Personal Security nejde odinstalovat..

[MichaelaTauri.Nevada]

prosim pomoc.. vcera som si sadla za pc a dozvedela som sa ze sa mi nieco stiahlo bez mojho vedomia.. chcela som to vymazat ale uz to bolo spustene a nedalo sa to zavriet ani odinstalovat... po asi 10 marnich pokusoch som si povedala.. no co potom to mozno pojde.. chcela som si zahrat GTA ale neslo to.. nic mi neslo spustit.. potom som to skusala podla jedneho navodu lenze tam boli programy ktore mi tiez nesli spustit ako vsetko ostatne.. a este k tomu mi potom aj vsetko zmizlo s plochy.. prosim pomoc!


za pravopisne chyby sa ospravedlnujem ale som v strese a na gramatyku sa nesustredim..

[motji]

Hezké dopoledne
Do nouzového režimu se dostanete? (po erstartu mačkejte F8 - nouzový režim s prací v síti)
Pokud ano, stahněte Rsit, viz můj podpis, a udělejte sken. Pak sem vložte log.

[MichaelaTauri.Nevada]

no ja by som rada ale... nudzovy rezim mi zapnut nejde ani rsit a opera tiez..
kedy mam mackat F8 uz ked sa spustaPC alebo az ked sa prihlasim?

[motji]

Když zapneš pc, hned mačkej a mačkej, jen tak vystihneš tu správnou chvíli

[MichaelaTauri.Nevada]

teraz mi tam dalo ze safe mode pod tym dalsie safe nieco atd.. co mam dat?

[motji]

safe mod s podporu sítě - at můžeš stahnout rsit

[MichaelaTauri.Nevada]

RSIT uz mam , aj tak mam dat to?

[motji]

Můžeš

[MichaelaTauri.Nevada]

dala som a vytvoril sa mi niaky novi uzivatel ze administrator ale je zaheslovani.. mam dat svoje konto alebo niako zistit to heslo?

[motji]

Dej svoje, ten administrátor tam bývá normálně.

[MichaelaTauri.Nevada]

mam... spustila som RSIT oskenovala alebo co to robi.. mam sa asi odhlasit a prihlasit na tem pocitac kde mam tu chybu ze?

[motji]

Bude to lepší, můžeš tak dát log ze Rsitu přímo. Já tu budu ještě chvilku, snad Ti stihnu napsat mazací skript

[MichaelaTauri.Nevada]

nejde mi tam internet tak som si to preniesla na USB.. takze tu je to

Logfile of random's system information tool 1.06 (written by random/random)
Run by User1 at 2010-04-27 09:06:54
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 152 GB (64%) free of 238 GB
Total RAM: 2047 MB (85% free)

HijackThis download failed

======Scheduled tasks folder======

C:\WINDOWS\tasks\Norton Security Scan for User1.job
C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{03fee850-0101-4e9e-b6d4-6fc74d3db360}]
RealoreStudios Toolbar - C:\Program Files\RealoreStudios\tbRea1.dll [2010-04-16 2349080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{35A5B43B-CB8A-49CA-A9F4-D3B308D2E3CC}]
&Security Update - C:\WINDOWS\system32\win32extension.dll [2010-04-24 360448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{57cc715d-37ca-44e4-9ec2-8c2cbddb25ec}]
Free Lunch Design Toolbar - C:\Program Files\Free_Lunch_Design\tbFre1.dll [2010-03-07 2349080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5B291E6C-9A74-4034-971B-A4B007A0B315}]
RadioBar Toolbar - C:\Program Files\RadioBar\toolbar.ni.dll [2010-01-11 451808]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2010-02-04 1197448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-03-01 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-03-01 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - Free Lunch Design Toolbar - C:\Program Files\Free_Lunch_Design\tbFre1.dll [2010-03-07 2349080]
{855F3B16-6D32-4fe6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2009-06-01 962808]
{03fee850-0101-4e9e-b6d4-6fc74d3db360} - RealoreStudios Toolbar - C:\Program Files\RealoreStudios\tbRea1.dll [2010-04-16 2349080]
{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2010-02-04 1197448]
{5B291E6C-9A74-4034-971B-A4B007A0B315} - RadioBar Toolbar - C:\Program Files\RadioBar\toolbar.ni.dll [2010-01-11 451808]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2010-03-25 968000]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2006-10-05 98304]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2006-10-05 114688]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2006-10-05 94208]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-04-10 16861184]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-10-03 35696]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-09-04 935288]
"nwiz"=nwiz.exe /installquiet []
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-11-20 12669544]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-11-20 110184]
"RemoteControl"=C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2003-10-31 32768]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"AdobeCS4ServiceManager"=C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2010-04-14 2790472]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-02-18 248040]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"EA Core"=C:\Program Files\Electronic Arts\EADM\Core.exe [2009-03-28 3325952]
"Pando Media Booster"=C:\Program Files\Pando Networks\Media Booster\PMB.exe [2010-02-25 2937528]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2009-10-30 369200]
"PersonSecurity"=C:\Program Files\PersonSecurity\psecurity.exe [2010-04-24 1432064]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup
AirLive WN-360USB Utility.lnk - C:\Program Files\Ovislink\Common\RaUI.exe

