VIRY.CZ

Zdravím

Nejdřív bych chtěl moc poděkovat Rudymu že mi včera pomohl, aby se mi PC tolik nesekal.

Teď bych potřeboval trochu vyčistit PC.

Tady je log. Díky všem

Logfile of random's system information tool 1.09 (written by random/random)
Run by X at 2011-12-04 11:46:43
Microsoft Windows 7 Professional
System drive C: has 53 GB (35%) free of 153 GB
Total RAM: 2048 MB (64% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:46:58, on 4.12.2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Seznam.cz\postak.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesApp32.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil11e_ActiveX.exe
C:\Users\X\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\X\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\rundll32.exe
C:\Users\X\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\taskeng.exe
C:\Users\X\Downloads\RSIT.exe
C:\Program Files\trend micro\X.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = ${URL_SEARCHPAGE}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId= ... weetim.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:25432;
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Seznam Postak] "c:\program files\seznam.cz\postak.exe" -s
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O18 - Protocol: toolbarchrome - (no CLSID) - (no file)
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Intel Corporation - (no file)
O23 - Service: NLS Service (nlsX86cc) - Nalpeiron Ltd. - C:\Windows\system32\NLSSRV32.EXE
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: O&O Defrag Agent (OODefragAgent) - O&O Software GmbH - C:\Program Files\OO Software\Defrag\oodag.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe

--
End of file - 3720 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3887554259-2600576739-1838076180-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3887554259-2600576739-1838076180-1000UA.job
C:\Windows\tasks\User_Feed_Synchronization-{8031D200-5313-4B68-B37E-5EAD0C56A15A}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-09-05 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2011-10-28 57224]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2011-11-28 3744552]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1173504]
"Seznam Postak"=c:\program files\seznam.cz\postak.exe [2011-05-25 491040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 5]
C:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe [2011-11-12 1647448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=2
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=157
"NoInstrumentation"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dvd shrink 3.2.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\googleearth.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nero.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nerostartsmart.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nerovision.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\setupx.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\unins000.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"VIDC.MKVC"=KMVIDC32.DLL
"VIDC.FFDS"=ff_vfw.dll
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
"vidc.tscc"=tsccvid.dll
"msacm.l3codec"=l3codecp.acm
"vidc.MPG4"=MPG4C32.dll
"vidc.MP42"=MPG4C32.dll
"vidc.MP43"=MPG4C32.dll
"VIDC.FPS1"=frapsvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - NOTEPAD.EXE %1
.reg - open -
.scr - open -
.vbs - open - NOTEPAD.EXE %1

