VIRY.CZ

Ahoj mám problém s netbookem. Je velice pomalý, navíc jsem koukal do správce úloh a i v klidu se jádro neustále vytěžuje na 100%. Při startu vyskakují nějaká okna atd. Asi na tom bude fakt špatně

Přikládám RSIT log a prosím Vás o radu.

Logfile of random's system information tool 1.09 (written by random/random)
Run by Vladka at 2012-02-13 14:00:21
Microsoft Windows 7 Starter Service Pack 1
System drive C: has 84 GB (82%) free of 102 GB
Total RAM: 1014 MB (30% free)

HijackThis download failed

======Scheduled tasks folder======

C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CA1377B-DC1D-4A52-9585-6E06050FAC53}]
TmIEPlugInBHO Class - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg.dll [2010-09-17 185680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2012-01-29 342128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-08-16 3942048]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC}]
TmBpIeBHO Class - C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe32.dll [2010-09-17 234832]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files\Microsoft\BingBar\BingExt.dll [2011-03-02 1089288]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files\Microsoft\BingBar\BingExt.dll [2011-03-02 1089288]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2012-01-29 342128]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDWare"=C:\Program Files\Elantech\ETDCtrl.exe [2010-04-13 548744]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-28 35696]
"HotkeyMon"=AsusSender.exe C:\Program Files\ASUS\HotkeyService\HotKeyMon.exe []
"HotkeyService"=AsusSender.exe C:\Program Files\ASUS\HotkeyService\HotkeyService.exe []
"SuperHybridEngine"=AsusSender.exe C:\Program Files\ASUS\SHE\SuperHybridEngine.exe []
"LiveUpdate"=AsusSender.exe C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe auto []
"CapsHook"=AsusSender.exe C:\Program Files\ASUS\CapsHook\CapsHook.exe []
"Eee Docking"=C:\Program Files\ASUS\Eee Docking\Eee Docking.exe [2011-01-06 414384]
"ASUSWebStorage"=C:\Program Files\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe [2011-02-23 731472]
"VizorHtmlDialog.exe"=C:\Program Files\Trend Micro\Titanium\UIFramework\VizorHtmlDialog.exe [2010-10-08 1123664]
"Trend Micro Client Framework"=C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe [2010-10-12 112632]
"Trend Micro Titanium"=C:\Program Files\Trend Micro\Titanium\VizorShortCut.exe [2010-10-20 218448]
"VAWinAgent"=C:\ExpressGateUtil\VAWinAgent.exe [2011-03-24 45448]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2010-05-10 141848]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2010-05-10 173592]
"Persistence"=C:\windows\system32\igfxpers.exe [2010-05-10 150552]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2010-08-24 9722472]
"ASUSPRP"=C:\Program Files\ASUS\APRP\APRP.EXE [2011-04-30 2018032]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"T-Mobile Communication Centre"=C:\Program Files\T-Mobile\Web'n'walk Manager\Manager.exe [2011-11-22 1363984]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2011-10-13 17351304]
"Izuguo"=C:\Users\Vladka\AppData\Roaming\Izuguo.cmd [2012-01-29 126976]
"etef5"=C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-0068\mtefq2.exe [2012-02-12 24064]
"mixswd"=C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-0076\mixhdg.exe [2012-02-12 24064]
"elmq5"=C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-0096\mp1lmq2.exe [2012-02-12 24064]
"mp735"=C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-0016\mip982.exe [2012-02-12 24064]
"zaber0"=C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-1830\zaberg.exe [2012-02-02 20992]
"emails5"=C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-0069\mmails2.exe [2012-02-12 24064]
"ep185"=C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-0056\mp18982.exe [2012-02-12 24064]
"epp1305"=C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-0076\mp130982.exe [2012-02-12 24064]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AsusVibeLauncher.lnk - C:\Program Files\Asus\AsusVibe\AsusVibeLauncher.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\SYSTEM32\igfxdev.dll [2010-05-10 218112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"msacm.siren"=sirenacm.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2012-02-13 14:00:21 ----D---- C:\rsit
2012-02-12 12:56:51 ----A---- C:\Users\Vladka\AppData\Roaming\5618.exe
2012-02-12 12:56:48 ----A---- C:\Users\Vladka\AppData\Roaming\4B7D.exe
2012-02-12 12:56:47 ----A---- C:\Users\Vladka\AppData\Roaming\441C.exe
2012-02-12 12:56:44 ----A---- C:\Users\Vladka\AppData\Roaming\3A8A.exe
2012-02-12 12:56:42 ----A---- C:\Users\Vladka\AppData\Roaming\3368.exe
2012-02-12 12:56:38 ----A---- C:\Users\Vladka\AppData\Roaming\217C.exe
2012-02-12 12:23:29 ----A---- C:\Users\Vladka\AppData\Roaming\C96C.exe
2012-02-12 12:23:27 ----A---- C:\Users\Vladka\AppData\Roaming\C018.exe
2012-02-12 12:23:25 ----A---- C:\Users\Vladka\AppData\Roaming\B83B.exe
2012-02-12 12:23:23 ----A---- C:\Users\Vladka\AppData\Roaming\B166.exe
2012-02-12 12:23:21 ----A---- C:\Users\Vladka\AppData\Roaming\A8FD.exe
2012-02-12 12:23:19 ----A---- C:\Users\Vladka\AppData\Roaming\A0B2.exe
2012-02-12 12:23:17 ----A---- C:\Users\Vladka\AppData\Roaming\9839.exe
2012-02-12 12:09:47 ----N---- C:\windows\system32\MpSigStub.exe
2012-02-12 12:03:30 ----D---- C:\Program Files\Microsoft.NET
2012-02-12 11:59:44 ----A---- C:\Users\Vladka\AppData\Roaming\C029.exe
2012-02-12 11:59:42 ----A---- C:\Users\Vladka\AppData\Roaming\B935.exe
2012-02-12 11:59:40 ----A---- C:\Users\Vladka\AppData\Roaming\B0FA.exe
2012-02-12 11:59:37 ----A---- C:\Users\Vladka\AppData\Roaming\A758.exe
2012-02-12 11:59:36 ----A---- C:\Users\Vladka\AppData\Roaming\A075.exe
2012-02-12 11:59:33 ----A---- C:\Users\Vladka\AppData\Roaming\980B.exe
2012-02-12 11:59:31 ----A---- C:\Users\Vladka\AppData\Roaming\8FD0.exe
2012-02-12 11:55:51 ----A---- C:\Users\Vladka\AppData\Roaming\A893.exe
2012-02-12 11:55:49 ----A---- C:\Users\Vladka\AppData\Roaming\A104.exe
2012-02-12 11:55:46 ----A---- C:\Users\Vladka\AppData\Roaming\982D.exe
2012-02-12 11:55:44 ----A---- C:\Users\Vladka\AppData\Roaming\8E6C.exe
2012-02-12 11:55:42 ----A---- C:\Users\Vladka\AppData\Roaming\86EC.exe
2012-02-12 11:55:40 ----A---- C:\Users\Vladka\AppData\Roaming\7F8C.exe
2012-02-12 11:55:38 ----A---- C:\Users\Vladka\AppData\Roaming\77AE.exe
2012-02-10 21:52:36 ----A---- C:\Users\Vladka\AppData\Roaming\4AEA.exe
2012-02-10 21:52:32 ----A---- C:\Users\Vladka\AppData\Roaming\3BBD.exe
2012-02-10 21:52:28 ----A---- C:\Users\Vladka\AppData\Roaming\2B29.exe
2012-02-10 21:52:22 ----A---- C:\Users\Vladka\AppData\Roaming\142E.exe
2012-02-10 21:52:08 ----A---- C:\Users\Vladka\AppData\Roaming\DE6E.exe
2012-02-10 21:52:05 ----A---- C:\Users\Vladka\AppData\Roaming\CF9E.exe
2012-02-10 21:52:00 ----A---- C:\Users\Vladka\AppData\Roaming\BBB0.exe
2012-02-10 13:39:16 ----A---- C:\Users\Vladka\AppData\Roaming\9255.exe
2012-02-10 13:39:15 ----A---- C:\Users\Vladka\AppData\Roaming\8AA7.exe
2012-02-10 13:39:13 ----A---- C:\Users\Vladka\AppData\Roaming\83A4.exe
2012-02-10 13:39:10 ----A---- C:\Users\Vladka\AppData\Roaming\7AEC.exe
2012-02-10 13:39:08 ----A---- C:\Users\Vladka\AppData\Roaming\70CD.exe
2012-02-10 13:39:06 ----A---- C:\Users\Vladka\AppData\Roaming\69CA.exe
2012-02-10 13:39:04 ----A---- C:\Users\Vladka\AppData\Roaming\5F7D.exe
2012-02-09 11:28:29 ----A---- C:\Users\Vladka\AppData\Roaming\F8E2.exe
2012-02-09 11:28:25 ----A---- C:\Users\Vladka\AppData\Roaming\E938.exe
2012-02-09 11:28:23 ----A---- C:\Users\Vladka\AppData\Roaming\E0CE.exe
2012-02-09 11:28:19 ----A---- C:\Users\Vladka\AppData\Roaming\D1FE.exe
2012-02-09 11:28:17 ----A---- C:\Users\Vladka\AppData\Roaming\C8F8.exe
2012-02-09 11:28:15 ----A---- C:\Users\Vladka\AppData\Roaming\C0BD.exe
2012-02-09 11:28:12 ----A---- C:\Users\Vladka\AppData\Roaming\B46D.exe
2012-02-08 15:44:55 ----A---- C:\Users\Vladka\AppData\Roaming\62FC.exe
2012-02-08 15:44:53 ----A---- C:\Users\Vladka\AppData\Roaming\5822.exe
2012-02-08 15:44:51 ----A---- C:\Users\Vladka\AppData\Roaming\5045.exe
2012-02-08 15:44:49 ----A---- C:\Users\Vladka\AppData\Roaming\4819.exe
2012-02-08 15:44:47 ----A---- C:\Users\Vladka\AppData\Roaming\40F7.exe
2012-02-08 15:44:44 ----A---- C:\Users\Vladka\AppData\Roaming\3765.exe
2012-02-08 15:44:41 ----A---- C:\Users\Vladka\AppData\Roaming\2C8B.exe
2012-02-08 15:38:35 ----A---- C:\Users\Vladka\AppData\Roaming\62D5.exe
2012-02-08 15:38:34 ----A---- C:\Users\Vladka\AppData\Roaming\5BE2.exe
2012-02-08 15:38:31 ----A---- C:\Users\Vladka\AppData\Roaming\51F2.exe
2012-02-08 15:38:29 ----A---- C:\Users\Vladka\AppData\Roaming\4860.exe
2012-02-08 15:38:26 ----A---- C:\Users\Vladka\AppData\Roaming\3ECE.exe
2012-02-08 15:38:24 ----A---- C:\Users\Vladka\AppData\Roaming\34EE.exe
2012-02-08 15:38:21 ----A---- C:\Users\Vladka\AppData\Roaming\2AFE.exe
2012-02-08 00:25:01 ----A---- C:\Users\Vladka\AppData\Roaming\FBB2.exe
2012-02-08 00:24:59 ----A---- C:\Users\Vladka\AppData\Roaming\F2FA.exe
2012-02-08 00:24:56 ----A---- C:\Users\Vladka\AppData\Roaming\E949.exe
2012-02-08 00:24:54 ----A---- C:\Users\Vladka\AppData\Roaming\E0B0.exe
2012-02-08 00:24:52 ----A---- C:\Users\Vladka\AppData\Roaming\D808.exe
2012-02-08 00:24:50 ----A---- C:\Users\Vladka\AppData\Roaming\CF40.exe
2012-02-08 00:24:47 ----A---- C:\Users\Vladka\AppData\Roaming\C58F.exe
2012-02-07 13:59:33 ----A---- C:\Users\Vladka\AppData\Roaming\872F.exe
2012-02-07 13:59:31 ----A---- C:\Users\Vladka\AppData\Roaming\7BF7.exe
2012-02-07 13:59:28 ----A---- C:\Users\Vladka\AppData\Roaming\7246.exe
2012-02-07 13:59:26 ----A---- C:\Users\Vladka\AppData\Roaming\699D.exe
2012-02-07 13:59:24 ----A---- C:\Users\Vladka\AppData\Roaming\62C9.exe
2012-02-07 13:59:22 ----A---- C:\Users\Vladka\AppData\Roaming\59C3.exe