C:\Documents and Settings\User1\Start Menu\Programs\Startup
OpenOffice.org 3.1.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2006-10-05 155648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 239496]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\Electronic Arts\EADM\Core.exe"="C:\Program Files\Electronic Arts\EADM\Core.exe:*:Enabled:EA Download Manager"
"C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe"="C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe:*:Enabled:Adobe CSI CS4"
"C:\Program Files\Pando Networks\Media Booster\PMB.exe"="C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"
"C:\Program Files\Outspark\Project Powder\Run.exe"="C:\Program Files\Outspark\Project Powder\Run.exe:*:Enabled:ProjectPowder"
"C:\Program Files\Tremulous\tremulous.exe"="C:\Program Files\Tremulous\tremulous.exe:*:Enabled:tremulous"
"C:\Program Files\ICQ6\ICQ.exe"="C:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6"
"C:\Program Files\ICQ6.5\ICQ.exe"="C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"C:\UT2004\System\UT2004.exe"="C:\UT2004\System\UT2004.exe:*:Enabled:UT2004"
"C:\Program Files\BitTorrent\bittorrent.exe"="C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\E]
shell\AutoRun\command - E:\LaunchU3.exe -a


======List of files/folders created in the last 3 months======

2010-04-27 09:06:54 ----D---- C:\rsit
2010-04-27 09:06:54 ----D---- C:\Program Files\trend micro
2010-04-27 09:01:25 ----D---- C:\WINDOWS\CSC
2010-04-27 09:01:20 ----A---- C:\WINDOWS\ntbtlog.txt
2010-04-27 07:54:14 ----D---- C:\32788R22FWJFW
2010-04-25 16:50:55 ----D---- C:\alaplaya
2010-04-25 11:00:39 ----D---- C:\Documents and Settings\All Users\Application Data\Trymedia
2010-04-25 10:59:59 ----D---- C:\Program Files\Create City
2010-04-24 07:54:07 ----D---- C:\Program Files\Common Files\PersonSecurityUninstall
2010-04-24 07:53:53 ----A---- C:\WINDOWS\system32\win32extension.dll
2010-04-24 07:53:18 ----D---- C:\Program Files\PersonSecurity
2010-04-23 19:36:09 ----D---- C:\Program Files\Family Creator
2010-04-23 18:09:05 ----A---- C:\WINDOWS\system32\CmdLineExt03.dll
2010-04-23 06:47:38 ----D---- C:\Program Files\WolfQuest
2010-04-20 19:29:15 ----D---- C:\Program Files\Audition Online
2010-04-20 18:58:17 ----D---- C:\Program Files\Common Files\Akamai
2010-04-18 10:21:13 ----D---- C:\Program Files\DAEMON Tools Toolbar
2010-04-18 10:20:53 ----D---- C:\Program Files\DAEMON Tools Lite
2010-04-18 10:20:44 ----D---- C:\Documents and Settings\User1\Application Data\DAEMON Tools Lite
2010-04-18 10:20:41 ----D---- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
2010-04-17 11:30:08 ----D---- C:\Program Files\SSX3
2010-04-17 11:27:19 ----D---- C:\Documents and Settings\User1\Application Data\RadioBar
2010-04-17 11:27:18 ----D---- C:\Program Files\RadioBar
2010-04-17 11:26:10 ----D---- C:\Documents and Settings\User1\Application Data\BitTorrent
2010-04-17 11:24:26 ----D---- C:\Program Files\Ask.com
2010-04-17 11:24:14 ----D---- C:\Program Files\BitTorrent
2010-04-15 07:21:14 ----A---- C:\WINDOWS\system32\wmpns.dll
2010-04-15 07:21:10 ----HDC---- C:\WINDOWS\$NtUninstallKB979402_WM9$
2010-04-12 20:19:35 ----D---- C:\UT2004
2010-04-11 13:36:49 ----D---- C:\Documents and Settings\User1\Application Data\Janes Realty2
2010-04-11 13:36:36 ----D---- C:\Program Files\RealoreStudios
2010-04-11 13:36:07 ----D---- C:\Program Files\Realore
2010-04-05 11:07:56 ----N---- C:\WINDOWS\system32\browserchoice.exe
2010-04-04 12:33:43 ----D---- C:\Program Files\ICQ6.5
2010-04-04 12:24:53 ----D---- C:\Program Files\ICQ6Toolbar
2010-04-04 12:24:53 ----D---- C:\Documents and Settings\All Users\Application Data\ICQ
2010-04-04 12:24:50 ----D---- C:\Documents and Settings\User1\Application Data\Mozilla
2010-04-04 12:24:16 ----D---- C:\Documents and Settings\User1\Application Data\ICQ
2010-04-04 12:23:46 ----D---- C:\Program Files\ICQ6
2010-04-02 09:26:41 ----HDC---- C:\WINDOWS\$NtUninstallKB978262$
2010-04-02 09:24:54 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$
2010-04-02 09:24:46 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2010-04-02 09:24:42 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2010-04-02 09:24:36 ----HDC---- C:\WINDOWS\$NtUninstallKB977165-v2$