======List of files/folders created in the last 1 month======

2011-12-04 11:46:43 ----D---- C:\rsit
2011-12-03 20:41:03 ----D---- C:\Program Files\trend micro
2011-12-02 21:50:14 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2011-12-02 21:50:13 ----A---- C:\Windows\system32\drivers\aswSP.sys
2011-12-02 21:50:11 ----A---- C:\Windows\system32\drivers\aswRdr.sys
2011-12-02 21:50:10 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2011-12-02 21:50:10 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2011-12-02 21:50:09 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2011-12-02 21:49:57 ----A---- C:\Windows\system32\aswBoot.exe
2011-12-02 21:49:57 ----A---- C:\Windows\avastSS.scr
2011-11-28 20:44:13 ----D---- C:\Program Files\Common Files\PC Tools
2011-11-28 20:44:11 ----D---- C:\Program Files\PC Tools
2011-11-28 20:43:06 ----D---- C:\ProgramData\PC Tools
2011-11-28 20:43:05 ----D---- C:\Users\X\AppData\Roaming\Product_RM
2011-11-28 19:51:17 ----D---- C:\Users\X\AppData\Roaming\TweakNow RegCleaner 2011
2011-11-28 19:33:55 ----D---- C:\Program Files\Eusing Free Registry Cleaner
2011-11-28 19:01:52 ----D---- C:\Users\X\AppData\Roaming\Pmcc
2011-11-28 18:51:01 ----D---- C:\Users\X\AppData\Roaming\FTWeak
2011-11-28 18:18:13 ----D---- C:\Users\X\AppData\Roaming\Skype
2011-11-28 18:17:49 ----D---- C:\ProgramData\Skype
2011-11-25 21:12:51 ----D---- C:\Users\X\AppData\Roaming\Raxco
2011-11-25 21:12:48 ----A---- C:\Windows\system32\roboot.exe
2011-11-25 17:19:57 ----A---- C:\Windows\system32\authuitu.dll
2011-11-22 18:51:20 ----D---- C:\Users\X\AppData\Roaming\Ashampoo
2011-11-22 18:50:55 ----D---- C:\ProgramData\ashampoo
2011-11-18 21:29:16 ----D---- C:\Program Files\Microsoft Works
2011-11-17 21:46:07 ----A---- C:\Windows\system32\RegistryDefragBootTime.exe
2011-11-17 18:18:18 ----A---- C:\Windows\system32\ooscrsav.scr
2011-11-17 18:17:12 ----A---- C:\Windows\system32\oodbs.exe
2011-11-17 18:15:58 ----A---- C:\Windows\system32\oodssrs.dll
2011-11-17 18:15:38 ----A---- C:\Windows\system32\oodbsrs.dll
2011-11-17 18:13:10 ----D---- C:\ProgramData\edu-learning
2011-11-17 18:13:10 ----D---- C:\Program Files\Edu-learning 2.0 2007 CZ
2011-11-17 13:20:54 ----D---- C:\Program Files\Defraggler
2011-11-17 11:40:26 ----D---- C:\ProgramData\MediaMonkey
2011-11-17 11:40:23 ----D---- C:\Users\X\AppData\Roaming\MediaMonkey
2011-11-17 11:40:19 ----D---- C:\Program Files\MediaMonkey
2011-11-15 20:22:27 ----D---- C:\Users\X\AppData\Roaming\PhotoScape
2011-11-15 20:18:55 ----D---- C:\ProgramData\Google
2011-11-15 18:20:48 ----D---- C:\Program Files\Common Files\DESIGNER
2011-11-15 18:20:34 ----D---- C:\Windows\PCHEALTH
2011-11-15 18:20:34 ----D---- C:\Program Files\Microsoft.NET
2011-11-15 18:18:24 ----RHD---- C:\MSOCache
2011-11-14 19:54:26 ----D---- C:\ProgramData\Virtualized Applications
2011-11-14 19:46:18 ----D---- C:\Program Files\Microsoft Silverlight
2011-11-14 19:02:43 ----D---- C:\Users\X\AppData\Roaming\SoftGrid Client
2011-11-14 16:10:13 ----D---- C:\Users\X\AppData\Roaming\TP
2011-11-13 19:50:49 ----A---- C:\Windows\systems.dat
2011-11-13 11:13:20 ----A---- C:\Windows\WTRDCTM.INI
2011-11-13 10:54:55 ----D---- C:\ProgramData\LangSoft
2011-11-13 10:54:06 ----D---- C:\Users\X\AppData\Roaming\LangSoft