2012-02-07 13:59:20 ----A---- C:\Users\Vladka\AppData\Roaming\50DD.exe
2012-02-07 13:56:35 ----A---- C:\windows\DCEBoot.exe
2012-02-07 13:56:19 ----A---- C:\Users\Vladka\AppData\Roaming\D235.exe
2012-02-07 13:56:16 ----A---- C:\Users\Vladka\AppData\Roaming\C4BD.exe
2012-02-07 13:56:12 ----A---- C:\Users\Vladka\AppData\Roaming\B4B5.exe
2012-02-07 13:56:08 ----A---- C:\Users\Vladka\AppData\Roaming\A5A7.exe
2012-02-07 13:56:04 ----A---- C:\Users\Vladka\AppData\Roaming\97B1.exe
2012-02-07 13:55:59 ----A---- C:\Users\Vladka\AppData\Roaming\8365.exe
2012-02-06 10:06:59 ----A---- C:\Users\Vladka\AppData\Roaming\8029.exe
2012-02-06 10:06:55 ----A---- C:\Users\Vladka\AppData\Roaming\6E5D.exe
2012-02-06 10:06:29 ----A---- C:\Users\Vladka\AppData\Roaming\E723.exe
2012-02-06 10:06:16 ----A---- C:\Users\Vladka\AppData\Roaming\D4F9.exe
2012-02-06 10:06:11 ----A---- C:\Users\Vladka\AppData\Roaming\C1D6.exe
2012-02-06 10:06:07 ----A---- C:\Users\Vladka\AppData\Roaming\B151.exe
2012-02-06 10:06:03 ----A---- C:\Users\Vladka\AppData\Roaming\A2B0.exe
2012-02-04 12:43:37 ----A---- C:\Users\Vladka\AppData\Roaming\2F11.exe
2012-02-04 12:43:35 ----A---- C:\Users\Vladka\AppData\Roaming\2743.exe
2012-02-04 12:43:34 ----A---- C:\Users\Vladka\AppData\Roaming\207E.exe
2012-02-04 12:43:31 ----A---- C:\Users\Vladka\AppData\Roaming\1557.exe
2012-02-04 12:43:29 ----A---- C:\Users\Vladka\AppData\Roaming\DE6.exe
2012-02-04 12:43:27 ----A---- C:\Users\Vladka\AppData\Roaming\712.exe
2012-02-04 12:43:25 ----A---- C:\Users\Vladka\AppData\Roaming\FD13.exe
2012-02-04 11:56:21 ----A---- C:\Users\Vladka\AppData\Roaming\8039.exe
2012-02-04 11:56:18 ----A---- C:\Users\Vladka\AppData\Roaming\7234.exe
2012-02-04 11:56:15 ----A---- C:\Users\Vladka\AppData\Roaming\68D1.exe
2012-02-04 11:56:14 ----A---- C:\Users\Vladka\AppData\Roaming\620C.exe
2012-02-04 11:56:11 ----A---- C:\Users\Vladka\AppData\Roaming\58F7.exe
2012-02-04 11:56:09 ----A---- C:\Users\Vladka\AppData\Roaming\4FD2.exe
2012-02-04 11:56:06 ----A---- C:\Users\Vladka\AppData\Roaming\44D9.exe
2012-02-02 15:51:03 ----A---- C:\Users\Vladka\AppData\Roaming\A6E2.exe
2012-02-02 15:51:01 ----A---- C:\Users\Vladka\AppData\Roaming\9DEC.exe
2012-02-02 15:50:59 ----A---- C:\Users\Vladka\AppData\Roaming\96F9.exe
2012-02-02 15:50:57 ----A---- C:\Users\Vladka\AppData\Roaming\8E8F.exe
2012-02-02 15:50:54 ----A---- C:\Users\Vladka\AppData\Roaming\82EA.exe
2012-02-02 15:50:52 ----A---- C:\Users\Vladka\AppData\Roaming\7A52.exe
2012-02-02 15:50:50 ----A---- C:\Users\Vladka\AppData\Roaming\72E2.exe
2012-02-02 15:50:48 ----A---- C:\Users\Vladka\AppData\Roaming\6B43.exe
2012-02-02 15:49:14 ----A---- C:\Users\Vladka\AppData\Roaming\FE1E.exe
2012-02-02 15:49:08 ----A---- C:\Users\Vladka\AppData\Roaming\E3BA.exe
2012-02-02 15:49:05 ----A---- C:\Users\Vladka\AppData\Roaming\DB40.exe
2012-02-02 15:49:03 ----A---- C:\Users\Vladka\AppData\Roaming\D20C.exe
2012-02-02 15:49:01 ----A---- C:\Users\Vladka\AppData\Roaming\CB09.exe
2012-02-02 15:48:59 ----A---- C:\Users\Vladka\AppData\Roaming\C203.exe
2012-02-02 15:48:57 ----A---- C:\Users\Vladka\AppData\Roaming\BA74.exe
2012-02-02 15:48:55 ----A---- C:\Users\Vladka\AppData\Roaming\B313.exe
2012-02-01 10:46:20 ----A---- C:\Users\Vladka\AppData\Roaming\5114.exe
2012-02-01 10:46:18 ----A---- C:\Users\Vladka\AppData\Roaming\47FF.exe
2012-02-01 10:46:15 ----A---- C:\Users\Vladka\AppData\Roaming\3E7C.exe
2012-02-01 10:46:13 ----A---- C:\Users\Vladka\AppData\Roaming\3567.exe
2012-02-01 10:46:11 ----A---- C:\Users\Vladka\AppData\Roaming\2C03.exe
2012-02-01 10:46:08 ----A---- C:\Users\Vladka\AppData\Roaming\22B0.exe
2012-02-01 10:46:06 ----A---- C:\Users\Vladka\AppData\Roaming\191D.exe
2012-02-01 10:46:03 ----A---- C:\Users\Vladka\AppData\Roaming\D88.exe
2012-02-01 10:02:56 ----A---- C:\Users\Vladka\AppData\Roaming\950D.exe
2012-02-01 10:02:49 ----A---- C:\Users\Vladka\AppData\Roaming\7A3C.exe
2012-02-01 10:02:44 ----A---- C:\Users\Vladka\AppData\Roaming\6583.exe
2012-02-01 10:02:42 ----A---- C:\Users\Vladka\AppData\Roaming\5E71.exe
2012-02-01 10:02:40 ----A---- C:\Users\Vladka\AppData\Roaming\5607.exe
2012-02-01 10:02:38 ----A---- C:\Users\Vladka\AppData\Roaming\4D11.exe
2012-02-01 10:02:36 ----A---- C:\Users\Vladka\AppData\Roaming\4533.exe
2012-02-01 10:02:33 ----A---- C:\Users\Vladka\AppData\Roaming\3CC9.exe
2012-01-31 17:34:51 ----A---- C:\Users\Vladka\AppData\Roaming\F635.exe
2012-01-31 17:34:49 ----A---- C:\Users\Vladka\AppData\Roaming\EDDB.exe
2012-01-31 17:34:47 ----A---- C:\Users\Vladka\AppData\Roaming\E571.exe
2012-01-31 17:34:44 ----A---- C:\Users\Vladka\AppData\Roaming\DD07.exe
2012-01-31 17:34:42 ----A---- C:\Users\Vladka\AppData\Roaming\D384.exe
2012-01-31 17:34:40 ----A---- C:\Users\Vladka\AppData\Roaming\CB88.exe
2012-01-31 17:34:38 ----A---- C:\Users\Vladka\AppData\Roaming\C37C.exe
2012-01-31 17:34:35 ----A---- C:\Users\Vladka\AppData\Roaming\B9CA.exe
2012-01-31 17:22:17 ----A---- C:\windows\system32\drivers\usbport.sys
2012-01-31 17:22:17 ----A---- C:\windows\system32\drivers\usbhub.sys
2012-01-31 17:22:17 ----A---- C:\windows\system32\drivers\usbehci.sys
2012-01-31 17:22:16 ----A---- C:\windows\system32\drivers\usbuhci.sys
2012-01-31 17:22:16 ----A---- C:\windows\system32\drivers\usbohci.sys
2012-01-31 17:22:16 ----A---- C:\windows\system32\drivers\usbd.sys
2012-01-31 17:22:16 ----A---- C:\windows\system32\drivers\usbccgp.sys
2012-01-31 17:22:10 ----A---- C:\windows\system32\esent.dll
2012-01-31 17:22:10 ----A---- C:\windows\system32\drivers\ntfs.sys
2012-01-31 17:22:09 ----A---- C:\windows\system32\fsutil.exe
2012-01-31 17:22:09 ----A---- C:\windows\system32\drivers\storport.sys
2012-01-31 17:22:09 ----A---- C:\windows\system32\drivers\nvstor.sys
2012-01-31 17:22:09 ----A---- C:\windows\system32\drivers\nvraid.sys
2012-01-31 17:22:09 ----A---- C:\windows\system32\drivers\iaStorV.sys
2012-01-31 17:22:09 ----A---- C:\windows\system32\drivers\amdxata.sys
2012-01-31 17:22:09 ----A---- C:\windows\system32\drivers\amdsata.sys
2012-01-31 17:22:08 ----A---- C:\windows\system32\drivers\USBSTOR.SYS
2012-01-31 17:22:02 ----A---- C:\windows\system32\drivers\BTHUSB.SYS
2012-01-31 17:22:02 ----A---- C:\windows\system32\drivers\bthport.sys
2012-01-31 17:14:18 ----A---- C:\Users\Vladka\AppData\Roaming\1428.exe
2012-01-31 17:14:16 ----A---- C:\Users\Vladka\AppData\Roaming\D54.exe
2012-01-31 17:14:14 ----A---- C:\Users\Vladka\AppData\Roaming\538.exe
2012-01-31 17:14:12 ----A---- C:\Users\Vladka\AppData\Roaming\FD1C.exe
2012-01-31 17:14:09 ----A---- C:\Users\Vladka\AppData\Roaming\F4C2.exe
2012-01-31 17:14:07 ----A---- C:\Users\Vladka\AppData\Roaming\ECB5.exe
2012-01-31 17:14:02 ----A---- C:\Users\Vladka\AppData\Roaming\D5EA.exe
2012-01-31 17:14:00 ----A---- C:\Users\Vladka\AppData\Roaming\CEF7.exe
2012-01-30 18:30:51 ----A---- C:\Users\Vladka\AppData\Roaming\990E.exe
2012-01-30 18:30:49 ----A---- C:\Users\Vladka\AppData\Roaming\8F9B.exe
2012-01-30 18:30:46 ----A---- C:\Users\Vladka\AppData\Roaming\852F.exe
2012-01-30 18:30:43 ----A---- C:\Users\Vladka\AppData\Roaming\7A74.exe
2012-01-30 18:10:19 ----A---- C:\Users\Vladka\AppData\Roaming\CD81.exe
2012-01-30 18:10:17 ----A---- C:\Users\Vladka\AppData\Roaming\C575.exe
2012-01-30 18:10:15 ----A---- C:\Users\Vladka\AppData\Roaming\BD79.exe
2012-01-30 18:10:13 ----A---- C:\Users\Vladka\AppData\Roaming\B55D.exe
2012-01-30 18:10:11 ----A---- C:\Users\Vladka\AppData\Roaming\AD60.exe
2012-01-30 18:10:09 ----A---- C:\Users\Vladka\AppData\Roaming\A3BE.exe
2012-01-30 18:10:06 ----A---- C:\Users\Vladka\AppData\Roaming\9AD8.exe
2012-01-30 18:10:05 ----A---- C:\Users\Vladka\AppData\Roaming\931A.exe
2012-01-30 17:22:36 ----A---- C:\windows\system32\MRT.exe
2012-01-30 17:21:00 ----A---- C:\windows\system32\webio.dll
2012-01-30 17:21:00 ----A---- C:\windows\system32\sspicli.dll
2012-01-30 17:21:00 ----A---- C:\windows\system32\schannel.dll
2012-01-30 17:21:00 ----A---- C:\windows\system32\lsass.exe
2012-01-30 17:21:00 ----A---- C:\windows\system32\lsasrv.dll
2012-01-30 17:21:00 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2012-01-30 17:21:00 ----A---- C:\windows\system32\drivers\ksecdd.sys
2012-01-30 17:21:00 ----A---- C:\windows\system32\drivers\cng.sys
2012-01-30 17:20:59 ----A---- C:\windows\system32\sspisrv.dll
2012-01-30 17:20:59 ----A---- C:\windows\system32\secur32.dll
2012-01-30 17:18:32 ----A---- C:\Users\Vladka\AppData\Roaming\64D7.exe
2012-01-30 17:18:30 ----A---- C:\Users\Vladka\AppData\Roaming\5C10.exe
2012-01-30 17:18:28 ----A---- C:\Users\Vladka\AppData\Roaming\529D.exe
2012-01-30 17:18:26 ----A---- C:\Users\Vladka\AppData\Roaming\4AA0.exe
2012-01-30 17:18:24 ----A---- C:\Users\Vladka\AppData\Roaming\4294.exe
2012-01-30 17:18:22 ----A---- C:\Users\Vladka\AppData\Roaming\3A97.exe
2012-01-30 17:18:19 ----A---- C:\Users\Vladka\AppData\Roaming\31A1.exe
2012-01-30 17:18:18 ----A---- C:\Users\Vladka\AppData\Roaming\2AAE.exe
2012-01-30 14:09:24 ----A---- C:\windows\system32\mshtmled.dll
2012-01-30 14:09:23 ----A---- C:\windows\system32\iertutil.dll
2012-01-30 14:09:22 ----A---- C:\windows\system32\jscript.dll
2012-01-30 14:09:21 ----A---- C:\windows\system32\jscript9.dll
2012-01-30 14:09:20 ----A---- C:\windows\system32\jsproxy.dll
2012-01-30 14:09:19 ----A---- C:\windows\system32\wininet.dll
2012-01-30 14:09:18 ----A---- C:\windows\system32\url.dll
2012-01-30 14:09:18 ----A---- C:\windows\system32\ieui.dll
2012-01-30 14:09:16 ----A---- C:\windows\system32\urlmon.dll
2012-01-30 14:09:15 ----A---- C:\windows\system32\mshtml.dll
2012-01-30 14:09:12 ----A---- C:\windows\system32\ieframe.dll
2012-01-30 13:53:23 ----A---- C:\Users\Vladka\AppData\Roaming\92BE.exe
2012-01-30 13:53:21 ----A---- C:\Users\Vladka\AppData\Roaming\8A64.exe
2012-01-30 13:53:17 ----A---- C:\Users\Vladka\AppData\Roaming\7AE8.exe
2012-01-30 13:52:48 ----A---- C:\Users\Vladka\AppData\Roaming\8C4.exe