2010-04-02 09:24:22 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2010-04-02 09:24:16 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2010-04-02 09:24:12 ----HDC---- C:\WINDOWS\$NtUninstallKB975561$
2010-04-02 09:23:58 ----HDC---- C:\WINDOWS\$NtUninstallKB978251$
2010-04-02 09:23:54 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2010-04-02 09:23:47 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2010-04-02 09:23:27 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2010-04-02 09:23:14 ----HDC---- C:\WINDOWS\$NtUninstallKB979306$
2010-04-02 08:21:58 ----D---- C:\WINDOWS\Sun
2010-03-26 08:49:16 ----D---- C:\Documents and Settings\All Users\Application Data\Dragon's Eye Productions
2010-03-14 12:45:54 ----D---- C:\Program Files\Tremulous
2010-03-14 12:27:22 ----D---- C:\Program Files\Tramulous
2010-03-10 08:03:24 ----D---- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2010-03-07 11:51:59 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2010-03-06 21:14:50 ----D---- C:\WINDOWS\system32\XPSViewer
2010-03-06 21:14:47 ----D---- C:\Program Files\MSBuild
2010-03-06 21:14:43 ----D---- C:\Program Files\Reference Assemblies
2010-03-06 21:14:27 ----N---- C:\WINDOWS\system32\prntvpt.dll
2010-03-06 21:14:26 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2010-03-06 21:14:26 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2010-03-06 21:14:26 ----D---- C:\26ae3f9be5b0f963e7b45b7965900e
2010-03-05 20:53:47 ----D---- C:\Program Files\Rockstar Games
2010-03-05 19:04:42 ----D---- C:\Documents and Settings\All Users\Application Data\Electronic Arts
2010-03-05 19:03:59 ----D---- C:\Program Files\Microsoft WSE
2010-03-05 19:03:45 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2010-03-05 19:03:43 ----D---- C:\WINDOWS\Logs
2010-03-01 20:07:48 ----D---- C:\Program Files\Common Files\Java
2010-03-01 20:07:28 ----A---- C:\WINDOWS\system32\javaws.exe
2010-03-01 20:07:28 ----A---- C:\WINDOWS\system32\javaw.exe
2010-03-01 20:07:28 ----A---- C:\WINDOWS\system32\java.exe
2010-03-01 20:06:52 ----D---- C:\Program Files\Java
2010-03-01 19:53:03 ----D---- C:\Documents and Settings\All Users\Application Data\Sun
2010-03-01 19:52:16 ----A---- C:\WINDOWS\system32\deploytk.dll
2010-03-01 19:49:28 ----D---- C:\Documents and Settings\User1\Application Data\Sun
2010-02-28 17:05:42 ----D---- C:\Program Files\Common Files\Symantec Shared
2010-02-27 09:29:39 ----D---- C:\Program Files\Norton Security Scan
2010-02-27 09:29:39 ----D---- C:\Documents and Settings\All Users\Application Data\Symantec
2010-02-27 09:29:39 ----D---- C:\Documents and Settings\All Users\Application Data\Norton
2010-02-27 09:29:37 ----D---- C:\Program Files\NortonInstaller
2010-02-27 09:29:37 ----D---- C:\Documents and Settings\All Users\Application Data\NortonInstaller
2010-02-27 09:27:21 ----D---- C:\WINDOWS\system32\Adobe
2010-02-26 18:21:12 ----D---- C:\Program Files\Common Files\DirectX
2010-02-25 14:17:33 ----A---- C:\WINDOWS\system32\unicows.dll
2010-02-25 07:55:06 ----D---- C:\Documents and Settings\All Users\Application Data\PMB Files
2010-02-25 07:53:00 ----D---- C:\Program Files\Pando Networks
2010-02-24 21:07:57 ----D---- C:\Documents and Settings\User1\Application Data\GetRightToGo
2010-02-24 20:10:24 ----D---- C:\Documents and Settings\User1\Application Data\SPORE
2010-02-24 20:05:11 ----A---- C:\WINDOWS\system32\aswBoot.exe
2010-02-24 20:05:08 ----D---- C:\Program Files\Alwil Software
2010-02-24 20:05:08 ----D---- C:\Documents and Settings\All Users\Application Data\Alwil Software
2010-02-24 19:46:42 ----A---- C:\WINDOWS\system32\W32N55.INI
2010-02-24 19:46:42 ----A---- C:\WINDOWS\system32\W32N55.dll
2010-02-24 19:46:42 ----A---- C:\WINDOWS\system32\ssleay32.dll
2010-02-24 19:46:42 ----A---- C:\WINDOWS\system32\Scutum.dll
2010-02-24 19:46:42 ----A---- C:\WINDOWS\system32\libeay32.dll
2010-02-24 19:46:42 ----A---- C:\WINDOWS\system32\DiagFunc.ini
2010-02-24 19:46:42 ----A---- C:\WINDOWS\system32\DiagFunc.dll
2010-02-24 19:46:16 ----A---- C:\WINDOWS\system32\RaCoInst.dll
2010-02-24 19:46:14 ----D---- C:\Program Files\Ovislink
2010-02-24 19:46:14 ----D---- C:\Documents and Settings\All Users\Application Data\AirLive Driver
2010-02-20 12:03:24 ----D---- C:\Program Files\Microsoft Games