======List of files/folders modified in the last 1 month======

2011-12-04 11:46:48 ----D---- C:\Windows\Temp
2011-12-04 11:32:28 ----AD---- C:\Windows
2011-12-03 21:47:31 ----D---- C:\Windows\Prefetch
2011-12-03 21:20:29 ----D---- C:\Windows\SoftwareDistribution
2011-12-03 21:02:23 ----SHD---- C:\Windows\Installer
2011-12-03 21:02:23 ----HD---- C:\Config.Msi
2011-12-03 21:02:22 ----SD---- C:\Users\X\AppData\Roaming\Microsoft
2011-12-03 21:01:57 ----SHD---- C:\System Volume Information
2011-12-03 21:00:05 ----RD---- C:\Program Files
2011-12-03 18:27:36 ----D---- C:\Windows\Tasks
2011-12-02 23:44:36 ----D---- C:\Windows\System32
2011-12-02 21:50:14 ----D---- C:\Windows\system32\drivers
2011-12-02 21:49:50 ----D---- C:\ProgramData\AVAST Software
2011-11-30 21:35:57 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-11-29 16:46:50 ----D---- C:\Windows\system32\catroot2
2011-11-29 08:44:33 ----D---- C:\Windows\Microsoft.NET
2011-11-28 22:19:20 ----D---- C:\Windows\system32\config
2011-11-28 21:29:13 ----D---- C:\Program Files\CCleaner
2011-11-28 20:52:49 ----AD---- C:\ProgramData\Temp
2011-11-28 20:52:46 ----D---- C:\Windows\system32\Tasks
2011-11-28 20:51:51 ----D---- C:\Users\X\AppData\Roaming\Registry Mechanic
2011-11-28 20:44:13 ----D---- C:\Program Files\Common Files
2011-11-28 20:43:06 ----HD---- C:\ProgramData
2011-11-28 19:25:55 ----RSD---- C:\Windows\assembly
2011-11-25 17:19:39 ----D---- C:\Program Files\TuneUp Utilities 2012
2011-11-24 18:14:48 ----D---- C:\Program Files\iWisoft Free Video Converter
2011-11-22 18:29:28 ----A---- C:\Windows\win.ini
2011-11-22 18:13:15 ----D---- C:\Program Files\Mozilla Firefox
2011-11-22 18:13:11 ----D---- C:\Users\X\AppData\Roaming\Mozilla
2011-11-20 20:18:58 ----D---- C:\Windows\inf
2011-11-18 21:29:37 ----D---- C:\ProgramData\Microsoft Help
2011-11-18 21:29:11 ----D---- C:\Program Files\Common Files\microsoft shared
2011-11-18 21:29:03 ----RSD---- C:\Windows\Fonts
2011-11-18 21:28:01 ----D---- C:\Program Files\Microsoft Office
2011-11-18 14:37:14 ----A---- C:\Windows\system32\TURegOpt.exe
2011-11-18 14:37:08 ----A---- C:\Windows\system32\uxtuneup.dll
2011-11-16 09:51:12 ----D---- C:\Program Files\Google
2011-11-15 18:19:37 ----D---- C:\Windows\ShellNew
2011-11-14 21:21:02 ----SD---- C:\ProgramData\Microsoft
2011-11-14 18:47:43 ----D---- C:\Program Files\MSBuild
2011-11-13 12:34:29 ----D---- C:\Windows\winsxs
2011-11-09 17:27:16 ----D---- C:\Program Files\AVG
2011-11-06 22:06:52 ----D---- C:\WinFast WorkArea
2011-11-06 09:08:47 ----D---- C:\Windows\debug
2011-11-06 09:08:43 ----D---- C:\Users\X\AppData\Roaming\Vso
2011-11-06 09:08:43 ----D---- C:\Users\X\AppData\Roaming\avidemux
2011-11-06 09:08:43 ----D---- C:\Users\X\AppData\Roaming\Ahead
2011-11-06 09:08:43 ----D---- C:\Program Files\FastStone Capture

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-01-07 431672]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2011-11-28 34392]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2011-11-28 435032]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2011-11-28 314456]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2011-11-28 52952]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 387584]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2011-11-28 20568]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2011-11-28 55128]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x32.sys [2009-07-13 347264]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys [2011-09-22 10064]
R3 ULCDRHlp;ULCDRHlp; C:\Windows\System32\Drivers\ULCDRHlp.sys [2004-12-23 27392]
R3 WFLR6654;WinFast DTV1800 H (XC3028); C:\Windows\system32\drivers\wfeaglxt.sys [2009-10-21 433920]
S0 TfFsMon;TfFsMon; C:\Windows\system32\drivers\TfFsMon.sys []
S0 TFSysMon;TfSysMon; C:\Windows\system32\drivers\TFSysMon.sys []
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 AmdLLD;AMD Low Level Device Driver; C:\Windows\system32\drivers\AmdLLD.sys []
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 CrystalSysInfo;CrystalSysInfo; C:\Windows\system32\drivers\CrystalSysInfo.sys []
S3 EagleNT;EagleNT; C:\Windows\system32\drivers\EagleNT.sys []
S3 EagleXNt;EagleXNt; C:\Windows\system32\drivers\EagleXNt.sys []
S3 ENTECH;ENTECH; \??\C:\Windows\system32\DRIVERS\ENTECH.sys [2007-09-07 27672]
S3 gdrv;gdrv; C:\Windows\system32\drivers\gdrv.sys []
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\IntcAzAudAddService.sys []
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys [2011-05-18 18176]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbo.sys [2011-05-18 23168]
S3 NVNET;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\Windows\system32\drivers\NVNET.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2010-04-04 47360]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 TfNetMon;TfNetMon; C:\Windows\system32\drivers\TfNetMon.sys []
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2011-05-18 8192]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2009-07-14 27648]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2011-05-18 8192]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 34944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-11-28 44768]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 nlsX86cc;NLS Service; C:\Windows\system32\NLSSRV32.EXE [2011-03-21 68928]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2011-08-03 599144]
R2 OODefragAgent;O&O Defrag Agent; C:\Program Files\OO Software\Defrag\oodag.exe [2011-11-17 2489680]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe [2011-11-18 1510720]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
S4 AdvancedSystemCareService5;Advanced SystemCare Service 5; C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe [2011-11-10 490840]
S4 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-09-26 136176]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-09-26 136176]
S4 NetMsmqActivator;@%SystemRoot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2009-06-10 128848]
S4 NetPipeActivator;@%SystemRoot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2009-06-10 128848]
S4 NetTcpActivator;@%SystemRoot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2009-06-10 128848]
S4 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-05-16 271920]
S4 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2004-12-13 49152]