2012-01-30 13:52:12 ----A---- C:\Users\Vladka\AppData\Roaming\7C9B.exe
2012-01-30 13:52:10 ----A---- C:\Users\Vladka\AppData\Roaming\7402.exe
2012-01-30 13:52:07 ----A---- C:\Users\Vladka\AppData\Roaming\68DB.exe
2012-01-30 13:52:05 ----A---- C:\Users\Vladka\AppData\Roaming\6061.exe
2012-01-29 20:54:39 ----A---- C:\Users\Vladka\AppData\Roaming\E2F4.exe
2012-01-29 20:54:30 ----A---- C:\Users\Vladka\AppData\Roaming\C0B4.exe
2012-01-29 20:54:24 ----A---- C:\Users\Vladka\AppData\Roaming\A778.exe
2012-01-29 20:54:07 ----A---- C:\Users\Vladka\AppData\Roaming\6691.exe
2012-01-29 20:54:02 ----A---- C:\Users\Vladka\AppData\Roaming\52E2.exe
2012-01-29 20:53:51 ----A---- C:\Users\Vladka\AppData\Roaming\26E1.exe
2012-01-29 20:53:49 ----A---- C:\Users\Vladka\AppData\Roaming\1F23.exe
2012-01-29 20:53:43 ----A---- C:\Users\Vladka\AppData\Roaming\838.exe
2012-01-29 16:52:05 ----A---- C:\Users\Vladka\AppData\Roaming\CF48.exe
2012-01-29 16:52:02 ----A---- C:\Users\Vladka\AppData\Roaming\C549.exe
2012-01-29 16:52:00 ----A---- C:\Users\Vladka\AppData\Roaming\BD1E.exe
2012-01-29 16:51:58 ----A---- C:\Users\Vladka\AppData\Roaming\B33D.exe
2012-01-29 16:51:56 ----A---- C:\Users\Vladka\AppData\Roaming\AB70.exe
2012-01-29 16:51:53 ----A---- C:\Users\Vladka\AppData\Roaming\9FCB.exe
2012-01-29 16:51:49 ----A---- C:\Users\Vladka\AppData\Roaming\90AD.exe
2012-01-29 16:51:48 ----D---- C:\RECYCLER
2012-01-29 16:51:47 ----A---- C:\Users\Vladka\AppData\Roaming\891E.exe
2012-01-29 12:16:51 ----A---- C:\Users\Vladka\AppData\Roaming\D2C4.exe
2012-01-29 12:16:40 ----A---- C:\Users\Vladka\AppData\Roaming\A77F.exe
2012-01-29 12:16:28 ----A---- C:\Users\Vladka\AppData\Roaming\78B1.exe
2012-01-29 12:16:16 ----A---- C:\Users\Vladka\AppData\Roaming\4A51.exe
2012-01-29 12:16:04 ----A---- C:\Users\Vladka\AppData\Roaming\1B25.exe
2012-01-29 12:14:39 ----AH---- C:\Users\Vladka\AppData\Roaming\Izuguo.cmd
2012-01-29 12:14:21 ----A---- C:\Users\Vladka\AppData\Roaming\8877.exe
2012-01-29 12:14:09 ----A---- C:\Users\Vladka\AppData\Roaming\59D8.exe
2012-01-29 12:13:58 ----A---- C:\Users\Vladka\AppData\Roaming\2F0F.exe
2012-01-29 00:03:46 ----D---- C:\ProgramData\Google
2012-01-29 00:03:46 ----D---- C:\Program Files\Google
2012-01-29 00:03:38 ----D---- C:\Users\Vladka\AppData\Roaming\Skype
2012-01-29 00:03:27 ----RD---- C:\Program Files\Skype
2012-01-29 00:03:19 ----D---- C:\ProgramData\Skype
2012-01-28 23:36:50 ----A---- C:\windows\system32\drivers\dxgmms1.sys
2012-01-28 23:31:43 ----A---- C:\windows\system32\kerberos.dll
2012-01-28 23:26:35 ----A---- C:\windows\system32\drivers\srv2.sys
2012-01-28 23:26:34 ----A---- C:\windows\system32\drivers\srvnet.sys
2012-01-28 23:26:34 ----A---- C:\windows\system32\drivers\srv.sys
2012-01-28 23:26:09 ----A---- C:\windows\system32\drivers\afd.sys
2012-01-28 23:25:51 ----A---- C:\windows\system32\drivers\tcpip.sys
2012-01-28 23:25:37 ----A---- C:\windows\system32\ntdll.dll
2012-01-28 23:22:13 ----A---- C:\windows\system32\drivers\Diskdump.sys
2012-01-28 23:21:21 ----A---- C:\windows\system32\xmllite.dll
2012-01-28 23:21:19 ----A---- C:\windows\system32\prevhost.exe
2012-01-28 23:21:18 ----A---- C:\windows\system32\dnsrslvr.dll
2012-01-28 23:21:18 ----A---- C:\windows\system32\dnscacheugc.exe
2012-01-28 23:21:18 ----A---- C:\windows\system32\dnsapi.dll
2012-01-28 23:21:16 ----A---- C:\windows\system32\atmfd.dll
2012-01-28 23:21:15 ----A---- C:\windows\system32\fontsub.dll
2012-01-28 23:21:15 ----A---- C:\windows\system32\atmlib.dll
2012-01-28 23:15:57 ----A---- C:\windows\system32\win32k.sys
2012-01-28 23:15:56 ----A---- C:\windows\system32\psisdecd.dll
2012-01-28 23:15:54 ----A---- C:\windows\system32\umpnpmgr.dll
2012-01-28 23:15:46 ----A---- C:\windows\system32\tzres.dll
2012-01-28 23:13:58 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2012-01-28 23:13:57 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2012-01-28 23:13:57 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2012-01-28 23:13:54 ----A---- C:\windows\system32\oleaut32.dll
2012-01-28 23:13:54 ----A---- C:\windows\system32\oleacc.dll
2012-01-28 23:12:18 ----A---- C:\windows\system32\inetcomm.dll
2012-01-28 23:12:17 ----A---- C:\windows\system32\packager.dll
2012-01-28 23:12:15 ----A---- C:\windows\system32\tquery.dll
2012-01-28 23:12:15 ----A---- C:\windows\system32\mssrch.dll
2012-01-28 23:12:14 ----A---- C:\windows\system32\SearchProtocolHost.exe
2012-01-28 23:12:14 ----A---- C:\windows\system32\SearchIndexer.exe
2012-01-28 23:12:14 ----A---- C:\windows\system32\mssvp.dll
2012-01-28 23:12:14 ----A---- C:\windows\system32\mssph.dll
2012-01-28 23:12:13 ----A---- C:\windows\system32\SearchFilterHost.exe
2012-01-28 23:12:13 ----A---- C:\windows\system32\mssphtb.dll
2012-01-28 23:12:13 ----A---- C:\windows\system32\msscntrs.dll
2012-01-28 23:12:02 ----A---- C:\windows\system32\FXSCOVER.exe
2012-01-28 23:12:00 ----A---- C:\windows\system32\EncDec.dll
2012-01-28 23:11:55 ----A---- C:\windows\system32\XpsPrint.dll
2012-01-28 23:11:51 ----A---- C:\windows\system32\XpsGdiConverter.dll
2012-01-28 23:06:50 ----A---- C:\windows\system32\csrsrv.dll
2012-01-28 23:06:48 ----A---- C:\windows\system32\sbe.dll
2012-01-28 23:06:48 ----A---- C:\windows\system32\CPFilters.dll
2012-01-28 23:06:25 ----A---- C:\windows\system32\quartz.dll
2012-01-28 23:06:24 ----A---- C:\windows\system32\qdvd.dll
2012-01-28 23:04:40 ----A---- C:\windows\explorer.exe
2012-01-28 23:04:36 ----A---- C:\windows\system32\winsrv.dll
2012-01-28 23:04:36 ----A---- C:\windows\system32\KernelBase.dll
2012-01-28 23:04:36 ----A---- C:\windows\system32\kernel32.dll
2012-01-28 23:04:36 ----A---- C:\windows\system32\conhost.exe
2012-01-28 23:04:35 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2012-01-28 23:04:35 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2012-01-28 23:04:35 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2012-01-28 23:04:35 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2012-01-28 23:04:35 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2012-01-28 23:04:35 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2012-01-28 23:04:35 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2012-01-28 23:04:35 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-01-28 23:04:35 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2012-01-28 23:04:35 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2012-01-28 23:04:35 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2012-01-28 23:04:35 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2012-01-28 23:04:35 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2012-01-28 23:04:35 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2012-01-28 23:04:35 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2012-01-28 23:04:35 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2012-01-28 23:04:35 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2012-01-28 23:04:35 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2012-01-28 23:04:35 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2012-01-28 23:04:35 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2012-01-28 23:04:35 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2012-01-28 23:04:35 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2012-01-28 23:04:35 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2012-01-28 23:04:35 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2012-01-28 23:04:35 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2012-01-28 23:04:35 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2012-01-28 23:04:35 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2012-01-28 23:04:35 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2012-01-28 23:04:21 ----A---- C:\windows\system32\odbctrac.dll
2012-01-28 23:04:21 ----A---- C:\windows\system32\odbcjt32.dll
2012-01-28 23:04:21 ----A---- C:\windows\system32\odbccu32.dll
2012-01-28 23:04:21 ----A---- C:\windows\system32\odbccr32.dll
2012-01-28 23:04:21 ----A---- C:\windows\system32\odbccp32.dll
2012-01-28 23:03:50 ----A---- C:\windows\system32\ntoskrnl.exe
2012-01-28 23:03:49 ----A---- C:\windows\system32\ntkrnlpa.exe
2012-01-28 23:01:46 ----A---- C:\windows\system32\mfc42u.dll
2012-01-28 23:01:46 ----A---- C:\windows\system32\mfc42.dll
2012-01-28 23:01:35 ----A---- C:\windows\system32\drivers\bowser.sys
2012-01-28 23:01:33 ----A---- C:\windows\system32\poqexec.exe
2012-01-28 03:09:09 ----D---- C:\windows\SoftwareDistribution
2012-01-28 03:06:19 ----ASH---- C:\hiberfil.sys
2012-01-28 03:06:18 ----SHD---- C:\System Volume Information
2012-01-28 03:06:18 ----ASH---- C:\pagefile.sys
2012-01-27 22:27:07 ----D---- C:\Program Files\T-Mobile
2012-01-27 22:26:45 ----A---- C:\windows\system32\drivers\ZTEusbser6k.sys
2012-01-27 22:26:45 ----A---- C:\windows\system32\drivers\ZTEusbnmea.sys
2012-01-27 22:26:45 ----A---- C:\windows\system32\drivers\ZTEusbmdm6k.sys
2012-01-27 22:26:45 ----A---- C:\windows\system32\drivers\massfilter.sys
2012-01-27 22:26:40 ----D---- C:\Program Files\ZTE
2012-01-27 13:32:58 ----SHD---- C:\$RECYCLE.BIN
2012-01-27 13:30:31 ----A---- C:\windows\Language.ini
2012-01-27 13:30:08 ----D---- C:\windows\ConfigSetRoot
2012-01-27 13:29:23 ----A---- C:\windows\system32\drivers\RTEQEX0.dat
2012-01-27 13:27:46 ----SD---- C:\Users\Vladka\AppData\Roaming\Microsoft
2012-01-27 13:27:46 ----D---- C:\Users\Vladka\AppData\Roaming\Macromedia
2012-01-27 13:27:46 ----D---- C:\Users\Vladka\AppData\Roaming\InstallShield
2012-01-27 13:27:46 ----D---- C:\Users\Vladka\AppData\Roaming\Identities
2012-01-27 13:27:46 ----D---- C:\Users\Vladka\AppData\Roaming\E-Cam
2012-01-27 13:27:46 ----D---- C:\Users\Vladka\AppData\Roaming\ASUS WebStorage
2012-01-27 13:27:46 ----D---- C:\Users\Vladka\AppData\Roaming\Adobe
2012-01-27 13:26:26 ----SHD---- C:\Recovery

