VIRY.CZ

Dobrý den,
byl by někdo ochotný mě pomoci od nějaké havěti?:-)
Pc normálně nabootuje,ovšem vypíná mě firewall,správce úloh a někdy mě místo plochy naskočí že počítač uzamkla PČR

Zkoušel jsem antivirim odstranit co našel,bohužel se mě to nedaří dát do kupy.
Předem Děkuji za pomoc.

Zde je výpis z RSIT:

Logfile of random's system information tool 1.06 (written by random/random)
Run by Jiří at 2013-10-20 10:01:46
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 85 GB (74%) free of 114 GB
Total RAM: 2047 MB (68% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:01:48, on 20.10.2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Opera\Opera.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Opera\Opera.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\RocketDock\RocketDock.exe
C:\Program Files\GRETECH\GOMTray\GomTray.exe
C:\Program Files\Opera\Opera.exe
C:\Program Files\VIA\RAID\raid_tool.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Opera\Opera.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\WINDOWS\system32\libusbd-nt.exe
C:\Program Files\DiVapton\updateDiVapton.exe
C:\Program Files\DiVapton\bin\utilDiVapton.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\Jiří\Plocha\RSIT.exe
C:\Documents and Settings\Jiří\Plocha\Jiří.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,,C:\Program Files\Internet Explorer\PgeZRlTj.exe
O2 - BHO: DiVapton - {3bf42771-1b8a-4910-b3dc-eb330e40020a} - C:\Program Files\DiVapton\DiVaptonbho.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Documents and Settings\Jiří\Data aplikací\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Documents and Settings\Jiří\Data aplikací\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [GomTray] C:\Program Files\GRETECH\GOMTray\GomTray.exe
O4 - HKCU\..\Run: [jWdyxApM] C:\Documents and Settings\Jiří\Local Settings\Data aplikací\ATI\ZSDmmWsx.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: bmgsPVRH.exe
O4 - Global Startup: VIA RAID TOOL.lnk = C:\Program Files\VIA\RAID\raid_tool.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 1526705796
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~3\Office12\GR99D3~1.DLL
O20 - AppInit_DLLs:
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: LibUsb-Win32 - Daemon, Version 0.1.10.1 (libusbd) - http://libusb-win32.sourceforge.net - C:\WINDOWS\system32\libusbd-nt.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Update DiVapton - DiVapton - C:\Program Files\DiVapton\updateDiVapton.exe
O23 - Service: Util DiVapton - DiVapton - C:\Program Files\DiVapton\bin\utilDiVapton.exe

--
End of file - 7055 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3bf42771-1b8a-4910-b3dc-eb330e40020a}]
DiVapton - C:\Program Files\DiVapton\DiVaptonbho.dll [2013-10-01 249624]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-10-08 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-10-08 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-02-10 61440]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2013-07-18 995184]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"seznam-listicka-distribuce"=C:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2004-12-22 77824]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"cz.seznam.software.autoupdate"=C:\Documents and Settings\Jiří\Data aplikací\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Documents and Settings\Jiří\Data aplikací\Seznam.cz\bin\wszndesktop.exe [2013-04-12 92664]
"RocketDock"=C:\Program Files\RocketDock\RocketDock.exe [2007-09-02 495616]
"GomTray"=C:\Program Files\GRETECH\GOMTray\GomTray.exe [2013-07-04 2384472]
"jWdyxApM"=C:\Documents and Settings\Jiří\Local Settings\Data aplikací\ATI\ZSDmmWsx.exe [2013-10-20 182656]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
VIA RAID TOOL.lnk - C:\Program Files\VIA\RAID\raid_tool.exe

C:\Documents and Settings\Jiří\Nabídka Start\Programy\Po spuštění
bmgsPVRH.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"=" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2010-02-11 155648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLUA"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\MyPhoneExplorer\MyPhoneExplorer.exe"="C:\Program Files\MyPhoneExplorer\MyPhoneExplorer.exe:*:Enabled:MyPhoneExplorer"
"C:\Program Files\GRETECH\GOMTray\GomTray.exe"="C:\Program Files\GRETECH\GOMTray\GomTray.exe:*:Enabled:GomTray"
"C:\Program Files\utorrent.exe"="C:\Program Files\utorrent.exe:*:Enabled:µTorrent"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{ce058e57-3320-11e3-a8a2-001485387385}]
shell\AutoRun\command - F:\LaunchU3.exe -a

======List of files/folders created in the last 1 months======

2013-10-20 10:01:46 ----D---- C:\rsit
2013-10-20 09:34:16 ----D---- C:\FRST
2013-10-20 07:41:43 ----D---- C:\WINDOWS\CSC
2013-10-19 15:13:40 ----A---- C:\WINDOWS\system32\javaws.exe
2013-10-19 15:13:28 ----A---- C:\WINDOWS\system32\WindowsAccessBridge.dll
2013-10-19 15:13:28 ----A---- C:\WINDOWS\system32\javaw.exe
2013-10-19 15:13:28 ----A---- C:\WINDOWS\system32\java.exe
2013-10-19 14:14:31 ----D---- C:\Documents and Settings\Jiří\Data aplikací\Mozilla
2013-10-19 14:13:51 ----D---- C:\Documents and Settings\All Users\Data aplikací\Mozilla
2013-10-19 14:13:50 ----D---- C:\Program Files\Mozilla Maintenance Service
2013-10-19 14:13:08 ----D---- C:\Program Files\Mozilla Firefox
2013-10-17 17:33:14 ----D---- C:\Program Files\ie
2013-10-17 17:33:14 ----D---- C:\Program Files\dlimagecache
2013-10-17 17:33:13 ----D---- C:\Program Files\updates
2013-10-17 17:33:13 ----D---- C:\Program Files\share
2013-10-17 17:33:11 ----D---- C:\Program Files\apps
2013-10-17 17:33:09 ----A---- C:\Program Files\utorrent.exe
2013-10-17 15:58:48 ----D---- C:\Documents and Settings\Jiří\Data aplikací\GRETECH
2013-10-17 15:58:21 ----D---- C:\Program Files\GRETECH
2013-10-16 20:10:29 ----A---- C:\WINDOWS\system32\irmon.dll
2013-10-16 20:10:29 ----A---- C:\WINDOWS\system32\irftp.exe
2013-10-16 20:10:28 ----A---- C:\WINDOWS\system32\wshirda.dll
2013-10-16 20:03:23 ----N---- C:\WINDOWS\system32\spmsgXP_2k3.dll
2013-10-16 20:03:18 ----HDC---- C:\WINDOWS\$NtUninstallWdf01009$
2013-10-16 20:03:09 ----DC---- C:\WINDOWS\system32\DRVSTORE
2013-10-16 20:03:09 ----A---- C:\WINDOWS\system32\WdfCoInstaller01009.dll
2013-10-16 19:52:14 ----D---- C:\Documents and Settings\Jiří\Data aplikací\MotioninJoy
2013-10-16 19:52:14 ----A---- C:\WINDOWS\system32\MijFrc.dll
2013-10-16 19:52:13 ----D---- C:\Program Files\MotioninJoy
2013-10-16 17:37:20 ----A---- C:\WINDOWS\system32\lagarith.dll
2013-10-16 17:37:19 ----A---- C:\WINDOWS\system32\xvidvfw.dll
2013-10-16 17:37:19 ----A---- C:\WINDOWS\system32\xvidcore.dll
2013-10-16 17:37:19 ----A---- C:\WINDOWS\system32\x264vfw.dll
2013-10-16 17:37:09 ----A---- C:\WINDOWS\system32\unrar.dll
2013-10-16 17:37:05 ----A---- C:\WINDOWS\system32\ff_vfw.dll.manifest
2013-10-16 17:37:05 ----A---- C:\WINDOWS\system32\ff_vfw.dll
2013-10-16 17:36:56 ----D---- C:\Program Files\K-Lite Codec Pack
2013-10-16 17:28:45 ----A---- C:\WINDOWS\system32\wmpns.dll
2013-10-15 16:13:25 ----D---- C:\Program Files\Common Files\Adobe
2013-10-15 16:13:25 ----D---- C:\Program Files\Adobe
2013-10-14 20:50:31 ----D---- C:\Program Files\LibUSB-Win32-0.1.10.1
2013-10-14 20:50:31 ----A---- C:\WINDOWS\system32\libusbd-nt.exe
2013-10-14 20:50:31 ----A---- C:\WINDOWS\system32\libusbd-9x.exe
2013-10-14 20:45:01 ----A---- C:\WINDOWS\system32\libusb0.dll
2013-10-12 22:13:55 ----D---- C:\Program Files\RocketDock
2013-10-12 20:00:57 ----D---- C:\Emux
2013-10-12 19:40:44 ----D---- C:\Documents and Settings\Jiří\Data aplikací\MyPhoneExplorer
2013-10-12 19:36:39 ----D---- C:\Program Files\Google
2013-10-12 16:10:56 ----A---- C:\WINDOWS\system32\roboot.exe
2013-10-12 16:10:20 ----D---- C:\Documents and Settings\Jiří\Data aplikací\systweak
2013-10-12 16:10:00 ----D---- C:\Program Files\MyPhoneExplorer
2013-10-12 15:53:18 ----D---- C:\Program Files\HD Tune
2013-10-12 15:45:29 ----D---- C:\Program Files\Microsoft.NET
2013-10-12 15:42:02 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2013-10-12 14:13:09 ----D---- C:\totalcmd
2013-10-12 14:13:09 ----D---- C:\Documents and Settings\Jiří\Data aplikací\GHISLER
2013-10-12 13:44:10 ----D---- C:\Program Files\VIA
2013-10-12 13:40:17 ----N---- C:\WINDOWS\avrack.ini
2013-10-12 13:38:21 ----D---- C:\Program Files\AMD
2013-10-12 12:14:26 ----D---- C:\Documents and Settings\All Users\Data aplikací\Sun
2013-10-12 12:14:25 ----D---- C:\Program Files\Common Files\Java
2013-10-12 12:10:42 ----D---- C:\Documents and Settings\Jiří\Data aplikací\U3
2013-10-12 11:54:23 ----D---- C:\Program Files\DiVapton
2013-10-12 11:53:15 ----D---- C:\Documents and Settings\Jiří\Data aplikací\Seznam.cz
2013-10-12 11:43:52 ----D---- C:\WINDOWS\Sun
2013-10-12 11:43:07 ----D---- C:\Program Files\Java
2013-10-12 11:42:57 ----D---- C:\Documents and Settings\Jiří\Data aplikací\Sun
2013-10-12 11:37:44 ----D---- C:\Documents and Settings\Jiří\Data aplikací\Macromedia
2013-10-12 11:37:44 ----D---- C:\Documents and Settings\Jiří\Data aplikací\Adobe
2013-10-12 11:29:42 ----D---- C:\Documents and Settings\Jiří\Data aplikací\Opera
2013-10-12 11:28:50 ----D---- C:\WINDOWS\system32\appmgmt
2013-10-12 11:09:27 ----D---- C:\Documents and Settings\Jiří\Data aplikací\Opera Software
2013-10-12 11:08:57 ----D---- C:\Program Files\Opera
2013-10-12 11:05:35 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2013-10-12 11:02:39 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2013-10-12 10:13:10 ----D---- C:\WINDOWS\system32\Lang
2013-10-12 09:50:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2758857$
2013-10-12 09:46:34 ----D---- C:\Documents and Settings\Jiří\Data aplikací\ATI
2013-10-12 09:46:34 ----D---- C:\Documents and Settings\All Users\Data aplikací\ATI
2013-10-12 09:40:46 ----D---- C:\WINDOWS\system32\PreInstall
2013-10-12 09:40:44 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2013-10-12 09:31:10 ----D---- C:\WINDOWS\system32\XPSViewer
2013-10-12 09:31:07 ----D---- C:\WINDOWS\system32\en-us
2013-10-12 09:30:33 ----D---- C:\Program Files\Reference Assemblies
2013-10-12 09:30:12 ----N---- C:\WINDOWS\system32\spmsg2.dll
2013-10-12 09:28:06 ----RSD---- C:\WINDOWS\assembly
2013-10-12 09:27:27 ----D---- C:\WINDOWS\Microsoft.NET
2013-10-12 08:42:54 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
2013-10-12 08:42:54 ----A---- C:\WINDOWS\system32\mucltui.dll
2013-10-12 08:28:02 ----A---- C:\WINDOWS\ntbtlog.txt
2013-10-11 23:21:53 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2013-10-11 23:20:12 ----A---- C:\WINDOWS\system32\h323log.txt
2013-10-11 23:16:06 ----A---- C:\WINDOWS\system32\usbui.dll
2013-10-11 23:15:03 ----A---- C:\WINDOWS\system32\msonpmon.dll
2013-10-11 23:14:59 ----A---- C:\WINDOWS\imsins.BAK
2013-10-11 23:14:56 ----SHD---- C:\WINDOWS\Installer
2013-10-11 23:14:56 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2013-10-11 23:14:55 ----D---- C:\Program Files\Common Files\ODBC
2013-10-11 23:14:55 ----A---- C:\WINDOWS\ODBCINST.INI
2013-10-11 23:14:52 ----D---- C:\Program Files\Common Files\SpeechEngines
2013-10-11 23:14:52 ----D---- C:\Program Files\Common Files\Microsoft Shared
2013-10-11 23:14:51 ----RD---- C:\Program Files
2013-10-11 23:14:51 ----D---- C:\Program Files\Common Files
2013-10-11 23:14:48 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2013-10-11 23:14:48 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2013-10-11 23:14:48 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2013-10-11 23:14:46 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2013-10-11 23:14:46 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2013-10-11 23:14:46 ----RA---- C:\WINDOWS\system32\kbdur.dll
2013-10-11 23:14:46 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2013-10-11 23:14:46 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2013-10-11 23:14:46 ----RA---- C:\WINDOWS\system32\kbdru.dll
2013-10-11 23:14:46 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2013-10-11 23:14:46 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2013-10-11 23:14:46 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2013-10-11 23:14:46 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2013-10-11 23:14:46 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2013-10-11 23:14:46 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2013-10-11 23:14:44 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2013-10-11 23:14:44 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2013-10-11 23:14:44 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2013-10-11 23:14:44 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2013-10-11 23:14:44 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2013-10-11 23:14:44 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2013-10-11 23:14:44 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2013-10-11 23:14:42 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2013-10-11 23:14:42 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2013-10-11 23:14:42 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2013-10-11 23:14:42 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2013-10-11 23:14:42 ----RA---- C:\WINDOWS\system32\kbdest.dll
2013-10-11 23:14:39 ----A---- C:\WINDOWS\system32\kbdsl1.dll
2013-10-11 23:14:39 ----A---- C:\WINDOWS\system32\kbdsl.dll
2013-10-11 23:14:39 ----A---- C:\WINDOWS\system32\kbdro.dll
2013-10-11 23:14:39 ----A---- C:\WINDOWS\system32\kbdpl.dll
2013-10-11 23:14:38 ----A---- C:\WINDOWS\system32\kbdycl.dll
2013-10-11 23:14:38 ----A---- C:\WINDOWS\system32\kbdpl1.dll
2013-10-11 23:14:38 ----A---- C:\WINDOWS\system32\kbdhu1.dll
2013-10-11 23:14:38 ----A---- C:\WINDOWS\system32\kbdhu.dll
2013-10-11 23:14:38 ----A---- C:\WINDOWS\system32\kbdcr.dll
2013-10-11 23:14:38 ----A---- C:\WINDOWS\system32\KBDAL.DLL
2013-10-11 23:14:37 ----A---- C:\WINDOWS\system32\spxcoins.dll
2013-10-11 23:14:37 ----A---- C:\WINDOWS\system32\irclass.dll
2013-10-11 23:14:37 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2013-10-11 23:14:37 ----A---- C:\WINDOWS\system32\dgsetup.dll
2013-10-11 23:14:37 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2013-10-11 23:14:35 ----N---- C:\WINDOWS\system32\CONFIG.TMP
2013-10-11 23:14:35 ----A---- C:\WINDOWS\TASKMAN.EXE
2013-10-11 23:14:34 ----A---- C:\WINDOWS\system32\batt.dll
2013-10-11 23:14:34 ----A---- C:\WINDOWS\notepad.exe
2013-10-11 23:14:33 ----A---- C:\WINDOWS\system32\storprop.dll
2013-10-11 23:14:25 ----ASH---- C:\Documents and Settings\All Users\Data aplikací\desktop.ini
2013-10-11 23:14:24 ----RA---- C:\WINDOWS\SET25.tmp
2013-10-11 23:14:20 ----RA---- C:\WINDOWS\SET8.tmp
2013-10-11 23:14:18 ----RA---- C:\WINDOWS\SET4.tmp
2013-10-11 23:14:16 ----RA---- C:\WINDOWS\SET3.tmp
2013-10-11 23:14:11 ----D---- C:\WINDOWS\system32\CatRoot2
2013-10-11 23:14:11 ----D---- C:\WINDOWS\system32\CatRoot
2013-10-11 23:14:06 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2013-10-11 23:13:48 ----A---- C:\WINDOWS\setuplog.txt
2013-10-11 23:13:45 ----D---- C:\Documents and Settings
2013-10-11 23:13:44 ----SHD---- C:\System Volume Information
2013-10-11 23:13:17 ----D---- C:\Program Files\Microsoft Works
2013-10-11 23:12:58 ----SH---- C:\boot.ini
2013-10-11 23:12:58 ----D---- C:\Program Files\MSBuild
2013-10-11 23:11:53 ----D---- C:\Program Files\Microsoft Visual Studio
2013-10-11 23:11:52 ----D---- C:\Program Files\Common Files\DESIGNER
2013-10-11 23:06:48 ----RSHDC---- C:\WINDOWS\system32\dllcache
2013-10-11 23:06:48 ----RSD---- C:\WINDOWS\Fonts
2013-10-11 23:06:48 ----RD---- C:\WINDOWS\Web
2013-10-11 23:06:48 ----HD---- C:\WINDOWS\inf
2013-10-11 23:06:48 ----D---- C:\WINDOWS\WinSxS
2013-10-11 23:06:48 ----D---- C:\WINDOWS\twain_32
2013-10-11 23:06:48 ----D---- C:\WINDOWS\Temp
2013-10-11 23:06:48 ----D---- C:\WINDOWS\system32\wins
2013-10-11 23:06:48 ----D---- C:\WINDOWS\system32\wbem
2013-10-11 23:06:48 ----D---- C:\WINDOWS\system32\usmt
2013-10-11 23:06:48 ----D---- C:\WINDOWS\system32\spool
2013-10-11 23:06:48 ----D---- C:\WINDOWS\system32\ShellExt
2013-10-11 23:06:48 ----D---- C:\WINDOWS\system32\Setup
2013-10-11 23:06:48 ----D---- C:\WINDOWS\system32\ras
2013-10-11 23:06:48 ----D---- C:\WINDOWS\system32\oobe
2013-10-11 23:06:48 ----D---- C:\WINDOWS\system32\npp
2013-10-11 23:06:48 ----D---- C:\WINDOWS\system32\mui
2013-10-11 23:06:48 ----D---- C:\WINDOWS\system32\inetsrv
2013-10-11 23:06:48 ----D---- C:\WINDOWS\system32\IME
2013-10-11 23:06:48 ----D---- C:\WINDOWS\system32\icsxml
2013-10-11 23:06:48 ----D---- C:\WINDOWS\system32\ias
2013-10-11 23:06:48 ----D---- C:\WINDOWS\system32\export
2013-10-11 23:06:48 ----D---- C:\WINDOWS\system32\drivers
2013-10-11 23:06:48 ----D---- C:\WINDOWS\system32\dhcp
2013-10-11 23:06:48 ----D---- C:\WINDOWS\system32\config
2013-10-11 23:06:48 ----D---- C:\WINDOWS\system32\3com_dmi
2013-10-11 23:06:48 ----D---- C:\WINDOWS\system32\3076
2013-10-11 23:06:48 ----D---- C:\WINDOWS\system32\2052
2013-10-11 23:06:48 ----D---- C:\WINDOWS\system32\1054
2013-10-11 23:06:48 ----D---- C:\WINDOWS\system32\1042
2013-10-11 23:06:48 ----D---- C:\WINDOWS\system32\1041
2013-10-11 23:06:48 ----D---- C:\WINDOWS\system32\1037
2013-10-11 23:06:48 ----D---- C:\WINDOWS\system32\1033
2013-10-11 23:06:48 ----D---- C:\WINDOWS\system32\1031
2013-10-11 23:06:48 ----D---- C:\WINDOWS\system32\1029
2013-10-11 23:06:48 ----D---- C:\WINDOWS\system32\1028
2013-10-11 23:06:48 ----D---- C:\WINDOWS\system32\1025
2013-10-11 23:06:48 ----D---- C:\WINDOWS\system32
2013-10-11 23:06:48 ----D---- C:\WINDOWS\system
2013-10-11 23:06:48 ----D---- C:\WINDOWS\security
2013-10-11 23:06:48 ----D---- C:\WINDOWS\Resources
2013-10-11 23:06:48 ----D---- C:\WINDOWS\repair
2013-10-11 23:06:48 ----D---- C:\WINDOWS\Provisioning
2013-10-11 23:06:48 ----D---- C:\WINDOWS\pchealth
2013-10-11 23:06:48 ----D---- C:\WINDOWS\PeerNet
2013-10-11 23:06:48 ----D---- C:\WINDOWS\mui
2013-10-11 23:06:48 ----D---- C:\WINDOWS\msapps
2013-10-11 23:06:48 ----D---- C:\WINDOWS\msagent
2013-10-11 23:06:48 ----D---- C:\WINDOWS\Media
2013-10-11 23:06:48 ----D---- C:\WINDOWS\java
2013-10-11 23:06:48 ----D---- C:\WINDOWS\ime
2013-10-11 23:06:48 ----D---- C:\WINDOWS\Help
2013-10-11 23:06:48 ----D---- C:\WINDOWS\ehome
2013-10-11 23:06:48 ----D---- C:\WINDOWS\Driver Cache
2013-10-11 23:06:48 ----D---- C:\WINDOWS\Debug
2013-10-11 23:06:48 ----D---- C:\WINDOWS\Cursors
2013-10-11 23:06:48 ----D---- C:\WINDOWS\Connection Wizard
2013-10-11 23:06:48 ----D---- C:\WINDOWS\Config
2013-10-11 23:06:48 ----D---- C:\WINDOWS\AppPatch
2013-10-11 23:06:48 ----D---- C:\WINDOWS\addins
2013-10-11 23:06:48 ----D---- C:\WINDOWS
2013-10-11 23:06:36 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2013-10-11 23:05:07 ----D---- C:\WINDOWS\SHELLNEW
2013-10-11 23:04:39 ----D---- C:\Program Files\Microsoft Office
2013-10-11 23:04:39 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2013-10-11 23:04:21 ----RHD---- C:\MSOCache
2013-10-11 23:03:36 ----D---- C:\Program Files\Microsoft Security Client
2013-10-11 23:00:53 ----D---- C:\WINDOWS\Prefetch
2013-10-11 22:56:24 ----N---- C:\WINDOWS\system32\msxml6r.dll
2013-10-11 22:56:24 ----N---- C:\WINDOWS\system32\msxml6.dll
2013-10-11 22:56:14 ----N---- C:\WINDOWS\system32\smtpapi.dll
2013-10-11 22:56:14 ----N---- C:\WINDOWS\system32\rwnh.dll
2013-10-11 22:56:14 ----N---- C:\WINDOWS\system32\comsdupd.exe
2013-10-11 22:56:13 ----N---- C:\WINDOWS\system32\credssp.dll
2013-10-11 22:56:13 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2013-10-11 22:56:13 ----N---- C:\WINDOWS\system32\azroles.dll
2013-10-11 22:56:13 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2013-10-11 22:56:13 ----N---- C:\WINDOWS\system32\ati3d1ag.dll
2013-10-11 22:56:13 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2013-10-11 22:56:13 ----N---- C:\WINDOWS\system32\aaclient.dll
2013-10-11 22:56:12 ----N---- C:\WINDOWS\system32\ieencode.dll
2013-10-11 22:56:12 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2013-10-11 22:56:12 ----N---- C:\WINDOWS\system32\eapsvc.dll
2013-10-11 22:56:12 ----N---- C:\WINDOWS\system32\eapqec.dll
2013-10-11 22:56:12 ----N---- C:\WINDOWS\system32\eappprxy.dll
2013-10-11 22:56:12 ----N---- C:\WINDOWS\system32\eapphost.dll
2013-10-11 22:56:12 ----N---- C:\WINDOWS\system32\eappgnui.dll
2013-10-11 22:56:12 ----N---- C:\WINDOWS\system32\eappcfg.dll
2013-10-11 22:56:12 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2013-10-11 22:56:12 ----N---- C:\WINDOWS\system32\eapolqec.dll
2013-10-11 22:56:12 ----N---- C:\WINDOWS\system32\dot3ui.dll
2013-10-11 22:56:12 ----N---- C:\WINDOWS\system32\dot3svc.dll
2013-10-11 22:56:12 ----N---- C:\WINDOWS\system32\dot3msm.dll
2013-10-11 22:56:12 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2013-10-11 22:56:12 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2013-10-11 22:56:12 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2013-10-11 22:56:12 ----N---- C:\WINDOWS\system32\dot3api.dll
2013-10-11 22:56:12 ----N---- C:\WINDOWS\system32\dimsroam.dll
2013-10-11 22:56:12 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2013-10-11 22:56:12 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2013-10-11 22:56:11 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2013-10-11 22:56:11 ----N---- C:\WINDOWS\system32\mssha.dll
2013-10-11 22:56:11 ----N---- C:\WINDOWS\system32\mmcperf.exe
2013-10-11 22:56:11 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2013-10-11 22:56:11 ----N---- C:\WINDOWS\system32\mmcex.dll
2013-10-11 22:56:11 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2013-10-11 22:56:11 ----N---- C:\WINDOWS\system32\mdmxsdk.dll
2013-10-11 22:56:11 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2013-10-11 22:56:11 ----N---- C:\WINDOWS\system32\kmsvc.dll
2013-10-11 22:56:11 ----N---- C:\WINDOWS\system32\kbdpash.dll
2013-10-11 22:56:11 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2013-10-11 22:56:11 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2013-10-11 22:56:11 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2013-10-11 22:56:10 ----N---- C:\WINDOWS\system32\slserv.exe
2013-10-11 22:56:10 ----N---- C:\WINDOWS\system32\slrundll.exe
2013-10-11 22:56:10 ----N---- C:\WINDOWS\system32\slgen.dll
2013-10-11 22:56:10 ----N---- C:\WINDOWS\system32\slextspk.dll
2013-10-11 22:56:10 ----N---- C:\WINDOWS\system32\slcoinst.dll
2013-10-11 22:56:10 ----N---- C:\WINDOWS\system32\setupn.exe
2013-10-11 22:56:10 ----N---- C:\WINDOWS\system32\s3gnb.dll
2013-10-11 22:56:10 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2013-10-11 22:56:10 ----N---- C:\WINDOWS\system32\rasqec.dll
2013-10-11 22:56:10 ----N---- C:\WINDOWS\system32\qutil.dll
2013-10-11 22:56:10 ----N---- C:\WINDOWS\system32\qcliprov.dll
2013-10-11 22:56:10 ----N---- C:\WINDOWS\system32\qagentrt.dll
2013-10-11 22:56:10 ----N---- C:\WINDOWS\system32\qagent.dll
2013-10-11 22:56:10 ----N---- C:\WINDOWS\system32\photometadatahandler.dll
2013-10-11 22:56:10 ----N---- C:\WINDOWS\system32\onex.dll
2013-10-11 22:56:10 ----N---- C:\WINDOWS\system32\nv4_disp.dll
2013-10-11 22:56:10 ----N---- C:\WINDOWS\system32\napstat.exe
2013-10-11 22:56:10 ----N---- C:\WINDOWS\system32\napmontr.dll
2013-10-11 22:56:10 ----N---- C:\WINDOWS\system32\napipsec.dll
2013-10-11 22:56:10 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2013-10-11 22:56:09 ----N---- C:\WINDOWS\system32\verclsid.exe
2013-10-11 22:56:09 ----N---- C:\WINDOWS\system32\tzchange.exe
2013-10-11 22:56:09 ----N---- C:\WINDOWS\system32\tspkg.dll
2013-10-11 22:56:09 ----N---- C:\WINDOWS\system32\tsgqec.dll
2013-10-11 22:56:08 ----N---- C:\WINDOWS\system32\wmphoto.dll
2013-10-11 22:56:08 ----N---- C:\WINDOWS\system32\wlanapi.dll
2013-10-11 22:56:08 ----N---- C:\WINDOWS\system32\windowscodecsext.dll
2013-10-11 22:56:08 ----N---- C:\WINDOWS\system32\windowscodecs.dll
2013-10-11 22:56:07 ----N---- C:\WINDOWS\slrundll.exe
2013-10-11 22:56:06 ----D---- C:\WINDOWS\system32\cs
2013-10-11 22:56:06 ----D---- C:\WINDOWS\system32\bits
2013-10-11 22:56:06 ----D---- C:\WINDOWS\l2schemas
2013-10-11 22:54:39 ----D---- C:\WINDOWS\ServicePackFiles
2013-10-11 22:53:03 ----D---- C:\WINDOWS\network diagnostic
2013-10-11 22:52:56 ----D---- C:\Documents and Settings\Jiří\Data aplikací\WinRAR
2013-10-11 22:52:47 ----D---- C:\Program Files\WinRAR
2013-10-11 22:51:46 ----A---- C:\WINDOWS\002678_.tmp
2013-10-11 22:50:06 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2013-10-11 22:28:37 ----N---- C:\WINDOWS\system32\ati2sgag.exe
2013-10-11 22:20:46 ----D---- C:\Program Files\AMD APP
2013-10-11 22:20:31 ----D---- C:\Program Files\ATI Technologies
2013-10-11 22:20:28 ----D---- C:\Program Files\ATI
2013-10-11 22:19:42 ----D---- C:\ATI
2013-10-11 22:08:02 ----D---- C:\Program Files\Seznam.cz
2013-10-11 22:08:01 ----HD---- C:\WINDOWS\msdownld.tmp
2013-10-11 22:06:41 ----D---- C:\WINDOWS\WBEM
2013-10-11 22:06:07 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2013-10-11 22:05:03 ----HDC---- C:\WINDOWS\ie8
2013-10-11 22:05:03 ----D---- C:\WINDOWS\system32\cs-CZ
2013-10-11 22:03:00 ----A---- C:\WINDOWS\system32\wpa.bak
2013-10-11 22:01:56 ----D---- C:\Program Files\Marvell
2013-10-11 21:59:12 ----D---- C:\WINDOWS\system32\ReinstallBackups
2013-10-11 21:58:59 ----A---- C:\WINDOWS\IsUninst.exe
2013-10-11 21:58:17 ----SHD---- C:\RECYCLER
2013-10-11 21:57:55 ----A---- C:\WINDOWS\system32\ksuser.dll
2013-10-11 21:55:08 ----N---- C:\WINDOWS\system32\RtlCPAPI.dll
2013-10-11 21:55:08 ----N---- C:\WINDOWS\system32\ChCfg.exe
2013-10-11 21:55:08 ----A---- C:\WINDOWS\soundman.exe
2013-10-11 21:55:07 ----N---- C:\WINDOWS\system32\RTLCPL.exe
2013-10-11 21:54:48 ----D---- C:\Program Files\Realtek Sound Manager
2013-10-11 21:54:48 ----D---- C:\Program Files\AvRack
2013-10-11 21:54:40 ----D---- C:\Program Files\Realtek AC97
2013-10-11 21:54:37 ----N---- C:\WINDOWS\alcupd.exe
2013-10-11 21:54:37 ----N---- C:\WINDOWS\alcrmv.exe
2013-10-11 21:54:37 ----HD---- C:\Program Files\InstallShield Installation Information
2013-10-11 21:54:12 ----D---- C:\Program Files\Common Files\InstallShield
2013-10-11 21:33:29 ----A---- C:\WINDOWS\AS_Debug.txt
2013-10-11 21:32:47 ----A---- C:\WINDOWS\Ascd_tmp.ini
2013-10-11 21:30:23 ----D---- C:\Documents and Settings\Jiří\Data aplikací\Identities
2013-10-11 21:30:22 ----HD---- C:\Program Files\Uninstall Information
2013-10-11 21:30:15 ----SD---- C:\Documents and Settings\Jiří\Data aplikací\Microsoft
2013-10-11 21:30:15 ----ASH---- C:\Documents and Settings\Jiří\Data aplikací\desktop.ini
2013-10-11 21:29:32 ----D---- C:\WINDOWS\SoftwareDistribution
2013-10-11 21:29:30 ----SD---- C:\WINDOWS\system32\Microsoft
2013-10-11 21:29:30 ----A---- C:\WINDOWS\SchedLgU.Txt
2013-10-11 21:26:26 ----D---- C:\WINDOWS\system32\xircom
2013-10-11 21:26:26 ----D---- C:\Program Files\xerox
2013-10-11 21:26:26 ----D---- C:\Program Files\microsoft frontpage
2013-10-11 21:26:10 ----N---- C:\WINDOWS\system32\spmsg.dll
2013-10-11 21:26:09 ----HD---- C:\WINDOWS\$hf_mig$
2013-10-11 21:25:57 ----A---- C:\WINDOWS\control.ini
2013-10-11 21:25:57 ----A---- C:\AUTOEXEC.BAT
2013-10-11 21:25:41 ----A---- C:\WINDOWS\OEWABLog.txt
2013-10-11 21:25:37 ----A---- C:\WINDOWS\system32\mapi32.dll
2013-10-11 21:24:47 ----SD---- C:\WINDOWS\Downloaded Program Files
2013-10-11 21:24:47 ----RD---- C:\WINDOWS\Offline Web Pages
2013-10-11 21:24:46 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2013-10-11 21:24:40 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2013-10-11 21:24:36 ----HD---- C:\Program Files\WindowsUpdate
2013-10-11 21:24:32 ----D---- C:\Program Files\Online Services
2013-10-11 21:24:14 ----D---- C:\WINDOWS\system32\DirectX
2013-10-11 21:23:53 ----A---- C:\WINDOWS\system32\atrace.dll
2013-10-11 21:23:51 ----A---- C:\WINDOWS\system32\desktop.ini
2013-10-11 21:23:51 ----A---- C:\WINDOWS\desktop.ini
2013-10-11 21:23:44 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2013-10-11 21:23:43 ----D---- C:\Program Files\Common Files\Services
2013-10-11 21:23:43 ----A---- C:\WINDOWS\system32\acctres.dll
2013-10-11 21:23:40 ----SD---- C:\WINDOWS\Tasks
2013-10-11 21:23:40 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2013-10-11 21:23:39 ----D---- C:\Program Files\Common Files\MSSoap
2013-10-11 21:23:35 ----D---- C:\WINDOWS\srchasst
2013-10-11 21:23:34 ----D---- C:\WINDOWS\system32\Macromed
2013-10-11 21:23:31 ----A---- C:\WINDOWS\system32\wuweb.dll
2013-10-11 21:23:31 ----A---- C:\WINDOWS\system32\wups.dll
2013-10-11 21:23:31 ----A---- C:\WINDOWS\system32\wucltui.dll
2013-10-11 21:23:31 ----A---- C:\WINDOWS\system32\wuauserv.dll
2013-10-11 21:23:31 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2013-10-11 21:23:31 ----A---- C:\WINDOWS\system32\wuaueng.dll
2013-10-11 21:23:31 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2013-10-11 21:23:30 ----A---- C:\WINDOWS\system32\wuauclt.exe
2013-10-11 21:23:30 ----A---- C:\WINDOWS\system32\wuapi.dll
2013-10-11 21:23:30 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2013-10-11 21:23:30 ----A---- C:\WINDOWS\system32\qmgr.dll
2013-10-11 21:23:30 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2013-10-11 21:23:30 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2013-10-11 21:23:26 ----D---- C:\Program Files\Movie Maker
2013-10-11 21:23:22 ----A---- C:\WINDOWS\system32\safrslv.dll
2013-10-11 21:23:22 ----A---- C:\WINDOWS\system32\safrdm.dll
2013-10-11 21:23:22 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2013-10-11 21:23:22 ----A---- C:\WINDOWS\system32\racpldlg.dll
2013-10-11 21:23:19 ----A---- C:\WINDOWS\system32\fltmc.exe
2013-10-11 21:23:19 ----A---- C:\WINDOWS\system32\fltlib.dll
2013-10-11 21:23:18 ----D---- C:\WINDOWS\system32\Restore
2013-10-11 21:23:18 ----A---- C:\WINDOWS\system32\srsvc.dll
2013-10-11 21:23:18 ----A---- C:\WINDOWS\system32\srrstr.dll
2013-10-11 21:23:18 ----A---- C:\WINDOWS\system32\srclient.dll
2013-10-11 21:23:17 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2013-10-11 21:23:17 ----A---- C:\WINDOWS\system32\msconf.dll
2013-10-11 21:23:17 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2013-10-11 21:23:17 ----A---- C:\WINDOWS\system32\mnmdd.dll
2013-10-11 21:23:17 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2013-10-11 21:23:17 ----A---- C:\WINDOWS\system32\ils.dll
2013-10-11 21:23:14 ----D---- C:\Program Files\NetMeeting
2013-10-11 21:23:14 ----A---- C:\WINDOWS\system32\msoert2.dll
2013-10-11 21:23:14 ----A---- C:\WINDOWS\system32\msoeacct.dll
2013-10-11 21:23:13 ----A---- C:\WINDOWS\system32\inetres.dll
2013-10-11 21:23:13 ----A---- C:\WINDOWS\system32\inetcomm.dll
2013-10-11 21:23:11 ----D---- C:\Program Files\Outlook Express
2013-10-11 21:23:11 ----A---- C:\WINDOWS\system32\schedsvc.dll
2013-10-11 21:23:11 ----A---- C:\WINDOWS\system32\mstinit.exe
2013-10-11 21:23:11 ----A---- C:\WINDOWS\system32\mstask.dll
2013-10-11 21:23:10 ----A---- C:\WINDOWS\system32\isign32.dll
2013-10-11 21:23:10 ----A---- C:\WINDOWS\system32\inetcfg.dll
2013-10-11 21:23:10 ----A---- C:\WINDOWS\system32\icwphbk.dll
2013-10-11 21:23:10 ----A---- C:\WINDOWS\system32\icwdial.dll
2013-10-11 21:23:04 ----D---- C:\Program Files\Common Files\System
2013-10-11 21:23:03 ----D---- C:\Program Files\Internet Explorer
2013-10-11 21:22:27 ----D---- C:\Program Files\ComPlus Applications
2013-10-11 21:22:25 ----A---- C:\WINDOWS\vbaddin.ini
2013-10-11 21:22:25 ----A---- C:\WINDOWS\vb.ini
2013-10-11 21:22:20 ----D---- C:\WINDOWS\Registration
2013-10-11 21:22:12 ----D---- C:\Program Files\Windows Media Player
2013-10-11 21:22:07 ----D---- C:\Program Files\Messenger
2013-10-11 21:22:03 ----D---- C:\Program Files\MSN Gaming Zone
2013-10-11 21:22:03 ----A---- C:\WINDOWS\system32\write.exe
2013-10-11 21:21:53 ----A---- C:\WINDOWS\system32\sndvol32.exe
2013-10-11 21:21:53 ----A---- C:\WINDOWS\system32\hticons.dll
2013-10-11 21:21:52 ----A---- C:\WINDOWS\system32\winchat.exe
2013-10-11 21:21:52 ----A---- C:\WINDOWS\system32\avwav.dll
2013-10-11 21:21:52 ----A---- C:\WINDOWS\system32\avtapi.dll
2013-10-11 21:21:52 ----A---- C:\WINDOWS\system32\avmeter.dll
2013-10-11 21:21:45 ----A---- C:\WINDOWS\system32\getuname.dll
2013-10-11 21:21:44 ----A---- C:\WINDOWS\system32\winmine.exe
2013-10-11 21:21:44 ----A---- C:\WINDOWS\system32\sol.exe
2013-10-11 21:21:44 ----A---- C:\WINDOWS\system32\charmap.exe
2013-10-11 21:21:44 ----A---- C:\WINDOWS\system32\calc.exe
2013-10-11 21:21:43 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2013-10-11 21:21:43 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2013-10-11 21:21:43 ----A---- C:\WINDOWS\system32\tslabels.ini
2013-10-11 21:21:43 ----A---- C:\WINDOWS\system32\tskill.exe
2013-10-11 21:21:43 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2013-10-11 21:21:43 ----A---- C:\WINDOWS\system32\reset.exe
2013-10-11 21:21:43 ----A---- C:\WINDOWS\system32\mshearts.exe
2013-10-11 21:21:43 ----A---- C:\WINDOWS\system32\freecell.exe
2013-10-11 21:21:42 ----A---- C:\WINDOWS\system32\tscon.exe
2013-10-11 21:21:42 ----A---- C:\WINDOWS\system32\shadow.exe
2013-10-11 21:21:42 ----A---- C:\WINDOWS\system32\rwinsta.exe
2013-10-11 21:21:42 ----A---- C:\WINDOWS\system32\regini.exe
2013-10-11 21:21:42 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2013-10-11 21:21:42 ----A---- C:\WINDOWS\system32\qwinsta.exe
2013-10-11 21:21:42 ----A---- C:\WINDOWS\system32\qappsrv.exe
2013-10-11 21:21:42 ----A---- C:\WINDOWS\system32\msg.exe
2013-10-11 21:21:42 ----A---- C:\WINDOWS\system32\logoff.exe
2013-10-11 21:21:42 ----A---- C:\WINDOWS\system32\cdmodem.dll
2013-10-11 21:21:41 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2013-10-11 21:21:41 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2013-10-11 21:21:41 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2013-10-11 21:21:40 ----A---- C:\WINDOWS\system32\stclient.dll
2013-10-11 21:21:40 ----A---- C:\WINDOWS\system32\mtxex.dll
2013-10-11 21:21:40 ----A---- C:\WINDOWS\system32\mtxdm.dll
2013-10-11 21:21:40 ----A---- C:\WINDOWS\system32\comsnap.dll
2013-10-11 21:21:40 ----A---- C:\WINDOWS\system32\comrepl.dll
2013-10-11 21:21:40 ----A---- C:\WINDOWS\system32\comaddin.dll
2013-10-11 21:21:35 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2013-10-11 21:21:34 ----A---- C:\WINDOWS\system32\accwiz.exe
2013-10-11 21:21:33 ----A---- C:\WINDOWS\system32\sndrec32.exe
2013-10-11 21:21:33 ----A---- C:\WINDOWS\system32\mplay32.exe
2013-10-11 21:21:32 ----A---- C:\WINDOWS\system32\hypertrm.dll
2013-10-11 21:21:31 ----D---- C:\Program Files\Windows NT
2013-10-11 21:21:31 ----A---- C:\WINDOWS\system32\mspaint.exe
2013-10-11 21:21:31 ----A---- C:\WINDOWS\system32\clipbrd.exe
2013-10-11 21:21:30 ----A---- C:\WINDOWS\system32\spider.exe
2013-10-11 21:21:29 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2013-10-11 21:21:27 ----A---- C:\WINDOWS\system32\tscupgrd.exe
2013-10-11 21:21:27 ----A---- C:\WINDOWS\system32\sessmgr.exe
2013-10-11 21:21:27 ----A---- C:\WINDOWS\system32\remotepg.dll
2013-10-11 21:21:27 ----A---- C:\WINDOWS\system32\rdshost.exe
2013-10-11 21:21:27 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2013-10-11 21:21:27 ----A---- C:\WINDOWS\system32\rdchost.dll
2013-10-11 21:21:27 ----A---- C:\WINDOWS\system32\mstscax.dll
2013-10-11 21:21:27 ----A---- C:\WINDOWS\system32\mstsc.exe
2013-10-11 21:21:26 ----D---- C:\WINDOWS\system32\MsDtc
2013-10-11 21:21:26 ----A---- C:\WINDOWS\system32\termsrv.dll
2013-10-11 21:21:26 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2013-10-11 21:21:26 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2013-10-11 21:21:26 ----A---- C:\WINDOWS\system32\rdpclip.exe
2013-10-11 21:21:26 ----A---- C:\WINDOWS\system32\qprocess.exe
2013-10-11 21:21:26 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2013-10-11 21:21:26 ----A---- C:\WINDOWS\system32\icaapi.dll
2013-10-11 21:21:26 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2013-10-11 21:21:25 ----A---- C:\WINDOWS\system32\xolehlp.dll
2013-10-11 21:21:25 ----A---- C:\WINDOWS\system32\mtxoci.dll
2013-10-11 21:21:25 ----A---- C:\WINDOWS\system32\msdtctm.dll
2013-10-11 21:21:25 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2013-10-11 21:21:25 ----A---- C:\WINDOWS\system32\msdtclog.dll
2013-10-11 21:21:25 ----A---- C:\WINDOWS\system32\msdtc.exe
2013-10-11 21:21:24 ----D---- C:\WINDOWS\system32\Com
2013-10-11 21:21:24 ----A---- C:\WINDOWS\system32\colbact.dll
2013-10-11 21:21:24 ----A---- C:\WINDOWS\system32\clbcatex.dll
2013-10-11 21:21:24 ----A---- C:\WINDOWS\system32\catsrvps.dll
2013-10-11 21:21:23 ----A---- C:\WINDOWS\system32\comuid.dll
2013-10-11 21:21:23 ----A---- C:\WINDOWS\system32\comsvcs.dll
2013-10-11 21:21:23 ----A---- C:\WINDOWS\system32\clbcatq.dll
2013-10-11 21:21:23 ----A---- C:\WINDOWS\system32\catsrvut.dll
2013-10-11 21:21:23 ----A---- C:\WINDOWS\system32\catsrv.dll
2013-10-11 21:21:17 ----A---- C:\WINDOWS\system32\servdeps.dll
2013-10-11 21:21:17 ----A---- C:\WINDOWS\system32\mmfutil.dll
2013-10-11 21:21:16 ----A---- C:\WINDOWS\system32\licwmi.dll
2013-10-11 21:21:16 ----A---- C:\WINDOWS\system32\cmprops.dll

======List of files/folders modified in the last 1 months======

2013-10-11 23:14:50 ----A---- C:\WINDOWS\system.ini
2013-10-11 23:05:21 ----A---- C:\WINDOWS\win.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2004-08-11 39424]
R1 MpKsl99ab8d4e;MpKsl99ab8d4e; \??\c:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{4E59498C-9381-47AE-BDB6-7F1C291B3F79}\MpKsl99ab8d4e.sys []
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2008-09-24 4122368]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2010-02-11 3565056]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 libusb0;LibUsb-Win32 - Kernel Driver, Version 0.1.10.1; C:\WINDOWS\system32\drivers\libusb0.sys [2005-03-09 33792]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-14 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2004-10-27 223104]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-14 17024]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-14 101120]
S3 BTHPORT;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-04-14 272896]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-14 18944]
S3 MotioninJoyXFilter;MotioninJoy Virtual Xinput device Filter Driver; C:\WINDOWS\system32\DRIVERS\MijXfilt.sys [2011-08-30 97552]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-14 59136]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S3 xusb21;Xbox 360 Wireless Receiver Driver Service 21; C:\WINDOWS\system32\DRIVERS\xusb21.sys [2010-08-19 61984]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2010-02-11 602112]
R2 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2013-10-08 182696]
R2 libusbd;LibUsb-Win32 - Daemon, Version 0.1.10.1; C:\WINDOWS\system32\libusbd-nt.exe [2005-03-09 18944]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-07-18 22216]
R2 Update DiVapton;Update DiVapton; C:\Program Files\DiVapton\updateDiVapton.exe [2013-10-01 65304]
R2 Util DiVapton;Util DiVapton; C:\Program Files\DiVapton\bin\utilDiVapton.exe [2013-10-14 65304]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2010-02-10 593920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-10-12 116648]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2006-10-20 36864]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-10-12 116648]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2006-10-30 741376]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-09-11 118680]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

Zdravim a pekny den preji
Vas log se studuje Obrázek

a pracuje se na nem Obrázek

.
Prosim o strpeni! Obrázek

Postupujte prosim dle tohoto navodu http://forum.viry.cz/viewtopic.php?f=13&t=133100

Pokud nepujde, tak aplikujte toto http://forum.viry.cz/viewtopic.php?f=29&t=132523

Děkuji za pomoc.
Bohužel mě nejde vložit log z FRST z důvodu nadměrného počtu znaků a proto ho přikládám jako přílohu.
Není to problém ?

Tvorba fixlistu pro FRST

Spustte poznamkovy blok (Start-spustit-notepad)
Zkopirujte skript nize

Kód: Vybrat vše

Start
HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Run: [seznam-listicka-distribuce] - C:\Program Files\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKCU\...\Run: [cz.seznam.software.autoupdate] - C:\Documents and Settings\Jiří\Data aplikací\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKCU\...\Run: [cz.seznam.software.szndesktop] - C:\Documents and Settings\Jiří\Data aplikací\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKCU\...\Run: [GomTray] - C:\Program Files\GRETECH\GOMTray\GomTray.exe [2384472 2013-07-04] (GRETECH)
HKCU\...\Run: [jWdyxApM] - C:\Documents and Settings\Jiří\Local Settings\Data aplikací\ATI\ZSDmmWsx.exe [182656 2013-10-20] ()
HKCU\...\Policies\system: [DisableTaskMgr] 1
MountPoints2: {ce058e57-3320-11e3-a8a2-001485387385} - F:\LaunchU3.exe -a
HKU\Administrator\...\Run: [jWdyxApM] - C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Microsoft\NxpduVcI.exe [ 2013-10-20] ()
HKU\Administrator\...\Policies\system: [DisableTaskMgr] 1
AppInit_DLLs:   [ ] ()
Startup: C:\Documents and Settings\Administrator\Nabídka Start\Programy\Po spuštění\bmgsPVRH.exe ()
Startup: C:\Documents and Settings\Jiří\Nabídka Start\Programy\Po spuštění\bmgsPVRH.exe ()

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
SearchScopes: HKCU - DefaultScope {a389fadd-ffe5-4df9-b53f-e4af9af2353d} URL = http://search.seznam.cz/?q={searchTerms}&sourceid=IE_5
SearchScopes: HKCU - {22dd66f6-0452-48e4-9f72-b3ac43fc2829} URL = http://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=IE_5
SearchScopes: HKCU - {24c49010-2b04-472a-9ba9-b1e03d0176e0} URL = http://www.firmy.cz/?q={searchTerms}&sourceid=IE_5
SearchScopes: HKCU - {a389fadd-ffe5-4df9-b53f-e4af9af2353d} URL = http://search.seznam.cz/?q={searchTerms}&sourceid=IE_5
SearchScopes: HKCU - {f6a3b6cd-9508-4ba1-962d-53e810ff155c} URL = http://www.mapy.cz/?query={searchTerms}&sourceid=IE_5

2013-10-20 09:32 - 2013-10-20 09:32 - 00112107 _____ (forum.viry.cz) C:\Documents and Settings\Jiří\Plocha\VerzeOS.exe
2013-10-20 07:58 - 2013-10-20 07:58 - 00000000 ____D C:\Documents and Settings\Administrator\Local Settings\Data aplikací\unLInYJf
2013-10-20 07:58 - 2013-10-20 07:58 - 00000000 ____D C:\Documents and Settings\Jiří\Local Settings\Data aplikací\mDOCFtlx
2013-10-20 07:38 - 2013-10-20 07:38 - 00000000 ____D C:\Documents and Settings\Jiří\Local Settings\Data aplikací\unLInYJf
C:\Documents and Settings\Jiří\Local Settings\Data aplikací\ATI\ZSDmmWsx.exe
C:\Documents and Settings\Jiří\Nabídka Start\Programy\Po spuštění\bmgsPVRH.exe
C:\Documents and Settings\Administrator\Local Settings\Temp\xUwlucVN.exe
C:\Documents and Settings\Jiří\Local Settings\Temp\appshat-distribution.exe
C:\Documents and Settings\Jiří\Local Settings\Temp\bi_cleaner.exe
C:\Documents and Settings\Jiří\Local Settings\Temp\DiVapton_sm.exe
C:\Documents and Settings\Jiří\Local Settings\Temp\ExPromo.exe
C:\Documents and Settings\Jiří\Local Settings\Temp\install_reader11_cz_chrd_aaa_aih.exe
C:\Documents and Settings\Jiří\Local Settings\Temp\listicka-partner-13415-1.1.2-offline.exe
C:\Documents and Settings\Jiří\Local Settings\Temp\OptimizerPro.exe
C:\Documents and Settings\Jiří\Local Settings\Temp\SetupUtil.exe
C:\Documents and Settings\Jiří\Local Settings\Temp\setup_wm.exe
C:\Documents and Settings\Jiří\Local Settings\Temp\UpdateCheckerSetup.exe
C:\Documents and Settings\Jiří\Local Settings\Temp\xUwlucVN.exe

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Microsoft Antimalware Scheduled Scan.job => c:\Program Files\Microsoft Security Client\MpCmdRun.exe

Folder: C:\Documents and Settings\Jiří\Local Settings\Data aplikací\ATI

Hosts:

End

Ulozte vytvoreny TXT jako fixlist.txt
Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

Kliknete na Fix
Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

Zde je fixlog.

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 19-10-2013
Ran by Jiří at 2013-10-20 12:42:30 Run:1
Running from C:\Documents and Settings\Jiří\Plocha
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Run: [seznam-listicka-distribuce] - C:\Program Files\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKCU\...\Run: [cz.seznam.software.autoupdate] - C:\Documents and Settings\Jiří\Data aplikací\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKCU\...\Run: [cz.seznam.software.szndesktop] - C:\Documents and Settings\Jiří\Data aplikací\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKCU\...\Run: [GomTray] - C:\Program Files\GRETECH\GOMTray\GomTray.exe [2384472 2013-07-04] (GRETECH)
HKCU\...\Run: [jWdyxApM] - C:\Documents and Settings\Jiří\Local Settings\Data aplikací\ATI\ZSDmmWsx.exe [182656 2013-10-20] ()
HKCU\...\Policies\system: [DisableTaskMgr] 1
MountPoints2: {ce058e57-3320-11e3-a8a2-001485387385} - F:\LaunchU3.exe -a
HKU\Administrator\...\Run: [jWdyxApM] - C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Microsoft\NxpduVcI.exe [ 2013-10-20] ()
HKU\Administrator\...\Policies\system: [DisableTaskMgr] 1
AppInit_DLLs: [ ] ()
Startup: C:\Documents and Settings\Administrator\Nabídka Start\Programy\Po spuštění\bmgsPVRH.exe ()
Startup: C:\Documents and Settings\Jiří\Nabídka Start\Programy\Po spuštění\bmgsPVRH.exe ()

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.search.msn.com/{SUB_RFC1766}/ ... chasst.htm
SearchScopes: HKCU - DefaultScope {a389fadd-ffe5-4df9-b53f-e4af9af2353d} URL = http://search.seznam.cz/?q={searchTerms}&sourceid=IE_5
SearchScopes: HKCU - {22dd66f6-0452-48e4-9f72-b3ac43fc2829} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... rceid=IE_5
SearchScopes: HKCU - {24c49010-2b04-472a-9ba9-b1e03d0176e0} URL = http://www.firmy.cz/?q={searchTerms}&sourceid=IE_5
SearchScopes: HKCU - {a389fadd-ffe5-4df9-b53f-e4af9af2353d} URL = http://search.seznam.cz/?q={searchTerms}&sourceid=IE_5
SearchScopes: HKCU - {f6a3b6cd-9508-4ba1-962d-53e810ff155c} URL = http://www.mapy.cz/?query={searchTerms}&sourceid=IE_5

2013-10-20 09:32 - 2013-10-20 09:32 - 00112107 _____ (forum.viry.cz) C:\Documents and Settings\Jiří\Plocha\VerzeOS.exe
2013-10-20 07:58 - 2013-10-20 07:58 - 00000000 ____D C:\Documents and Settings\Administrator\Local Settings\Data aplikací\unLInYJf
2013-10-20 07:58 - 2013-10-20 07:58 - 00000000 ____D C:\Documents and Settings\Jiří\Local Settings\Data aplikací\mDOCFtlx
2013-10-20 07:38 - 2013-10-20 07:38 - 00000000 ____D C:\Documents and Settings\Jiří\Local Settings\Data aplikací\unLInYJf
C:\Documents and Settings\Jiří\Local Settings\Data aplikací\ATI\ZSDmmWsx.exe
C:\Documents and Settings\Jiří\Nabídka Start\Programy\Po spuštění\bmgsPVRH.exe
C:\Documents and Settings\Administrator\Local Settings\Temp\xUwlucVN.exe
C:\Documents and Settings\Jiří\Local Settings\Temp\appshat-distribution.exe
C:\Documents and Settings\Jiří\Local Settings\Temp\bi_cleaner.exe
C:\Documents and Settings\Jiří\Local Settings\Temp\DiVapton_sm.exe
C:\Documents and Settings\Jiří\Local Settings\Temp\ExPromo.exe
C:\Documents and Settings\Jiří\Local Settings\Temp\install_reader11_cz_chrd_aaa_aih.exe
C:\Documents and Settings\Jiří\Local Settings\Temp\listicka-partner-13415-1.1.2-offline.exe
C:\Documents and Settings\Jiří\Local Settings\Temp\OptimizerPro.exe
C:\Documents and Settings\Jiří\Local Settings\Temp\SetupUtil.exe
C:\Documents and Settings\Jiří\Local Settings\Temp\setup_wm.exe
C:\Documents and Settings\Jiří\Local Settings\Temp\UpdateCheckerSetup.exe
C:\Documents and Settings\Jiří\Local Settings\Temp\xUwlucVN.exe

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Microsoft Antimalware Scheduled Scan.job => c:\Program Files\Microsoft Security Client\MpCmdRun.exe

Folder: C:\Documents and Settings\Jiří\Local Settings\Data aplikací\ATI

Hosts:

End
*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\GrooveMonitor => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\seznam-listicka-distribuce => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.autoupdate => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.szndesktop => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\GomTray => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\jWdyxApM => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\system\\DisableTaskMgr => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ce058e57-3320-11e3-a8a2-001485387385} => Key deleted successfully.
HKCR\CLSID\{ce058e57-3320-11e3-a8a2-001485387385} => Key not found.
HKU\Administrator\Software\Microsoft\Windows\CurrentVersion\Run\\jWdyxApM => Value deleted successfully.
HKU\Administrator\Software\Microsoft\Windows\CurrentVersion\Policies\system\\DisableTaskMgr => Value deleted successfully.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs => Value was restored successfully.
C:\Documents and Settings\Administrator\Nabídka Start\Programy\Po spuštění\bmgsPVRH.exe => Moved successfully.
C:\Documents and Settings\Jiří\Nabídka Start\Programy\Po spuštění\bmgsPVRH.exe => Moved successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Bar => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{22dd66f6-0452-48e4-9f72-b3ac43fc2829} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{22dd66f6-0452-48e4-9f72-b3ac43fc2829} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{24c49010-2b04-472a-9ba9-b1e03d0176e0} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{24c49010-2b04-472a-9ba9-b1e03d0176e0} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{a389fadd-ffe5-4df9-b53f-e4af9af2353d} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{a389fadd-ffe5-4df9-b53f-e4af9af2353d} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{f6a3b6cd-9508-4ba1-962d-53e810ff155c} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{f6a3b6cd-9508-4ba1-962d-53e810ff155c} => Key not found.
C:\Documents and Settings\Jiří\Plocha\VerzeOS.exe => Moved successfully.
C:\Documents and Settings\Administrator\Local Settings\Data aplikací\unLInYJf => Moved successfully.
C:\Documents and Settings\Jiří\Local Settings\Data aplikací\mDOCFtlx => Moved successfully.
C:\Documents and Settings\Jiří\Local Settings\Data aplikací\unLInYJf => Moved successfully.
C:\Documents and Settings\Jiří\Local Settings\Data aplikací\ATI\ZSDmmWsx.exe => Moved successfully.
"C:\Documents and Settings\Jiří\Nabídka Start\Programy\Po spuštění\bmgsPVRH.exe" => File/Directory not found.
C:\Documents and Settings\Administrator\Local Settings\Temp\xUwlucVN.exe => Moved successfully.
C:\Documents and Settings\Jiří\Local Settings\Temp\appshat-distribution.exe => Moved successfully.
C:\Documents and Settings\Jiří\Local Settings\Temp\bi_cleaner.exe => Moved successfully.
C:\Documents and Settings\Jiří\Local Settings\Temp\DiVapton_sm.exe => Moved successfully.
C:\Documents and Settings\Jiří\Local Settings\Temp\ExPromo.exe => Moved successfully.
C:\Documents and Settings\Jiří\Local Settings\Temp\install_reader11_cz_chrd_aaa_aih.exe => Moved successfully.
C:\Documents and Settings\Jiří\Local Settings\Temp\listicka-partner-13415-1.1.2-offline.exe => Moved successfully.
C:\Documents and Settings\Jiří\Local Settings\Temp\OptimizerPro.exe => Moved successfully.
C:\Documents and Settings\Jiří\Local Settings\Temp\SetupUtil.exe => Moved successfully.
C:\Documents and Settings\Jiří\Local Settings\Temp\setup_wm.exe => Moved successfully.
C:\Documents and Settings\Jiří\Local Settings\Temp\UpdateCheckerSetup.exe => Moved successfully.
C:\Documents and Settings\Jiří\Local Settings\Temp\xUwlucVN.exe => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\WINDOWS\Tasks\Microsoft Antimalware Scheduled Scan.job => Moved successfully.

========================= Folder: C:\Documents and Settings\Jiří\Local Settings\Data aplikací\ATI ========================

2013-10-12 09:46 - 2013-10-12 09:46 - 0000000 ____D () C:\Documents and Settings\Jiří\Local Settings\Data aplikací\ATI\ACE
2013-10-12 09:46 - 2013-10-20 09:03 - 0029528 ____A () C:\Documents and Settings\Jiří\Local Settings\Data aplikací\ATI\ACE\Manifest.Bin
2013-10-12 09:46 - 2013-10-20 09:03 - 0023574 ____A () C:\Documents and Settings\Jiří\Local Settings\Data aplikací\ATI\ACE\Manifest.xml
2013-10-12 09:46 - 2013-10-20 12:37 - 0011293 ____A () C:\Documents and Settings\Jiří\Local Settings\Data aplikací\ATI\ACE\Profiles.xml

====== End of Folder: ======

C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

==== End of Fixlog ====

Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe

Ulozte nejlepe na plochu
Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
Probehne vytvoreni zalohy a nasledne prohledavani
Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

Ulozte nejlepe na plochu
Ukoncete vsechny programy
Kliknete na Scan a nasledne Clean
Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

Stahnete Farbar Service Scanner http://download.bleepingcomputer.com/farbar/FSS.exe

Ulozte nejlepe na Plochu
U vsech polozek udelejte zatrzitko (tim je oznacite pro skenovani)
Kliknete na Scan
Po dokonceni skenu se objevi log FSS.txt ten sem vlozte

Log FSS:

Farbar Service Scanner Version: 20-10-2013
Ran by Jiří (administrator) on 20-10-2013 at 18:43:49
Running from "C:\Documents and Settings\Jiří\Plocha"
Systém Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.

Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0

System Restore:
============

System Restore Disabled Policy:
========================

Security Center:
============

wscsvc Service is not running. Checking service configuration:
The start type of wscsvc service is set to Disabled. The default start type is Auto.
The ImagePath of wscsvc service is OK.
The ServiceDll of wscsvc service is OK.

Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is set to Disabled. The default start type is Auto.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv: "C:\WINDOWS\system32\wuauserv.dll".

Windows Autoupdate Disabled Policy:
============================

Other Services:
==============

File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll
[2007-10-29 14:00] - [2008-04-14 08:51] - 0125952 ____A (Microsoft Corporation) 8C9A53E285AC5E6704844D0459EC85BE

C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll
[2007-10-29 14:00] - [2008-04-14 08:51] - 0045568 ____A (Microsoft Corporation) 0634B791684B84F4A331F3D3536FEEF8

C:\WINDOWS\system32\ipnathlp.dll
[2007-10-29 14:00] - [2008-04-14 08:51] - 0329728 ____A (Microsoft Corporation) F58FACA9621D2DB01BD0927D9A0A208E

C:\WINDOWS\system32\netman.dll
[2007-10-29 14:00] - [2008-04-14 08:51] - 0198144 ____A (Microsoft Corporation) 72E1E9E2977BE08BDEEDB6D8FD9D4D40

C:\WINDOWS\system32\wbem\WMIsvc.dll
[2013-10-11 21:21] - [2008-04-14 08:52] - 0144896 ____A (Microsoft Corporation) E488332126E3B1182D2B8A0C35408EC6

C:\WINDOWS\system32\srsvc.dll
[2013-10-11 21:23] - [2008-04-14 08:52] - 0171008 ____A (Microsoft Corporation) 35B91147124F64AC8081A2EDB9EA4DEE

C:\WINDOWS\system32\Drivers\sr.sys
[2013-10-11 21:23] - [2008-04-14 08:11] - 0073344 ____A (Microsoft Corporation) 94610C8653635E4459316A0050D55CE7

C:\WINDOWS\system32\wscsvc.dll
[2007-10-29 14:00] - [2008-04-14 08:52] - 0080896 ____A (Microsoft Corporation) 4C86D5FAF78194995AF9CC1075F65DD3

C:\WINDOWS\system32\wbem\WMIsvc.dll
[2013-10-11 21:21] - [2008-04-14 08:52] - 0144896 ____A (Microsoft Corporation) E488332126E3B1182D2B8A0C35408EC6

C:\WINDOWS\system32\wuauserv.dll
[2013-10-11 21:23] - [2008-04-14 08:52] - 0006656 ____A (Microsoft Corporation) C1364564800EE9784192145324A23308

C:\WINDOWS\system32\qmgr.dll
[2013-10-11 21:23] - [2008-04-14 08:51] - 0409088 ____A (Microsoft Corporation) 19395D092FD85DDC2D9C7729CF5A2AC8

C:\WINDOWS\system32\es.dll
[2007-10-29 14:00] - [2008-04-14 08:51] - 0246272 ____A (Microsoft Corporation) 260C69FD67687B0DC062FC3D31655857

C:\WINDOWS\system32\cryptsvc.dll
[2007-10-29 14:00] - [2008-04-14 08:51] - 0062464 ____A (Microsoft Corporation) F3AB0933CBD166D271992F411C27CCAF

C:\WINDOWS\system32\svchost.exe
[2007-10-29 14:00] - [2008-04-14 08:52] - 0014336 ____A (Microsoft Corporation) BE4A520E29B6391F49E79CCC52044D93

C:\WINDOWS\system32\rpcss.dll
[2007-10-29 14:00] - [2008-04-14 08:51] - 0399360 ____A (Microsoft Corporation) C868F3AE15CF71A93F2AA3A32856D839

C:\WINDOWS\system32\services.exe
[2007-10-29 14:00] - [2008-04-14 08:52] - 0108544 ____A (Microsoft Corporation) F0D2AE69035092BF22DAD6B50FAB85C2

Extra List:
=======
Gpc(3) IPSec(5) NetBT(6) PSched(7) RFCOMM(8) Tcpip(4)
0x080000000500000001000000020000000300000004000000060000000700000008000000
IpSec Tag value is correct.

**** End of log ****

Log ADW:

# Updated 19/10/2013 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Jiří - NONAME-24C3136D
# Running from : C:\Documents and Settings\Jiří\Plocha\adwcleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\Jiří\Local Settings\Data aplikací\Splashtop

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AA74D58F-ACD0-450D-A85E-6C04B171C044}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AAA38851-3CFF-475F-B5E0-720D3645E4A5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AA74D58F-ACD0-450D-A85E-6C04B171C044}
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\bi_uninstaller
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Splashtop Software Updater

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702

-\\ Mozilla Firefox v24.0 (cs)

[ File : C:\Documents and Settings\Jiří\Data aplikací\Mozilla\Firefox\Profiles\3vyogg1w.default\prefs.js ]

*************************

AdwCleaner[R0].txt - [1635 octets] - [20/10/2013 18:31:04]
AdwCleaner[S0].txt - [1576 octets] - [20/10/2013 18:32:18]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1636 octets] ##########

Log z JRT jsem bohužel nenašel kde by se měl nacházet,udělám nový sken.Zatím posílám tohle.

Log z JRT:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.7 (10.15.2013:3)
OS: Microsoft Windows XP x86
Ran by Jiýˇ on ne 20.10.2013 at 18:50:16,09
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}

~~~ Files

~~~ Folders

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ne 20.10.2013 at 18:59:50,15
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Poprosim o novy log z FRSTLauncheru

Dobrý večer,
zde je log z FRST.Dříve jsem se k pc nedostal.
Již se mě zdá vše OK,počítač funguje normálně,zmizelo i to otravné hlášení o PČR

Tvorba fixlistu pro FRST

Spustte poznamkovy blok (Start-spustit-notepad)
Zkopirujte skript nize

Kód: Vybrat vše

Start
HKLM\...\Winlogon: [Userinit] C:\WINDOWS\system32\userinit.exe,,C:\Program Files\Internet Explorer\PgeZRlTj.exe
HKCU\...\Run: [jWdyxApM] - C:\Documents and Settings\Jiří\Local Settings\Data aplikací\Sun\soPewsbH.exe [182656 2013-10-20] ()
HKCU\...\Policies\system: [DisableTaskMgr] 1
Startup: C:\Documents and Settings\Jiří\Nabídka Start\Programy\Po spuštění\bmgsPVRH.exe ()

SearchScopes: HKLM - DefaultScope value is missing.

DisableService: JavaQuickStarterService
DisableService: Update DiVapton

S4 IntelIde; No ImagePath
U1 WS2IFSL; 

2013-10-20 12:45 - 2013-10-20 12:46 - 00000000 ____D C:\Documents and Settings\Jiří\Local Settings\Data aplikací\unLInYJf
C:\Documents and Settings\Jiří\Local Settings\Temp\Quarantine.exe
C:\Documents and Settings\Jiří\Local Settings\Temp\xUwlucVN.exe
C:\Program Files\Internet Explorer\PgeZRlTj.exe
C:\Documents and Settings\Jiří\Local Settings\Data aplikací\Sun\soPewsbH.exe
C:\Documents and Settings\Jiří\Nabídka Start\Programy\Po spuštění\bmgsPVRH.exe

Task: C:\WINDOWS\Tasks\Microsoft Antimalware Scheduled Scan.job => c:\Program Files\Microsoft Security Client\MpCmdRun.exe

Hosts:

End

Ulozte vytvoreny TXT jako fixlist.txt
Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

Kliknete na Fix
Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

Zde je FIXLOG :

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 19-10-2013
Ran by Jiří at 2013-10-22 16:52:37 Run:2
Running from C:\Documents and Settings\Jiří\Plocha
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
HKLM\...\Winlogon: [Userinit] C:\WINDOWS\system32\userinit.exe,,C:\Program Files\Internet Explorer\PgeZRlTj.exe
HKCU\...\Run: [jWdyxApM] - C:\Documents and Settings\Jiří\Local Settings\Data aplikací\Sun\soPewsbH.exe [182656 2013-10-20] ()
HKCU\...\Policies\system: [DisableTaskMgr] 1
Startup: C:\Documents and Settings\Jiří\Nabídka Start\Programy\Po spuštění\bmgsPVRH.exe ()

SearchScopes: HKLM - DefaultScope value is missing.

DisableService: JavaQuickStarterService
DisableService: Update DiVapton

S4 IntelIde; No ImagePath
U1 WS2IFSL;

2013-10-20 12:45 - 2013-10-20 12:46 - 00000000 ____D C:\Documents and Settings\Jiří\Local Settings\Data aplikací\unLInYJf
C:\Documents and Settings\Jiří\Local Settings\Temp\Quarantine.exe
C:\Documents and Settings\Jiří\Local Settings\Temp\xUwlucVN.exe
C:\Program Files\Internet Explorer\PgeZRlTj.exe
C:\Documents and Settings\Jiří\Local Settings\Data aplikací\Sun\soPewsbH.exe
C:\Documents and Settings\Jiří\Nabídka Start\Programy\Po spuštění\bmgsPVRH.exe

Task: C:\WINDOWS\Tasks\Microsoft Antimalware Scheduled Scan.job => c:\Program Files\Microsoft Security Client\MpCmdRun.exe

Hosts:

End
*****************

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Userinit => Value was restored successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\jWdyxApM => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\system\\DisableTaskMgr => Value deleted successfully.
C:\Documents and Settings\Jiří\Nabídka Start\Programy\Po spuštění\bmgsPVRH.exe => Moved successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
JavaQuickStarterService service was disabled
Update DiVapton service was disabled
IntelIde => Service deleted successfully.
WS2IFSL => Service deleted successfully.
C:\Documents and Settings\Jiří\Local Settings\Data aplikací\unLInYJf => Moved successfully.
C:\Documents and Settings\Jiří\Local Settings\Temp\Quarantine.exe => Moved successfully.
C:\Documents and Settings\Jiří\Local Settings\Temp\xUwlucVN.exe => Moved successfully.
C:\Program Files\Internet Explorer\PgeZRlTj.exe => Moved successfully.
C:\Documents and Settings\Jiří\Local Settings\Data aplikací\Sun\soPewsbH.exe => Moved successfully.
"C:\Documents and Settings\Jiří\Nabídka Start\Programy\Po spuštění\bmgsPVRH.exe" => File/Directory not found.
C:\WINDOWS\Tasks\Microsoft Antimalware Scheduled Scan.job => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

==== End of Fixlog ====

Tak jeste uklidime

T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe

Stahnete a spustte
Pro potvrzeni volby mackejte A, Enter
Po pouziti utilitu smazte
Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

Stahnete a spustte
Kliknete na CleanUp a potvrdte YES
Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

Stahnete a spustte
Kliknete na Start a potvrdte OK
Program uklidi a restartuje pc
Po pouziti utilitu smazte

Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič

Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

dejte Hledej problémy
nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

A pokud nejsou problemy ci dotazy, je to z me strany vse

Vše uklizeno

Děkuji mnohokrát za pomoc !PC funguje na 100%.

Ještě malý dotaz.
Používám antivir od Microsoftu,pravidelně aktualizovaný.
Je lepší ten a nebo Avast free ?

Ja bych sel spise do Avastu Free nez do MSE

Nemate zac, rad jsem pomohl

Zase nekdy Obrázek

A na zaklade Pravidla o zamykani temat

VIRY.CZ

Pomoc od viru (jakoby uzamčení pc)

Pomoc od viru (jakoby uzamčení pc)

Re: Pomoc od viru (jakoby uzamčení pc)

Re: Pomoc od viru (jakoby uzamčení pc)

Re: Pomoc od viru (jakoby uzamčení pc)

Re: Pomoc od viru (jakoby uzamčení pc)

Re: Pomoc od viru (jakoby uzamčení pc)

Re: Pomoc od viru (jakoby uzamčení pc)

Re: Pomoc od viru (jakoby uzamčení pc)

Re: Pomoc od viru (jakoby uzamčení pc)

Re: Pomoc od viru (jakoby uzamčení pc)

Re: Pomoc od viru (jakoby uzamčení pc)

Re: Pomoc od viru (jakoby uzamčení pc)

Re: Pomoc od viru (jakoby uzamčení pc)

Re: Pomoc od viru (jakoby uzamčení pc)

Re: Pomoc od viru (jakoby uzamčení pc)