-----------------EOF-----------------

Zdravim

Jedna se tedy o stejne pc, ze?

Odinstalujte vse od IOBIT

Stahnete OTM http://oldtimer.geekstogo.com/OTM.exe a ulozte nejlepe na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Do leveho okna zkopirujte tento skript

Kód: Vybrat vše

:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3887554259-2600576739-1838076180-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3887554259-2600576739-1838076180-1000UA.job
C:\Windows\tasks\User_Feed_Synchronization-{8031D200-5313-4B68-B37E-5EAD0C56A15A}.job

:reg
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 5]

:services
AdvancedSystemCareService5
gupdate
gupdatem

:commands
[RESETHOSTS]
[EMPTYTEMP]
[EMPTYFLASH]

Kliknete na MoveIt a nechte program pracovat. Pri otazce na restart souhlaste.
Po restartu sem dejte log, ktery bude zde C:\_OTM\MovedFiles\

Pokud mate windows Vista nebo windows 7, vsechny tyto programy spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce)

Stahnete si OTC http://oldtimer.geekstogo.com/OTC.exe , ulozte a spustte.
Kliknete na napis CleanUp a pote OK - Po uklidu dojde k restartu pc

Stahnete TFC http://oldtimer.geekstogo.com/TFC.exe , ulozte a spustte
Kliknete na START a pote OK - Po uklidu dojde k restartu pc

Stahnete Ccleaner http://www.stahuj.centrum.cz/utility_a_ ... /ccleaner/ a ulozte.
Pri instalaci pozor na Yahoo toolbar, ten nepotrebujete, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Jak vidite v odkazu, je vlevo spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vysype ho

Dale smaze vsechna hesla ulozene na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Oprevit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete

Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows, takze muzete pouzit take

Muzete defragmentovat disk
Stahnete napriklad program Defraggler http://www.stahuj.centrum.cz/utility_a_ ... efraggler/
Pri instalaci opet pozor na Yahoo toolbar
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci

Doinstalujte SP1
Pak zkontrolujte verzi Internet Explorer. Pokud se neaktualizuje pomoci SP1, aktualizujte i jej. Je verze 9, vy mate 8

Všechno co píšete jsem udělal akorát žádný log v C:\_OTM\MovedFiles\ neni

je tam jen nějaká složka a v ní nic neni

Tak dejte novy log z RSIT, podivam se, jestli to provedlo co melo

IOBIT jsem odinstaloval,ale známý který nám přivezl PC nám ho zakázal aktualizovat. Tady je ten log.

