VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

zamčený počítač

https://forum.viry.cz:443/viewtopic.php?t=132623

Stránka 1 z 1

zamčený počítač

Napsal: 07 zář 2013 22:22
od MMJJ
dobrý den, mám problém - můj počítač je uzamčen - na obrazovce mám info od Služby kriminální policie a vyšetřování - útvar pro boj proti kyberkriminalitě+bla, bla, bla...a že mám zaplatit pokutu. počítač je tím úplně paralyzován. upozorňuji, že jde o jiný počítač, než ze kterého teď píšu. prosím o radu, jak se tohoto viru či co to je, zbavit. mohu vám poslat log z postiženého počítače alespoň z nouzového režimu? děkuji za odpověď.

Re: zamčený počítač

Napsal: 07 zář 2013 22:25
od vyosek
Zdravim :)

:arrow: Zkuste HitmanPro with KickStart http://forum.viry.cz/viewtopic.php?f=29&t=132523

Re: zamčený počítač

Napsal: 07 zář 2013 22:31
od MMJJ
také zdravím a zatím moc děkuji za radu. pak dám vědět

Re: zamčený počítač

Napsal: 07 zář 2013 22:38
od vyosek
:arrow: OK, snad to pujde

:arrow: Kdyby ne, tak zkuste tento postup http://forum.viry.cz/viewtopic.php?f=24&t=130783

Re: zamčený počítač

Napsal: 07 zář 2013 23:20
od MMJJ
Děkuji Vám mnohokrát! Udělal jsem vše, jak ste napsal (nainstaloval sem hitman přes flešku) a zafungovalo to!

Re: zamčený počítač

Napsal: 07 zář 2013 23:24
od vyosek
:arrow: Super, tak nyni poprosim o FRSTL http://forum.viry.cz/viewtopic.php?f=13&t=132519 z jiz normalniho rezimu

Re: zamčený počítač

Napsal: 08 zář 2013 05:51
od MMJJ
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 08-09-2013
Ran by Admin (administrator) on ACER on 08-09-2013 06:45:07
Running from C:\Documents and Settings\Admin\Plocha
Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Dritek System Inc.) C:\Program Files\Launch Manager\LManager.exe
(Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Nero AG) C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe
(Google Inc.) C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Microsoft Corporation) C:\Program Files\Windows Desktop Search\WindowsSearch.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
(Realtek Semiconductor Corp.) C:\DOCUME~1\Admin\LOCALS~1\Temp\RtkBtMnt.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDCPL] - C:\Windows\RTHDCPL.EXE [16132608 2007-05-28] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Alcmtr] - C:\Windows\ALCMTR.EXE [69632 2005-05-03] (Realtek Semiconductor Corp.)
HKLM\...\Run: [AzMixerSel] - C:\Program Files\Realtek\InstallShield\AzMixerSel.exe [53248 2005-06-11] (Realtek Semiconductor Corp.)
HKLM\...\Run: [LManager] - C:\Program Files\Launch Manager\LManager.exe [1130504 2009-08-28] (Dritek System Inc.)
HKLM\...\Run: [SynTPStart] - C:\Program Files\Synaptics\SynTP\SynTPStart.exe [102400 2007-09-07] (Synaptics, Inc.)
HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [947152 2013-01-27] (Microsoft Corporation)
HKLM\...\Run: [NeroFilterCheck] - C:\WINDOWS\system32\NeroCheck.exe [155648 2001-07-09] (Ahead Software Gmbh)
HKLM\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [35696 2009-10-03] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKCU\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] - C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe [94208 2005-12-16] (Nero AG)
HKCU\...\Run: [swg] - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2012-07-30] (Google Inc.)
HKCU\...\Winlogon: [Shell] explorer.exe <==== ATTENTION
MountPoints2: {a54b8783-d371-11e1-82db-0017c40e66ab} - F:\AutoRun.exe
HKU\Administrator\...\RunOnce: [NeroHomeFirstStart] - C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe [ 2005-12-16] (Nero AG)
HKU\Default User\...\RunOnce: [NeroHomeFirstStart] - C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe [ 2005-12-16] (Nero AG)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Windows Search.lnk
ShortcutTarget: Windows Search.lnk -> C:\Program Files\Windows Desktop Search\WindowsSearch.exe (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKCU - {E5D2698A-0931-439E-AF6A-B2D3D8047A1C} URL = http://search.yahoo.com/search?p={searc ... 8&fr=b1ie7
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll (Google Inc.)
Toolbar: HKLM - Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU -Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
Toolbar: HKCU -Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
ShellExecuteHooks: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [304128 2009-05-24] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{8CB92BE5-4996-4ECA-8389-0ADEA86F14E0}: [NameServer]10.0.0.138

Chrome:
=======
CHR HomePage: hxxp://www.google.com
CHR RestoreOnStartup: "hxxp://www.google.com"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\21.0.1180.60\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\29.0.1547.66\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_270.dll No File
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\29.0.1547.66\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
CHR Plugin: (Windows Presentation Foundation) - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (Chrome In-App Payments service) - C:\DOCUME~1\Admin\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0

========================== Services (Whitelisted) =================

R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [20456 2013-01-27] (Microsoft Corporation)
S2 HitmanPro37CrusaderBoot; "F:\HitmanPro.exe" /crusader:boot [x]

==================== Drivers (Whitelisted) ====================

S3 AR5211; C:\Windows\System32\DRIVERS\ar5211.sys [546976 2007-05-02] (Atheros Communications, Inc.)
R3 AR5416; C:\Windows\System32\DRIVERS\athw.sys [1318464 2008-08-14] (Atheros Communications, Inc.)
R3 b57w2k; C:\Windows\System32\DRIVERS\b57xp32.sys [160256 2007-02-16] (Broadcom Corporation)
R3 btaudio; C:\Windows\System32\drivers\btaudio.sys [539072 2007-03-23] (Broadcom Corporation.)
R3 BTDriver; C:\Windows\System32\DRIVERS\btport.sys [37424 2007-03-23] (Broadcom Corporation.)
R3 BTKRNL; C:\Windows\System32\DRIVERS\btkrnl.sys [876384 2007-03-31] (Broadcom Corporation.)
S3 BTWDNDIS; C:\Windows\System32\DRIVERS\btwdndis.sys [149123 2007-03-23] (Broadcom Corporation.)
S3 btwhid; C:\Windows\System32\DRIVERS\btwhid.sys [55352 2007-03-31] (Broadcom Corporation.)
S3 BTWUSB; C:\Windows\System32\Drivers\btwusb.sys [67960 2007-03-23] (Broadcom Corporation.)
R3 HSFHWAZL; C:\Windows\System32\DRIVERS\HSFHWAZL.sys [210688 2007-03-01] (Conexant Systems, Inc.)
R3 HSF_DPV; C:\Windows\System32\DRIVERS\HSF_DPV.sys [988032 2007-03-01] (Conexant Systems, Inc.)
S3 Huawei; C:\Windows\System32\DRIVERS\ewdcsc.sys [24448 2009-12-15] (Huawei Tech. Co., Ltd.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [195296 2013-01-20] (Microsoft Corporation)
R3 Rasirda; C:\Windows\System32\DRIVERS\rasirda.sys [19584 2001-08-17] (Microsoft Corporation)
R1 tidnet; C:\Windows\System32\DRIVERS\tidnet.sys [19200 2009-09-15] (Telefónica I+D)
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [113280 2009-12-15] (Huawei Technologies Co., Ltd.)
S4 InCDFs; system32\drivers\InCDFs.sys [x]
S1 InCDPass; system32\drivers\InCDPass.sys [x]
S1 InCDRm; system32\drivers\InCDRm.sys [x]
S4 IntelIde; No ImagePath
U5 ScsiPort; C:\Windows\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
S3 UIUSys; system32\DRIVERS\UIUSYS.SYS [x]
U1 WS2IFSL;

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-09-08 06:44 - 2013-09-08 00:28 - 01082239 _____ (Farbar) C:\Documents and Settings\Admin\Plocha\FRST.exe
2013-09-08 00:09 - 2013-09-08 00:09 - 00012872 _____ (SurfRight B.V.) C:\WINDOWS\system32\bootdelete.exe
2013-09-08 00:09 - 2013-09-08 00:09 - 00000512 _____ C:\WINDOWS\system32\.crusader
2013-09-08 00:04 - 2013-09-08 00:04 - 00000000 ____D C:\Documents and Settings\NetworkService\Plocha
2013-09-07 22:51 - 2013-09-08 00:09 - 00000004 _____ C:\Documents and Settings\Admin\Data aplikací\cache.ini
2013-08-30 21:12 - 2013-09-01 17:02 - 00000000 ____D C:\Documents and Settings\Admin\Plocha\víno
2013-08-28 14:35 - 2013-08-28 14:35 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$
2013-08-14 17:37 - 2013-08-14 17:37 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2859537$
2013-08-14 17:37 - 2013-08-14 17:37 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2850869$
2013-08-14 17:36 - 2013-08-14 17:36 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2863058$
2013-08-14 17:35 - 2013-08-14 17:35 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2849470$