======List of files/folders modified in the last 3 months======

2010-04-27 09:06:54 ----RD---- C:\Program Files
2010-04-27 09:01:25 ----D---- C:\WINDOWS
2010-04-27 08:38:55 ----D---- C:\WINDOWS\Prefetch
2010-04-27 08:36:49 ----D---- C:\WINDOWS\Temp
2010-04-27 08:34:57 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-04-25 20:18:28 ----D---- C:\WINDOWS\system32\CatRoot2
2010-04-25 16:59:55 ----D---- C:\WINDOWS\system32\drivers
2010-04-25 16:59:28 ----D---- C:\WINDOWS\system32
2010-04-24 07:54:07 ----D---- C:\Program Files\Common Files
2010-04-23 19:57:34 ----A---- C:\WINDOWS\system32\CmdLineExt.dll
2010-04-23 19:53:11 ----D---- C:\Program Files\EA GAMES
2010-04-23 15:02:23 ----SD---- C:\Documents and Settings\User1\Application Data\Microsoft
2010-04-23 06:47:51 ----SHD---- C:\WINDOWS\Installer
2010-04-20 18:59:22 ----D---- C:\WINDOWS\WinSxS
2010-04-19 19:15:11 ----D---- C:\Program Files\Electronic Arts
2010-04-19 19:15:02 ----HD---- C:\Program Files\InstallShield Installation Information
2010-04-18 10:22:41 ----HD---- C:\WINDOWS\inf
2010-04-17 11:24:29 ----SD---- C:\WINDOWS\Tasks
2010-04-15 07:21:12 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-04-06 19:52:54 ----A---- C:\WINDOWS\system32\MRT.exe
2010-04-05 11:14:46 ----A---- C:\WINDOWS\IFinst27.exe
2010-04-04 13:10:41 ----D---- C:\Program Files\Gravity
2010-04-03 10:02:46 ----D---- C:\WINDOWS\Microsoft.NET
2010-04-03 10:02:40 ----RSD---- C:\WINDOWS\assembly
2010-04-02 09:26:43 ----A---- C:\WINDOWS\imsins.BAK
2010-04-02 09:26:40 ----HD---- C:\WINDOWS\$hf_mig$
2010-04-02 09:26:29 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-04-02 09:24:50 ----D---- C:\WINDOWS\ie8updates
2010-04-02 09:24:32 ----D---- C:\WINDOWS\system32\CatRoot
2010-04-02 09:24:14 ----D---- C:\Program Files\Movie Maker
2010-04-02 09:23:40 ----D---- C:\Program Files\Internet Explorer
2010-03-27 09:11:11 ----RSD---- C:\WINDOWS\Fonts
2010-03-26 15:16:20 ----A---- C:\WINDOWS\NeroDigital.ini
2010-03-26 15:15:59 ----D---- C:\Documents and Settings\User1\Application Data\U3
2010-03-26 08:24:48 ----D---- C:\Program Files\Opera
2010-03-19 18:05:50 ----A---- C:\WINDOWS\system32\wmp.dll
2010-03-07 09:28:27 ----D---- C:\Program Files\Free_Lunch_Design
2010-03-06 21:14:46 ----D---- C:\WINDOWS\system32\en-US
2010-03-06 21:14:33 ----D---- C:\WINDOWS\system32\spool
2010-03-06 21:13:12 ----D---- C:\WINDOWS\system32\mui
2010-03-05 19:03:46 ----D---- C:\WINDOWS\system32\DirectX
2010-02-27 22:28:13 ----D---- C:\Documents and Settings\User1\Application Data\Macromedia
2010-02-27 22:28:11 ----D---- C:\WINDOWS\system32\Macromed
2010-02-27 09:31:46 ----D---- C:\Documents and Settings\User1\Application Data\Adobe
2010-02-27 09:25:53 ----D---- C:\Documents and Settings\All Users\Application Data\FLEXnet
2010-02-25 11:54:36 ----A---- C:\WINDOWS\system32\ieframe.dll
2010-02-25 08:24:37 ----N---- C:\WINDOWS\system32\occache.dll
2010-02-25 08:24:37 ----A---- C:\WINDOWS\system32\wininet.dll