Logfile of random's system information tool 1.09 (written by random/random)
Run by X at 2011-12-04 16:58:10
Microsoft Windows 7 Professional
System drive C: has 57 GB (37%) free of 153 GB
Total RAM: 2048 MB (70% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:58:22, on 4.12.2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Seznam.cz\postak.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesApp32.exe
C:\Program Files\Seznam.cz\MiniBrowser.exe
C:\Users\X\Downloads\RSIT.exe
C:\Program Files\trend micro\X.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = ${URL_SEARCHPAGE}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId= ... weetim.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:25432;
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Seznam Postak] "c:\program files\seznam.cz\postak.exe" -s
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O18 - Protocol: toolbarchrome - (no CLSID) - (no file)
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Intel Corporation - (no file)
O23 - Service: NLS Service (nlsX86cc) - Nalpeiron Ltd. - C:\Windows\system32\NLSSRV32.EXE
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: O&O Defrag Agent (OODefragAgent) - O&O Software GmbH - C:\Program Files\OO Software\Defrag\oodag.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe

--
End of file - 3657 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3887554259-2600576739-1838076180-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3887554259-2600576739-1838076180-1000UA.job
C:\Windows\tasks\User_Feed_Synchronization-{8031D200-5313-4B68-B37E-5EAD0C56A15A}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-09-05 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2011-10-28 57224]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2011-11-28 3744552]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1173504]
"Seznam Postak"=c:\program files\seznam.cz\postak.exe [2011-05-25 491040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 5]
C:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe /Manual []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SolutoService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SolutoService]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=2
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=157
"NoInstrumentation"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dvd shrink 3.2.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\googleearth.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nero.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nerostartsmart.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nerovision.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\setupx.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\unins000.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"VIDC.MKVC"=KMVIDC32.DLL
"VIDC.FFDS"=ff_vfw.dll
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
"vidc.tscc"=tsccvid.dll
"msacm.l3codec"=l3codecp.acm
"vidc.MPG4"=MPG4C32.dll
"vidc.MP42"=MPG4C32.dll
"vidc.MP43"=MPG4C32.dll
"VIDC.FPS1"=frapsvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - NOTEPAD.EXE %1
.reg - open -
.scr - open -
.vbs - open - NOTEPAD.EXE %1

