoft Corporation) cddb1f8e1aea356f3ad106f2cf9b7fea

C:\WINDOWS\system32\svchost.exe
[2004-08-17 15:49] - [2008-04-14 05:22] - 0014336 ____A (Microsoft Corporation) be4a520e29b6391f49e79ccc52044d93

C:\WINDOWS\system32\services.exe
[2004-08-17 15:49] - [2009-02-09 13:25] - 0111104 ____A (Microsoft Corporation) 9ef697af07bb8dd82c3b02ca953a95b7

C:\WINDOWS\system32\User32.dll
[2004-08-17 15:49] - [2008-04-14 05:22] - 0578560 ____A (Microsoft Corporation) e16e0990967374e76f3e40cacafd3d53

C:\WINDOWS\system32\userinit.exe
[2004-08-17 15:49] - [2008-04-14 05:22] - 0026112 ____A (Microsoft Corporation) 7dc1830f22e7d275b438127b68030239

C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\volsnap.sys
[2004-08-17 15:44] - [2008-04-14 04:12] - 0052480 ____A (Microsoft Corporation) 28a4b296b47782173c346e376cb374d1


==================== End Of Log ============================

Cece ty si taky ukecany,ze uz rohy mi rastu z teba.
Dohodneme sa takto, ja sa budem pytat, a davat instrukcie, a ty mlcky budes robit to co pisem, ozves sa az vtedy ak nieco ta spytam.
Na USB budu funkcne, pokial nesformatujes disk, to iste na OS.

jasne tak ked budem preinštalovať windows a budem mať chcieť ochranu tak potom pomocou toho USBfix si to viem spraviť.

jasne môžeš kľudne dávať otázky

kym napisem script na mazanie odinstaluj tento blud
C:\Program Files\Spybot - Search & Destroy

Odinstalu program
C:\Program Files\TuneUp Utilities 2010
Toto treba pocitacu ako hadovi nohy.

Klik start>.spustit>>napis notepad
klik>>Ok
skopiruj kod do poznamkoveho bloku,bez slova kod Uloz to na plochu, ako>>vsetky subory>> nazov Fixlist.txt
Teraz spust program FRST.exe>>ale POZOR, Teraz kliknes na Tlacidlo FIX
O chvilku sa ti ulozi na plochu Fixlog.txt>.jeho obsah sem vloz.

ešte pri uložení odomna pýta že aké mam dať kodovanie ? : ansi, unicode .... , ktoré ?

predvolené je ANSI

ANSI

spravil som to

uložil som a kodovanie ANSI ešte tam som mal upozornenie že niektoré znaky sú v Unicode že to nemusí uložiť


ale vytvorilo txt.

potom som otvoril ten program dal FIX trochu to porobiló

a potom sa to samo reštartovalo

taže až o chvilu vložím log

teraz ako mi to reštartovalo

tak naskočila iba prázdna obrazovka a pýta sa

či ma spustiť program FRST.exe

dať ho spustiť ?

ano suhlasit.

takže súhlasil som

potom nasledovalo v tom zmysle "fixovanie bolo ukončené otvorilo txt. súbor" a obsah vkladám tu :

totiž nie lebo má veľa znakov a nechce to tu vložiť čiže zabalim to do rar

No kde je ten Fixlog.txt??

Uz vidim, zasil si to do predchadzajuceho prispevku.
No dobre odskusaj pocitac, ci uz vidis svoje subory na USB-cke, a napis.atd,atd.

teraz sú tam

resp. ako som na samom začiatku napísal tak som všetko z kľuča vymazal v domienke že vymažem aj tu mrchu /malwarre/ ale mám to na ploche toto čo bolo na kluci čiže zase si to na kluč nakopirujem

idem to skúsiť na druhy PC či dačo nespraví