==================== One Month Modified Files and Folders =======

2013-09-08 06:44 - 2013-09-08 06:44 - 00000000 ____D C:\FRST
2013-09-08 06:44 - 2012-06-19 18:53 - 00000000 ____D C:\Documents and Settings\Admin\Plocha
2013-09-08 06:43 - 2012-06-19 18:53 - 00000000 ___HD C:\DOCUME~1\Admin\LOCALS~1\Data aplikací
2013-09-08 00:29 - 2013-02-17 13:20 - 00000396 ____H C:\WINDOWS\Tasks\Microsoft Antimalware Scheduled Scan.job
2013-09-08 00:28 - 2013-09-08 06:44 - 01082239 _____ (Farbar) C:\Documents and Settings\Admin\Plocha\FRST.exe
2013-09-08 00:24 - 2012-06-20 07:36 - 00000466 ____H C:\WINDOWS\Tasks\User_Feed_Synchronization-{0A43C933-3EB3-4EF2-9B63-F20F618FF3C7}.job
2013-09-08 00:23 - 2012-06-19 18:53 - 00000000 ____D C:\Documents and Settings\Admin
2013-09-08 00:21 - 2012-06-19 18:47 - 01319317 ____N C:\WINDOWS\WindowsUpdate.log
2013-09-08 00:20 - 2012-07-30 17:09 - 00000934 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-08 00:19 - 2012-06-19 18:52 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-09-08 00:18 - 2013-03-23 00:47 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2013-09-08 00:18 - 2012-06-19 18:53 - 00000272 ___SH C:\Documents and Settings\Admin\ntuser.ini
2013-09-08 00:18 - 2012-06-19 18:52 - 00032522 ____N C:\WINDOWS\SchedLgU.Txt
2013-09-08 00:09 - 2013-09-08 00:09 - 00012872 _____ (SurfRight B.V.) C:\WINDOWS\system32\bootdelete.exe
2013-09-08 00:09 - 2013-09-08 00:09 - 00000512 _____ C:\WINDOWS\system32\.crusader
2013-09-08 00:09 - 2013-09-07 22:51 - 00000004 _____ C:\Documents and Settings\Admin\Data aplikací\cache.ini
2013-09-08 00:04 - 2013-09-08 00:04 - 00000000 ____D C:\Documents and Settings\NetworkService\Plocha
2013-09-08 00:04 - 2012-06-19 18:51 - 00000000 __SHD C:\Documents and Settings\NetworkService
2013-09-08 00:03 - 2012-06-19 20:36 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2013-09-07 22:51 - 2012-06-19 18:53 - 00000000 __RHD C:\Documents and Settings\Admin\Data aplikací
2013-09-07 22:47 - 2012-07-30 17:09 - 00000938 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-07 06:24 - 2004-08-18 14:00 - 00013646 _____ C:\WINDOWS\system32\wpa.dbl
2013-09-01 17:02 - 2013-08-30 21:12 - 00000000 ____D C:\Documents and Settings\Admin\Plocha\víno
2013-08-30 04:34 - 2013-02-09 22:54 - 00000000 ____D C:\Documents and Settings\Admin\Plocha\literatura a studijní materiály
2013-08-28 20:15 - 2012-09-22 14:47 - 00000000 ____D C:\Documents and Settings\Admin\Plocha\já, finance
2013-08-28 20:14 - 2012-11-15 20:40 - 00000000 ____D C:\Documents and Settings\Admin\Plocha\uvn
2013-08-28 20:12 - 2012-09-06 16:28 - 00000000 ____D C:\Documents and Settings\Admin\Plocha\4. masáž
2013-08-28 14:35 - 2013-08-28 14:35 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$
2013-08-27 08:51 - 2013-02-09 22:03 - 00000000 ____D C:\Documents and Settings\Admin\Plocha\ortofit
2013-08-27 07:39 - 2012-10-15 20:04 - 00000116 _____ C:\WINDOWS\NeroDigital.ini
2013-08-22 10:19 - 2013-03-23 00:47 - 00692104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2013-08-22 10:19 - 2013-03-23 00:47 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2013-08-19 19:03 - 2012-06-19 20:28 - 00000000 ____D C:\WINDOWS\Help
2013-08-18 21:53 - 2012-07-22 14:27 - 00000000 ____D C:\Documents and Settings\Admin\Plocha\okna - jiroš
2013-08-14 18:46 - 2012-06-20 07:58 - 00000000 ____D C:\WINDOWS\Microsoft.NET
2013-08-14 17:49 - 2013-07-19 05:59 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-08-14 17:49 - 2012-06-20 07:17 - 00000000 ____D C:\WINDOWS\ie8updates
2013-08-14 17:46 - 2012-06-20 07:14 - 75778376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-08-14 17:40 - 2012-06-19 20:36 - 01182140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-08-14 17:37 - 2013-08-14 17:37 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2859537$
2013-08-14 17:37 - 2013-08-14 17:37 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2850869$
2013-08-14 17:36 - 2013-08-14 17:36 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2863058$
2013-08-14 17:36 - 2012-06-20 07:12 - 00023970 _____ C:\WINDOWS\system32\TZLog.log
2013-08-14 17:35 - 2013-08-14 17:35 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2849470$

Files to move or delete:
====================
C:\DOCUME~1\Admin\LOCALS~1\Temp\RtkBtMnt.exe

==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe
[2004-08-18 14:00] - [2008-04-14 08:52] - 1034240 ____A (Microsoft Corporation) 27afd587c462e280ee046b8cca3c2cd1

C:\Windows\System32\winlogon.exe
[2004-08-18 14:00] - [2008-04-14 08:52] - 0507904 ____A (Microsoft Corporation) cddb1f8e1aea356f3ad106f2cf9b7fea

C:\Windows\System32\svchost.exe
[2004-08-18 14:00] - [2008-04-14 08:52] - 0014336 ____A (Microsoft Corporation) be4a520e29b6391f49e79ccc52044d93

C:\Windows\System32\services.exe
[2004-08-18 14:00] - [2009-02-09 13:25] - 0111104 ____A (Microsoft Corporation) 9ef697af07bb8dd82c3b02ca953a95b7

C:\Windows\System32\User32.dll
[2004-08-18 14:00] - [2008-04-14 08:52] - 0578560 ____A (Microsoft Corporation) e16e0990967374e76f3e40cacafd3d53

C:\Windows\System32\userinit.exe
[2004-08-18 14:00] - [2008-04-14 08:52] - 0026112 ____A (Microsoft Corporation) 7dc1830f22e7d275b438127b68030239

C:\Windows\System32\Drivers\volsnap.sys
[2004-08-18 14:00] - [2008-04-14 07:42] - 0052480 ____A (Microsoft Corporation) 28a4b296b47782173c346e376cb374d1


==================== Scheduled Tasks (whitelisted) ===========

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Microsoft Antimalware Scheduled Scan.job => c:\Program Files\Microsoft Security Client\MpCmdRun.exe
Task: C:\WINDOWS\Tasks\User_Feed_Synchronization-{0A43C933-3EB3-4EF2-9B63-F20F618FF3C7}.job => C:\WINDOWS\system32\msfeedssync.exe

==================== Supplementary Scan (All) ================


HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\hitmanpro37
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\hitmanpro37.sys
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\HitmanPro37Crusader
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\HitmanPro37CrusaderBoot
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\hitmanpro37
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\hitmanpro37.sys
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\HitmanPro37Crusader
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\HitmanPro37CrusaderBoot

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled"=dword:00000001
"AntiVirusDisableNotify"=dword:00000000
"FirewallDisableNotify"=dword:00000000
"UpdatesDisableNotify"=dword:00000000
"AntiVirusOverride"=dword:00000000
"FirewallOverride"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"5985:TCP"="5985:TCP:*:Disabled:Vzdlen sprva systmu Windows "
"80:TCP"="80:TCP:*:Disabled:Vzdlen sprva systmu Windows - reim kompatibility (HTTP-In) "
"1900:UDP"="1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"="midimap.dll"
"msacm.imaadpcm"="imaadp32.acm"
"msacm.msadpcm"="msadp32.acm"
"msacm.msg711"="msg711.acm"
"msacm.msgsm610"="msgsm32.acm"
"msacm.trspch"="tssoft32.acm"
"vidc.cvid"="iccvid.dll"
"vidc.I420"="msh263.drv"
"vidc.iv31"="ir32_32.dll"
"vidc.iv32"="ir32_32.dll"
"vidc.iv41"="ir41_32.ax"
"vidc.iyuv"="iyuv_32.dll"
"vidc.mrle"="msrle32.dll"
"vidc.msvc"="msvidc32.dll"
"vidc.uyvy"="msyuv.dll"
"vidc.yuy2"="msyuv.dll"
"vidc.yvu9"="tsbyuv.dll"
"vidc.yvyu"="msyuv.dll"
"wavemapper"="msacm32.drv"
"msacm.msg723"="msg723.acm"
"vidc.M263"="msh263.drv"
"vidc.M261"="msh261.drv"
"msacm.msaudio1"="msaud32.acm"
"msacm.sl_anet"="sl_anet.acm"
"msacm.iac2"="C:\\WINDOWS\\system32\\iac25_32.ax"
"vidc.iv50"="ir50_32.dll"
"msacm.l3acm"="C:\\WINDOWS\\system32\\l3codeca.acm"
"wave"="wdmaud.drv"
"midi"="wdmaud.drv"
"mixer"="wdmaud.drv"
"aux"="wdmaud.drv"
"wave1"="wdmaud.drv"
"midi1"="wdmaud.drv"
"mixer1"="wdmaud.drv"
"wave2"="wdmaud.drv"
"midi2"="wdmaud.drv"
"mixer2"="wdmaud.drv"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32\Terminal Server]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32\Terminal Server\RDP]
"wave"="rdpsnd.dll"
"mixer"="rdpsnd.dll"
"MaxBandwidth"=dword:000056b9
"wavemapper"="msacm32.drv"
"EnableMP3Codec"=dword:00000001
"midimapper"="midimap.dll"


==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:107.42 GB) (Free:88.32 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: () (Fixed) (Total:4.36 GB) (Free:3.51 GB) NTFS

Available physical RAM: 919.6 MB
Total physical RAM: 1526.36 MB
Percentage of memory in use: 39%


==================== End Of Log ==============================

Re: zamčený počítač

Napsal: 08 zář 2013 05:55
od MMJJ
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 08-09-2013
Ran by Admin (administrator) on ACER on 08-09-2013 06:45:07
Running from C:\Documents and Settings\Admin\Plocha
Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Dritek System Inc.) C:\Program Files\Launch Manager\LManager.exe
(Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Nero AG) C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe
(Google Inc.) C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Microsoft Corporation) C:\Program Files\Windows Desktop Search\WindowsSearch.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
(Realtek Semiconductor Corp.) C:\DOCUME~1\Admin\LOCALS~1\Temp\RtkBtMnt.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDCPL] - C:\Windows\RTHDCPL.EXE [16132608 2007-05-28] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Alcmtr] - C:\Windows\ALCMTR.EXE [69632 2005-05-03] (Realtek Semiconductor Corp.)
HKLM\...\Run: [AzMixerSel] - C:\Program Files\Realtek\InstallShield\AzMixerSel.exe [53248 2005-06-11] (Realtek Semiconductor Corp.)
HKLM\...\Run: [LManager] - C:\Program Files\Launch Manager\LManager.exe [1130504 2009-08-28] (Dritek System Inc.)
HKLM\...\Run: [SynTPStart] - C:\Program Files\Synaptics\SynTP\SynTPStart.exe [102400 2007-09-07] (Synaptics, Inc.)
HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [947152 2013-01-27] (Microsoft Corporation)
HKLM\...\Run: [NeroFilterCheck] - C:\WINDOWS\system32\NeroCheck.exe [155648 2001-07-09] (Ahead Software Gmbh)
HKLM\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [35696 2009-10-03] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKCU\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] - C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe [94208 2005-12-16] (Nero AG)
HKCU\...\Run: [swg] - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2012-07-30] (Google Inc.)
HKCU\...\Winlogon: [Shell] explorer.exe <==== ATTENTION
MountPoints2: {a54b8783-d371-11e1-82db-0017c40e66ab} - F:\AutoRun.exe
HKU\Administrator\...\RunOnce: [NeroHomeFirstStart] - C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe [ 2005-12-16] (Nero AG)
HKU\Default User\...\RunOnce: [NeroHomeFirstStart] - C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe [ 2005-12-16] (Nero AG)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Windows Search.lnk
ShortcutTarget: Windows Search.lnk -> C:\Program Files\Windows Desktop Search\WindowsSearch.exe (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKCU - {E5D2698A-0931-439E-AF6A-B2D3D8047A1C} URL = http://search.yahoo.com/search?p={searc ... 8&fr=b1ie7
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll (Google Inc.)
Toolbar: HKLM - Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU -Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
Toolbar: HKCU -Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
ShellExecuteHooks: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [304128 2009-05-24] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{8CB92BE5-4996-4ECA-8389-0ADEA86F14E0}: [NameServer]10.0.0.138

Chrome:
=======
CHR HomePage: hxxp://www.google.com
CHR RestoreOnStartup: "hxxp://www.google.com"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\21.0.1180.60\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\29.0.1547.66\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_270.dll No File
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\29.0.1547.66\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
CHR Plugin: (Windows Presentation Foundation) - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (Chrome In-App Payments service) - C:\DOCUME~1\Admin\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0

========================== Services (Whitelisted) =================

R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [20456 2013-01-27] (Microsoft Corporation)
S2 HitmanPro37CrusaderBoot; "F:\HitmanPro.exe" /crusader:boot [x]

==================== Drivers (Whitelisted) ====================

S3 AR5211; C:\Windows\System32\DRIVERS\ar5211.sys [546976 2007-05-02] (Atheros Communications, Inc.)
R3 AR5416; C:\Windows\System32\DRIVERS\athw.sys [1318464 2008-08-14] (Atheros Communications, Inc.)
R3 b57w2k; C:\Windows\System32\DRIVERS\b57xp32.sys [160256 2007-02-16] (Broadcom Corporation)
R3 btaudio; C:\Windows\System32\drivers\btaudio.sys [539072 2007-03-23] (Broadcom Corporation.)
R3 BTDriver; C:\Windows\System32\DRIVERS\btport.sys [37424 2007-03-23] (Broadcom Corporation.)
R3 BTKRNL; C:\Windows\System32\DRIVERS\btkrnl.sys [876384 2007-03-31] (Broadcom Corporation.)
S3 BTWDNDIS; C:\Windows\System32\DRIVERS\btwdndis.sys [149123 2007-03-23] (Broadcom Corporation.)
S3 btwhid; C:\Windows\System32\DRIVERS\btwhid.sys [55352 2007-03-31] (Broadcom Corporation.)
S3 BTWUSB; C:\Windows\System32\Drivers\btwusb.sys [67960 2007-03-23] (Broadcom Corporation.)
R3 HSFHWAZL; C:\Windows\System32\DRIVERS\HSFHWAZL.sys [210688 2007-03-01] (Conexant Systems, Inc.)
R3 HSF_DPV; C:\Windows\System32\DRIVERS\HSF_DPV.sys [988032 2007-03-01] (Conexant Systems, Inc.)
S3 Huawei; C:\Windows\System32\DRIVERS\ewdcsc.sys [24448 2009-12-15] (Huawei Tech. Co., Ltd.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [195296 2013-01-20] (Microsoft Corporation)
R3 Rasirda; C:\Windows\System32\DRIVERS\rasirda.sys [19584 2001-08-17] (Microsoft Corporation)
R1 tidnet; C:\Windows\System32\DRIVERS\tidnet.sys [19200 2009-09-15] (Telefónica I+D)
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [113280 2009-12-15] (Huawei Technologies Co., Ltd.)
S4 InCDFs; system32\drivers\InCDFs.sys [x]
S1 InCDPass; system32\drivers\InCDPass.sys [x]
S1 InCDRm; system32\drivers\InCDRm.sys [x]
S4 IntelIde; No ImagePath
U5 ScsiPort; C:\Windows\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
S3 UIUSys; system32\DRIVERS\UIUSYS.SYS [x]
U1 WS2IFSL;

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-09-08 06:44 - 2013-09-08 00:28 - 01082239 _____ (Farbar) C:\Documents and Settings\Admin\Plocha\FRST.exe
2013-09-08 00:09 - 2013-09-08 00:09 - 00012872 _____ (SurfRight B.V.) C:\WINDOWS\system32\bootdelete.exe
2013-09-08 00:09 - 2013-09-08 00:09 - 00000512 _____ C:\WINDOWS\system32\.crusader
2013-09-08 00:04 - 2013-09-08 00:04 - 00000000 ____D C:\Documents and Settings\NetworkService\Plocha
2013-09-07 22:51 - 2013-09-08 00:09 - 00000004 _____ C:\Documents and Settings\Admin\Data aplikací\cache.ini
2013-08-30 21:12 - 2013-09-01 17:02 - 00000000 ____D C:\Documents and Settings\Admin\Plocha\víno
2013-08-28 14:35 - 2013-08-28 14:35 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$
2013-08-14 17:37 - 2013-08-14 17:37 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2859537$
2013-08-14 17:37 - 2013-08-14 17:37 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2850869$
2013-08-14 17:36 - 2013-08-14 17:36 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2863058$
2013-08-14 17:35 - 2013-08-14 17:35 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2849470$