======List of files/folders created in the last 1 month======

2011-12-04 16:38:08 ----D---- C:\_OTM
2011-12-04 14:49:15 ----D---- C:\ProgramData\Soluto
2011-12-04 14:46:12 ----A---- C:\Windows\system32\drivers\aswSP.sys
2011-12-04 14:46:12 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2011-12-04 14:46:06 ----A---- C:\Windows\system32\drivers\aswRdr.sys
2011-12-04 14:46:05 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2011-12-04 14:46:04 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2011-12-04 14:46:04 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2011-12-04 14:45:52 ----A---- C:\Windows\system32\aswBoot.exe
2011-12-04 14:45:52 ----A---- C:\Windows\avastSS.scr
2011-12-04 11:46:43 ----D---- C:\rsit
2011-12-03 20:41:03 ----D---- C:\Program Files\trend micro
2011-11-28 20:44:13 ----D---- C:\Program Files\Common Files\PC Tools
2011-11-28 20:44:11 ----D---- C:\Program Files\PC Tools
2011-11-28 20:43:06 ----D---- C:\ProgramData\PC Tools
2011-11-28 20:43:05 ----D---- C:\Users\X\AppData\Roaming\Product_RM
2011-11-28 19:51:17 ----D---- C:\Users\X\AppData\Roaming\TweakNow RegCleaner 2011
2011-11-28 19:33:55 ----D---- C:\Program Files\Eusing Free Registry Cleaner
2011-11-28 19:01:52 ----D---- C:\Users\X\AppData\Roaming\Pmcc
2011-11-28 18:51:01 ----D---- C:\Users\X\AppData\Roaming\FTWeak
2011-11-28 18:18:13 ----D---- C:\Users\X\AppData\Roaming\Skype
2011-11-28 18:17:49 ----D---- C:\ProgramData\Skype
2011-11-25 21:12:51 ----D---- C:\Users\X\AppData\Roaming\Raxco
2011-11-25 21:12:48 ----A---- C:\Windows\system32\roboot.exe
2011-11-25 17:19:57 ----A---- C:\Windows\system32\authuitu.dll
2011-11-22 18:51:20 ----D---- C:\Users\X\AppData\Roaming\Ashampoo
2011-11-22 18:50:55 ----D---- C:\ProgramData\ashampoo
2011-11-18 21:29:16 ----D---- C:\Program Files\Microsoft Works
2011-11-17 21:46:07 ----A---- C:\Windows\system32\RegistryDefragBootTime.exe
2011-11-17 18:18:18 ----A---- C:\Windows\system32\ooscrsav.scr
2011-11-17 18:17:12 ----A---- C:\Windows\system32\oodbs.exe
2011-11-17 18:15:58 ----A---- C:\Windows\system32\oodssrs.dll
2011-11-17 18:15:38 ----A---- C:\Windows\system32\oodbsrs.dll
2011-11-17 18:13:10 ----D---- C:\ProgramData\edu-learning
2011-11-17 18:13:10 ----D---- C:\Program Files\Edu-learning 2.0 2007 CZ
2011-11-17 13:20:54 ----D---- C:\Program Files\Defraggler
2011-11-17 11:40:26 ----D---- C:\ProgramData\MediaMonkey
2011-11-17 11:40:23 ----D---- C:\Users\X\AppData\Roaming\MediaMonkey
2011-11-17 11:40:19 ----D---- C:\Program Files\MediaMonkey
2011-11-15 20:22:27 ----D---- C:\Users\X\AppData\Roaming\PhotoScape
2011-11-15 20:18:55 ----D---- C:\ProgramData\Google
2011-11-15 18:20:48 ----D---- C:\Program Files\Common Files\DESIGNER
2011-11-15 18:20:34 ----D---- C:\Windows\PCHEALTH
2011-11-15 18:20:34 ----D---- C:\Program Files\Microsoft.NET
2011-11-15 18:18:24 ----RHD---- C:\MSOCache
2011-11-14 19:54:26 ----D---- C:\ProgramData\Virtualized Applications
2011-11-14 19:46:18 ----D---- C:\Program Files\Microsoft Silverlight
2011-11-14 19:02:43 ----D---- C:\Users\X\AppData\Roaming\SoftGrid Client
2011-11-14 16:10:13 ----D---- C:\Users\X\AppData\Roaming\TP
2011-11-13 19:50:49 ----A---- C:\Windows\systems.dat
2011-11-13 11:13:20 ----A---- C:\Windows\WTRDCTM.INI
2011-11-13 10:54:55 ----D---- C:\ProgramData\LangSoft
2011-11-13 10:54:06 ----D---- C:\Users\X\AppData\Roaming\LangSoft