2010-02-25 08:24:37 ----A---- C:\WINDOWS\system32\urlmon.dll
2010-02-25 08:24:37 ----A---- C:\WINDOWS\system32\mstime.dll
2010-02-25 08:24:36 ----A---- C:\WINDOWS\system32\mshtml.dll
2010-02-25 08:24:35 ----N---- C:\WINDOWS\system32\jsproxy.dll
2010-02-25 08:24:35 ----N---- C:\WINDOWS\system32\iepeers.dll
2010-02-25 08:24:35 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2010-02-25 08:24:35 ----A---- C:\WINDOWS\system32\msfeeds.dll
2010-02-25 08:24:35 ----A---- C:\WINDOWS\system32\iertutil.dll
2010-02-25 08:24:34 ----N---- C:\WINDOWS\system32\iedkcs32.dll
2010-02-25 07:35:08 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2010-02-24 20:05:15 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-02-24 19:46:43 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2010-02-24 19:46:16 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-02-24 11:54:25 ----N---- C:\WINDOWS\system32\ie4uinit.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-17 12160]
R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 rt2870;Ralink 802.11n USB Wireless LAN Card Driver; C:\WINDOWS\system32\DRIVERS\rt2870.sys [2009-08-03 724736]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2008-01-03 105856]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-14 30208]
R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbstor;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2010-04-14 28880]
S1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2010-04-14 162768]
S1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2010-04-14 46672]
S1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 36352]
S2 adfs;adfs; C:\WINDOWS\system32\drivers\adfs.sys [2008-08-14 74720]
S2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2010-04-14 19024]
S2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2010-04-14 100432]
S2 irda;IrDA Protocol; C:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-14 88192]
S2 Scutum50;Scutum50 NDIS Protocol Driver; C:\WINDOWS\System32\Drivers\Scutum50.sys [2009-04-21 19072]
S3 a2bk8bih;a2bk8bih; C:\WINDOWS\system32\drivers\a2bk8bih.sys []
S3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2010-04-14 23376]
S3 EagleNT;EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys []
S3 FXDrv32;FXDrv32; \??\D:\FXDrv32.sys []
S3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2006-10-05 1181824]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-04-17 4707328]
S3 irsir;Microsoft Serial Infrared Driver; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]
S3 npkcrypt;npkcrypt; \??\C:\Program Files\Gravity\SRO\12969 Stable SQL - createragnarokonlineprivateserver.blogspot.com\npkcrypt.sys []
S3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-11-21 10235968]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda32.sys [2009-11-12 57320]
S3 XDva281;XDva281; \??\C:\WINDOWS\system32\XDva281.sys []
S3 XDva337;XDva337; \??\C:\WINDOWS\system32\XDva337.sys []
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

S2 Akamai;Akamai NetSession Interface; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-04-14 40384]
S2 ICQ Service;ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2009-06-01 222968]
S2 Irmon;Infrared Monitor; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-03-01 153376]
S2 MySQL;MySQL; C:\Program Files\MySQL\MySQL Server 5.0\bin\mysqld-nt --defaults-file=C:\Program Files\MySQL\MySQL Server 5.0\my.ini MySQL []
S2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-11-20 154216]
S2 RalinkRegistryWriter;Ralink Registry Writer; C:\Program Files\Ovislink\Common\RaRegistry.exe [2009-07-14 185632]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-04-14 40384]
S3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-04-14 40384]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-12-21 655624]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

[motji]

Já už ted jdu od pc a budu tu až večer, ale po skriptu na OTM by Ti měl normální režim fungovat


Odinstaluj toolbary, které nepoužíváš

:arrow:Stáhněte OTM http://oldtimer.geekstogo.com/OTM.exe
Stáhněte na plochu Otm, 2krát klikněte na Otm,spustí se program,
Do levého okna "Paste Instructions for Items to be Moved" pod žlutou čáru zkopírujete skript

Kód: Vybrat vše

:processes
explorer.exe
 
:files
C:\WINDOWS\system32\*.tmp.dll /s
C:\WINDOWS\system32\SET*.tmp /s
C:\WINDOWS\*.tmp /s
C:\Program Files\PersonSecurity
C:\Program Files\Ask.com
C:\Program Files\DAEMON Tools Toolbar
C:\32788R22FWJFW
C:\WINDOWS\system32\XDva281.sys 
C:\WINDOWS\system32\XDva337.sys 
:reg
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"PersonSecurity"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"=-
"{32099AAC-C132-4136-9E9A-4E364A424E17}"=-

:Services
XDva281
XDva337
Akamai

:commands
[resethosts]
[emptytemp]
[EMPTYFLASH]
[Reboot]

-klikněte na červené tlačítko Moveit!
-sem vložte obsah zeleného okénka
-Pokud se bude chtít restartovat pc, dejte YES,log pak najdete C:\_OTM\MovedFiles. Log vložte sem


tuto složku znáš?
C:\alaplaya

Ty jsi zkoušela spouštět combofix?


Z mého podpisu stahněte Ccleaner
- nainstalujte, při výběru, co se má nainstalovat, dejte pryč fajfku u instalace yahoo toolbaru

záložka čistič
-nechejte v levém sloupečku zatrhnuté vše jak je, klikněte na analyzovat
-po analýze klikněte na Spustit Ccleaner

záložka Registry
- klikněte na hledej problémy
- pak klikněte na opravit vybrané problémy -- udělat zálohu registrů - nemusíte
- kliknete opravit všechny problémy ok zavřít

Záložka Nástroje
- zde můžete odinstalovat programy. Je to důkladnější odinstalace než u přidat/odebrat programy ve Windows.

Ccleaner - čistič doporučuji používat, krásně pročistí pc od dočasných souborů.
Registry pročistí třeba po odinstalaci nějakého programu.




Stahněte MBAM z mého podpisu
-Nainstalujte,dejte úplný sken

NIC NEMAZAT
-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.

[MichaelaTauri.Nevada]

alaplaya poznám ale ci som hento spustal neviem