==================== One Month Modified Files and Folders =======

2013-09-08 06:44 - 2013-09-08 06:44 - 00000000 ____D C:\FRST
2013-09-08 06:44 - 2012-06-19 18:53 - 00000000 ____D C:\Documents and Settings\Admin\Plocha
2013-09-08 06:43 - 2012-06-19 18:53 - 00000000 ___HD C:\DOCUME~1\Admin\LOCALS~1\Data aplikací
2013-09-08 00:29 - 2013-02-17 13:20 - 00000396 ____H C:\WINDOWS\Tasks\Microsoft Antimalware Scheduled Scan.job
2013-09-08 00:28 - 2013-09-08 06:44 - 01082239 _____ (Farbar) C:\Documents and Settings\Admin\Plocha\FRST.exe
2013-09-08 00:24 - 2012-06-20 07:36 - 00000466 ____H C:\WINDOWS\Tasks\User_Feed_Synchronization-{0A43C933-3EB3-4EF2-9B63-F20F618FF3C7}.job
2013-09-08 00:23 - 2012-06-19 18:53 - 00000000 ____D C:\Documents and Settings\Admin
2013-09-08 00:21 - 2012-06-19 18:47 - 01319317 ____N C:\WINDOWS\WindowsUpdate.log
2013-09-08 00:20 - 2012-07-30 17:09 - 00000934 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-08 00:19 - 2012-06-19 18:52 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-09-08 00:18 - 2013-03-23 00:47 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2013-09-08 00:18 - 2012-06-19 18:53 - 00000272 ___SH C:\Documents and Settings\Admin\ntuser.ini
2013-09-08 00:18 - 2012-06-19 18:52 - 00032522 ____N C:\WINDOWS\SchedLgU.Txt
2013-09-08 00:09 - 2013-09-08 00:09 - 00012872 _____ (SurfRight B.V.) C:\WINDOWS\system32\bootdelete.exe
2013-09-08 00:09 - 2013-09-08 00:09 - 00000512 _____ C:\WINDOWS\system32\.crusader
2013-09-08 00:09 - 2013-09-07 22:51 - 00000004 _____ C:\Documents and Settings\Admin\Data aplikací\cache.ini
2013-09-08 00:04 - 2013-09-08 00:04 - 00000000 ____D C:\Documents and Settings\NetworkService\Plocha
2013-09-08 00:04 - 2012-06-19 18:51 - 00000000 __SHD C:\Documents and Settings\NetworkService
2013-09-08 00:03 - 2012-06-19 20:36 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2013-09-07 22:51 - 2012-06-19 18:53 - 00000000 __RHD C:\Documents and Settings\Admin\Data aplikací
2013-09-07 22:47 - 2012-07-30 17:09 - 00000938 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-07 06:24 - 2004-08-18 14:00 - 00013646 _____ C:\WINDOWS\system32\wpa.dbl
2013-09-01 17:02 - 2013-08-30 21:12 - 00000000 ____D C:\Documents and Settings\Admin\Plocha\víno
2013-08-30 04:34 - 2013-02-09 22:54 - 00000000 ____D C:\Documents and Settings\Admin\Plocha\literatura a studijní materiály
2013-08-28 20:15 - 2012-09-22 14:47 - 00000000 ____D C:\Documents and Settings\Admin\Plocha\já, finance
2013-08-28 20:14 - 2012-11-15 20:40 - 00000000 ____D C:\Documents and Settings\Admin\Plocha\uvn
2013-08-28 20:12 - 2012-09-06 16:28 - 00000000 ____D C:\Documents and Settings\Admin\Plocha\4. masáž
2013-08-28 14:35 - 2013-08-28 14:35 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$
2013-08-27 08:51 - 2013-02-09 22:03 - 00000000 ____D C:\Documents and Settings\Admin\Plocha\ortofit
2013-08-27 07:39 - 2012-10-15 20:04 - 00000116 _____ C:\WINDOWS\NeroDigital.ini
2013-08-22 10:19 - 2013-03-23 00:47 - 00692104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2013-08-22 10:19 - 2013-03-23 00:47 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2013-08-19 19:03 - 2012-06-19 20:28 - 00000000 ____D C:\WINDOWS\Help
2013-08-18 21:53 - 2012-07-22 14:27 - 00000000 ____D C:\Documents and Settings\Admin\Plocha\okna - jiroš
2013-08-14 18:46 - 2012-06-20 07:58 - 00000000 ____D C:\WINDOWS\Microsoft.NET
2013-08-14 17:49 - 2013-07-19 05:59 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-08-14 17:49 - 2012-06-20 07:17 - 00000000 ____D C:\WINDOWS\ie8updates
2013-08-14 17:46 - 2012-06-20 07:14 - 75778376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-08-14 17:40 - 2012-06-19 20:36 - 01182140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-08-14 17:37 - 2013-08-14 17:37 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2859537$
2013-08-14 17:37 - 2013-08-14 17:37 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2850869$
2013-08-14 17:36 - 2013-08-14 17:36 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2863058$
2013-08-14 17:36 - 2012-06-20 07:12 - 00023970 _____ C:\WINDOWS\system32\TZLog.log
2013-08-14 17:35 - 2013-08-14 17:35 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2849470$

Files to move or delete:
====================
C:\DOCUME~1\Admin\LOCALS~1\Temp\RtkBtMnt.exe

==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe
[2004-08-18 14:00] - [2008-04-14 08:52] - 1034240 ____A (Microsoft Corporation) 27afd587c462e280ee046b8cca3c2cd1

C:\Windows\System32\winlogon.exe
[2004-08-18 14:00] - [2008-04-14 08:52] - 0507904 ____A (Microsoft Corporation) cddb1f8e1aea356f3ad106f2cf9b7fea

C:\Windows\System32\svchost.exe
[2004-08-18 14:00] - [2008-04-14 08:52] - 0014336 ____A (Microsoft Corporation) be4a520e29b6391f49e79ccc52044d93

C:\Windows\System32\services.exe
[2004-08-18 14:00] - [2009-02-09 13:25] - 0111104 ____A (Microsoft Corporation) 9ef697af07bb8dd82c3b02ca953a95b7

C:\Windows\System32\User32.dll
[2004-08-18 14:00] - [2008-04-14 08:52] - 0578560 ____A (Microsoft Corporation) e16e0990967374e76f3e40cacafd3d53

C:\Windows\System32\userinit.exe
[2004-08-18 14:00] - [2008-04-14 08:52] - 0026112 ____A (Microsoft Corporation) 7dc1830f22e7d275b438127b68030239

C:\Windows\System32\Drivers\volsnap.sys
[2004-08-18 14:00] - [2008-04-14 07:42] - 0052480 ____A (Microsoft Corporation) 28a4b296b47782173c346e376cb374d1


==================== Scheduled Tasks (whitelisted) ===========

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Microsoft Antimalware Scheduled Scan.job => c:\Program Files\Microsoft Security Client\MpCmdRun.exe
Task: C:\WINDOWS\Tasks\User_Feed_Synchronization-{0A43C933-3EB3-4EF2-9B63-F20F618FF3C7}.job => C:\WINDOWS\system32\msfeedssync.exe

==================== Supplementary Scan (All) ================


HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\hitmanpro37
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\hitmanpro37.sys
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\HitmanPro37Crusader
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\HitmanPro37CrusaderBoot
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\hitmanpro37
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\hitmanpro37.sys
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\HitmanPro37Crusader
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\HitmanPro37CrusaderBoot

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled"=dword:00000001
"AntiVirusDisableNotify"=dword:00000000
"FirewallDisableNotify"=dword:00000000
"UpdatesDisableNotify"=dword:00000000
"AntiVirusOverride"=dword:00000000
"FirewallOverride"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"5985:TCP"="5985:TCP:*:Disabled:Vzdlen sprva systmu Windows "
"80:TCP"="80:TCP:*:Disabled:Vzdlen sprva systmu Windows - reim kompatibility (HTTP-In) "
"1900:UDP"="1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"="midimap.dll"
"msacm.imaadpcm"="imaadp32.acm"
"msacm.msadpcm"="msadp32.acm"
"msacm.msg711"="msg711.acm"
"msacm.msgsm610"="msgsm32.acm"
"msacm.trspch"="tssoft32.acm"
"vidc.cvid"="iccvid.dll"
"vidc.I420"="msh263.drv"
"vidc.iv31"="ir32_32.dll"
"vidc.iv32"="ir32_32.dll"
"vidc.iv41"="ir41_32.ax"
"vidc.iyuv"="iyuv_32.dll"
"vidc.mrle"="msrle32.dll"
"vidc.msvc"="msvidc32.dll"
"vidc.uyvy"="msyuv.dll"
"vidc.yuy2"="msyuv.dll"
"vidc.yvu9"="tsbyuv.dll"
"vidc.yvyu"="msyuv.dll"
"wavemapper"="msacm32.drv"
"msacm.msg723"="msg723.acm"
"vidc.M263"="msh263.drv"
"vidc.M261"="msh261.drv"
"msacm.msaudio1"="msaud32.acm"
"msacm.sl_anet"="sl_anet.acm"
"msacm.iac2"="C:\\WINDOWS\\system32\\iac25_32.ax"
"vidc.iv50"="ir50_32.dll"
"msacm.l3acm"="C:\\WINDOWS\\system32\\l3codeca.acm"
"wave"="wdmaud.drv"
"midi"="wdmaud.drv"
"mixer"="wdmaud.drv"
"aux"="wdmaud.drv"
"wave1"="wdmaud.drv"
"midi1"="wdmaud.drv"
"mixer1"="wdmaud.drv"
"wave2"="wdmaud.drv"
"midi2"="wdmaud.drv"
"mixer2"="wdmaud.drv"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32\Terminal Server]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32\Terminal Server\RDP]
"wave"="rdpsnd.dll"
"mixer"="rdpsnd.dll"
"MaxBandwidth"=dword:000056b9
"wavemapper"="msacm32.drv"
"EnableMP3Codec"=dword:00000001
"midimapper"="midimap.dll"


==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:107.42 GB) (Free:88.32 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: () (Fixed) (Total:4.36 GB) (Free:3.51 GB) NTFS

Available physical RAM: 919.6 MB
Total physical RAM: 1526.36 MB
Percentage of memory in use: 39%


==================== End Of Log ==============================

Re: zamčený počítač

Napsal: 08 zář 2013 05:57
od MMJJ
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 08-09-2013
Ran by Admin at 2013-09-08 06:46:08
Running from C:\Documents and Settings\Admin\Plocha
Boot Mode: Normal
==========================================================


==================== Installed Programs =======================

Acrobat.com (Version: 0.0.0)
Acrobat.com (Version: 1.1.377)
Adobe AIR (Version: 1.0.4990)
Adobe AIR (Version: 1.0.8.4990)
Adobe Flash Player 11 ActiveX (Version: 11.8.800.94)
Adobe Reader 9.2 (Version: 9.2.0)
Aktualizace systému Windows Internet Explorer 8 (KB2598845) (Version: 1)
Aktualizace systému Windows Internet Explorer 8 (KB2632503) (Version: 1)
Aktualizace systému Windows XP (KB2345886) (Version: 1)
Aktualizace systému Windows XP (KB2467659) (Version: 1)
Aktualizace systému Windows XP (KB2492386) (Version: 1)
Aktualizace systému Windows XP (KB2661254-v2) (Version: 2)
Aktualizace systému Windows XP (KB2718704) (Version: 1)
Aktualizace systému Windows XP (KB2736233) (Version: 1)
Aktualizace systému Windows XP (KB2749655) (Version: 1)
Aktualizace systému Windows XP (KB2863058) (Version: 1)
Aktualizace systému Windows XP (KB898461) (Version: 1)
Aktualizace systému Windows XP (KB951978) (Version: 1)
Aktualizace systému Windows XP (KB968389) (Version: 1)
Aktualizace systému Windows XP (KB971029) (Version: 1)
Aktualizace systému Windows XP (KB973687) (Version: 1)
Aktualizace systému Windows XP (KB973815) (Version: 1)
Aktualizace zabezpečení aplikace Windows Media Player (KB2378111)
Aktualizace zabezpečení aplikace Windows Media Player (KB2834904)
Aktualizace zabezpečení aplikace Windows Media Player (KB2834904-v2)
Aktualizace zabezpečení aplikace Windows Media Player (KB952069)
Aktualizace zabezpečení aplikace Windows Media Player (KB954155)
Aktualizace zabezpečení aplikace Windows Media Player (KB973540)
Aktualizace zabezpečení aplikace Windows Media Player (KB975558)
Aktualizace zabezpečení aplikace Windows Media Player (KB978695)
Aktualizace zabezpečení aplikace Windows Media Player 11 (KB954154)
Aktualizace zabezpečení pro Microsoft Windows (KB2564958)
Aktualizace zabezpečení produktu Windows XP (KB941569)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2510531) (Version: 1)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2544521) (Version: 1)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2618444) (Version: 1)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2699988) (Version: 1)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2722913) (Version: 1)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2744842) (Version: 1)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2761465) (Version: 1)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2792100) (Version: 1)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2797052) (Version: 1)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2799329) (Version: 1)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2809289) (Version: 1)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2817183) (Version: 1)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2829530) (Version: 1)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2838727) (Version: 1)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2846071) (Version: 1)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2847204) (Version: 1)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2862772) (Version: 1)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB982381) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2079403) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2115168) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2229593) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2296011) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2347290) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2360937) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2387149) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2393802) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2419632) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2423089) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2440591) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2443105) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2476490) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2478960) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2478971) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2479943) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2481109) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2483185) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2485663) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2506212) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2507618) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2507938) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2508429) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2509553) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2510581) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2535512) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2536276-v2) (Version: 2)
Aktualizace zabezpečení systému Windows XP (KB2544521) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2544893-v2) (Version: 2)
Aktualizace zabezpečení systému Windows XP (KB2566454) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2570947) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2584146) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2585542) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2592799) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2598479) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2603381) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2618451) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2619339) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2620712) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2624667) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2631813) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2646524) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2653956) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2655992) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2659262) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2661637) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2676562) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2685939) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2686509) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2691442) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2695962) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2698365) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2699988) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2705219) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2707511) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2709162) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2712808) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2718523) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2719985) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2723135) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2724197) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2727528) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2731847) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2753842) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2753842-v2) (Version: 2)
Aktualizace zabezpečení systému Windows XP (KB2757638) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2758857) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2761226) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2770660) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2778344) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2779030) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2780091) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2799494) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2802968) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2807986) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2808735) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2813170) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2813345) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2820197) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2820917) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2829361) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2834886) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2839229) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2845187) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2849470) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2850851) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2850869) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB2859537) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB923561) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB923789)
Aktualizace zabezpečení systému Windows XP (KB946648) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB950762) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB950974) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB951376-v2) (Version: 2)
Aktualizace zabezpečení systému Windows XP (KB952004) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB952954) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB954459) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB956572) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB956744) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB956802) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB956844) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB958644) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB959426) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB960803) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB960859) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB961501) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB969059) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB970430) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB971657) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB972270) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB973507) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB973869) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB973904) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB974112) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB974318) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB974392) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB974571) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB975025) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB975467) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB975560) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB975713) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB977816) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB977914) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB978338) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB978542) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB978706) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB979309) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB979482) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB979687) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB981322) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB981997) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB982132) (Version: 1)
Aktualizace zabezpečení systému Windows XP (KB982665) (Version: 1)
Atheros for Acer Driver 5.3.0.45_Foxconn Installation Program (Version: 5.3.0.45)
Balíček zprostředkovatele služby Microsoft Base Smart Card Cryptographic Service
Broadcom Driver v4.170.25.12_Foxconn Installation Program (Version: 4.170.25.12)
Broadcom Gigabit Integrated Controller (Version: 10.15.10)
Canon iP2700 series Printer Driver
CCleaner (Version: 3.28)
CrystalDiskInfo 5.0.0 (Version: 5.0.0)
Google Chrome (Version: 29.0.1547.66)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.5.4413.1752)
Google Update Helper (Version: 1.3.21.153)
High Definition Audio Driver Package - KB888111 (Version: 20040219.000000)
Intel(R) Graphics Media Accelerator Driver
Launch Manager (Version: 3.0.03)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Czech Language Pack (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2698023)
Microsoft .NET Framework 1.1 Security Update (KB2833941)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - CSY (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - CSY (Version: 3.2.30729)
Microsoft .NET Framework 3.5 Language Pack SP1 - csy (Version: 3.5.30729)
Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile CSY Language Pack (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Professional Edition 2003 (Version: 11.0.8173.0)
Microsoft Security Client (Version: 4.2.0223.1)
Microsoft Security Essentials (Version: 4.2.223.1)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
MuseScore 1.3 (Version: 1.3.0)
Nero 7 Demo (Version: 7.00.4089)
O2
Oprava hotfix aplikace Windows Media Player 11 (KB939683)
Oprava Hotfix systému Windows XP (KB2633952) (Version: 1)
Oprava Hotfix systému Windows XP (KB2756822) (Version: 1)
Oprava Hotfix systému Windows XP (KB2779562) (Version: 1)
Oprava Hotfix systému Windows XP (KB952287) (Version: 1)
Oprava Hotfix systému Windows XP (KB961118) (Version: 1)
Planung und Ausschreibung 2.0 - KBE
Realtek High Definition Audio Driver (Version: 5.10.0.5423)
Sada Compatibility Pack pro systém Office 2007 (Version: 12.0.6612.1000)
Synaptics Pointing Device Driver (Version: 10.0.15.0)
Texas Instruments PCIxx21/x515/xx12 drivers. (Version: 2.00.0002)
TIPCI (Version: 2.00.0002)
Total Commander (Remove or Repair)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
WebFldrs XP (Version: 9.50.7523)
WIDCOMM Bluetooth Software (Version: 5.1.0.3300)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Management Framework Core
Windows Media Format 11 runtime
Windows Search 4.0 (Version: 04.00.6001.503)
Windows XP Service Pack 3 (Version: 20080414.031517)
WinRAR
XML Paper Specification Shared Components Language Pack 1.0
Yahoo! Toolbar


==================== Restore Points =========================

10-06-2013 19:52:06 Software Distribution Service 3.0
11-06-2013 21:32:23 Software Distribution Service 3.0
12-06-2013 21:47:47 Software Distribution Service 3.0
13-06-2013 20:58:16 Software Distribution Service 3.0
13-06-2013 22:25:39 Software Distribution Service 3.0
15-06-2013 19:34:37 Software Distribution Service 3.0
16-06-2013 19:52:57 Kontrolní bod systému
17-06-2013 04:16:09 Software Distribution Service 3.0
17-06-2013 15:39:47 Software Distribution Service 3.0
19-06-2013 04:58:47 Software Distribution Service 3.0
20-06-2013 05:40:15 Software Distribution Service 3.0
20-06-2013 15:41:20 Software Distribution Service 3.0
21-06-2013 21:49:14 Software Distribution Service 3.0
23-06-2013 15:02:52 Software Distribution Service 3.0
24-06-2013 15:43:13 Software Distribution Service 3.0
25-06-2013 15:40:14 Software Distribution Service 3.0
26-06-2013 16:03:10 Software Distribution Service 3.0
28-06-2013 04:16:15 Software Distribution Service 3.0
29-06-2013 04:42:06 Software Distribution Service 3.0
30-06-2013 18:31:13 Software Distribution Service 3.0
01-07-2013 20:28:20 Software Distribution Service 3.0
02-07-2013 20:36:29 Software Distribution Service 3.0
03-07-2013 21:45:46 Software Distribution Service 3.0
04-07-2013 15:46:57 Software Distribution Service 3.0
07-07-2013 12:43:25 Software Distribution Service 3.0
08-07-2013 14:31:55 Software Distribution Service 3.0
09-07-2013 19:58:22 Kontrolní bod systému
09-07-2013 20:38:00 Software Distribution Service 3.0
10-07-2013 18:43:54 Software Distribution Service 3.0
11-07-2013 15:44:04 Software Distribution Service 3.0
11-07-2013 16:43:58 Software Distribution Service 3.0
12-07-2013 19:23:24 Software Distribution Service 3.0
13-07-2013 12:51:02 Software Distribution Service 3.0
15-07-2013 19:35:56 Software Distribution Service 3.0
16-07-2013 21:46:53 Software Distribution Service 3.0
17-07-2013 21:51:11 Kontrolní bod systému
18-07-2013 16:49:41 Software Distribution Service 3.0
19-07-2013 03:58:54 Software Distribution Service 3.0
21-07-2013 15:12:06 Software Distribution Service 3.0
22-07-2013 16:57:12 Software Distribution Service 3.0
24-07-2013 02:18:03 Software Distribution Service 3.0
25-07-2013 15:05:16 Software Distribution Service 3.0
26-07-2013 15:09:52 Kontrolní bod systému
26-07-2013 15:41:10 Software Distribution Service 3.0
27-07-2013 15:43:53 Software Distribution Service 3.0
28-07-2013 17:22:33 Software Distribution Service 3.0
29-07-2013 16:55:58 Software Distribution Service 3.0
30-07-2013 18:54:00 Software Distribution Service 3.0
01-08-2013 17:28:19 Kontrolní bod systému
04-08-2013 17:34:36 Kontrolní bod systému
06-08-2013 04:20:02 Kontrolní bod systému
07-08-2013 09:46:37 Kontrolní bod systému
08-08-2013 11:58:55 Kontrolní bod systému
10-08-2013 04:29:26 Kontrolní bod systému
11-08-2013 08:39:20 Kontrolní bod systému
13-08-2013 18:44:16 Software Distribution Service 3.0
14-08-2013 15:29:13 Software Distribution Service 3.0
14-08-2013 16:24:07 Software Distribution Service 3.0
15-08-2013 16:53:04 Software Distribution Service 3.0
16-08-2013 19:47:42 Software Distribution Service 3.0
17-08-2013 20:21:19 Kontrolní bod systému
18-08-2013 19:59:27 Software Distribution Service 3.0
19-08-2013 20:17:45 Kontrolní bod systému
20-08-2013 03:50:18 Software Distribution Service 3.0
20-08-2013 16:10:25 Software Distribution Service 3.0
21-08-2013 20:34:59 Software Distribution Service 3.0
23-08-2013 04:45:43 Software Distribution Service 3.0
24-08-2013 04:46:23 Kontrolní bod systému
24-08-2013 14:26:12 Software Distribution Service 3.0
25-08-2013 17:07:14 Software Distribution Service 3.0
26-08-2013 16:32:31 Software Distribution Service 3.0
27-08-2013 20:02:09 Software Distribution Service 3.0
28-08-2013 05:36:51 Software Distribution Service 3.0
28-08-2013 12:35:10 Software Distribution Service 3.0
28-08-2013 16:33:36 Software Distribution Service 3.0
29-08-2013 15:47:00 Software Distribution Service 3.0
30-08-2013 16:35:48 Software Distribution Service 3.0
31-08-2013 18:57:05 Kontrolní bod systému
01-09-2013 00:34:31 Software Distribution Service 3.0
01-09-2013 16:27:32 Software Distribution Service 3.0
03-09-2013 04:20:27 Software Distribution Service 3.0
03-09-2013 16:07:32 Software Distribution Service 3.0
05-09-2013 03:54:33 Software Distribution Service 3.0
06-09-2013 04:38:09 Software Distribution Service 3.0
07-09-2013 04:51:08 Kontrolní bod systému
07-09-2013 13:54:07 Software Distribution Service 3.0

==================== Hosts content: ==========================

2004-08-18 14:00 - 2004-08-18 14:00 - 00000737 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Microsoft Antimalware Scheduled Scan.job => c:\Program Files\Microsoft Security Client\MpCmdRun.exe
Task: C:\WINDOWS\Tasks\User_Feed_Synchronization-{0A43C933-3EB3-4EF2-9B63-F20F618FF3C7}.job => C:\WINDOWS\system32\msfeedssync.exe

==================== Loaded Modules (whitelisted) =============

2004-08-18 14:00 - 2008-04-14 08:48 - 00177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfime.ime
2013-09-07 15:54 - 2013-08-06 09:28 - 07166848 _____ (Microsoft Corporation) c:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{7BF74E65-447C-4E47-A455-8CB3B73024C3}\mpengine.dll
2012-06-19 18:44 - 2008-04-14 08:52 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbem\wbemcons.dll
2007-03-31 17:35 - 2007-03-31 17:35 - 00065536 _____ (Broadcom Corporation.) C:\WINDOWS\system32\btncopy.dll
2007-04-01 09:00 - 2007-04-01 22:00 - 00086016 _____ (Broadcom Corporation.) C:\WINDOWS\system32\btmmhook.dll
2005-11-15 11:07 - 2005-11-15 11:07 - 01802240 _____ (Nero AG) C:\Program Files\Common Files\Ahead\Lib\NeroDigitalExt.dll
2007-04-01 08:57 - 2007-04-01 08:57 - 00053248 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll
2005-11-14 16:58 - 2005-11-14 16:58 - 00073728 _____ (Nero AG) C:\Program Files\Nero\Nero 7\Nero BackItUp\NBShell.dll
2012-06-19 19:01 - 2010-03-15 11:28 - 00141824 _____ () C:\Program Files\WinRAR\rarext.dll
2012-06-19 19:01 - 2010-04-11 18:48 - 00327680 _____ () C:\Program Files\WinRAR\rarlng.dll
2004-08-18 14:00 - 2004-08-18 14:00 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mui\0005\HHCTRLui.dll
2012-06-19 19:16 - 2009-07-20 15:12 - 00137736 _____ (Dritek System Inc.) C:\Program Files\Launch Manager\ComFnUtl.dll
2012-06-19 19:16 - 2009-07-14 14:53 - 00128008 _____ (Dritek System Inc.) C:\Program Files\Launch Manager\CDRomUtl.dll
2012-06-19 19:16 - 2009-07-27 12:42 - 00062472 _____ (Dritek System Inc.) C:\Program Files\Launch Manager\MixerUtl.dll
2012-06-19 19:16 - 2009-07-27 12:47 - 00068104 _____ (Dritek System Inc.) C:\Program Files\Launch Manager\Wnd2File.dll
2012-06-19 19:16 - 2009-07-27 18:43 - 00068104 _____ (Dritek System Inc.) C:\Program Files\Launch Manager\PowerUtl.dll
2012-06-19 19:16 - 2009-07-27 12:38 - 00088584 _____ (Dritek System Inc.) C:\Program Files\Launch Manager\SzUPFUtl.dll
2012-06-19 19:16 - 2009-07-27 12:57 - 00133640 _____ (Dritek System Inc.) C:\Program Files\Launch Manager\OSDUtl.dll
2012-06-19 19:16 - 2008-12-08 15:18 - 00055816 _____ (Dritek System Inc.) C:\Program Files\Launch Manager\RgnMaker.dll
2012-06-19 19:16 - 2009-07-27 12:05 - 00078856 _____ (Dritek System Inc.) C:\Program Files\Launch Manager\LgKCUtl.Dll
2012-06-19 19:16 - 2007-08-07 18:57 - 00059912 _____ (Dritek System Inc.) C:\Program Files\Launch Manager\NTKCUtl.dll
2012-06-19 19:16 - 2009-06-26 11:15 - 00080392 _____ (Dritek System Inc.) C:\Program Files\Launch Manager\LMWndExt.dll
2012-06-19 19:16 - 2009-09-11 19:06 - 00109064 _____ (Dritek System Inc.) C:\Program Files\Launch Manager\WHookCtl.Dll
2005-12-16 12:58 - 2005-12-16 12:58 - 00012288 _____ (Nero AG) C:\Program Files\Common Files\Ahead\lib\NMIndexStoreSvrPS.dll
2005-12-16 12:44 - 2005-12-16 12:44 - 00774144 _____ (Nero AG) C:\Program Files\Common Files\Ahead\lib\NMDataServices.dll
2007-04-01 08:40 - 2007-04-01 08:40 - 00114688 _____ (Broadcom Corporation.) C:\WINDOWS\system32\bthcrp.dll
2007-04-01 08:22 - 2007-04-01 08:22 - 00581632 _____ (Broadcom Corporation.) C:\WINDOWS\system32\WidcommSdk.dll
2007-04-01 08:23 - 2007-04-01 08:23 - 00491581 _____ (Broadcom Corporation.) C:\WINDOWS\system32\wbtapi.dll
2012-08-12 08:26 - 2010-05-16 05:00 - 00277504 _____ (CANON INC.) C:\WINDOWS\system32\CNMLMA4.DLL
2012-08-12 08:26 - 2010-05-16 05:00 - 00027136 _____ (CANON INC.) C:\WINDOWS\System32\spool\PRTPROCS\W32X86\CNMPDA4.DLL
2012-06-20 19:25 - 2007-04-09 13:23 - 00028552 _____ (Microsoft Corporation) C:\WINDOWS\System32\spool\PRTPROCS\W32X86\mdippr.dll
2012-06-20 08:06 - 2008-07-06 14:06 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\System32\spool\PRTPROCS\W32X86\filterpipelineprintproc.dll
2007-04-01 08:38 - 2007-04-01 08:38 - 00122880 _____ (Broadcom Corporation.) C:\WINDOWS\system32\btosif.dll
2007-04-01 08:52 - 2007-04-01 08:52 - 00229376 _____ (Broadcom Corporation.) C:\WINDOWS\system32\btwhidcs.DLL
2007-04-01 08:30 - 2007-04-01 08:30 - 00749568 _____ (Broadcom Corporation.) C:\WINDOWS\system32\btrez.dll
2007-04-01 09:00 - 2007-04-01 09:00 - 02842624 _____ () C:\WINDOWS\system32\btwicons.dll
2012-06-20 06:18 - 2007-09-07 11:19 - 00163840 _____ (Synaptics, Inc.) C:\WINDOWS\system32\SynCOM.dll
2012-06-20 06:18 - 2007-09-07 11:28 - 00147456 _____ (Synaptics, Inc.) C:\WINDOWS\system32\SynTPAPI.dll
2008-05-26 22:22 - 2008-05-26 22:22 - 00225280 ____N (Microsoft Corporation) C:\WINDOWS\system32\cs-cz\tQuery.dll.mui
2012-06-19 18:46 - 2012-06-02 15:19 - 00219160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaucpl.cpl
2013-09-05 18:52 - 2013-09-02 22:35 - 09962960 _____ (The ICU Project) C:\Program Files\Google\Chrome\Application\29.0.1547.66\icudt.dll
2013-09-05 18:52 - 2013-09-02 22:35 - 04053456 _____ () C:\Program Files\Google\Chrome\Application\29.0.1547.66\pdf.dll
2013-09-05 18:52 - 2013-09-02 22:35 - 00410576 _____ () C:\Program Files\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll
2013-09-05 18:52 - 2013-09-02 22:35 - 01604560 _____ () C:\Program Files\Google\Chrome\Application\29.0.1547.66\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) ==========


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/08/2013 00:23:11 AM) (Source: Application Error) (User: )
Description: Chybující aplikace iexplore.exe, verze 8.0.6001.18702, chybující modul ntdll.dll, verze 5.1.2600.6055, adresa chyby 0x0000100b.
Zpracování události, specifické pro médium ([iexplore.exe!ws!])

Error: (09/08/2013 00:01:03 AM) (Source: crypt32) (User: )
Description: Extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab> se nezdařilo. Chyba: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.

Error: (09/08/2013 00:01:00 AM) (Source: crypt32) (User: )
Description: Extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab> se nezdařilo. Chyba: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.

Error: (09/07/2013 10:54:21 PM) (Source: Windows Search Service) (User: )
Description: Aktualizaci nelze spustit, protože zdroje obsahu jsou nepřístupné. Opravte chyby a spusťte aktualizaci znovu.

Kontext: aplikace , katalog SystemIndex

Error: (09/07/2013 10:51:11 PM) (Source: MPSampleSubmission) (User: )
Description: EventType mptelemetry, P1 80070490, P2 remediation, P3 remediationfailuretelemetry, P4 1.1.9800.0, P5 mpengine, P6 0, P7 unspecified, P8 NIL, P9 mptelemetry0, P10 mptelemetry1.

Error: (09/07/2013 06:25:10 AM) (Source: Windows Search Service) (User: )
Description: Vyhledávací služby zjistila, že index obsahuje poškozené datové soubory. Služba se pokusí tyto potíže automaticky odstranit vytvořením nového indexu.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
0xc0041801 (0xc0041801)

Error: (09/07/2013 06:24:54 AM) (Source: Windows Search Service) (User: )
Description: Aplikace nebyla inicializována.

Kontext: aplikace Windows

Podrobnosti:
Metadata indexu obsahu nelze číst. (0xc0041801)

Error: (09/07/2013 06:24:54 AM) (Source: Windows Search Service) (User: )
Description: Objekt sběrače nebyl inicializován.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Metadata indexu obsahu nelze číst. (0xc0041801)

Error: (09/07/2013 06:24:54 AM) (Source: Windows Search Service) (User: )
Description: Modul plug-in v <Search.TripoliIndexer> nebyl inicializován.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Prvek nebyl nalezen. (0x80070490)

Error: (09/07/2013 06:24:52 AM) (Source: Windows Search Service) (User: )
Description: Modul plug-in v <Search.JetPropStore> nebyl inicializován.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Metadata indexu obsahu nelze číst. (0xc0041801)


System errors:
=============
Error: (09/08/2013 00:19:57 AM) (Source: Service Control Manager) (User: )
Description: Služba HitmanPro 3.7 Crusader (Boot) neuspěla při spuštění v důsledku následující chyby:
%%3

Error: (09/08/2013 00:12:28 AM) (Source: Service Control Manager) (User: )
Description: Služba HitmanPro 3.7 Crusader (Boot) neuspěla při spuštění v důsledku následující chyby:
%%3

Error: (09/07/2013 06:24:55 AM) (Source: Service Control Manager) (User: )
Description: Služba Windows Search ukončena s chybou 2147749155 (0x80040D23), specifickou pro službu.

Error: (08/28/2013 02:34:21 PM) (Source: SCardSvr) (User: )
Description: Správci prostředků karet Smart Card se nepodařilo přidat čtecí zařízení \\?\USB#Vid_12d1&Pid_1406&MI_02#6&11ebdf7&0&0002#{50dd5230-ba8a-11d1-bf5d-0000f805f530}: Ovladač čtecího zařízení neposkytuje jedinečný název zařízení.

Error: (08/28/2013 09:33:37 AM) (Source: SCardSvr) (User: )
Description: Správci prostředků karet Smart Card se nepodařilo přidat čtecí zařízení \\?\USB#Vid_12d1&Pid_1406&MI_02#6&11ebdf7&0&0002#{50dd5230-ba8a-11d1-bf5d-0000f805f530}: Ovladač čtecího zařízení neposkytuje jedinečný název zařízení.

Error: (08/28/2013 07:36:27 AM) (Source: SCardSvr) (User: )
Description: Čtecí zařízení karet Smart Card HUAWEI USB SmartCard Reader 1 odmítlo příkaz IOCTL GET_STATE: Zařízení bylo odebráno.

Error: (08/27/2013 07:31:15 PM) (Source: SCardSvr) (User: )
Description: Čtecí zařízení karet Smart Card HUAWEI USB SmartCard Reader 1 odmítlo příkaz IOCTL GET_STATE: Zařízení bylo odebráno.

Error: (08/26/2013 08:22:21 AM) (Source: SCardSvr) (User: )
Description: Čtecí zařízení karet Smart Card HUAWEI USB SmartCard Reader 1 odmítlo příkaz IOCTL GET_STATE: Zařízení bylo odebráno.

Error: (08/25/2013 10:35:11 PM) (Source: 0) (User: )
Description:

Error: (08/24/2013 06:10:03 AM) (Source: 0) (User: )
Description:


Microsoft Office Sessions:
=========================
Error: (09/08/2013 00:23:11 AM) (Source: Application Error)(User: )
Description: iexplore.exe8.0.6001.18702ntdll.dll5.1.2600.60550000100b

Error: (09/08/2013 00:01:03 AM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/m ... stl.cabPři ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.

Error: (09/08/2013 00:01:00 AM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/m ... stl.cabPři ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.