======List of files/folders modified in the last 1 month======

2012-02-13 13:56:56 ----D---- C:\windows\Temp
2012-02-13 13:56:15 ----D---- C:\windows\System32
2012-02-13 13:56:15 ----A---- C:\windows\system32\PerfStringBackup.INI
2012-02-13 13:56:13 ----D---- C:\windows\inf
2012-02-13 13:47:50 ----D---- C:\windows\Microsoft.NET
2012-02-12 20:51:42 ----D---- C:\windows\system32\LogFiles
2012-02-12 12:21:16 ----D---- C:\windows\system32\config
2012-02-12 12:09:21 ----SHD---- C:\windows\Installer
2012-02-12 12:09:19 ----RSD---- C:\windows\assembly
2012-02-12 12:09:01 ----D---- C:\windows\system32\cs-CZ
2012-02-12 12:03:37 ----D---- C:\windows\system32\en-US
2012-02-12 12:03:30 ----RD---- C:\Program Files
2012-02-12 11:59:39 ----D---- C:\windows\Prefetch
2012-02-10 21:47:06 ----D---- C:\windows\winsxs
2012-02-10 13:55:27 ----D---- C:\windows\system32\pl-PL
2012-02-10 13:55:27 ----D---- C:\windows\system32\hu-HU
2012-02-10 13:55:27 ----AD---- C:\windows\system32\drivers
2012-02-10 13:55:26 ----D---- C:\windows\system32\DriverStore
2012-02-10 13:51:09 ----D---- C:\ProgramData\Trend Micro
2012-02-07 13:58:17 ----D---- C:\Windows
2012-02-04 13:14:18 ----D---- C:\windows\Logs
2012-01-31 17:21:42 ----D---- C:\windows\system32\catroot2
2012-01-31 17:21:42 ----D---- C:\windows\system32\catroot
2012-01-31 12:34:26 ----D---- C:\windows\system32\wdi
2012-01-31 12:30:57 ----D---- C:\Program Files\Microsoft Silverlight
2012-01-31 12:29:09 ----D---- C:\windows\AppPatch
2012-01-31 12:29:08 ----RSD---- C:\windows\Fonts
2012-01-31 12:29:08 ----D---- C:\Program Files\Common Files\System
2012-01-31 12:29:07 ----D---- C:\windows\system32\sk-SK
2012-01-31 12:29:04 ----D---- C:\windows\system32\migration
2012-01-31 12:29:03 ----D---- C:\Program Files\Internet Explorer
2012-01-30 17:22:38 ----D---- C:\windows\debug
2012-01-30 14:06:56 ----D---- C:\Program Files\Common Files\microsoft shared
2012-01-30 14:04:58 ----D---- C:\windows\system32\restore
2012-01-29 00:37:14 ----D---- C:\windows\system32\Tasks
2012-01-29 00:07:23 ----D---- C:\windows\Tasks
2012-01-29 00:03:46 ----HD---- C:\ProgramData
2012-01-28 11:01:06 ----SD---- C:\ProgramData\Microsoft
2012-01-28 03:20:01 ----D---- C:\windows\system32\CodeIntegrity
2012-01-28 03:13:30 ----D---- C:\windows\rescache
2012-01-28 03:08:33 ----D---- C:\windows\system32\RTCOM
2012-01-28 03:06:18 ----D---- C:\Program Files\Elantech
2012-01-27 22:27:38 ----D---- C:\windows\ModemLogs
2012-01-27 13:38:10 ----HD---- C:\ExpressGateUtil
2012-01-27 13:29:23 ----D---- C:\Program Files\Asus
2012-01-27 13:27:45 ----RD---- C:\Users
2012-01-27 13:26:29 ----D---- C:\windows\panther
2012-01-27 13:26:26 ----D---- C:\windows\system32\Recovery

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\windows\system32\drivers\iaStor.sys [2010-06-08 435736]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 AsIO;AsIO; C:\windows\system32\drivers\AsIO.sys [2010-06-28 11456]
R1 AsUpIO;AsUpIO; C:\windows\system32\drivers\AsUpIO.sys [2010-08-03 11832]
R1 tmactmon;tmactmon; C:\windows\system32\DRIVERS\tmactmon.sys [2010-09-17 80464]
R1 tmcomm;tmcomm; C:\windows\system32\DRIVERS\tmcomm.sys [2010-09-17 189520]
R1 tmevtmgr;tmevtmgr; C:\windows\system32\DRIVERS\tmevtmgr.sys [2010-09-17 64080]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 tmtdi;Trend Micro TDI Driver; C:\windows\system32\DRIVERS\tmtdi.sys [2010-09-17 92112]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athr.sys [2009-10-05 1221632]
R3 ETD;ELAN PS/2 Port Input Device; C:\windows\system32\DRIVERS\ETD.sys [2010-04-13 109960]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2010-05-10 4806144]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHDA.sys [2010-08-24 3178472]
R3 kbfiltr;Keyboard Filter; C:\windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 13880]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\windows\system32\DRIVERS\L1C62x86.sys [2010-09-27 68208]
S2 Parvdm;Parvdm; C:\windows\system32\drivers\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\windows\system32\drivers\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2011-04-28 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 btwavdt;Bluetooth AVDT; C:\windows\system32\drivers\btwavdt.sys []
S3 btwrchid;btwrchid; C:\windows\system32\drivers\btwrchid.sys []
S3 fssfltr;FssFltr; C:\windows\system32\DRIVERS\fssfltr.sys [2010-09-23 39272]
S3 massfilter;Mass Storage Filter Driver; C:\windows\system32\drivers\massfilter.sys [2010-02-22 9216]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 sisagp;SIS AGP Bus Filter; C:\windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
S3 viaagp;VIA AGP Bus Filter; C:\windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\windows\system32\drivers\viac7.sys [2009-07-14 52736]
S3 wsvd;wsvd; C:\windows\system32\DRIVERS\wsvd.sys [2009-07-22 81704]
S3 ZTEusbmdm6k;ZTE Proprietary USB Driver; C:\windows\system32\DRIVERS\ZTEusbmdm6k.sys [2010-03-02 105856]
S3 ZTEusbnmea;ZTE NMEA Port; C:\windows\system32\DRIVERS\ZTEusbnmea.sys [2010-03-02 105856]
S3 ZTEusbser6k;ZTE Diagnostic Port; C:\windows\system32\DRIVERS\ZTEusbser6k.sys [2010-03-02 105856]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ameisvc;Web'n'walk Manager mobile equipment installation service; C:\Program Files\T-Mobile\Web'n'walk Manager\ameisvc.exe [2011-06-24 123120]
R2 AsusService;Asus Launcher Service; C:\windows\system32\AsusService.exe [2011-03-04 224680]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\BingBar\SeaPort.EXE [2011-02-25 249648]
R2 TiMiniService;TiMiniService; C:\Program Files\Trend Micro\Titanium\TiMiniService.exe [2010-09-17 161104]
R2 VideAceWindowsService;VideAceWindowsService; C:\ExpressGateUtil\VAWinService.exe [2011-01-13 91464]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 1710464]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-01-29 136176]
S3 Amsp;Trend Micro Solution Platform; C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe [2010-09-17 196320]
S3 BBSvc;Bing Bar Update Service; C:\Program Files\Microsoft\BingBar\BBSvc.EXE [2011-03-02 183560]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-01-29 136176]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-01-29 182768]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 51040]

-----------------EOF-----------------

Zdravim a pekny den preji

Zaliskane jak jetel od sklepa az na pudu

Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller ... r_TEST.exe

Jedna se o testovaci verzi prelozeneho RK - proto je v nazvu ten TEST v navodu nize jsou i anglicke nazvy prikazu kdyby CZ nefungovala
Ukoncete vsechny programy
Pokud pouzivate Win Vista ci W7, kliknete na RogueKiller pravym a dejte Run As Administrator ci Spustit jako spravce
Pockejte na dokonceni PreScanu
Zvolte moznost Prohledat (scan)
Po dokonceni skenu kliknete na Zpráva (Report)- otevre se log, ten sem vlozte

Díky za rychlou reakci a posílám report

RogueKiller V7.0.4 [02/08/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Operační systém: Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno v: Normální režim
Uživatel: Vladka [Práva správce]
Mode: Kontrola -- Date : 02/13/2012 14:25:34

¤¤¤ Škodlivé procesy: 0 ¤¤¤

¤¤¤ Záznamy Registrů: 4 ¤¤¤
[SUSP PATH] HKCU\[...]\Run : Izuguo (C:\Users\Vladka\AppData\Roaming\Izuguo.cmd) -> FOUND
[SUSP PATH] HKUS\S-1-5-21-1580036384-1644195076-2926136624-1000[...]\Run : Izuguo (C:\Users\Vladka\AppData\Roaming\Izuguo.cmd) -> FOUND
[HJ] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač: [NAHRÁNO] ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: ST9320325AS +++++
--- User ---
[MBR] add8f74ecd4bc47dad355fd45247fad7
[BSP] 785fbf9b6bff37010d243babedb39d63 : Windows 7 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 102400 Mo
1 - [XXXXXX] FAT32 (0x1b) [HIDDEN!] Offset (sectors): 209717248 | Size: 15360 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 241174528 | Size: 187467 Mo
3 - [XXXXXX] UNKNOWN (0xef) [VISIBLE] Offset (sectors): 625106944 | Size: 16 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: A-DATA USB Flash Drive USB Device +++++
--- User ---
[MBR] 20ed8222936c0f398ea0ee9af508151f
[BSP] 807d2bd9d9c5ad952a9ff9510685a9b0 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 7701 Mo
User = LL1 ... OK!
Error reading LL2 MBR!

Dokončeno : << RKreport[1].txt >>
RKreport[1].txt

PROSIM CTETE DUKLADNE NAVOD - TATO UTILITA MA VELKOU SCHOPNOST MAZAT A JE NUTNE JI APLIKOVAT JEN NA DOPORUCENI, JINAK VAM MUZE JIT SYSTEM DO KYTEK

Stahnete a ulozte na plochu Combofix http://download.bleepingcomputer.com/sUBs/ComboFix.exe

Vypnete vsechny rezidentni bezpecnostní programy - firewally, antiviry, antispywary apod.
Pokud mate Win XP spustte pod uctem Spravce\Administratora
Pokud mate Win Vista ci Win 7, kliknete na Combofix pravym a dejte Run As Administrator ci Spustit jako spravce
Ihned po startu se zobrazi stranka s licencnim ujednanim, pokracujte kliknutim na Ano
Pokud Vam CF nabidne instalaci Konzoly pro zotaveni, tak souhlaste
Dale postupujte dle pokynu, behem scanu nechte PC naprosto v klidu - nespoustejte zadne aplikace a neklikejte do zobrazujiciho se okna
Scan by mel trvat cca 10 min, ale pokud bude PC hodne zaneseno, muze se cas prodlouzit
Po dokonceni skenu a pripadnem restartu CF zobrazi log, pripadne jej najdete zde C:\ComboFix.txt, jeho obsah sem vlozte
Detailni postup vc. obrazku mate zde http://www.bleepingcomputer.com/combofi ... t-combofix

ComboFix 12-02-12.01 - Vladka 13.02.2012 14:57:05.1.4 - x86
Microsoft Windows 7 Starter 6.1.7601.1.1250.420.1029.18.1014.316 [GMT 1:00]
Spuštěný z: c:\users\Vladka\Desktop\ComboFix.exe
AV: Trend Micro Titanium *Disabled/Updated* {68F968AC-2AA0-091D-848C-803E83E35902}
SP: Trend Micro Titanium *Disabled/Updated* {D3988948-0C9A-0693-BE3C-BB4CF86413BF}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\FullRemove.exe
c:\users\Vladka\AppData\Roaming\1428.exe
c:\users\Vladka\AppData\Roaming\142E.exe
c:\users\Vladka\AppData\Roaming\1557.exe
c:\users\Vladka\AppData\Roaming\191D.exe
c:\users\Vladka\AppData\Roaming\1B25.exe
c:\users\Vladka\AppData\Roaming\1F23.exe
c:\users\Vladka\AppData\Roaming\207E.exe
c:\users\Vladka\AppData\Roaming\217C.exe
c:\users\Vladka\AppData\Roaming\22B0.exe
c:\users\Vladka\AppData\Roaming\26E1.exe
c:\users\Vladka\AppData\Roaming\2743.exe
c:\users\Vladka\AppData\Roaming\2AAE.exe
c:\users\Vladka\AppData\Roaming\2AFE.exe
c:\users\Vladka\AppData\Roaming\2B29.exe
c:\users\Vladka\AppData\Roaming\2C03.exe
c:\users\Vladka\AppData\Roaming\2C8B.exe
c:\users\Vladka\AppData\Roaming\2F0F.exe
c:\users\Vladka\AppData\Roaming\2F11.exe
c:\users\Vladka\AppData\Roaming\31A1.exe
c:\users\Vladka\AppData\Roaming\3368.exe
c:\users\Vladka\AppData\Roaming\34EE.exe
c:\users\Vladka\AppData\Roaming\3567.exe
c:\users\Vladka\AppData\Roaming\3765.exe
c:\users\Vladka\AppData\Roaming\3A8A.exe
c:\users\Vladka\AppData\Roaming\3A97.exe
c:\users\Vladka\AppData\Roaming\3BBD.exe
c:\users\Vladka\AppData\Roaming\3CC9.exe
c:\users\Vladka\AppData\Roaming\3E7C.exe
c:\users\Vladka\AppData\Roaming\3ECE.exe
c:\users\Vladka\AppData\Roaming\40F7.exe
c:\users\Vladka\AppData\Roaming\4294.exe
c:\users\Vladka\AppData\Roaming\441C.exe
c:\users\Vladka\AppData\Roaming\44D9.exe
c:\users\Vladka\AppData\Roaming\4533.exe
c:\users\Vladka\AppData\Roaming\47FF.exe
c:\users\Vladka\AppData\Roaming\4819.exe
c:\users\Vladka\AppData\Roaming\4860.exe
c:\users\Vladka\AppData\Roaming\4A51.exe
c:\users\Vladka\AppData\Roaming\4AA0.exe
c:\users\Vladka\AppData\Roaming\4AEA.exe
c:\users\Vladka\AppData\Roaming\4B7D.exe
c:\users\Vladka\AppData\Roaming\4D11.exe
c:\users\Vladka\AppData\Roaming\4FD2.exe
c:\users\Vladka\AppData\Roaming\5045.exe
c:\users\Vladka\AppData\Roaming\50DD.exe
c:\users\Vladka\AppData\Roaming\5114.exe
c:\users\Vladka\AppData\Roaming\51F2.exe
c:\users\Vladka\AppData\Roaming\529D.exe
c:\users\Vladka\AppData\Roaming\52E2.exe
c:\users\Vladka\AppData\Roaming\538.exe
c:\users\Vladka\AppData\Roaming\5607.exe
c:\users\Vladka\AppData\Roaming\5618.exe
c:\users\Vladka\AppData\Roaming\5822.exe
c:\users\Vladka\AppData\Roaming\58F7.exe
c:\users\Vladka\AppData\Roaming\59C3.exe
c:\users\Vladka\AppData\Roaming\59D8.exe
c:\users\Vladka\AppData\Roaming\5BE2.exe
c:\users\Vladka\AppData\Roaming\5C10.exe
c:\users\Vladka\AppData\Roaming\5E71.exe
c:\users\Vladka\AppData\Roaming\5F7D.exe
c:\users\Vladka\AppData\Roaming\6061.exe
c:\users\Vladka\AppData\Roaming\620C.exe
c:\users\Vladka\AppData\Roaming\62C9.exe
c:\users\Vladka\AppData\Roaming\62D5.exe
c:\users\Vladka\AppData\Roaming\62FC.exe
c:\users\Vladka\AppData\Roaming\64D7.exe
c:\users\Vladka\AppData\Roaming\6583.exe
c:\users\Vladka\AppData\Roaming\6691.exe
c:\users\Vladka\AppData\Roaming\68D1.exe
c:\users\Vladka\AppData\Roaming\68DB.exe
c:\users\Vladka\AppData\Roaming\699D.exe
c:\users\Vladka\AppData\Roaming\69CA.exe
c:\users\Vladka\AppData\Roaming\6B43.exe
c:\users\Vladka\AppData\Roaming\6E5D.exe
c:\users\Vladka\AppData\Roaming\70CD.exe
c:\users\Vladka\AppData\Roaming\712.exe
c:\users\Vladka\AppData\Roaming\7234.exe
c:\users\Vladka\AppData\Roaming\7246.exe
c:\users\Vladka\AppData\Roaming\72E2.exe
c:\users\Vladka\AppData\Roaming\7402.exe
c:\users\Vladka\AppData\Roaming\77AE.exe
c:\users\Vladka\AppData\Roaming\78B1.exe
c:\users\Vladka\AppData\Roaming\7A3C.exe
c:\users\Vladka\AppData\Roaming\7A52.exe
c:\users\Vladka\AppData\Roaming\7A74.exe
c:\users\Vladka\AppData\Roaming\7AE8.exe
c:\users\Vladka\AppData\Roaming\7AEC.exe
c:\users\Vladka\AppData\Roaming\7BF7.exe
c:\users\Vladka\AppData\Roaming\7C9B.exe
c:\users\Vladka\AppData\Roaming\7F8C.exe
c:\users\Vladka\AppData\Roaming\8029.exe
c:\users\Vladka\AppData\Roaming\8039.exe
c:\users\Vladka\AppData\Roaming\82EA.exe
c:\users\Vladka\AppData\Roaming\8365.exe
c:\users\Vladka\AppData\Roaming\838.exe
c:\users\Vladka\AppData\Roaming\83A4.exe
c:\users\Vladka\AppData\Roaming\852F.exe
c:\users\Vladka\AppData\Roaming\86EC.exe
c:\users\Vladka\AppData\Roaming\872F.exe
c:\users\Vladka\AppData\Roaming\8877.exe
c:\users\Vladka\AppData\Roaming\891E.exe
c:\users\Vladka\AppData\Roaming\8A64.exe
c:\users\Vladka\AppData\Roaming\8AA7.exe
c:\users\Vladka\AppData\Roaming\8C4.exe
c:\users\Vladka\AppData\Roaming\8E6C.exe
c:\users\Vladka\AppData\Roaming\8E8F.exe
c:\users\Vladka\AppData\Roaming\8F9B.exe
c:\users\Vladka\AppData\Roaming\8FD0.exe
c:\users\Vladka\AppData\Roaming\90AD.exe
c:\users\Vladka\AppData\Roaming\9255.exe
c:\users\Vladka\AppData\Roaming\92BE.exe
c:\users\Vladka\AppData\Roaming\931A.exe
c:\users\Vladka\AppData\Roaming\950D.exe
c:\users\Vladka\AppData\Roaming\96F9.exe
c:\users\Vladka\AppData\Roaming\97B1.exe
c:\users\Vladka\AppData\Roaming\980B.exe
c:\users\Vladka\AppData\Roaming\982D.exe
c:\users\Vladka\AppData\Roaming\9839.exe
c:\users\Vladka\AppData\Roaming\990E.exe
c:\users\Vladka\AppData\Roaming\9AD8.exe
c:\users\Vladka\AppData\Roaming\9DEC.exe
c:\users\Vladka\AppData\Roaming\9FCB.exe
c:\users\Vladka\AppData\Roaming\A075.exe
c:\users\Vladka\AppData\Roaming\A0B2.exe
c:\users\Vladka\AppData\Roaming\A104.exe
c:\users\Vladka\AppData\Roaming\A2B0.exe
c:\users\Vladka\AppData\Roaming\A3BE.exe
c:\users\Vladka\AppData\Roaming\A5A7.exe
c:\users\Vladka\AppData\Roaming\A6E2.exe
c:\users\Vladka\AppData\Roaming\A758.exe
c:\users\Vladka\AppData\Roaming\A778.exe
c:\users\Vladka\AppData\Roaming\A77F.exe
c:\users\Vladka\AppData\Roaming\A893.exe
c:\users\Vladka\AppData\Roaming\A8FD.exe
c:\users\Vladka\AppData\Roaming\AB70.exe
c:\users\Vladka\AppData\Roaming\AD60.exe
c:\users\Vladka\AppData\Roaming\B0FA.exe
c:\users\Vladka\AppData\Roaming\B151.exe
c:\users\Vladka\AppData\Roaming\B166.exe
c:\users\Vladka\AppData\Roaming\B313.exe
c:\users\Vladka\AppData\Roaming\B33D.exe
c:\users\Vladka\AppData\Roaming\B46D.exe
c:\users\Vladka\AppData\Roaming\B4B5.exe
c:\users\Vladka\AppData\Roaming\B55D.exe
c:\users\Vladka\AppData\Roaming\B83B.exe
c:\users\Vladka\AppData\Roaming\B935.exe
c:\users\Vladka\AppData\Roaming\B9CA.exe
c:\users\Vladka\AppData\Roaming\BA74.exe
c:\users\Vladka\AppData\Roaming\BBB0.exe
c:\users\Vladka\AppData\Roaming\BD1E.exe
c:\users\Vladka\AppData\Roaming\BD79.exe
c:\users\Vladka\AppData\Roaming\C018.exe
c:\users\Vladka\AppData\Roaming\C029.exe
c:\users\Vladka\AppData\Roaming\C0B4.exe
c:\users\Vladka\AppData\Roaming\C0BD.exe
c:\users\Vladka\AppData\Roaming\C1D6.exe
c:\users\Vladka\AppData\Roaming\C203.exe
c:\users\Vladka\AppData\Roaming\C37C.exe
c:\users\Vladka\AppData\Roaming\C4BD.exe
c:\users\Vladka\AppData\Roaming\C549.exe
c:\users\Vladka\AppData\Roaming\C575.exe
c:\users\Vladka\AppData\Roaming\C58F.exe
c:\users\Vladka\AppData\Roaming\C8F8.exe
c:\users\Vladka\AppData\Roaming\C96C.exe
c:\users\Vladka\AppData\Roaming\CB09.exe
c:\users\Vladka\AppData\Roaming\CB88.exe
c:\users\Vladka\AppData\Roaming\CD81.exe
c:\users\Vladka\AppData\Roaming\CEF7.exe
c:\users\Vladka\AppData\Roaming\CF40.exe
c:\users\Vladka\AppData\Roaming\CF48.exe
c:\users\Vladka\AppData\Roaming\CF9E.exe
c:\users\Vladka\AppData\Roaming\D1FE.exe
c:\users\Vladka\AppData\Roaming\D20C.exe
c:\users\Vladka\AppData\Roaming\D235.exe
c:\users\Vladka\AppData\Roaming\D2C4.exe
c:\users\Vladka\AppData\Roaming\D384.exe
c:\users\Vladka\AppData\Roaming\D4F9.exe
c:\users\Vladka\AppData\Roaming\D54.exe
c:\users\Vladka\AppData\Roaming\D5EA.exe
c:\users\Vladka\AppData\Roaming\D808.exe
c:\users\Vladka\AppData\Roaming\D88.exe
c:\users\Vladka\AppData\Roaming\DB40.exe
c:\users\Vladka\AppData\Roaming\DD07.exe
c:\users\Vladka\AppData\Roaming\DE6.exe
c:\users\Vladka\AppData\Roaming\DE6E.exe
c:\users\Vladka\AppData\Roaming\E0B0.exe
c:\users\Vladka\AppData\Roaming\E0CE.exe
c:\users\Vladka\AppData\Roaming\E2F4.exe
c:\users\Vladka\AppData\Roaming\E3BA.exe
c:\users\Vladka\AppData\Roaming\E571.exe
c:\users\Vladka\AppData\Roaming\E723.exe
c:\users\Vladka\AppData\Roaming\E938.exe
c:\users\Vladka\AppData\Roaming\E949.exe
c:\users\Vladka\AppData\Roaming\ECB5.exe
c:\users\Vladka\AppData\Roaming\EDDB.exe
c:\users\Vladka\AppData\Roaming\F2FA.exe
c:\users\Vladka\AppData\Roaming\F4C2.exe
c:\users\Vladka\AppData\Roaming\F635.exe
c:\users\Vladka\AppData\Roaming\F8E2.exe
c:\users\Vladka\AppData\Roaming\FBB2.exe
c:\users\Vladka\AppData\Roaming\FD13.exe
c:\users\Vladka\AppData\Roaming\FD1C.exe
c:\users\Vladka\AppData\Roaming\FE1E.exe
c:\users\Vladka\AppData\Roaming\Izuguo.cmd
c:\windows\system32\Thumbs.db
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-01-13 do 2012-02-13 )))))))))))))))))))))))))))))))
.
.
2012-02-13 14:18 . 2012-02-13 14:18 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-02-13 14:02 . 2012-02-13 14:02 56200 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{E09FD1B1-D1B6-435E-B84C-02EEA4E3F5FE}\offreg.dll
2012-02-13 13:00 . 2012-02-13 13:00 -------- d-----w- C:\rsit
2012-02-12 11:13 . 2012-01-17 03:39 6557240 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{E09FD1B1-D1B6-435E-B84C-02EEA4E3F5FE}\mpengine.dll
2012-02-12 11:09 . 2012-01-29 04:10 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-02-12 11:03 . 2012-02-12 11:03 -------- d-----w- c:\program files\Microsoft.NET
2012-02-07 12:56 . 2012-02-07 12:57 11264 ----a-w- c:\windows\DCEBoot.exe
2012-01-30 16:21 . 2011-11-17 05:41 67440 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2012-01-30 16:21 . 2011-11-17 05:41 134000 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2012-01-30 16:21 . 2011-11-17 05:39 369352 ----a-w- c:\windows\system32\drivers\cng.sys
2012-01-30 16:21 . 2011-11-17 05:35 314880 ----a-w- c:\windows\system32\webio.dll
2012-01-30 16:21 . 2011-11-17 05:34 100352 ----a-w- c:\windows\system32\sspicli.dll
2012-01-30 16:21 . 2011-11-17 05:34 224768 ----a-w- c:\windows\system32\schannel.dll
2012-01-30 16:21 . 2011-11-17 05:32 1038848 ----a-w- c:\windows\system32\lsasrv.dll
2012-01-30 16:21 . 2011-11-17 05:29 22528 ----a-w- c:\windows\system32\lsass.exe
2012-01-30 16:20 . 2011-11-17 05:34 15872 ----a-w- c:\windows\system32\sspisrv.dll
2012-01-30 16:20 . 2011-11-17 05:34 22016 ----a-w- c:\windows\system32\secur32.dll
2012-01-28 23:03 . 2012-01-28 23:07 -------- d-----w- c:\program files\Google
2012-01-28 23:03 . 2012-01-28 23:37 -------- d-----r- c:\program files\Skype
2012-01-28 23:03 . 2012-01-28 23:03 -------- d-----w- c:\programdata\Skype
2012-01-28 22:36 . 2011-02-03 05:54 219008 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2012-01-28 22:31 . 2010-12-17 07:07 542208 ----a-w- c:\windows\system32\kerberos.dll
2012-01-28 22:26 . 2011-04-29 02:46 310272 ----a-w- c:\windows\system32\drivers\srv2.sys
2012-01-28 22:26 . 2011-04-29 02:46 311808 ----a-w- c:\windows\system32\drivers\srv.sys
2012-01-28 22:26 . 2011-04-29 02:46 114688 ----a-w- c:\windows\system32\drivers\srvnet.sys
2012-01-28 22:26 . 2011-04-25 02:18 338944 ----a-w- c:\windows\system32\drivers\afd.sys
2012-01-28 22:25 . 2011-09-29 16:03 1290608 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-01-28 22:25 . 2011-11-17 05:38 1288472 ----a-w- c:\windows\system32\ntdll.dll
2012-01-28 22:22 . 2011-04-22 19:14 27008 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2012-01-28 22:21 . 2011-02-18 05:39 31232 ----a-w- c:\windows\system32\prevhost.exe
2012-01-28 22:21 . 2011-03-03 05:38 132608 ----a-w- c:\windows\system32\dnsrslvr.dll
2012-01-28 22:21 . 2011-03-03 05:36 28672 ----a-w- c:\windows\system32\dnscacheugc.exe
2012-01-28 22:21 . 2011-02-19 04:34 294912 ----a-w- c:\windows\system32\atmfd.dll
2012-01-28 22:21 . 2011-02-19 06:30 34304 ----a-w- c:\windows\system32\atmlib.dll
2012-01-28 22:21 . 2010-09-30 06:47 70656 ----a-w- c:\windows\system32\fontsub.dll
2012-01-28 22:21 . 2011-10-01 04:37 708608 ----a-w- c:\program files\Common Files\System\wab32.dll
2012-01-28 22:15 . 2011-11-24 04:25 2342912 ----a-w- c:\windows\system32\win32k.sys
2012-01-28 22:15 . 2011-08-17 04:24 465408 ----a-w- c:\windows\system32\psisdecd.dll
2012-01-28 22:15 . 2011-08-17 04:19 75776 ----a-w- c:\windows\system32\psisrndr.ax
2012-01-28 22:15 . 2011-05-24 10:44 293376 ----a-w- c:\windows\system32\umpnpmgr.dll
2012-01-28 22:15 . 2011-11-05 04:26 2048 ----a-w- c:\windows\system32\tzres.dll
2012-01-28 22:13 . 2011-07-09 02:30 223744 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2012-01-28 22:13 . 2011-04-27 02:17 96768 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2012-01-28 22:13 . 2011-04-27 02:17 123904 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2012-01-28 22:13 . 2011-08-27 04:26 571904 ----a-w- c:\windows\system32\oleaut32.dll
2012-01-28 22:13 . 2011-08-27 04:26 233472 ----a-w- c:\windows\system32\oleacc.dll
2012-01-28 22:11 . 2011-03-12 11:23 870912 ----a-w- c:\windows\system32\XpsPrint.dll
2012-01-28 22:11 . 2011-02-24 05:38 288256 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2012-01-28 22:06 . 2011-10-26 04:28 38912 ----a-w- c:\windows\system32\csrsrv.dll
2012-01-28 22:06 . 2010-12-23 05:54 850944 ----a-w- c:\windows\system32\sbe.dll
2012-01-28 22:06 . 2010-12-23 05:54 642048 ----a-w- c:\windows\system32\CPFilters.dll
2012-01-28 22:06 . 2010-12-23 05:50 199680 ----a-w- c:\windows\system32\mpg2splt.ax
2012-01-28 22:06 . 2011-10-26 04:32 1328128 ----a-w- c:\windows\system32\quartz.dll
2012-01-28 22:06 . 2011-10-26 04:32 514560 ----a-w- c:\windows\system32\qdvd.dll
2012-01-28 22:03 . 2011-10-26 04:47 3912560 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-01-28 22:03 . 2011-10-26 04:47 3967856 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-01-28 22:01 . 2011-03-11 05:33 1164288 ----a-w- c:\windows\system32\mfc42u.dll
2012-01-28 22:01 . 2011-03-11 05:33 1137664 ----a-w- c:\windows\system32\mfc42.dll
2012-01-28 22:01 . 2011-02-23 04:47 69632 ----a-w- c:\windows\system32\drivers\bowser.sys
2012-01-28 22:01 . 2011-04-09 05:56 123904 ----a-w- c:\windows\system32\poqexec.exe
2012-01-28 02:09 . 2011-04-30 01:39 -------- d-----w- c:\users\Default\AppData\Local\ASUS
2012-01-28 02:09 . 2011-04-30 01:39 -------- d-----w- c:\users\Default\AppData\Local\Adobe
2012-01-28 02:09 . 2011-04-30 01:33 -------- d-----w- c:\users\Default\AppData\Roaming\ASUS WebStorage
2012-01-28 02:09 . 2011-04-30 01:21 -------- d-----w- c:\users\Default\AppData\Local\Windows Live
2012-01-28 02:09 . 2011-04-30 01:18 -------- d-----w- c:\users\Default\AppData\Roaming\E-Cam
2012-01-28 02:09 . 2011-04-30 01:04 -------- d-----w- c:\users\Default\AppData\Roaming\InstallShield
2012-01-27 21:27 . 2012-01-27 21:27 -------- d-----w- c:\program files\T-Mobile
2012-01-27 21:26 . 2010-03-02 12:57 105856 ----a-w- c:\windows\system32\drivers\ZTEusbser6k.sys
2012-01-27 21:26 . 2010-03-02 12:57 105856 ----a-w- c:\windows\system32\drivers\ZTEusbnmea.sys
2012-01-27 21:26 . 2010-03-02 12:57 105856 ----a-w- c:\windows\system32\drivers\ZTEusbmdm6k.sys
2012-01-27 21:26 . 2010-02-22 08:06 9216 ----a-w- c:\windows\system32\drivers\massfilter.sys
2012-01-27 21:26 . 2012-01-27 21:26 -------- d-----w- c:\program files\ZTE
2012-01-27 12:30 . 2012-01-27 12:30 -------- d-----w- c:\windows\ConfigSetRoot
2012-01-27 12:29 . 2010-06-30 07:24 520 ----a-w- c:\windows\system32\drivers\RTEQEX0.dat
2012-01-27 12:27 . 2012-01-27 12:27 -------- d-----w- c:\users\Vladka
2012-01-27 12:26 . 2012-01-27 12:26 -------- d-----w- C:\Recovery
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-01-29 16:20 . 2010-06-24 18:33 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2011-11-17 05:34 . 2012-01-30 16:21 224768 ----a-w- c:\windows\system32\schannel.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_B]
@="{CC5FC992-B0AA-47CD-9DC2-83445083CBB8}"
[HKEY_CLASSES_ROOT\CLSID\{CC5FC992-B0AA-47CD-9DC2-83445083CBB8}]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_O]
@="{618A47A2-528B-4D9A-AFC8-97D3233511E2}"
[HKEY_CLASSES_ROOT\CLSID\{618A47A2-528B-4D9A-AFC8-97D3233511E2}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"T-Mobile Communication Centre"="c:\program files\T-Mobile\Web'n'walk Manager\Manager.exe" [2011-11-22 1363984]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2011-10-13 17351304]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ETDWare"="c:\program files\Elantech\ETDCtrl.exe" [2010-04-13 548744]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-28 35696]
"HotkeyMon"="AsusSender.exe" [2011-03-11 34728]
"HotkeyService"="AsusSender.exe" [2011-03-11 34728]
"SuperHybridEngine"="AsusSender.exe" [2011-03-11 34728]
"LiveUpdate"="AsusSender.exe" [2011-03-11 34728]
"CapsHook"="AsusSender.exe" [2011-03-11 34728]
"Eee Docking"="c:\program files\ASUS\Eee Docking\Eee Docking.exe" [2011-01-06 414384]
"ASUSWebStorage"="c:\program files\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe" [2011-02-23 731472]
"VizorHtmlDialog.exe"="c:\program files\Trend Micro\Titanium\UIFramework\VizorHtmlDialog.exe" [2010-10-08 1123664]
"Trend Micro Client Framework"="c:\program files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe" [2010-10-12 112632]
"Trend Micro Titanium"="c:\program files\Trend Micro\Titanium\VizorShortCut.exe" [2010-10-20 218448]
"VAWinAgent"="c:\expressgateutil\VAWinAgent.exe" [2011-03-24 45448]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-05-10 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-05-10 173592]
"Persistence"="c:\windows\system32\igfxpers.exe" [2010-05-10 150552]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-08-24 9722472]
"ASUSPRP"="c:\program files\ASUS\APRP\APRP.EXE" [2011-04-30 2018032]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
AsusVibeLauncher.lnk - c:\program files\Asus\AsusVibe\AsusVibeLauncher.exe [2011-4-30 548528]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2012-01-28 136176]
R3 Amsp;Trend Micro Solution Platform;c:\program files\Trend Micro\AMSP\coreServiceShell.exe coreFrameworkHost.exe [x]
R3 BBSvc;Bing Bar Update Service;c:\program files\Microsoft\BingBar\BBSvc.EXE [2011-03-02 183560]
R3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2012-01-28 136176]
R3 massfilter;Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [2010-02-22 9216]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
R3 wsvd;wsvd;c:\windows\system32\DRIVERS\wsvd.sys [2009-07-22 81704]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]
S1 AsUpIO;AsUpIO;c:\windows\system32\drivers\AsUpIO.sys [2010-08-03 11832]
S1 tmevtmgr;tmevtmgr;c:\windows\system32\DRIVERS\tmevtmgr.sys [2010-09-17 64080]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 ameisvc;Web'n'walk Manager mobile equipment installation service;c:\program files\T-Mobile\Web'n'walk Manager\ameisvc.exe [2011-06-24 123120]
S2 AsusService;Asus Launcher Service;c:\windows\system32\AsusService.exe [2011-03-03 224680]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 TiMiniService;TiMiniService;c:\program files\Trend Micro\Titanium\TiMiniService.exe [2010-09-17 161104]
S2 VideAceWindowsService;VideAceWindowsService;c:\expressgateutil\VAWinService.exe [2011-01-12 91464]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys [2010-04-13 109960]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x86.sys [2010-09-27 68208]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - TRUESIGHT
*Deregistered* - TrueSight
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS FontCache fdrespub AppIDSvc QWAVE wcncsvc
.
Obsah adresáře 'Naplánované úlohy'
.
2012-02-13 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-01-28 23:07]
.
2012-02-13 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-01-28 23:07]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://asus.msn.com
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
HKCU-Run-Izuguo - c:\users\Vladka\AppData\Roaming\Izuguo.cmd
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2012-02-13 15:26:18
ComboFix-quarantined-files.txt 2012-02-13 14:26
.
Před spuštěním: Volných bajtů: 87 562 776 576
Po spuštění: Volných bajtů: 87 208 894 464
.
- - End Of File - - C4B8F0A4385DB332A9EF03FD4060A511

Nasledujici soubory otestujte na VirusTotalu https://www.virustotal.com/cs/

c:\windows\DCEBoot.exe
Kliknete na Choose file
Soubor nehledejte, jen vlozte cestu souboru, ktery chci otestovat
Kliknete na Scan It
Pokud na Vas vyskoci obrazovka jako je nize, tak kliknete na ReAnalyse
Vysledek analyzy sem vlozte (jako odkaz)

https://www.virustotal.com/file/e3b5bbe ... 329154410/

Stahnete OTM http://oldtimer.geekstogo.com/OTM.exe

Pokud pouzivate Win Vista ci W7, kliknete na OTM pravym a dejte Run As Administrator ci Spustit jako spravce
Do leveho okna Paste Instructions for Items to be Moved (pod zlutou caru) vlozte obsah, ktery mate nize

Kód: Vybrat vše

:services
gupdate
gupdatem
gusvc

:files
C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job
C:\RECYCLER
c:\users\Vladka\AppData\Roaming\*.exe
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp

:commands
[RESETHOSTS]
[EMPTYTEMP]
[EMPTYFLASH]

Kliknete na cervene tlacitko MoveIt!
Budete vyzvani na restart, dejte Yes, log pote najdete C:\_OTM\MovedFiles, obsah sem vlozte

All processes killed
========== SERVICES/DRIVERS ==========
Service gupdate stopped successfully!
Service gupdate deleted successfully!
Service gupdatem stopped successfully!
Service gupdatem deleted successfully!
Service gusvc stopped successfully!
Service gusvc deleted successfully!
========== FILES ==========
C:\windows\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\windows\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
File/Folder C:\RECYCLER not found.
File/Folder c:\users\Vladka\AppData\Roaming\*.exe not found.
File/Folder C:\windows\system32\*.tmp.dll not found.
File/Folder C:\windows\system32\SET*.tmp not found.
File/Folder C:\windows\*.tmp not found.
========== COMMANDS ==========
C:\windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 294887 bytes
->Flash cache emptied: 343 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Public
->Temp folder emptied: 0 bytes

User: Vladka
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 49854458 bytes
->Flash cache emptied: 1499 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 575672 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 48,00 mb

[EMPTYFLASH]

User: All Users

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Public

User: Vladka
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb

OTM by OldTimer - Version 3.1.19.0 log created on 02142012_113710

Files moved on Reboot...
File C:\windows\temp\HFID870.tmp.html not found!
C:\windows\temp\HS.log moved successfully.
C:\windows\temp\KB2533523_20120214_113819164-Microsoft .NET Framework 4 Client Profile-MSP0.txt moved successfully.
C:\windows\temp\KB2533523_20120214_113819164.html moved successfully.
File C:\windows\temp\TMP000012A51ECE765192207637 not found!

Registry entries deleted on Reboot...

Jak se chova PC

Jop už to jede docela dobře. V klidu je procesor na 4 procenta, takže asi dobrý.

Nějaké rady co dál?

Odinstalujte Combofix

Prejmenujte ComboFix na Uninstall
Spustte jej
Tohle smaze Combofix a jeho slozky

T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe

Stahnete a spustte
Pro potvrzeni volby mackejte A, Enter
Po pouziti utilitu smazte
Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

Stahnete a spustte
Kliknete na CleanUp a potvrdte YES
Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

Stahnete a spustte
Kliknete na Start a potvrdte OK
Program uklidi a restartuje pc
Po pouziti utilitu smazte

Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič

Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

dejte Hledej problémy
nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

Doporucuji provest defragmentaci disku

Nejjednodussi (ale nejmene ucinny) zpusob je pomoci utility ve windowsech
- Kliknete na Tento pocitac, dale na disk kliknete pravym tlacitkem, vyberte Vlastnosti
- prepnete se do zalozky Nastroje
- Nyni vidite pomucky Defragmentace - spustte ji kliknutim na Defragmentovat
- Toto provedte se vsemi disky
Dalsi moznosti (a mnou doporucenou) je pres programek Defraggler http://www.stahuj.centrum.cz/utility_a_ ... efraggler/
- Program stahnete, nainstalujte (dejte fajfku pryc u yahoo toolbaru) a spustte
- Kliknete na Analyzovat
- Pokud je ve sloupci Fragmentováno vice jak 5%, doporucuji provest defragmentaci (klik na Defragmentovat)
- Postup provedte se vsemi disky
Posledni moznost je pres jednoduchy programek JKDefrag http://www.stahuj.centrum.cz/utility_a_ ... /jkdefrag/
- Vyhodou programku je, ze se neinstaluje
- Staci tedy jen stahnout dle verze vaseho OS a rozbalit
- Nasledne spustit pomoci souboru JKDefrag pripadne JKDefrag64
- Probehne analyza disku a nasledne i defragmentace

Poprosim o novy log z RSIT a napiste co PC

VIRY.CZ

Pomalý netbook, neustálé vytížení jádra na 100%

Pomalý netbook, neustálé vytížení jádra na 100%

Re: Pomalý netbook, neustálé vytížení jádra na 100%

Re: Pomalý netbook, neustálé vytížení jádra na 100%

Re: Pomalý netbook, neustálé vytížení jádra na 100%

Re: Pomalý netbook, neustálé vytížení jádra na 100%

Re: Pomalý netbook, neustálé vytížení jádra na 100%

Re: Pomalý netbook, neustálé vytížení jádra na 100%

Re: Pomalý netbook, neustálé vytížení jádra na 100%

Re: Pomalý netbook, neustálé vytížení jádra na 100%

Re: Pomalý netbook, neustálé vytížení jádra na 100%

Re: Pomalý netbook, neustálé vytížení jádra na 100%

Re: Pomalý netbook, neustálé vytížení jádra na 100%