======List of files/folders modified in the last 1 month======

2011-12-04 16:58:17 ----D---- C:\Windows\Temp
2011-12-04 16:50:35 ----D---- C:\Windows\Prefetch
2011-12-04 16:48:37 ----AD---- C:\Windows
2011-12-04 16:45:22 ----D---- C:\Windows\inf
2011-12-04 16:45:21 ----D---- C:\Windows\Minidump
2011-12-04 15:57:20 ----RD---- C:\Program Files
2011-12-04 15:04:37 ----SHD---- C:\Windows\Installer
2011-12-04 15:04:37 ----HD---- C:\Config.Msi
2011-12-04 15:04:36 ----DC---- C:\Windows\system32\DRVSTORE
2011-12-04 15:04:36 ----D---- C:\Windows\system32\drivers
2011-12-04 15:04:34 ----RSD---- C:\Windows\assembly
2011-12-04 15:03:21 ----SHD---- C:\System Volume Information
2011-12-04 14:56:40 ----D---- C:\Windows\System32
2011-12-04 14:52:52 ----HD---- C:\ProgramData
2011-12-04 14:50:42 ----D---- C:\Windows\system32\catroot2
2011-12-04 14:50:42 ----D---- C:\Windows\system32\catroot
2011-12-04 14:45:43 ----D---- C:\ProgramData\AVAST Software
2011-12-04 14:15:59 ----D---- C:\Windows\system32\DriverStore
2011-12-03 21:20:29 ----D---- C:\Windows\SoftwareDistribution
2011-12-03 21:02:22 ----SD---- C:\Users\X\AppData\Roaming\Microsoft
2011-12-03 18:27:36 ----D---- C:\Windows\Tasks
2011-11-30 21:35:57 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-11-29 08:44:33 ----D---- C:\Windows\Microsoft.NET
2011-11-28 22:19:20 ----D---- C:\Windows\system32\config
2011-11-28 21:29:13 ----D---- C:\Program Files\CCleaner
2011-11-28 20:52:49 ----AD---- C:\ProgramData\Temp
2011-11-28 20:52:46 ----D---- C:\Windows\system32\Tasks
2011-11-28 20:51:51 ----D---- C:\Users\X\AppData\Roaming\Registry Mechanic
2011-11-28 20:44:13 ----D---- C:\Program Files\Common Files
2011-11-25 17:19:39 ----D---- C:\Program Files\TuneUp Utilities 2012
2011-11-24 18:14:48 ----D---- C:\Program Files\iWisoft Free Video Converter
2011-11-22 18:29:28 ----A---- C:\Windows\win.ini
2011-11-22 18:13:15 ----D---- C:\Program Files\Mozilla Firefox
2011-11-22 18:13:11 ----D---- C:\Users\X\AppData\Roaming\Mozilla
2011-11-18 21:29:37 ----D---- C:\ProgramData\Microsoft Help
2011-11-18 21:29:11 ----D---- C:\Program Files\Common Files\microsoft shared
2011-11-18 21:29:03 ----RSD---- C:\Windows\Fonts
2011-11-18 21:28:01 ----D---- C:\Program Files\Microsoft Office
2011-11-18 14:37:14 ----A---- C:\Windows\system32\TURegOpt.exe
2011-11-18 14:37:08 ----A---- C:\Windows\system32\uxtuneup.dll
2011-11-16 09:51:12 ----D---- C:\Program Files\Google
2011-11-15 18:19:37 ----D---- C:\Windows\ShellNew
2011-11-14 21:21:02 ----SD---- C:\ProgramData\Microsoft
2011-11-14 18:47:43 ----D---- C:\Program Files\MSBuild
2011-11-13 12:34:29 ----D---- C:\Windows\winsxs
2011-11-09 17:27:16 ----D---- C:\Program Files\AVG
2011-11-06 22:06:52 ----D---- C:\WinFast WorkArea
2011-11-06 09:08:47 ----D---- C:\Windows\debug
2011-11-06 09:08:43 ----D---- C:\Users\X\AppData\Roaming\Vso
2011-11-06 09:08:43 ----D---- C:\Users\X\AppData\Roaming\avidemux
2011-11-06 09:08:43 ----D---- C:\Users\X\AppData\Roaming\Ahead
2011-11-06 09:08:43 ----D---- C:\Program Files\FastStone Capture

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-01-07 431672]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2011-11-28 34392]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2011-11-28 435032]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2011-11-28 314456]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2011-11-28 52952]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 387584]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2011-11-28 20568]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2011-11-28 55128]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x32.sys [2009-07-13 347264]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys [2011-09-22 10064]
R3 ULCDRHlp;ULCDRHlp; C:\Windows\System32\Drivers\ULCDRHlp.sys [2004-12-23 27392]
R3 WFLR6654;WinFast DTV1800 H (XC3028); C:\Windows\system32\drivers\wfeaglxt.sys [2009-10-21 433920]
S0 TfFsMon;TfFsMon; C:\Windows\system32\drivers\TfFsMon.sys []
S0 TFSysMon;TfSysMon; C:\Windows\system32\drivers\TFSysMon.sys []
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 AmdLLD;AMD Low Level Device Driver; C:\Windows\system32\drivers\AmdLLD.sys []
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 cpuz135;cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x32.sys []
S3 CrystalSysInfo;CrystalSysInfo; C:\Windows\system32\drivers\CrystalSysInfo.sys []
S3 EagleNT;EagleNT; C:\Windows\system32\drivers\EagleNT.sys []
S3 EagleXNt;EagleXNt; C:\Windows\system32\drivers\EagleXNt.sys []
S3 ENTECH;ENTECH; \??\C:\Windows\system32\DRIVERS\ENTECH.sys [2007-09-07 27672]
S3 gdrv;gdrv; C:\Windows\system32\drivers\gdrv.sys []
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\IntcAzAudAddService.sys []
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys [2011-05-18 18176]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbo.sys [2011-05-18 23168]
S3 NVNET;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\Windows\system32\drivers\NVNET.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2010-04-04 47360]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 TfNetMon;TfNetMon; C:\Windows\system32\drivers\TfNetMon.sys []
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2011-05-18 8192]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2009-07-14 27648]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2011-05-18 8192]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 34944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-11-28 44768]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 nlsX86cc;NLS Service; C:\Windows\system32\NLSSRV32.EXE [2011-03-21 68928]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2011-08-03 599144]
R2 OODefragAgent;O&O Defrag Agent; C:\Program Files\OO Software\Defrag\oodag.exe [2011-11-17 2489680]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe [2011-11-18 1510720]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-09-26 136176]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-09-26 136176]
S3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
S4 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 NetMsmqActivator;@%SystemRoot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2009-06-10 128848]
S4 NetPipeActivator;@%SystemRoot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2009-06-10 128848]
S4 NetTcpActivator;@%SystemRoot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2009-06-10 128848]
S4 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-05-16 271920]
S4 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2004-12-13 49152]

-----------------EOF-----------------

OTM neprovedlo nic. Restartovalo se pc?

Zkuste jeste jednou, pripadne v nouzovem rezimu

Tak jsem to udělal znova a log už tam je. Jo a před tím když jsem to dělal poprvé tak mi naskočila modrá obrazovka a pak se restartoval PC.

All processes killed
========== FILES ==========
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3887554259-2600576739-1838076180-1000Core.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3887554259-2600576739-1838076180-1000UA.job moved successfully.
C:\Windows\tasks\User_Feed_Synchronization-{8031D200-5313-4B68-B37E-5EAD0C56A15A}.job moved successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 5\ deleted successfully.
========== SERVICES/DRIVERS ==========
Error: No service named AdvancedSystemCareService5 was found to stop!
Service\Driver key AdvancedSystemCareService5 not found.
Service gupdate stopped successfully!
Service gupdate deleted successfully!
Service gupdatem stopped successfully!
Service gupdatem deleted successfully!
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public

User: UpdatusUser

User: X
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 120747 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 7641349 bytes
->Flash cache emptied: 343 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 1587072 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 9,00 mb

[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Public

User: UpdatusUser

User: X
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb

OTM by OldTimer - Version 3.1.19.0 log created on 12042011_171113

Files moved on Reboot...
File move failed. C:\Windows\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...

OTM udelalo co melo. Ovsem tady bude asi problem.

Milan1236000 píše:známý který nám přivezl PC nám ho zakázal aktualizovat

To muze mit jen jeden duvod

Nelegalni system

Nic jineho me nenapada. A v takovem pripade nemuzeme podle pravidel fora pokracovat

http://www.viry.cz/forum/viewtopic.php?f=12&t=115512 (prectete si pomahat nelze, pravidlo 2)

Nebo mate jine vysvetleni?

Aha

No nevadí... tak díky moc, díky za ochotu a měj se

Neni zac

A priste at tam je legalni system, jinak bude zle

Dobře

A kolik asi stojí to CD s legálním Windows 7 Professional ?

Omlouvám se kolegovi Márty84 za vstup.

Milan1236000, použij prosím Google a při případném "příště" se tu uvidíme jedině s legálním systémem! Nehledě na to, jak jsi prudil s opakovaným mazáním a znovuzakládáním svých threadů!

Zde

a moderátory poprosím o

.

Zdravim a pekny den preji

Pockam jeste az da kolega Marty pokyn k uzamceni a pak to tu locku.

A jak bylo receno, pokud bude priste v PC nelegalni OS, muze byt pomoc odmitnuta.

Tak tuhle posledni radu rad poskytnu, pokud to povede k legalizaci OS

Treba zde
http://www.alza.cz/software/operacni-sy ... fAodpyjoMA

A ted uz s cistym svedomim muzeme

Tak tedy

Pokud uzivatel s necim nesouhlasi, necht mi napise PMku

VIRY.CZ

Prosím o kontrolu

Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu