VIRY.CZ

Dobry den prajem vsetkym,

Uz dva dni sa mi neda prihlasit na skype, dnes som to riesil so supportom skype a mam vse v poriadku, tak som poziadal kamarata aby sa prihlasil na moj skype ucet z jeho PC a vse je naozaj s mojim uctom v poriadku, zaujimave je za ja sa na svojom PC na moj skype ucet neprihlasim, ale na ine ucty skype co som skusal, sestrin, bratov atd sa prihlasit da z mojo PC, skype som niekolko krat odinstaloval s your uninstalerom, skusil ine verzie a dokonca som pouzil aj obnovu sytemu naspat o 5 dni kedy skype prihlasenie na moj ucet fungovalo. Ale bezuspesne ani po vsetkych tychto krokoch sa na moj ucet neda prihlasit z mojho PC. Je mozne ze by som mal v PC vir co tomu brani? aj ked mi to nejak logiku nedava preco zrovna na moj ucet z mojho pc to nejde a na ine ucty ide a z ineho pc aj na moj ucet ide lognut sa, prosim by som o pomoc a velmi pekne predom dakujem, a prikladam log z RSIT:

Logfile of random's system information tool 1.09 (written by random/random)
Run by pocitac at 2013-04-30 18:43:44
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 3 GB (15%) free of 20 GB
Total RAM: 959 MB (46% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:43:47, on 30.4.2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS1\System32\smss.exe
C:\WINDOWS1\system32\winlogon.exe
C:\WINDOWS1\system32\services.exe
C:\WINDOWS1\system32\lsass.exe
C:\WINDOWS1\system32\svchost.exe
C:\WINDOWS1\System32\svchost.exe
C:\WINDOWS1\system32\svchost.exe
C:\WINDOWS1\Explorer.EXE
C:\WINDOWS1\system32\ctfmon.exe
C:\WINDOWS1\system32\spoolsv.exe
C:\WINDOWS1\system32\RUNDLL32.EXE
C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe
C:\Program Files\Notebook Hardware Control\nhc.exe
C:\Program Files\ICQ7.5\ICQ.exe
C:\WINDOWS1\system32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS1\system32\nvsvc32.exe
C:\WINDOWS1\system32\svchost.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\WINDOWS1\system32\wbem\wmiapsrv.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\WINDOWS1\system32\svchost.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
D:\Movies\rapid\ip-tools-iba rozbalit\Ip_tools.exe
C:\WINDOWS1\system32\wscntfy.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Skype\Updater\Updater.exe
C:\Documents and Settings\pocitac\Plocha\RSIT.exe
C:\Program Files\trend micro\pocitac.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.ro
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = Root: HKCU; Subkey: Software\Microsoft\Internet Explorer\SearchUrl; ValueType: string; ValueName: '; ValueData: '; Flags: createvalueifdoesntexist noerror; Tasks: AddSearchQip
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 213.192.37.242:8080
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS1\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS1\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [hpWirelessAssistant] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] CHDAudPropShortcut.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe
O4 - HKLM\..\Run: [NotebookHardwareControl] "C:\Program Files\Notebook Hardware Control\nhc.exe" -quiet
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\RunOnce: [WIAWizardMenu] RUNDLL32.EXE C:\WINDOWS1\system32\sti_ci.dll,WiaCreateWizardMenu
O4 - HKCU\..\Run: [ICQ] "C:\Program Files\ICQ7.5\ICQ.exe" silent loginmode=4
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS1\system32\ctfmon.exe
O4 - HKCU\..\Run: [RevolucniReklama.cz] c:\documents and settings\pocitac\local settings\apps\2.0\2rnkhrt2.qrk\ah7yoonz.b9v\revo..tion_9aab1a4f5826177c_0001.0000_add0ed7dddbb13cf\revolucnireklama.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout pomocí NetXferu - C:\Program Files\Xi\NetXfer\NXAddLink.html
O8 - Extra context menu item: Stáhnout s IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Stáhnout s IDM obsah FLV videa - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Stáhnout s IDM všechny odkazy - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Stáhnout vše pomocí Net&Xferu - C:\Program Files\Xi\NetXfer\NXAddList.html
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra button: HP Chytrý výběr - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS1\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS1\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: HiDownload - {F4FBA929-A891-492C-A0F6-5C79CC4F1742} - C:\Program Files\StreamingStar\HiDownload\hidownload.exe (HKCU)
O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} - file://C:\Program Files\Elf Bowling Holiday Pack\Images\stg_drm.ocx
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 2528473234
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS1\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS1\system32\browseui.dll
O22 - SharedTaskScheduler: Deskscapes - {EC654325-1273-C2A9-2B7C-45D29BCE68FB} - (no file)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: NPVR Recording Service - Unknown owner - C:\Program Files\NPVR\NRecord.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS1\system32\nvsvc32.exe
O23 - Service: OpenVPN Service (OpenVPNService) - Unknown owner - C:\Program Files\OpenVPN\bin\openvpnserv.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Windows Presentation Foundation Font Cache 4.0.0.0 (WPFFontCache_v0400) - Unknown owner - C:\WINDOWS1\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe (file missing)

--
End of file - 9998 bytes

======Scheduled tasks folder======

C:\WINDOWS1\tasks\avast! Emergency Update.job
C:\WINDOWS1\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS1\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\pocitac\Data aplikací\Mozilla\Firefox\Profiles\as9ii7al.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "www.google.sk"
prefs.js - "extensions.enabledItems" - "{3112ca9c-de6d-4884-a869-9855de68056c}:7.1.20110512W, mozilla_cc@internetdownloadmanager.com:6.4, jqs@sun.com:1.0, {35106bca-6c78-48c7-ac28-56df30b51d2a}:1.3.8, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.16"

"smartwebprinting@hp.com"=C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS1\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
"ntfdsaftsfdfdxx@mozilla.org"=C:\Documents and Settings\pocitac\Data aplikací\iPumper\extension_firefox.xpi
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.4.402.287 Plugin
"Path"=C:\WINDOWS1\system32\Macromed\Flash\NPSWF32_11_4_402_287.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS1\system32\Adobe\Director\np32dsw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@alexiptv.org/vlc;version=5.0.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\alexiptv\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX® Web Player
"Path"=C:\Program Files\DivX\DivX Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0]
"Description"=DivX® Player Plugin for VOD Content
"Path"=C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Kinomania.org/vlc;version=1.0.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\Kinomania\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS1\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nppl3260;version=6.0.12.448]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=c:\program files\real\realplayer\Netscape6\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprjplug;version=1.0.3.448]
"Description"=RealJukebox Netscape Plugin
"Path"=c:\program files\real\realplayer\Netscape6\nprjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448]
"Description"=6.0.12.448
"Path"=c:\program files\real\realplayer\Netscape6\nprpjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=1.0.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
aboutCertError.js
aboutPrivateBrowsing.js
aboutRights.js
aboutRobots.js
aboutSessionRestore.js
binary.manifest
browser.xpt
browserdirprovider.dll
brwsrcmp.dll
compreg.dat
FeedConverter.js
FeedProcessor.js
FeedWriter.js
fuelApplication.js
jsconsole-clhandler.js
NetworkGeolocationProvider.js
nsAddonRepository.js
nsBadCertHandler.js
nsBlocklistService.js
nsBrowserContentHandler.js
nsBrowserGlue.js
nsContentDispatchChooser.js
nsContentPrefService.js
nsDefaultCLH.js
nsDownloadManagerUI.js
nsExtensionManager.js
nsHandlerService.js
nsHelperAppDlg.js
nsLivemarkService.js
nsLoginInfo.js
nsLoginManager.js
nsLoginManagerPrompter.js
nsMicrosummaryService.js
nsPlacesDBFlush.js
nsPlacesTransactionsService.js
nsPostUpdateWin.js
nsPrivateBrowsingService.js
nsProxyAutoConfig.js
nsSafebrowsingApplication.js
nsSearchService.js
nsSearchSuggestions.js
nsSessionStartup.js
nsSessionStore.js
nsSetDefaultBrowser.js
nsSidebar.js
nsTaggingService.js
nsTryToClose.js
nsUpdateService.js
nsUrlClassifierLib.js
nsUrlClassifierListManager.js
nsURLFormatter.js
nsWebHandlerApp.js
pluginGlue.js
storage-Legacy.js
storage-mozStorage.js
txEXSLTRegExFunctions.js
WebContentConverter.js
xpti.dat

C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npdeployJava1.dll
npdivx32.dll
npdivx32.xpt
npDivxPlayerPlugin.dll
npnul32.dll
nsIDivxPlayerPlugin.xpt
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files\Mozilla Firefox\searchplugins\
atlas-sk.xml
azet-sk.xml
dunaj-sk.xml
eBay.xml
google.xml
slovnik-sk.xml
wikipedia-sk.xml
zoznam-sk.xml

C:\Documents and Settings\pocitac\Data aplikací\Mozilla\Firefox\Profiles\as9ii7al.default\extensions\
firefox@red-cog.com
{3112ca9c-de6d-4884-a869-9855de68056c}
{35106bca-6c78-48c7-ac28-56df30b51d2a}
{9EB34849-81D3-4841-939D-666D522B889A}

C:\Documents and Settings\pocitac\Data aplikací\Mozilla\Firefox\Profiles\as9ii7al.default\searchplugins\
conduit.xml
icqplugin-1.xml
icqplugin-2.xml
icqplugin-3.xml
icqplugin.xml
qipsearch.xml
sfd.xml
sweetim.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDMIEHlprObj Class - C:\Program Files\Internet Download Manager\IDMIECC.dll [2009-05-07 169392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2008-03-27 322880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2007-08-24 2212224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2011-11-10 325408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-03-07 1224568]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-11-10 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-11-10 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2008-03-27 501056]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-03-07 1224568]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=C:\WINDOWS1\system32\NvMcTray.dll [2007-08-24 81920]
"NvCplDaemon"=C:\WINDOWS1\system32\NvCpl.dll [2007-08-24 8478720]
"hpWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2007-01-10 472776]
"High Definition Audio Property Page Shortcut"=C:\WINDOWS1\system32\CHDAudPropShortcut.exe [2006-07-26 61952]
"NeroFilterCheck"=C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe [2007-03-01 153136]
"hpqSRMon"=C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe [2008-03-13 81920]
"NotebookHardwareControl"=C:\Program Files\Notebook Hardware Control\nhc.exe [2007-05-04 2629632]
"TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2011-01-03 198160]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-03-07 4767304]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"WIAWizardMenu"=C:\WINDOWS1\system32\sti_ci.dll [2008-04-14 136704]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ICQ"=C:\Program Files\ICQ7.5\ICQ.exe [2011-08-01 124480]
"ctfmon.exe"=C:\WINDOWS1\system32\ctfmon.exe [2008-04-14 15360]
"RevolucniReklama.cz"=c:\documents and settings\pocitac\local settings\apps\2.0\2rnkhrt2.qrk\ah7yoonz.b9v\revo..tion_9aab1a4f5826177c_0001.0000_add0ed7dddbb13cf\revolucnireklama.exe []
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2013-01-24 18707048]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2007-08-24 33648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2008-03-25 49152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe [2007-12-13 1688872]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MX Skype Recorder]
C:\Documents and Settings\pocitac\Local Settings\Data aplikací\MXSkypeRecorder\MXSkypeRecorder.exe [2009-06-18 561064]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan]
C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2007-12-03 2213160]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\openvpn-gui]
C:\Program Files\OpenVPN\bin\openvpn-gui.exe [2009-12-10 99328]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-06-09 254696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2011-01-03 198160]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users.WINDOWS1^Nabídka Start^Programy^Po spuštění^HP Digital Imaging Monitor.lnk]
C:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.exe [2008-03-25 214360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users.WINDOWS1^Nabídka Start^Programy^Po spuštění^IP-TV Player Agent.lnk]
C:\PROGRA~1\IP-TVP~1\IPTVPL~1.EXE /agent []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users.WINDOWS1^Nabídka Start^Programy^Po spuštění^Ralink Wireless Utility.lnk]
C:\PROGRA~1\RALINK\Common\RaUI.exe -s []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^pocitac^Nabídka Start^Programy^Po spuštění^Ubisoft register.lnk]
C:\PROGRA~1\Ubisoft\Register\schedule.exe /10.7.2009 10:39:21 /game= /language=English /country=Afghanistan /url=http://register-it.ubi.com/register.asp []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"SlingAgentService"=2

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS1\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler]
Deskscapes - {EC654325-1273-C2A9-2B7C-45D29BCE68FB}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2007-08-24 2212224]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"%windir%\system32\sopocx.ocx"="%windir%\system32\sopocx.ocx:*:Enabled:sopocx.ocx"
"%windir%\system32\tvu49.ocx"="%windir%\system32\tvu49.ocx:*:Enabled:tvu49.ocx"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"
"C:\Program Files\VideoLAN\VLC\vlc.exe"="C:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player"
"C:\Program Files\Real\RealPlayer\realplay.exe"="C:\Program Files\Real\RealPlayer\realplay.exe:*:Enabled:RealPlayer"
"C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe"
"C:\Program Files\Common Files\HP\Digital Imaging\bin\hpqPhotoCrm.exe"="C:\Program Files\Common Files\HP\Digital Imaging\bin\hpqPhotoCrm.exe:*:Enabled:hpqphotocrm.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqpsapp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqpsapp.exe:*:Enabled:hpqpsapp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqpse.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqpse.exe:*:Enabled:hpqpse.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqsudi.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqsudi.exe:*:Enabled:hpqsudi.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe:*:Enabled:hpqgpc01.exe"
"C:\Documents and Settings\pocitac\Plocha\PLOCHA\RapidWareX.exe"="C:\Documents and Settings\pocitac\Plocha\PLOCHA\RapidWareX.exe:*:Enabled:RapidWareX"
"C:\Program Files\NetTVPlus Player2new\nettvplayer.exe"="C:\Program Files\NetTVPlus Player2new\nettvplayer.exe:*:Enabled:Net TV Plus Player"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\K-Lite Codec Pack\Media Player Classic\mplayerc.exe"="C:\Program Files\K-Lite Codec Pack\Media Player Classic\mplayerc.exe:*:Enabled:Media Player Classic"
"C:\Program Files\Nero\Nero8\Nero ShowTime\ShowTime.exe"="C:\Program Files\Nero\Nero8\Nero ShowTime\ShowTime.exe:*:Enabled:Nero ShowTime"
"C:\Program Files\Windows Media Player\wmplayer.exe"="C:\Program Files\Windows Media Player\wmplayer.exe:*:Enabled:Windows Media Player"
"C:\Documents and Settings\pocitac\temp\TeamViewer\Version4\TeamViewer.exe"="C:\Documents and Settings\pocitac\temp\TeamViewer\Version4\TeamViewer.exe:*:Enabled:TeamViewer Remote Control Application"
"C:\Program Files\Sling Media\SlingPlayer\SlingPlayer.exe"="C:\Program Files\Sling Media\SlingPlayer\SlingPlayer.exe:*:Enabled:SlingPlayer"
"C:\Program Files\SportPlayer\SportPlayer.exe"="C:\Program Files\SportPlayer\SportPlayer.exe:*:Enabled:SportPlayer"
"C:\Program Files\Internet Download Manager\IDMan.exe"="C:\Program Files\Internet Download Manager\IDMan.exe:*:Enabled:Internet Download Manager (IDM)"
"C:\Program Files\ICQ7.5\ICQ.exe"="C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5"
"C:\Documents and Settings\pocitac\Local Settings\Data aplikací\Google\Google Talk Plugin\googletalkplugin.exe"="C:\Documents and Settings\pocitac\Local Settings\Data aplikací\Google\Google Talk Plugin\googletalkplugin.exe:*:Enabled:Google Talk Plugin"
"C:\Program Files\TeamViewer\Version6\TeamViewer.exe"="C:\Program Files\TeamViewer\Version6\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe"="C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"C:\Documents and Settings\pocitac\temp\TeamViewer3\TeamViewer.exe"="C:\Documents and Settings\pocitac\temp\TeamViewer3\TeamViewer.exe:*:Enabled:TeamViewer Remote Control Application"
"C:\WINDOWS1\system32\msiexec.exe"="C:\WINDOWS1\system32\msiexec.exe:*:Enabled:UpdateManagerSetup"
"C:\Documents and Settings\pocitac\Local Settings\Data aplikací\AntikVirtualSTB\AntikVirtualSTB.exe"="C:\Documents and Settings\pocitac\Local Settings\Data aplikací\AntikVirtualSTB\AntikVirtualSTB.exe:*:Enabled:AntikVirtualSTB"
"D:\Movies\rapid\fibertv-win\fibertv-2.0.1\fibertv_prehravac_win.exe"="D:\Movies\rapid\fibertv-win\fibertv-2.0.1\fibertv_prehravac_win.exe:*:Enabled:VLC media player 2.0.1"
"C:\Program Files\WinPcap\rpcapd.exe"="C:\Program Files\WinPcap\rpcapd.exe:*:Enabled:Remote Packet Capture Daemon"
"C:\totalcmd\TOTALCMD.EXE"="C:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit"
"C:\Program Files\Google\Chrome\Application\chrome.exe"="C:\Program Files\Google\Chrome\Application\chrome.exe:*:Enabled:Google Chrome"
"C:\Documents and Settings\pocitac\Plocha\uTorrent.exe"="C:\Documents and Settings\pocitac\Plocha\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe"
"C:\Program Files\Common Files\HP\Digital Imaging\bin\hpqPhotoCrm.exe"="C:\Program Files\Common Files\HP\Digital Imaging\bin\hpqPhotoCrm.exe:*:Enabled:hpqphotocrm.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqpsapp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqpsapp.exe:*:Enabled:hpqpsapp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqpse.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqpse.exe:*:Enabled:hpqpse.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqsudi.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqsudi.exe:*:Enabled:hpqsudi.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe:*:Enabled:hpqgpc01.exe"
"C:\Program Files\Stunnix-JavaScript-Obfuscator\lib\gui\httpd\httpd-x86-windows\apache.exe"="C:\Program Files\Stunnix-JavaScript-Obfuscator\lib\gui\httpd\httpd-x86-windows\apache.exe:127.0.0.1,LocalSubnet:Enabled:Apache web server"
"C:\Program Files\Stunnix-JavaScript-Obfuscator\lib\gui\perl\win32\wperl.exe"="C:\Program Files\Stunnix-JavaScript-Obfuscator\lib\gui\perl\win32\wperl.exe:127.0.0.1,LocalSubnet:Enabled:Perl interpreter - part of Stunnix Web Server"
"C:\Program Files\ICQ7.5\ICQ.exe"="C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS1\system32\Iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS1\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
"msacm.divxa32"=msaud32_divx.acm
"VIDC.MPG4"=mpg4c32.dll
"VIDC.MP42"=mpg4c32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"mixer1"=wdmaud.drv
"msacm.avis"=ff_acm.acm
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"wave2"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux2"=wdmaud.drv
"wave4"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux3"=wdmaud.drv

======List of files/folders created in the last 1 month======

2013-04-30 18:39:40 ----D---- C:\rsit
2013-04-30 18:33:00 ----RD---- C:\Program Files\Skype
2013-04-29 17:17:08 ----A---- C:\WINDOWS1\system32\drivers\aswSP.sys
2013-04-29 17:17:08 ----A---- C:\WINDOWS1\system32\drivers\aswRdr.sys
2013-04-29 17:17:08 ----A---- C:\WINDOWS1\system32\drivers\aswFsBlk.sys
2013-04-29 17:17:07 ----A---- C:\WINDOWS1\system32\drivers\aswTdi.sys
2013-04-29 17:17:07 ----A---- C:\WINDOWS1\system32\drivers\aswSnx.sys
2013-04-29 17:17:06 ----A---- C:\WINDOWS1\system32\aswBoot.exe
2013-04-29 17:15:55 ----A---- C:\WINDOWS1\avastSS.scr
2013-04-29 16:40:34 ----D---- C:\Config.Msi
2013-04-29 12:43:28 ----AH---- C:\WINDOWS1\system32\ezsidmv.dat
2013-04-29 12:43:11 ----D---- C:\Documents and Settings\pocitac\Data aplikací\skypePM
2013-04-25 20:10:26 ----A---- C:\AdwCleaner[R2].txt
2013-04-04 21:04:12 ----D---- C:\Documents and Settings\pocitac\Data aplikací\uTorrent
2013-04-02 22:48:19 ----SHD---- C:\RECYCLER
2013-04-02 19:46:25 ----A---- C:\WINDOWS1\NIRCMD.exe
2013-04-02 19:46:25 ----A---- C:\WINDOWS1\MBR.exe
2013-04-02 19:46:24 ----A---- C:\WINDOWS1\zip.exe
2013-04-02 19:46:24 ----A---- C:\WINDOWS1\SWREG.exe
2013-04-02 19:46:24 ----A---- C:\WINDOWS1\PEV.exe
2013-04-02 19:46:24 ----A---- C:\WINDOWS1\grep.exe
2013-04-02 19:46:23 ----A---- C:\WINDOWS1\SWSC.exe
2013-04-02 19:46:23 ----A---- C:\WINDOWS1\sed.exe
2013-04-02 19:46:22 ----A---- C:\WINDOWS1\SWXCACLS.exe
2013-04-02 19:43:55 ----D---- C:\Qoobox

======List of files/folders modified in the last 1 month======

2013-04-30 18:43:46 ----D---- C:\Program Files\trend micro
2013-04-30 18:43:24 ----D---- C:\Documents and Settings\pocitac\Data aplikací\Skype
2013-04-30 18:39:53 ----D---- C:\WINDOWS1\temp
2013-04-30 18:39:30 ----D---- C:\Documents and Settings\pocitac\Data aplikací\DMCache
2013-04-30 18:39:26 ----D---- C:\Documents and Settings\pocitac\Data aplikací\FileZilla
2013-04-30 18:33:38 ----D---- C:\Documents and Settings\pocitac\Data aplikací\vlc
2013-04-30 18:33:05 ----SHD---- C:\WINDOWS1\Installer
2013-04-30 18:33:04 ----D---- C:\Documents and Settings\All Users.WINDOWS1\Data aplikací\Skype
2013-04-30 18:33:00 ----D---- C:\Program Files
2013-04-30 18:14:50 ----AD---- C:\Documents and Settings\All Users.WINDOWS1\Data aplikací\TEMP
2013-04-30 16:22:04 ----D---- C:\Program Files\Mozilla Firefox
2013-04-29 19:25:58 ----D---- C:\Documents and Settings\pocitac\Data aplikací\dvdcss
2013-04-29 17:17:08 ----D---- C:\WINDOWS1\system32\drivers
2013-04-29 17:17:07 ----SD---- C:\WINDOWS1\Tasks
2013-04-29 17:17:06 ----AD---- C:\WINDOWS1\system32
2013-04-29 17:16:49 ----D---- C:\WINDOWS1\WinSxS
2013-04-29 17:15:55 ----D---- C:\WINDOWS1
2013-04-29 17:15:15 ----D---- C:\Program Files\AVAST Software
2013-04-29 17:15:15 ----D---- C:\Documents and Settings\All Users.WINDOWS1\Data aplikací\AVAST Software
2013-04-29 17:12:57 ----D---- C:\WINDOWS1\Microsoft.NET
2013-04-29 17:08:34 ----D---- C:\Documents and Settings\pocitac\Data aplikací\ICQ
2013-04-29 17:06:40 ----A---- C:\WINDOWS1\SchedLgU.Txt
2013-04-29 16:59:19 ----D---- C:\Documents and Settings\pocitac\Data aplikací\HPAppData
2013-04-29 16:43:09 ----D---- C:\WINDOWS1\system32\config
2013-04-29 16:42:24 ----D---- C:\WINDOWS1\system32\wbem
2013-04-29 16:42:22 ----D---- C:\WINDOWS1\Registration
2013-04-29 11:39:17 ----D---- C:\WINDOWS1\Prefetch
2013-04-26 17:46:22 ----D---- C:\Program Files\Common Files\Skype
2013-04-24 04:59:21 ----D---- C:\Program Files\URLSnooper2
2013-04-24 01:16:59 ----A---- C:\WINDOWS1\system32\PerfStringBackup.INI
2013-04-24 01:10:23 ----DC---- C:\WINDOWS1\system32\DRVSTORE
2013-04-24 01:05:27 ----D---- C:\tvcent
2013-04-24 01:04:19 ----D---- C:\Program Files\HP
2013-04-24 00:51:25 ----RSD---- C:\WINDOWS1\assembly
2013-04-24 00:51:05 ----D---- C:\Program Files\Microsoft.NET
2013-04-24 00:51:04 ----D---- C:\WINDOWS1\system32\en-us
2013-04-24 00:45:22 ----D---- C:\WINDOWS1\system32\cs-cz
2013-04-22 03:01:33 ----D---- C:\WINDOWS1\system32\CatRoot2
2013-04-21 15:53:35 ----A---- C:\WINDOWS1\wincmd.ini
2013-04-21 15:47:11 ----D---- C:\WINDOWS1\system32\NtmsData
2013-04-21 15:45:59 ----SHD---- C:\System Volume Information
2013-04-21 15:42:38 ----SD---- C:\Documents and Settings\All Users.WINDOWS1\Data aplikací\Microsoft
2013-04-08 19:39:49 ----D---- C:\Temp
2013-04-02 23:28:49 ----D---- C:\Documents and Settings\All Users.WINDOWS1\Data aplikací\Microsoft Help
2013-04-02 23:07:15 ----D---- C:\Program Files\Microsoft Office
2013-04-02 23:07:15 ----D---- C:\Program Files\Common Files\Microsoft Shared
2013-04-02 22:48:19 ----D---- C:\WINDOWS1\Minidump
2013-04-02 21:58:32 ----A---- C:\WINDOWS1\system.ini
2013-04-02 21:57:14 ----D---- C:\WINDOWS1\system32\drivers\etc
2013-04-02 21:50:16 ----D---- C:\WINDOWS1\AppPatch
2013-04-02 21:50:10 ----D---- C:\Program Files\Common Files
2013-04-02 19:40:46 ----D---- C:\WINDOWS1\ERDNT

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;aswRvrt; C:\WINDOWS1\system32\drivers\aswRvrt.sys [2013-03-07 49248]
R0 ExeLock;ExeLock; C:\WINDOWS1\system32\DRIVERS\ExeLock.sys [2010-04-24 35456]
R0 nvata;nvata; C:\WINDOWS1\system32\DRIVERS\nvata.sys [2006-04-24 100736]
R0 PxHelp20;PxHelp20; C:\WINDOWS1\System32\Drivers\PxHelp20.sys [2010-07-12 45648]
R0 sptd;sptd; C:\WINDOWS1\System32\Drivers\sptd.sys [2011-08-15 691696]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS1\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 AswRdr;aswRdr; C:\WINDOWS1\system32\drivers\AswRdr.sys [2013-03-07 49760]
R1 aswSP;aswSP; C:\WINDOWS1\system32\drivers\aswSP.sys [2013-03-07 368176]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS1\system32\drivers\aswTdi.sys [2013-03-07 62376]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS1\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 Tcpip6;Ovladač protokolu Microsoft IPv6; C:\WINDOWS1\system32\DRIVERS\tcpip6.sys [2008-06-20 225856]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS1\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS1\System32\drivers\ws2ifsl.sys [2001-10-25 12032]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS1\system32\drivers\aswFsBlk.sys [2013-03-07 29816]
R2 aswMonFlt;aswMonFlt; \??\C:\WINDOWS1\system32\drivers\aswMonFlt.sys []
R2 irda;Protokol IrDA; C:\WINDOWS1\system32\DRIVERS\irda.sys [2008-04-14 88192]
R2 mdmxsdk;mdmxsdk; C:\WINDOWS1\system32\DRIVERS\mdmxsdk.sys [2006-06-19 12672]
R2 windrvNT;windrvNT; \??\C:\WINDOWS1\system32\windrvNT.sys []
R3 aswVmm;aswVmm; C:\WINDOWS1\system32\drivers\aswVmm.sys [2013-03-07 164736]
R3 HBtnKey;HBtnKey; C:\WINDOWS1\system32\DRIVERS\cpqbttn.sys [2008-04-28 9344]
R3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:\WINDOWS1\system32\drivers\CHDAud.sys [2006-07-26 581632]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS1\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 HSF_DPV;HSF_DPV; C:\WINDOWS1\system32\DRIVERS\HSF_DPV.sys [2006-08-29 990592]
R3 HSFHWAZL;HSFHWAZL; C:\WINDOWS1\system32\DRIVERS\HSFHWAZL.sys [2006-08-29 208384]
R3 nhcDriverDevice;Notebook Hardware Control Driver; \??\C:\WINDOWS1\system32\drivers\nhcDriver.sys []
R3 nv;nv; C:\WINDOWS1\system32\DRIVERS\nv4_mini.sys [2007-08-24 6844864]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS1\system32\DRIVERS\NVENETFD.sys [2006-03-03 34176]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS1\system32\DRIVERS\nvnetbus.sys [2006-03-03 13056]
R3 nvsmu;nvsmu; C:\WINDOWS1\system32\DRIVERS\nvsmu.sys [2006-03-05 11136]
R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS1\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 tap0801;TAP-Win32 Adapter V8; C:\WINDOWS1\system32\DRIVERS\tap0801.sys [2009-12-10 26624]
R3 tunmp;Microsoft Tun Miniport Adapter Driver; C:\WINDOWS1\system32\DRIVERS\tunmp.sys [2008-04-14 12288]
R3 winachsf;winachsf; C:\WINDOWS1\system32\DRIVERS\HSF_CNXT.sys [2006-08-29 728576]
S0 xmasscsi;xmasscsi; C:\WINDOWS1\System32\Drivers\xmasscsi.sys []
S1 aswSnx;aswSnx; C:\WINDOWS1\system32\drivers\aswSnx.sys [2013-03-07 765736]
S2 StudioPro;StudioPro webcam; C:\WINDOWS1\system32\DRIVERS\StudioPro.sys [2007-01-05 120320]
S3 ASPI;Advanced SCSI Programming Interface Driver; \??\C:\WINDOWS1\System32\DRIVERS\ASPI32.sys []
S3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\WINDOWS1\system32\DRIVERS\bcmwl5.sys [2006-11-01 604928]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS1\system32\DRIVERS\CCDECODE.sys [2004-07-09 16384]
S3 CFcatchme;CFcatchme; \??\C:\DOCUME~1\pocitac\LOCALS~1\Temp\CFcatchme.sys []
S3 EuMusDesignVirtualAudioCableWdm;StudioPro audio (WDM); C:\WINDOWS1\system32\DRIVERS\vrtaucbl.sys [2007-04-22 38784]
S3 gogoTunnelDevice;gogo6 Multi-Virtual Tunnel Adapter; C:\WINDOWS1\system32\DRIVERS\gogotun.sys [2010-03-22 21064]
S3 hamachi;Hamachi Network Interface; C:\WINDOWS1\system32\DRIVERS\hamachi.sys [2009-05-21 25280]
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS1\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS1\system32\DRIVERS\HPZid412.sys [2008-01-24 49920]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS1\system32\DRIVERS\HPZipr12.sys [2008-01-24 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS1\system32\DRIVERS\HPZius12.sys [2008-01-24 21568]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\WINDOWS1\system32\DRIVERS\ewusbmdm.sys [2008-03-17 101376]
S3 IT9135BDA;IT9135 BDA Devices; C:\WINDOWS1\System32\Drivers\IT9135BDA.sys []
S3 KCIRDA;%KCIRDA.ServiceDesc%; C:\WINDOWS1\system32\DRIVERS\KCIrNet.sys []
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS1\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 MPE;BDA MPE Filter; C:\WINDOWS1\system32\DRIVERS\MPE.sys [2004-07-09 15104]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS1\system32\drivers\MSTEE.sys [2002-12-12 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS1\system32\DRIVERS\NABTSFEC.sys [2004-07-09 83968]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS1\system32\DRIVERS\NdisIP.sys [2004-07-09 10112]
S3 nm;Ovladač programu Sledování sítě; C:\WINDOWS1\system32\DRIVERS\NMnt.sys [2008-04-14 40320]
S3 NPF;NetGroup Packet Filter Driver; C:\WINDOWS1\system32\drivers\npf.sys [2009-10-20 50704]
S3 NSNDIS5;NSNDIS5 NDIS Protocol Driver; \??\C:\WINDOWS1\system32\NSNDIS5.SYS []
S3 pcouffin;VSO Software pcouffin; C:\WINDOWS1\System32\Drivers\pcouffin.sys [2009-03-23 47360]
S3 RT73;RT73 USB Wireless LAN Card Driver; C:\WINDOWS1\system32\DRIVERS\rt73.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS1\system32\DRIVERS\SLIP.sys [2004-07-09 10880]
S3 streamip;BDA IPSink; C:\WINDOWS1\system32\DRIVERS\StreamIP.sys [2004-07-09 14976]
S3 tap0901;TAP-Win32 Adapter V9; C:\WINDOWS1\system32\DRIVERS\tap0901.sys [2010-02-25 25216]
S3 tapavpn;Steganos Anonym VPN Adapter; C:\WINDOWS1\system32\DRIVERS\tapavpn.sys [2007-10-19 24320]
S3 UIUSys;Conexant Setup API; C:\WINDOWS1\system32\DRIVERS\UIUSYS.SYS []
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS1\system32\drivers\usbaudio.sys [2008-04-14 60032]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS1\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 usbprint;Třída USB Printer; C:\WINDOWS1\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS1\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 usbser;USB Modem Driver; C:\WINDOWS1\system32\drivers\usbser.sys [2008-04-14 26112]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS1\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS1\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S3 WpdUsb;WpdUsb; C:\WINDOWS1\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS1\system32\DRIVERS\WSTCODEC.SYS [2004-07-09 18688]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS1\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 6to4;Pomocná služba protokolu IPv6; C:\WINDOWS1\system32\svchost.exe [2008-04-14 14336]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-03-07 45248]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\WINDOWS1\system32\svchost.exe [2008-04-14 14336]
R2 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2006-05-02 135168]
R2 Irmon;Sledování infračerveného přenosu; C:\WINDOWS1\system32\svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-11-10 153376]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2007-12-03 869672]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS1\system32\nvsvc32.exe [2007-08-24 155716]
R2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-01-24 161384]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS1\system32\svchost.exe [2008-04-14 14336]
R3 hpqcxs08;hpqcxs08; C:\WINDOWS1\system32\svchost.exe [2008-04-14 14336]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-12-04 116648]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS1\System32\svchost.exe [2008-04-14 14336]
S2 NPVR Recording Service;NPVR Recording Service; C:\Program Files\NPVR\NRecord.exe []
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS1\System32\svchost.exe [2008-04-14 14336]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS1\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS1\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS1\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-12-04 116648]
S3 idsvc;Windows CardSpace; C:\WINDOWS1\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2007-08-24 68464]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2012-10-11 115168]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2007-12-13 447784]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S3 OpenVPNService;OpenVPN Service; C:\Program Files\OpenVPN\bin\openvpnserv.exe [2009-12-10 16384]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files\WinPcap\rpcapd.exe [2009-10-20 117264]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2012-10-03 725400]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS1\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe []
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS1\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 NvUpdSrv;NVIDIA Update Server; C:\Documents and Settings\pocitac\Local Settings\Data aplikací\NVIDIA Corporation\Update\nvupd32.exe /svc []
S4 SlingAgentService;SlingAgentService; C:\Program Files\Sling Media\SlingAgent\SlingAgentService.exe [2009-09-25 93960]

-----------------EOF-----------------

takze vyriesene, musel som vsetko precistit ccleanerom, dal som v pc vyhladat vse co je skype, potom som odkril skryte slozky a zmazal vse v slozke data aplikacii, cize komplet svoj ucet v pc, jedine o co som prisiel v skype po prihlaseni je historia, ale kontakty mam a som konecne prihlaseny na svojom skype.

mozno to dakomu pomoze do buducna. a poprosil by som ked uz som daval log z RSIT o pozretie ci v pc nie su viry, dakujem.

Zdravim

Hlidejte si volne misto na disku. Jste na hranici doporuceneho minima. Jinak se bude system dusit.

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Spustte ho.
Kliknete na Prohledat a program zacne pracovat.
Az skonci, vyplivne na vas log (pokud ne, najdete ho zde C:\AdwCleaner[R?].txt ), ten mi sem zkopirujte.

Dobry den, dakujem za pomoc,

no s tou kapacitou disku je to horsie ako vyzera, ja uz neviem co odinstalovat, mam v PC len niekolko programov co pouzivam, najvacsie co zaberaju na disku je office a nero, ostatne su programi s par MB. Neviem kde sa stratilo z 20 GB co ma disk C zvysne GB, ked pocitam system 3 GB-XP, + nejake aktulaizacie(4 GB) a instalacne programi cca 4 GB maximalne, stale mi 5 GB chyba, a pravidelne pc cisti ccleanerom, neviem asi sa uz chybajuce GB nedaju vratit, popripadne nieco odinstalovat, ale neviem co, obavam sa ze ak aj nieco cez your uninstaller odinstalujem nejake aktualizacie aby mi neprestaly pracovat aplikacie. Prikjadam log:

# AdwCleaner v2.300 - Log vytvooen 01/05/2013 v 11:49:20
# Aktualizováno 28/04/2013 Xplode
# Operaení systém : Microsoft Windows XP Service Pack 3 (32 bits)
# Uživatel : pocitac - POCITAC-33B3E30
# Spuštin systém : Normální
# Spuštino z : C:\Documents and Settings\pocitac\Plocha\adwcleaner_2.exe
# Volba [Prohledat]

***** [Služby] *****

***** [Soubory / Složky] *****

Složka Nalezeno : C:\Documents and Settings\pocitac\Data aplikací\Mozilla\Firefox\Profiles\as9ii7al.default\ConduitCommon
Složka Nalezeno : C:\Documents and Settings\pocitac\Data aplikací\Mozilla\Firefox\Profiles\as9ii7al.default\jetpack
Složka Nalezeno : C:\Documents and Settings\pocitac\Data aplikací\SwvUpdater
Složka Nalezeno : C:\Documents and Settings\pocitac\Local Settings\Data aplikací\Conduit
Složka Nalezeno : C:\Program Files\Conduit
Soubor Nalezeno : C:\Documents and Settings\pocitac\Data aplikací\Mozilla\Firefox\Profiles\as9ii7al.default\searchplugins\Conduit.xml
Soubor Nalezeno : C:\Documents and Settings\pocitac\Data aplikací\Mozilla\Firefox\Profiles\as9ii7al.default\searchplugins\icqplugin.xml
Soubor Nalezeno : C:\Documents and Settings\pocitac\Data aplikací\Mozilla\Firefox\Profiles\as9ii7al.default\searchplugins\icqplugin-1.xml
Soubor Nalezeno : C:\Documents and Settings\pocitac\Data aplikací\Mozilla\Firefox\Profiles\as9ii7al.default\searchplugins\icqplugin-2.xml
Soubor Nalezeno : C:\Documents and Settings\pocitac\Data aplikací\Mozilla\Firefox\Profiles\as9ii7al.default\searchplugins\icqplugin-3.xml
Soubor Nalezeno : C:\Documents and Settings\pocitac\Data aplikací\Mozilla\Firefox\Profiles\as9ii7al.default\searchplugins\SweetIm.xml

***** [Registry] *****

Klíe Nalezeno : HKCU\Software\1ClickDownload
Klíe Nalezeno : HKCU\Software\AppDataLow\Software\Conduit
Klíe Nalezeno : HKCU\Software\AppDataLow\Software\SmartBar
Klíe Nalezeno : HKCU\Software\Conduit
Klíe Nalezeno : HKCU\Software\ConduitSearchScopes
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Klíe Nalezeno : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Klíe Nalezeno : HKLM\Software\Conduit
Klíe Nalezeno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Klíe Nalezeno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
Klíe Nalezeno : HKLM\SOFTWARE\Software
Klíe Nalezeno : HKU\S-1-5-21-1482476501-1177238915-1801674531-1003\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}

***** [Internetové prohlížeee] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Registry jsou eisté.

-\\ Mozilla Firefox v3.5.16 (sk)

Soubor : C:\Documents and Settings\pocitac\Data aplikací\Mozilla\Firefox\Profiles\as9ii7al.default\prefs.js

Nalezeno : user_pref("CT3279141.HasUserGlobalKeys", true);
Nalezeno : user_pref("CT3279141.IsMulticommunity", false);
Nalezeno : user_pref("CT3279141.ServiceMapLastCheckTime", "Wed Feb 13 2013 19:07:09 GMT+0100");
Nalezeno : user_pref("CT3279141.testingCtid", "");
Nalezeno : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Documents and Settings\\pocitac\\Data apli[...]
Nalezeno : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.16.0.3");
Nalezeno : user_pref("browser.search.defaultthis.engineName", "WhiteSmoke B Customized Web Search");
Nalezeno : user_pref("icqtoolbar.allowSendURL", false);
Nalezeno : user_pref("icqtoolbar.engineVerified", false);
Nalezeno : user_pref("icqtoolbar.geolastmodified", 1360328844);
Nalezeno : user_pref("icqtoolbar.hiddenElements", "itb_options");
Nalezeno : user_pref("icqtoolbar.history", "psc%20zilina||hxxp%3A%2F%2Fwww.heureka.sk%2F%3Fh%255Bfraze%255D%3DM[...]
Nalezeno : user_pref("icqtoolbar.icqgeo", 4201);
Nalezeno : user_pref("icqtoolbar.installTime", "1308392388");
Nalezeno : user_pref("icqtoolbar.newtab_state", "0");
Nalezeno : user_pref("icqtoolbar.numberOfSearches", 0);
Nalezeno : user_pref("icqtoolbar.previousFFVersion", "3.5.16");
Nalezeno : user_pref("icqtoolbar.skip_default_search", "no");
Nalezeno : user_pref("icqtoolbar.uninstStatSent", true);
Nalezeno : user_pref("icqtoolbar.uniqueID", "130831996013083199601308392388589");
Nalezeno : user_pref("icqtoolbar.usageStatstTimestamp", 1360778680);
Nalezeno : user_pref("icqtoolbar.voucherHideClicks", 0);
Nalezeno : user_pref("icqtoolbar.voucherMoreLinkClicks", 0);
Nalezeno : user_pref("icqtoolbar.voucherRedeemClicks", 0);
Nalezeno : user_pref("icqtoolbar.voucherWasShown", 0);
Nalezeno : user_pref("icqtoolbar.xmlLanguage", "sk");
Nalezeno : user_pref("smartbar.conduitHomepageList", "hxxp://search.conduit.com/?ctid=CT3279141&octid=CT3279141[...]
Nalezeno : user_pref("smartbar.originalHomepage", "www.google.sk");

-\\ Google Chrome v26.0.1410.64

Soubor : C:\Documents and Settings\pocitac\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Preferences

Nalezeno [l.28] : icon_url = "hxxp://search.conduit.com/fav.ico",
Nalezeno [l.31] : keyword = "search.conduit.com",
Nalezeno [l.35] : search_url = "hxxp://search.conduit.com/Results.aspx?q={searchTerms}&SearchSource=49&cui=UN12573801261829572&ctid=CT3279141",
Nalezeno [l.2245] : homepage = "hxxp://search.conduit.com/?CUI=UN12573801261829572&ctid=CT3279141&SearchSource=48",

-\\ Opera v11.62.1347.0

Soubor : C:\Documents and Settings\pocitac\Data aplikací\Opera\Opera\operaprefs.ini

[OK] Soubor je eistý.

*************************

AdwCleaner[R3].txt - [5597 octets] - [01/05/2013 11:49:20]

########## EOF - C:\AdwCleaner[R3].txt - [5657 octets] ##########

No ty aktualizace misto zerou, ale jsou bohuzel dulezite, takze na ty bych nesahal. Nejake misto taky zabiraji body obnovy. Uvidime kolik mista bude po procisteni.

Znovu ukoncete vsechny programy a spustte AdwCleaner.
Tentokrat kliknete na Smazat
Program zacne pracovat (muze dojit k restartu pc) a vyplivne dalsi log (pripadne bude zde C:\AdwCleaner [S1].txt ). Ten mi sem zase zkopirujte.

Udelejte !!!kompletni!!! kontrolu s MBAM http://forum.viry.cz/viewtopic.php?f=29&t=115222 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

uff takze len disk C 20 gb scenovalo cez 5 hodin, mimochodom ja mam aktualizacie XP vypnute uz najmenej 2 roky, nebolo by ich kde ukladat. tu su logy:

# AdwCleaner v2.300 - Log vytvooen 01/05/2013 v 12:40:50
# Aktualizováno 28/04/2013 Xplode
# Operaení systém : Microsoft Windows XP Service Pack 3 (32 bits)
# Uživatel : pocitac - POCITAC-33B3E30
# Spuštin systém : Normální
# Spuštino z : C:\Documents and Settings\pocitac\Plocha\adwcleaner_2.exe
# Volba [Vymazat]

***** [Služby] *****

***** [Soubory / Složky] *****

Složka Vymazáno : C:\Documents and Settings\pocitac\Data aplikací\Mozilla\Firefox\Profiles\as9ii7al.default\ConduitCommon
Složka Vymazáno : C:\Documents and Settings\pocitac\Data aplikací\Mozilla\Firefox\Profiles\as9ii7al.default\jetpack
Složka Vymazáno : C:\Documents and Settings\pocitac\Data aplikací\SwvUpdater
Složka Vymazáno : C:\Documents and Settings\pocitac\Local Settings\Data aplikací\Conduit
Složka Vymazáno : C:\Program Files\Conduit
Soubor Vymazáno : C:\Documents and Settings\pocitac\Data aplikací\Mozilla\Firefox\Profiles\as9ii7al.default\searchplugins\Conduit.xml
Soubor Vymazáno : C:\Documents and Settings\pocitac\Data aplikací\Mozilla\Firefox\Profiles\as9ii7al.default\searchplugins\icqplugin.xml
Soubor Vymazáno : C:\Documents and Settings\pocitac\Data aplikací\Mozilla\Firefox\Profiles\as9ii7al.default\searchplugins\icqplugin-1.xml
Soubor Vymazáno : C:\Documents and Settings\pocitac\Data aplikací\Mozilla\Firefox\Profiles\as9ii7al.default\searchplugins\icqplugin-2.xml
Soubor Vymazáno : C:\Documents and Settings\pocitac\Data aplikací\Mozilla\Firefox\Profiles\as9ii7al.default\searchplugins\icqplugin-3.xml
Soubor Vymazáno : C:\Documents and Settings\pocitac\Data aplikací\Mozilla\Firefox\Profiles\as9ii7al.default\searchplugins\SweetIm.xml

***** [Registry] *****

Klíe Vymazáno : HKCU\Software\1ClickDownload
Klíe Vymazáno : HKCU\Software\AppDataLow\Software\Conduit
Klíe Vymazáno : HKCU\Software\AppDataLow\Software\SmartBar
Klíe Vymazáno : HKCU\Software\Conduit
Klíe Vymazáno : HKCU\Software\ConduitSearchScopes
Klíe Vymazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Klíe Vymazáno : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Klíe Vymazáno : HKLM\Software\Conduit
Klíe Vymazáno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Klíe Vymazáno : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
Klíe Vymazáno : HKLM\SOFTWARE\Software

***** [Internetové prohlížeee] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Registry jsou eisté.

-\\ Mozilla Firefox v3.5.16 (sk)

Soubor : C:\Documents and Settings\pocitac\Data aplikací\Mozilla\Firefox\Profiles\as9ii7al.default\prefs.js

C:\Documents and Settings\pocitac\Data aplikací\Mozilla\Firefox\Profiles\as9ii7al.default\user.js ... Vymazáno !

Vymazáno : user_pref("CT3279141.HasUserGlobalKeys", true);
Vymazáno : user_pref("CT3279141.IsMulticommunity", false);
Vymazáno : user_pref("CT3279141.ServiceMapLastCheckTime", "Wed Feb 13 2013 19:07:09 GMT+0100");
Vymazáno : user_pref("CT3279141.testingCtid", "");
Vymazáno : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Documents and Settings\\pocitac\\Data apli[...]
Vymazáno : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.16.0.3");
Vymazáno : user_pref("browser.search.defaultthis.engineName", "WhiteSmoke B Customized Web Search");
Vymazáno : user_pref("icqtoolbar.allowSendURL", false);
Vymazáno : user_pref("icqtoolbar.engineVerified", false);
Vymazáno : user_pref("icqtoolbar.geolastmodified", 1360328844);
Vymazáno : user_pref("icqtoolbar.hiddenElements", "itb_options");
Vymazáno : user_pref("icqtoolbar.history", "psc%20zilina||hxxp%3A%2F%2Fwww.heureka.sk%2F%3Fh%255Bfraze%255D%3DM[...]
Vymazáno : user_pref("icqtoolbar.icqgeo", 4201);
Vymazáno : user_pref("icqtoolbar.installTime", "1308392388");
Vymazáno : user_pref("icqtoolbar.newtab_state", "0");
Vymazáno : user_pref("icqtoolbar.numberOfSearches", 0);
Vymazáno : user_pref("icqtoolbar.previousFFVersion", "3.5.16");
Vymazáno : user_pref("icqtoolbar.skip_default_search", "no");
Vymazáno : user_pref("icqtoolbar.uninstStatSent", true);
Vymazáno : user_pref("icqtoolbar.uniqueID", "130831996013083199601308392388589");
Vymazáno : user_pref("icqtoolbar.usageStatstTimestamp", 1360778680);
Vymazáno : user_pref("icqtoolbar.voucherHideClicks", 0);
Vymazáno : user_pref("icqtoolbar.voucherMoreLinkClicks", 0);
Vymazáno : user_pref("icqtoolbar.voucherRedeemClicks", 0);
Vymazáno : user_pref("icqtoolbar.voucherWasShown", 0);
Vymazáno : user_pref("icqtoolbar.xmlLanguage", "sk");
Vymazáno : user_pref("smartbar.conduitHomepageList", "hxxp://search.conduit.com/?ctid=CT3279141&octid=CT3279141[...]
Vymazáno : user_pref("smartbar.originalHomepage", "www.google.sk");

-\\ Google Chrome v26.0.1410.64

Soubor : C:\Documents and Settings\pocitac\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Preferences

Vymazáno [l.28] : icon_url = "hxxp://search.conduit.com/fav.ico",
Vymazáno [l.31] : keyword = "search.conduit.com",
Vymazáno [l.35] : search_url = "hxxp://search.conduit.com/Results.aspx?q={searchTerms}&SearchSource=49&cui=UN12[...]
Vymazáno [l.2245] : homepage = "hxxp://search.conduit.com/?CUI=UN12573801261829572&ctid=CT3279141&SearchSource=48",

-\\ Opera v11.62.1347.0

Soubor : C:\Documents and Settings\pocitac\Data aplikací\Opera\Opera\operaprefs.ini

[OK] Soubor je eistý.

*************************

AdwCleaner[R3].txt - [5726 octets] - [01/05/2013 11:49:20]
AdwCleaner[S2].txt - [5587 octets] - [01/05/2013 12:40:50]

########## EOF - C:\AdwCleaner[S2].txt - [5647 octets] ##########

======================================

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2013.05.01.03

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
pocitac :: POCITAC-33B3E30 [administrátor]

Ochrana: Povolena

1.5.2013 13:28:19
MBAM-log-2013-05-01 (19-57-39).txt

Typ: Kompletní kontrola (C:\|D:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 461614
Uplynulý čas: 6 hodin, 21 minut, 55 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 7
C:\Documents and Settings\pocitac\Plocha\PLOCHA\u94.exe (HackTool.Proxy) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\pocitac\Plocha\PLOCHA\u95.exe (PUP.UltraSurf) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{F9C74E9D-0258-427B-9E8E-BCBE42D9FD3B}\RP1\A0000810.exe (RiskWare.Tool.CK) -> Nebyla provedena žádná instrukce.
D:\Movies\rapid\win7\Windows Loader 2.1.7 By Daz.zip (PUP.HackTool.H) -> Nebyla provedena žádná instrukce.
D:\Movies\rapid\new games-k700 k700i k750 k750i 632\Bigbrother.exe (Trojan.Ransom) -> Nebyla provedena žádná instrukce.
D:\Movies\rapid\new games-k700 k700i k750 k750i 632\BigBrotherDirectorsCut_18.exe (Trojan.Ransom) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\pocitac\Oblíbené položky\mp3 download a search.URL (Rogue.Link) -> Nebyla provedena žádná instrukce.

(konec)

No to neni nejlepsi napad. System by mel byt aktualizovany. Aktualizuje se i na mensich discich

Nalezy MBAM nechte odstranit a pokud to probehne bez potizi, MBAM pak odinstalujte

Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne

Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe , ulozte ho na plochu a spustte.
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Zprava a objevi se log. Ten mi sem vlozte

Zdravim, vsetko pomazane, tu je log z RogueKiller

RogueKiller V8.5.4 [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
: http://tigzyrk.blogspot.com/

Operační systém : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : pocitac [Práva správce]
Mód : Kontrola -- Datum : 05/02/2013 13:03:59
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 2 ¤¤¤
[PROXY IE] HKCU\[...]\Internet Settings : ProxyServer (213.192.37.242:8080) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
SSDT[37] : NtCreateFile @ 0x8056E2FC -> HOOKED (\??\C:\WINDOWS1\system32\windrvNT.sys @ 0xEFCDF36A)
SSDT[116] : NtOpenFile @ 0x8056F41A -> HOOKED (\??\C:\WINDOWS1\system32\windrvNT.sys @ 0xEFCDFCD8)
SSDT[145] : NtQueryDirectoryFile @ 0x8056F0F4 -> HOOKED (\??\C:\WINDOWS1\system32\windrvNT.sys @ 0xEFCDF842)
SSDT[154] : NtQueryInformationProcess @ 0x805C2C8A -> HOOKED (\??\C:\WINDOWS1\system32\windrvNT.sys @ 0xEFCDC1E0)
SSDT[224] : NtSetInformationFile @ 0x80570304 -> HOOKED (\??\C:\WINDOWS1\system32\windrvNT.sys @ 0xEFCE0142)

¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\WINDOWS1\system32\drivers\etc\hosts

127.0.0.1 localhost

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: ST980811AS +++++
--- User ---
[MBR] 05402a3f9ea6a463fea6cb96342dae6f
[BSP] c6c26bd48a1a20bfb527a1259dc21517 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 20002 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 40965750 | Size: 56313 Mo
User = LL1 ... OK!
Error reading LL2 MBR!

Dokončeno : << RKreport[1]_S_05022013_02d1303.txt >>
RKreport[1]_S_05022013_02d1303.txt

Znovu spustte RogueKiller (pokud jste ho jeste nezavrel/a, rovnou kliknete na napis Smazat)
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Smazat.
Pak kliknete na napis Zprava a objevi se log. Ten mi sem vlozte.
Pak kliknete na napis Oprava Host a Zprava.
Objevi se dalsi log. I ten mi sem vlozte.

tu su obidva logy:

RogueKiller V8.5.4 [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
: http://tigzyrk.blogspot.com/

Operační systém : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : pocitac [Práva správce]
Mód : Odebrat -- Datum : 05/02/2013 21:05:20
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 1 ¤¤¤
[PROXY IE] HKCU\[...]\Internet Settings : ProxyServer (213.192.37.242:8080) -> NEBYLO ODSTRANĚNO, POUŽIJTE PROXYFIX

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
SSDT[37] : NtCreateFile @ 0x8056E2FC -> HOOKED (\??\C:\WINDOWS1\system32\windrvNT.sys @ 0xF785436A)
SSDT[116] : NtOpenFile @ 0x8056F41A -> HOOKED (\??\C:\WINDOWS1\system32\windrvNT.sys @ 0xF7854CD8)
SSDT[145] : NtQueryDirectoryFile @ 0x8056F0F4 -> HOOKED (\??\C:\WINDOWS1\system32\windrvNT.sys @ 0xF7854842)
SSDT[154] : NtQueryInformationProcess @ 0x805C2C8A -> HOOKED (\??\C:\WINDOWS1\system32\windrvNT.sys @ 0xF78511E0)
SSDT[224] : NtSetInformationFile @ 0x80570304 -> HOOKED (\??\C:\WINDOWS1\system32\windrvNT.sys @ 0xF7855142)

¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\WINDOWS1\system32\drivers\etc\hosts

127.0.0.1 localhost

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: ST980811AS +++++
--- User ---
[MBR] 05402a3f9ea6a463fea6cb96342dae6f
[BSP] c6c26bd48a1a20bfb527a1259dc21517 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 20002 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 40965750 | Size: 56313 Mo
User = LL1 ... OK!
Error reading LL2 MBR!

Dokončeno : << RKreport[3]_D_05022013_02d2105.txt >>
RKreport[2]_D_05022013_02d2103.txt ; RKreport[3]_D_05022013_02d2105.txt

=============

RogueKiller V8.5.4 [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
: http://tigzyrk.blogspot.com/

Operační systém : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : pocitac [Práva správce]
Mód : Oprava HOSTS -- Datum : 05/02/2013 21:05:50
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\WINDOWS1\system32\drivers\etc\hosts

127.0.0.1 localhost

¤¤¤ Resetovaný HOSTS: ¤¤¤
127.0.0.1 localhost

Dokončeno : << RKreport[4]_H_05022013_02d2105.txt >>
RKreport[2]_D_05022013_02d2103.txt ; RKreport[3]_D_05022013_02d2105.txt ; RKreport[4]_H_05022013_02d2105.txt

Tohle tam mate schvalne?
[PROXY IE] HKCU\[...]\Internet Settings : ProxyServer (213.192.37.242:8080) -> NEBYLO ODSTRANĚNO, POUŽIJTE PROXYFIX

nie, neviem co to je, da sa to odstranit?

Jeste jednou spustte RogueKiller.
Kliknete na napis Oprava Proxy a Zprava.
Log co se objevi mi sem zkopirujte

Tu je sprava, proxy vymazana.

RogueKiller V8.5.4 [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.geekstogo.com/forum/files/fi ... guekiller/
Webové stránky : http://tigzy.geekstogo.com/roguekiller.php
: http://tigzyrk.blogspot.com/

Operační systém : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : pocitac [Práva správce]
Mód : Oprava Proxy -- Datum : 05/03/2013 15:41:35
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 1 ¤¤¤
[PROXY IE] HKCU\[...]\Internet Settings : ProxyServer (213.192.37.242:8080) -> VYMAZÁNO

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤

Dokončeno : << RKreport[1]_PR_05032013_02d1541.txt >>
RKreport[1]_PR_05032013_02d1541.txt

Pokud nemate, zazalohujte si radeji dulezita data (fotky, dokumenty, atd.)

Nepouzivejte ComboFix bez predchozi domluvy! Je to poruseni pravidel fora a ztratite tim narok na pomoc!

Stahnete ComboFix http://download.bleepingcomputer.com/sUBs/ComboFix.exe a ulozte ho na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Spustte ComboFix.
Odsouhlaste licencni podminky a nechte program pracovat. Jestli vam nabidne instalaci Konzoly pro zotaveni, souhlaste.
Po dobu skenu nic nespoustejte, nikam neklikejte.
Po dokonceni skenovani (muze dojit i k restartu pc) by se mel vytvorit log, ktery bude umisteny zde C:\ComboFix.txt
Jeho obsah sem zkopirujte

Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace

Kdyz windows nabehne, ale pri spousteni programu bude hlasena chyba, staci restartovat pc a bude to v poradku

VIRY.CZ

problem so skype

problem so skype

Re: problem so skype

Re: problem so skype

Re: problem so skype

Re: problem so skype

Re: problem so skype

Re: problem so skype

Re: problem so skype

Re: problem so skype

Re: problem so skype

Re: problem so skype

Re: problem so skype

Re: problem so skype

Re: problem so skype

Re: problem so skype