Error: (09/07/2013 10:54:21 PM) (Source: Windows Search Service)(User: )
Description: Kontext: aplikace , katalog SystemIndex

Error: (09/07/2013 10:51:11 PM) (Source: MPSampleSubmission)(User: )
Description: mptelemetry80070490remediationremediationfailuretelemetry1.1.9800.0mpengine0unspecifiedNILNILNIL

Error: (09/07/2013 06:25:10 AM) (Source: Windows Search Service)(User: )
Description: Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
0xc0041801 (0xc0041801)

Error: (09/07/2013 06:24:54 AM) (Source: Windows Search Service)(User: )
Description: Kontext: aplikace Windows

Podrobnosti:
Metadata indexu obsahu nelze číst. (0xc0041801)

Error: (09/07/2013 06:24:54 AM) (Source: Windows Search Service)(User: )
Description: Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Metadata indexu obsahu nelze číst. (0xc0041801)

Error: (09/07/2013 06:24:54 AM) (Source: Windows Search Service)(User: )
Description: Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Prvek nebyl nalezen. (0x80070490)
Search.TripoliIndexer

Error: (09/07/2013 06:24:52 AM) (Source: Windows Search Service)(User: )
Description: Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Metadata indexu obsahu nelze číst. (0xc0041801)
Search.JetPropStore


==================== Memory info ===========================

Percentage of memory in use: 39%
Total physical RAM: 1526.36 MB
Available physical RAM: 919.6 MB
Total Pagefile: 3422.76 MB
Available Pagefile: 2936.17 MB
Total Virtual: 2047.88 MB
Available Virtual: 1941.79 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:107.42 GB) (Free:88.32 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: () (Fixed) (Total:4.36 GB) (Free:3.51 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 112 GB) (Disk ID: E9885E1B)
Partition 1: (Active) - (Size=107 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=4 GB) - (Type=OF Extended)

==================== End Of Log ============================

Re: zamčený počítač

Napsal: 08 zář 2013 22:33
od vyosek
:arrow: Tvorba fixlistu pro FRST
  • Spustte poznamkovy blok (Start-spustit-notepad)
  • Zkopirujte skript nize

  • Kód: Vybrat vše

    Start
HKLM\...\Run: [NeroFilterCheck] - C:\WINDOWS\system32\NeroCheck.exe [155648 2001-07-09] (Ahead Software Gmbh)
HKLM\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [35696 2009-10-03] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKCU\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] - C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe [94208 2005-12-16] (Nero AG)
HKCU\...\Run: [swg] - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2012-07-30] (Google Inc.)
HKCU\...\Winlogon: [Shell] explorer.exe <==== ATTENTION
MountPoints2: {a54b8783-d371-11e1-82db-0017c40e66ab} - F:\AutoRun.exe
HKU\Administrator\...\RunOnce: [NeroHomeFirstStart] - C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe [ 2005-12-16] (Nero AG)
HKU\Default User\...\RunOnce: [NeroHomeFirstStart] - C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe [ 2005-12-16] (Nero AG)

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKCU - {E5D2698A-0931-439E-AF6A-B2D3D8047A1C} URL = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
Toolbar: HKLM - Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
Toolbar: HKCU -Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)

U1 WS2IFSL; 
S2 HitmanPro37CrusaderBoot; "F:\HitmanPro.exe" /crusader:boot [x]

2013-09-08 00:09 - 2013-09-08 00:09 - 00012872 _____ (SurfRight B.V.) C:\WINDOWS\system32\bootdelete.exe
2013-09-08 00:09 - 2013-09-08 00:09 - 00000512 _____ C:\WINDOWS\system32\.crusader

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Microsoft Antimalware Scheduled Scan.job => c:\Program Files\Microsoft Security Client\MpCmdRun.exe
Task: C:\WINDOWS\Tasks\User_Feed_Synchronization-{0A43C933-3EB3-4EF2-9B63-F20F618FF3C7}.job => C:\WINDOWS\system32\msfeedssync.exe

REG: reg delete "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List" /v "5985:TCP" /f
REG: reg delete "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List" /v "80:TCP" /f

Hosts:
CMD: shutdown /r /f /t 2
End
  • Ulozte vytvoreny TXT jako fixlist.txt
  • Presunte vytvoreny fixlist vedle FRST
:arrow: Spustte znovu FRST.exe
  • Kliknete na Fix
  • Probehne oprava a vytvori log Fixlog.txt
:arrow: Restart PC a dejte mi sem fixlog.txt

Re: zamčený počítač

Napsal: 09 zář 2013 22:03
od MMJJ
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 09-09-2013 01
Ran by Admin at 2013-09-09 22:53:01 Run:1
Running from C:\Documents and Settings\Admin\Plocha
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
HKLM\...\Run: [NeroFilterCheck] - C:\WINDOWS\system32\NeroCheck.exe [155648 2001-07-09] (Ahead Software Gmbh)
HKLM\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [35696 2009-10-03] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKCU\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] - C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe [94208 2005-12-16] (Nero AG)
HKCU\...\Run: [swg] - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2012-07-30] (Google Inc.)
HKCU\...\Winlogon: [Shell] explorer.exe <==== ATTENTION
MountPoints2: {a54b8783-d371-11e1-82db-0017c40e66ab} - F:\AutoRun.exe
HKU\Administrator\...\RunOnce: [NeroHomeFirstStart] - C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe [ 2005-12-16] (Nero AG)
HKU\Default User\...\RunOnce: [NeroHomeFirstStart] - C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe [ 2005-12-16] (Nero AG)

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKCU - {E5D2698A-0931-439E-AF6A-B2D3D8047A1C} URL = http://search.yahoo.com/search?p={searc ... 8&fr=b1ie7
Toolbar: HKLM - Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
Toolbar: HKCU -Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)

U1 WS2IFSL;
S2 HitmanPro37CrusaderBoot; "F:\HitmanPro.exe" /crusader:boot [x]

2013-09-08 00:09 - 2013-09-08 00:09 - 00012872 _____ (SurfRight B.V.) C:\WINDOWS\system32\bootdelete.exe
2013-09-08 00:09 - 2013-09-08 00:09 - 00000512 _____ C:\WINDOWS\system32\.crusader

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Microsoft Antimalware Scheduled Scan.job => c:\Program Files\Microsoft Security Client\MpCmdRun.exe
Task: C:\WINDOWS\Tasks\User_Feed_Synchronization-{0A43C933-3EB3-4EF2-9B63-F20F618FF3C7}.job => C:\WINDOWS\system32\msfeedssync.exe

REG: reg delete "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List" /v "5985:TCP" /f
REG: reg delete "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List" /v "80:TCP" /f

Hosts:
CMD: shutdown /r /f /t 2
End
*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NeroFilterCheck => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe Reader Speed Launcher => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\swg => Value deleted successfully.
HKCU\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a54b8783-d371-11e1-82db-0017c40e66ab} => Key deleted successfully.
HKCR\CLSID\{a54b8783-d371-11e1-82db-0017c40e66ab} => Key not found.
HKU\Administrator\Software\Microsoft\Windows\CurrentVersion\RunOnce\\NeroHomeFirstStart => Value deleted successfully.
HKU\Default User\Software\Microsoft\Windows\CurrentVersion\RunOnce\\NeroHomeFirstStart => Value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Search Page => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E5D2698A-0931-439E-AF6A-B2D3D8047A1C} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{E5D2698A-0931-439E-AF6A-B2D3D8047A1C} => Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{EF99BD32-C1FB-11D2-892F-0090271D4F88} => Value deleted successfully.
HKCR\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88} => Key deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EF99BD32-C1FB-11D2-892F-0090271D4F88} => Value deleted successfully.
HKCR\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88} => Key not found.
WS2IFSL => Service deleted successfully.
HitmanPro37CrusaderBoot => Service deleted successfully.
C:\WINDOWS\system32\bootdelete.exe => Moved successfully.
C:\WINDOWS\system32\.crusader => Moved successfully.
C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\WINDOWS\Tasks\Microsoft Antimalware Scheduled Scan.job => Moved successfully.
C:\WINDOWS\Tasks\User_Feed_Synchronization-{0A43C933-3EB3-4EF2-9B63-F20F618FF3C7}.job => Moved successfully.

========= reg delete "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List" /v "5985:TCP" /f =========


Operace byla dokončena úspěšně.


========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List" /v "80:TCP" /f =========


Operace byla dokončena úspěšně.


========= End of Reg: =========

C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

========= shutdown /r /f /t 2 =========


========= End of CMD: =========


==== End of Fixlog ====

Re: zamčený počítač

Napsal: 10 zář 2013 05:16
od vyosek
Tak jeste uklidime :James008:

:arrow: T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe
  • Stahnete a spustte
  • Pro potvrzeni volby mackejte A, Enter
  • Po pouziti utilitu smazte
  • Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
:arrow: OTC http://oldtimer.geekstogo.com/OTC.exe
  • Stahnete a spustte
  • Kliknete na CleanUp a potvrdte YES
  • Program uklidi a restartuje PC

:arrow: TFC http://oldtimer.geekstogo.com/TFC.exe
  • Stahnete a spustte
  • Kliknete na Start a potvrdte OK
  • Program uklidi a restartuje pc
  • Po pouziti utilitu smazte
:arrow: Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič
  • Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner
Panel registry
  • dejte Hledej problémy
  • nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
  • postup opakujte dokud nebude bez problemu - vetsinou cca 3x
Panel nástroje
  • Zde muzete odinstalovat nepotrebne programy
CCleaner doporucuji pouzivat cca jednou za tyden

:arrow: A pokud nejsou problemy ci dotazy, je to z me strany vse :|
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz