VIRY.CZ

Prosím o kontrolu:

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:05-07-2014
Ran by DPCz (administrator) on EEE on 05-07-2014 13:55:55
Running from C:\Documents and Settings\DPCz\Plocha
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(ELANTECH Devices Corp.) C:\Program Files\Elantech\ETDCTRL.EXE
(ELANTECH Devices Corp.) C:\Program Files\Elantech\ETDDECT.EXE
(ASUSTeK Computer Inc.) C:\Program Files\EeePC\ACPI\AsTray.exe
(ASUSTeK Computer Inc.) C:\Program Files\EeePC\ACPI\AsAcpiSvr.exe
(ASUSTeK Computer Inc.) C:\Program Files\EeePC\ACPI\AsEPCMon.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(InterVideo) C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Intel Corporation) C:\WINDOWS\system32\igfxext.exe
(ASUSTeK Computer Inc.) C:\Program Files\Asus\EeePC\Super Hybrid Engine\SuperHybridEngine.exe
(Aztec Media Inc) C:\Program Files\Settings Manager\smdmf\SmdmFService.exe
(Aztec Media Inc) C:\Program Files\Settings Manager\smdmf\SmdmFService.exe
(Aztec Media Inc) C:\Program Files\Settings Manager\smdmf\smdmfu.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Ghisler Software GmbH) C:\Program Files\totalcmd\TOTALCMD.EXE
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(forum.viry.cz) C:\Documents and Settings\DPCz\Plocha\FRSTLauncher.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [16806912 2008-07-31] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Alcmtr] => C:\WINDOWS\ALCMTR.EXE [57344 2008-06-19] (Realtek Semiconductor Corp.)
HKLM\...\Run: [ETDWare] => C:\Program Files\Elantech\ETDCtrl.exe [335872 2008-09-03] (ELANTECH Devices Corp.)
HKLM\...\Run: [ETDWareDetect] => C:\Program Files\Elantech\ETDDect.exe [204800 2008-08-22] (ELANTECH Devices Corp.)
HKLM\...\Run: [AsusTray] => C:\Program Files\EeePC\ACPI\AsTray.exe [106496 2008-09-02] (ASUSTeK Computer Inc.)
HKLM\...\Run: [AsusACPIServer] => C:\Program Files\EeePC\ACPI\AsAcpiSvr.exe [593920 2008-09-02] (ASUSTeK Computer Inc.)
HKLM\...\Run: [AsusEPCMonitor] => C:\Program Files\EeePC\ACPI\AsEPCMon.exe [94208 2008-05-21] (ASUSTeK Computer Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3890208 2014-06-15] (AVAST Software)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-05-26] (Apple Inc.)
HKU\S-1-5-21-3086602011-2446779318-483012309-1006\...\MountPoints2: {42fdb6e8-f7ca-11e3-ac14-00248c57f213} - E:\Autorun.exe
HKU\S-1-5-21-3086602011-2446779318-483012309-1006\...\MountPoints2: {c1bd1822-8777-11e3-abdc-806d6172696f} - E:\.\Bin\ASSETUP.exe
HKU\S-1-5-21-3086602011-2446779318-483012309-1006\...\MountPoints2: {d457891a-f7ad-11e3-ac13-00248c57f213} - E:\Autorun.exe
HKU\S-1-5-21-3086602011-2446779318-483012309-1006\...\MountPoints2: {d457891d-f7ad-11e3-ac13-00248c57f213} - E:\Autorun.exe
AppInit_DLLs: C:\DOCUME~1\DPCz\LOCALS~1\DATAAP~1\Linkey\IEEXTE~1\iedll.dll => C:\Documents and Settings\DPCz\Local Settings\Data aplikací\Linkey\IEExtension\iedll.dll [175632 2014-06-01] (Aztec Media Inc)
IFEO\bitguard.exe: [Debugger] tasklist.exe
IFEO\bprotect.exe: [Debugger] tasklist.exe
IFEO\bpsvc.exe: [Debugger] tasklist.exe
IFEO\browserdefender.exe: [Debugger] tasklist.exe
IFEO\browserprotect.exe: [Debugger] tasklist.exe
IFEO\browsersafeguard.exe: [Debugger] tasklist.exe
IFEO\dprotectsvc.exe: [Debugger] tasklist.exe
IFEO\jumpflip: [Debugger] tasklist.exe
IFEO\protectedsearch.exe: [Debugger] tasklist.exe
IFEO\searchinstaller.exe: [Debugger] tasklist.exe
IFEO\searchprotection.exe: [Debugger] tasklist.exe
IFEO\searchprotector.exe: [Debugger] tasklist.exe
IFEO\searchsettings.exe: [Debugger] tasklist.exe
IFEO\searchsettings64.exe: [Debugger] tasklist.exe
IFEO\snapdo.exe: [Debugger] tasklist.exe
IFEO\stinst32.exe: [Debugger] tasklist.exe
IFEO\stinst64.exe: [Debugger] tasklist.exe
IFEO\umbrella.exe: [Debugger] tasklist.exe
IFEO\utiljumpflip.exe: [Debugger] tasklist.exe
IFEO\volaro: [Debugger] tasklist.exe
IFEO\vonteera: [Debugger] tasklist.exe
IFEO\websteroids.exe: [Debugger] tasklist.exe
IFEO\websteroidsservice.exe: [Debugger] tasklist.exe
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\SuperHybridEngine.lnk
ShortcutTarget: SuperHybridEngine.lnk -> C:\Program Files\Asus\EeePC\Super Hybrid Engine\SuperHybridEngine.exe (ASUSTeK Computer Inc.)
HKLM\...\AppCertDlls: [x86] -> C:\Program Files\Settings Manager\smdmf\sysapcrt.dll [488464 2014-06-25] ()
HKLM\...\AppCertDlls: [x64] -> c:\program files\settings manager\smdmf\x64\sysapcrt.dll [662544 2014-06-25] ()
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.default-search.net?sid=498&a ... 97&src=hmp
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2498} URL = http://www.default-search.net/search?si ... earchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2498} URL = http://www.default-search.net/search?si ... earchTerms}
BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: Linkey - {4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} - C:\Documents and Settings\DPCz\Local Settings\Data aplikací\Linkey\IEExtension\iedll.dll (Aztec Media Inc)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: No Name - {7E853D72-626A-48EC-A868-BA8D5E23E045} - No File
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
Toolbar: HKCU - &Odkazy - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 10.0.11.254

FireFox:
========
FF ProfilePath: C:\Documents and Settings\DPCz\Data aplikací\Mozilla\Firefox\Profiles\xfxl6c14.default
FF DefaultSearchEngine: default-search.net
FF SearchEngineOrder.1: default-search.net
FF SelectedSearchEngine: default-search.net
FF Homepage: hxxp://www.default-search.net?sid=498&aid=0&it ... 97&src=hmp
FF Keyword.URL: hxxp://www.default-search.net/search?sid=498&a ... &src=ds&p=
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @java.com/DTPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Documents and Settings\DPCz\Data aplikací\Mozilla\Firefox\Profiles\xfxl6c14.default\searchplugins\default-search.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\default-search.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-01-27]

Chrome:
=======
CHR HomePage: hxxp://seznam.cz/
CHR StartupUrls: "hxxp://www.default-search.net?sid=498&aid=0&it ... 97&src=hmp"
CHR DefaultSearchKeyword: ask.com
CHR DefaultSearchProvider: default-search.net
CHR DefaultSearchURL: http://www.default-search.net/search?si ... earchTerms}
CHR DefaultNewTabURL:
CHR Extension: (Dokumenty Google) - C:\Documents and Settings\DPCz\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-27]
CHR Extension: (Disk Google) - C:\Documents and Settings\DPCz\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-27]
CHR Extension: (YouTube) - C:\Documents and Settings\DPCz\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-27]
CHR Extension: (Vyhledávání Google) - C:\Documents and Settings\DPCz\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-27]
CHR Extension: (Peněženka Google) - C:\Documents and Settings\DPCz\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-27]
CHR Extension: (Gmail) - C:\Documents and Settings\DPCz\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-27]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-05-04]

========================== Services (Whitelisted) =================

S3 aspnet_state; C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe [32768 2004-07-15] (Microsoft Corporation) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-05-04] (AVAST Software)
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2014-04-14] (Oracle Corporation)
R2 MbnExt; C:\Program Files\T-Mobile\Web'n'walk Manager\MbnExt.dll [311216 2012-07-14] (Gemfor s.r.o.)
R2 SmdmFService; C:\Program Files\Settings Manager\smdmf\SmdmFService.exe [3572240 2014-06-25] (Aztec Media Inc)
S2 ssinstall; C:\WINDOWS\System32\ssins.exe [2324216 2014-07-03] (PS Media s.r.o.)
S3 usnjsvc; C:\Program Files\Windows Live\Messenger\usnsvc.exe [98328 2007-10-18] (Microsoft Corporation)
S3 WLSetupSvc; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [266240 2007-10-25] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S3 AR5211; C:\WINDOWS\System32\DRIVERS\ar5211.sys [546976 2007-05-03] (Atheros Communications, Inc.)
R3 AsusACPI; C:\WINDOWS\System32\DRIVERS\ASUSACPI.sys [10752 2008-04-08] (ASUSTeK Computer Inc.)
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24184 2014-05-04] ()
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [67824 2014-05-04] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [54832 2014-05-24] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944 2014-05-04] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [777488 2014-05-24] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [411680 2014-05-24] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57672 2014-05-04] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [180632 2014-05-04] ()
S3 btaudio; C:\WINDOWS\System32\drivers\btaudio.sys [534568 2008-05-30] (Broadcom Corporation.)
R3 BTDriver; C:\WINDOWS\System32\DRIVERS\btport.sys [37160 2008-02-04] (Broadcom Corporation.)
R3 BTKRNL; C:\WINDOWS\System32\DRIVERS\btkrnl.sys [991656 2008-08-19] (Broadcom Corporation.)
S3 BTWDNDIS; C:\WINDOWS\System32\DRIVERS\btwdndis.sys [156816 2008-07-24] (Broadcom Corporation.)
S3 BTWUSB; C:\WINDOWS\System32\Drivers\btwusb.sys [47272 2008-08-19] (Broadcom Corporation.)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
R1 dtsoftbus01; C:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [243128 2014-01-28] (Disc Soft Ltd)
R1 F06DEFF2-5B9C-490D-910F-35D3A9119622; C:\Program Files\Settings Manager\smdmf\smdmfmgrc2.cfg [34192 2014-06-25] (Aztec Media Inc)
S3 huawei_cdcacm; C:\WINDOWS\System32\DRIVERS\ew_jucdcacm.sys [95616 2012-04-23] (Huawei Technologies Co., Ltd.)
S3 huawei_cdcecm; C:\WINDOWS\System32\DRIVERS\ew_jucdcecm.sys [70016 2012-04-23] (Huawei Technologies Co., Ltd.)
S3 huawei_ext_ctrl; C:\WINDOWS\System32\DRIVERS\ew_juextctrl.sys [27520 2012-04-23] (Huawei Technologies Co., Ltd.)
R3 Ktp; C:\WINDOWS\System32\DRIVERS\ETD.sys [26112 2008-08-25] (ELANTECH Devices Corp.)
R3 L1e; C:\WINDOWS\System32\DRIVERS\l1e51x86.sys [36864 2008-03-11] (Atheros Communications, Inc.)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R3 RT80x86; C:\WINDOWS\System32\DRIVERS\RT2860.sys [625024 2008-03-28] (Ralink Technology, Corp.)
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [249472 2012-04-20] (Huawei Technologies Co., Ltd.)
S4 IntelIde; No ImagePath
U1 WS2IFSL;

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-07-05 13:55 - 2014-07-05 13:56 - 00016768 _____ () C:\Documents and Settings\DPCz\Plocha\FRST.txt
2014-07-05 13:55 - 2014-07-05 13:56 - 00000000 ____D () C:\FRST
2014-07-05 13:52 - 2014-07-05 13:49 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\DPCz\Plocha\FRSTLauncher.exe
2014-07-05 13:51 - 2014-07-05 13:46 - 01074688 _____ (Farbar) C:\Documents and Settings\DPCz\Plocha\FRST.exe
2014-07-05 10:48 - 2014-07-05 11:34 - 00000000 ____D () C:\Documents and Settings\DPCz\Data aplikací\Apple Computer
2014-07-05 10:48 - 2014-07-05 10:48 - 00001542 _____ () C:\Documents and Settings\All Users\Plocha\iTunes.lnk
2014-07-05 10:48 - 2014-07-05 10:48 - 00000000 ____D () C:\Documents and Settings\DPCz\Local Settings\Data aplikací\Apple Computer
2014-07-05 10:48 - 2014-07-05 10:48 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\iTunes
2014-07-05 10:47 - 2012-08-21 13:01 - 00026840 _____ (GEAR Software Inc.) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
2014-07-05 10:46 - 2014-07-05 10:47 - 00000000 ____D () C:\Program Files\iTunes
2014-07-05 10:46 - 2014-07-05 10:47 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-07-05 10:46 - 2014-07-05 10:46 - 00000000 ____D () C:\Program Files\iPod
2014-07-05 10:46 - 2014-07-05 10:46 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Apple Computer
2014-07-05 10:45 - 2014-07-05 10:47 - 00000000 ____D () C:\WINDOWS\LastGood
2014-07-05 10:45 - 2014-07-05 10:45 - 00001830 _____ () C:\Documents and Settings\All Users\Nabídka Start\Programy\Apple Software Update.lnk
2014-07-05 10:45 - 2014-07-05 10:45 - 00000284 _____ () C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
2014-07-05 10:45 - 2014-07-05 10:45 - 00000000 ____D () C:\Program Files\Apple Software Update
2014-07-05 10:45 - 2014-07-05 10:45 - 00000000 ____D () C:\Documents and Settings\LocalService\Data aplikací\Apple Computer
2014-07-05 10:45 - 2014-07-05 10:45 - 00000000 ____D () C:\Documents and Settings\DPCz\Local Settings\Data aplikací\Apple
2014-07-05 10:44 - 2014-07-05 10:44 - 00000000 ____D () C:\Program Files\Bonjour
2014-07-05 10:43 - 2014-07-05 10:46 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-07-05 10:43 - 2014-07-05 10:45 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Apple
2014-07-03 15:30 - 2014-07-03 15:31 - 00000000 ____D () C:\Documents and Settings\DPCz\Local Settings\Data aplikací\Linkey
2014-07-03 15:30 - 2014-07-03 15:30 - 00000000 ____D () C:\Documents and Settings\DPCz\Data aplikací\Settings Manager
2014-07-03 15:29 - 2014-07-05 13:56 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\smdmf
2014-07-03 15:29 - 2014-07-03 15:29 - 00000000 ____D () C:\Program Files\Settings Manager
2014-07-03 15:26 - 2014-07-03 15:26 - 00000924 _____ () C:\Documents and Settings\All Users\Plocha\Pazera Free MP4 to AVI Converter.lnk
2014-07-03 15:26 - 2014-07-03 15:26 - 00000000 ____D () C:\Program Files\pazera-software
2014-07-03 15:26 - 2014-07-03 15:26 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Pazera Free MP4 to AVI Converter
2014-07-03 14:50 - 2014-07-03 18:56 - 00000000 ____D () C:\Program Files\VideoLAN
2014-07-03 14:45 - 2014-07-04 07:17 - 00000000 _____ () C:\WINDOWS\system32\sinstall.log
2014-07-03 14:45 - 2014-07-03 14:45 - 02324216 _____ (PS Media s.r.o.) C:\WINDOWS\system32\ssins.exe
2014-07-03 14:45 - 2014-07-03 14:45 - 00000079 _____ () C:\WINDOWS\system32\ssinstall-uninstall.bat
2014-07-03 14:30 - 2014-07-03 14:30 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Gemfor
2014-07-03 14:27 - 2014-07-03 14:27 - 00000000 ____D () C:\WINDOWS\system32\C2MP
2014-07-03 14:27 - 2014-07-03 14:27 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Media Player - Codec Pack
2014-07-03 14:10 - 2014-07-03 14:10 - 00001538 _____ () C:\Documents and Settings\DPCz\Plocha\MPC-HC.lnk
2014-06-19 14:35 - 2014-06-19 14:35 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_ew_juextctrl_01007.Wdf
2014-06-19 14:35 - 2014-06-19 14:35 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_ew_jucdcecm_01007.Wdf
2014-06-19 14:34 - 2014-06-19 14:35 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\{CC71B1CB-A2E4-4CF7-8EDB-A0E290BA1604}
2014-06-19 14:34 - 2014-06-19 14:34 - 00000826 _____ () C:\Documents and Settings\All Users\Nabídka Start\Programy\Web'n'walk Manager.lnk
2014-06-19 14:34 - 2014-06-19 14:34 - 00000820 _____ () C:\Documents and Settings\All Users\Plocha\Web'n'walk Manager.lnk
2014-06-19 14:34 - 2014-06-19 14:34 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_ew_jucdcacm_01007.Wdf
2014-06-19 14:34 - 2014-06-19 14:34 - 00000000 ____D () C:\Program Files\T-Mobile
2014-06-19 14:34 - 2014-06-19 14:34 - 00000000 ____D () C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Gemfor
2014-06-19 14:33 - 2014-06-19 14:33 - 00004118 _____ () C:\WINDOWS\Wdf01007Inst.log
2014-06-19 14:33 - 2014-06-19 14:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallWdf01007$
2014-06-19 14:33 - 2014-06-19 14:33 - 00000000 ____H () C:\WINDOWS\system32\Drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
2014-06-19 14:33 - 2014-06-19 14:33 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_ew_jubusenum_01007.Wdf
2014-06-19 14:33 - 2014-06-19 14:33 - 00000000 ____D () C:\Program Files\Huawei
2014-06-19 14:33 - 2012-04-23 09:53 - 00095616 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_jucdcacm.sys
2014-06-19 14:33 - 2012-04-23 09:53 - 00076544 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_jubusenum.sys
2014-06-19 14:33 - 2012-04-23 09:53 - 00070016 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_jucdcecm.sys
2014-06-19 14:33 - 2012-04-23 09:53 - 00027520 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_juextctrl.sys
2014-06-19 14:33 - 2012-04-20 14:14 - 00249472 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ewusbnet.sys
2014-06-19 14:33 - 2011-12-31 09:20 - 00199168 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ewusbmdm.sys
2014-06-19 14:33 - 2011-08-16 16:40 - 01112288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdfcoinstaller01007.dll
2014-06-19 14:33 - 2011-08-16 16:40 - 01112288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfCoInstaller01007.dll
2014-06-19 14:33 - 2010-10-08 16:55 - 00025856 _____ (Huawei Tech. Co., Ltd.) C:\WINDOWS\system32\Drivers\ewdcsc.sys
2014-06-19 14:33 - 2010-09-26 18:09 - 00019200 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_hwupgrade.sys
2014-06-19 14:33 - 2010-08-06 07:42 - 00861696 _____ (DiBcom SA) C:\WINDOWS\system32\Drivers\mod7700.sys
2014-06-19 14:33 - 2010-07-27 09:52 - 00102784 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_hwusbdev.sys
2014-06-19 14:33 - 2010-03-20 12:06 - 00011136 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_usbenumfilter.sys
2014-06-19 14:33 - 2008-03-21 13:57 - 00014640 ____N (Microsoft Corporation) C:\WINDOWS\system32\spmsgXP_2k3.dll
2014-06-19 14:33 - 2005-05-13 16:27 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccid.sys

==================== One Month Modified Files and Folders =======

2014-07-05 13:56 - 2014-07-05 13:55 - 00016768 _____ () C:\Documents and Settings\DPCz\Plocha\FRST.txt
2014-07-05 13:56 - 2014-07-05 13:55 - 00000000 ____D () C:\FRST
2014-07-05 13:56 - 2014-07-03 15:29 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\smdmf
2014-07-05 13:56 - 2014-01-27 19:29 - 00000000 ____D () C:\Documents and Settings\DPCz\Local Settings\Temp
2014-07-05 13:55 - 2014-01-27 19:29 - 00000000 ____D () C:\Documents and Settings\DPCz\Plocha
2014-07-05 13:54 - 2014-01-27 19:29 - 00000000 ___HD () C:\Documents and Settings\DPCz\Local Settings\Data aplikací
2014-07-05 13:49 - 2014-07-05 13:52 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\DPCz\Plocha\FRSTLauncher.exe
2014-07-05 13:46 - 2014-07-05 13:51 - 01074688 _____ (Farbar) C:\Documents and Settings\DPCz\Plocha\FRST.exe
2014-07-05 13:43 - 2014-01-27 21:21 - 00000936 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-05 13:05 - 2014-05-04 21:22 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-07-05 13:05 - 2008-08-07 04:12 - 00032536 _____ () C:\WINDOWS\SchedLgU.Txt
2014-07-05 11:39 - 2008-08-07 06:01 - 01072754 _____ () C:\WINDOWS\setupapi.log
2014-07-05 11:34 - 2014-07-05 10:48 - 00000000 ____D () C:\Documents and Settings\DPCz\Data aplikací\Apple Computer
2014-07-05 10:49 - 2014-01-27 19:29 - 00000000 ___RD () C:\Documents and Settings\DPCz\Dokumenty\Hudba
2014-07-05 10:48 - 2014-07-05 10:48 - 00001542 _____ () C:\Documents and Settings\All Users\Plocha\iTunes.lnk
2014-07-05 10:48 - 2014-07-05 10:48 - 00000000 ____D () C:\Documents and Settings\DPCz\Local Settings\Data aplikací\Apple Computer
2014-07-05 10:48 - 2014-07-05 10:48 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\iTunes
2014-07-05 10:48 - 2014-01-27 19:29 - 00000000 __RHD () C:\Documents and Settings\DPCz\Data aplikací
2014-07-05 10:48 - 2008-08-07 06:01 - 00000000 ___RD () C:\Documents and Settings\All Users\Nabídka Start\Programy
2014-07-05 10:48 - 2008-08-07 06:01 - 00000000 ____D () C:\Documents and Settings\All Users\Plocha
2014-07-05 10:47 - 2014-07-05 10:46 - 00000000 ____D () C:\Program Files\iTunes
2014-07-05 10:47 - 2014-07-05 10:46 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-07-05 10:47 - 2014-07-05 10:45 - 00000000 ____D () C:\WINDOWS\LastGood
2014-07-05 10:46 - 2014-07-05 10:46 - 00000000 ____D () C:\Program Files\iPod
2014-07-05 10:46 - 2014-07-05 10:46 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Apple Computer
2014-07-05 10:46 - 2014-07-05 10:43 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-07-05 10:46 - 2008-08-07 06:01 - 00000000 __RHD () C:\Documents and Settings\All Users\Data aplikací
2014-07-05 10:45 - 2014-07-05 10:45 - 00001830 _____ () C:\Documents and Settings\All Users\Nabídka Start\Programy\Apple Software Update.lnk
2014-07-05 10:45 - 2014-07-05 10:45 - 00000284 _____ () C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
2014-07-05 10:45 - 2014-07-05 10:45 - 00000000 ____D () C:\Program Files\Apple Software Update
2014-07-05 10:45 - 2014-07-05 10:45 - 00000000 ____D () C:\Documents and Settings\LocalService\Data aplikací\Apple Computer
2014-07-05 10:45 - 2014-07-05 10:45 - 00000000 ____D () C:\Documents and Settings\DPCz\Local Settings\Data aplikací\Apple
2014-07-05 10:45 - 2014-07-05 10:43 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Apple
2014-07-05 10:45 - 2008-08-07 04:12 - 00000000 ____D () C:\Documents and Settings\LocalService\Data aplikací
2014-07-05 10:44 - 2014-07-05 10:44 - 00000000 ____D () C:\Program Files\Bonjour
2014-07-05 10:43 - 2014-01-27 21:21 - 00000932 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-05 08:36 - 2014-01-27 19:40 - 00000364 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job
2014-07-04 20:35 - 2008-08-07 04:07 - 01986448 _____ () C:\WINDOWS\WindowsUpdate.log
2014-07-04 07:17 - 2014-07-03 14:45 - 00000000 _____ () C:\WINDOWS\system32\sinstall.log
2014-07-04 07:17 - 2008-08-07 06:04 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-07-04 07:17 - 2008-08-07 06:04 - 00000048 _____ () C:\WINDOWS\wiaservc.log
2014-07-04 07:17 - 2008-08-07 04:12 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-07-03 22:37 - 2014-01-27 19:29 - 00000178 ___SH () C:\Documents and Settings\DPCz\ntuser.ini
2014-07-03 18:56 - 2014-07-03 14:50 - 00000000 ____D () C:\Program Files\VideoLAN
2014-07-03 17:36 - 2008-08-07 05:50 - 00000477 _____ () C:\WINDOWS\win.ini
2014-07-03 17:36 - 2008-08-07 05:50 - 00000227 _____ () C:\WINDOWS\system.ini
2014-07-03 17:36 - 2008-08-07 05:50 - 00000211 __RSH () C:\boot.ini
2014-07-03 15:31 - 2014-07-03 15:30 - 00000000 ____D () C:\Documents and Settings\DPCz\Local Settings\Data aplikací\Linkey
2014-07-03 15:30 - 2014-07-03 15:30 - 00000000 ____D () C:\Documents and Settings\DPCz\Data aplikací\Settings Manager
2014-07-03 15:29 - 2014-07-03 15:29 - 00000000 ____D () C:\Program Files\Settings Manager
2014-07-03 15:26 - 2014-07-03 15:26 - 00000924 _____ () C:\Documents and Settings\All Users\Plocha\Pazera Free MP4 to AVI Converter.lnk
2014-07-03 15:26 - 2014-07-03 15:26 - 00000000 ____D () C:\Program Files\pazera-software
2014-07-03 15:26 - 2014-07-03 15:26 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Pazera Free MP4 to AVI Converter
2014-07-03 14:45 - 2014-07-03 14:45 - 02324216 _____ (PS Media s.r.o.) C:\WINDOWS\system32\ssins.exe
2014-07-03 14:45 - 2014-07-03 14:45 - 00000079 _____ () C:\WINDOWS\system32\ssinstall-uninstall.bat
2014-07-03 14:30 - 2014-07-03 14:30 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\Gemfor
2014-07-03 14:27 - 2014-07-03 14:27 - 00000000 ____D () C:\WINDOWS\system32\C2MP
2014-07-03 14:27 - 2014-07-03 14:27 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\Media Player - Codec Pack
2014-07-03 14:10 - 2014-07-03 14:10 - 00001538 _____ () C:\Documents and Settings\DPCz\Plocha\MPC-HC.lnk
2014-07-03 14:10 - 2014-04-07 21:08 - 00000000 ____D () C:\Program Files\MPC-HC
2014-07-03 14:10 - 2014-04-07 21:08 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka Start\Programy\MPC-HC
2014-07-03 09:53 - 2008-08-07 05:50 - 00001158 _____ () C:\WINDOWS\system32\wpa.dbl
2014-06-19 19:47 - 2014-01-27 21:22 - 00001813 _____ () C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2014-06-19 18:09 - 2014-01-27 21:45 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-06-19 18:00 - 2014-01-27 21:45 - 92708840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-06-19 17:57 - 2008-08-07 06:00 - 00243655 _____ () C:\WINDOWS\setupact.log
2014-06-19 15:13 - 2014-01-27 19:29 - 00000000 ____D () C:\Documents and Settings\DPCz
2014-06-19 14:35 - 2014-06-19 14:35 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_ew_juextctrl_01007.Wdf
2014-06-19 14:35 - 2014-06-19 14:35 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_ew_jucdcecm_01007.Wdf
2014-06-19 14:35 - 2014-06-19 14:34 - 00000000 ____D () C:\Documents and Settings\All Users\Data aplikací\{CC71B1CB-A2E4-4CF7-8EDB-A0E290BA1604}
2014-06-19 14:34 - 2014-06-19 14:34 - 00000826 _____ () C:\Documents and Settings\All Users\Nabídka Start\Programy\Web'n'walk Manager.lnk
2014-06-19 14:34 - 2014-06-19 14:34 - 00000820 _____ () C:\Documents and Settings\All Users\Plocha\Web'n'walk Manager.lnk
2014-06-19 14:34 - 2014-06-19 14:34 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_ew_jucdcacm_01007.Wdf
2014-06-19 14:34 - 2014-06-19 14:34 - 00000000 ____D () C:\Program Files\T-Mobile
2014-06-19 14:34 - 2014-06-19 14:34 - 00000000 ____D () C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Gemfor
2014-06-19 14:34 - 2008-08-07 04:12 - 00000000 ___HD () C:\Documents and Settings\LocalService\Local Settings\Data aplikací
2014-06-19 14:33 - 2014-06-19 14:33 - 00004118 _____ () C:\WINDOWS\Wdf01007Inst.log
2014-06-19 14:33 - 2014-06-19 14:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallWdf01007$
2014-06-19 14:33 - 2014-06-19 14:33 - 00000000 ____H () C:\WINDOWS\system32\Drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
2014-06-19 14:33 - 2014-06-19 14:33 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_ew_jubusenum_01007.Wdf
2014-06-19 14:33 - 2014-06-19 14:33 - 00000000 ____D () C:\Program Files\Huawei
2014-06-19 14:33 - 2008-08-07 06:01 - 01007003 _____ () C:\WINDOWS\FaxSetup.log
2014-06-19 14:33 - 2008-08-07 06:01 - 00490641 _____ () C:\WINDOWS\ocgen.log
2014-06-19 14:33 - 2008-08-07 06:01 - 00391962 _____ () C:\WINDOWS\tsoc.log
2014-06-19 14:33 - 2008-08-07 06:01 - 00344316 _____ () C:\WINDOWS\comsetup.log
2014-06-19 14:33 - 2008-08-07 06:01 - 00207013 _____ () C:\WINDOWS\ntdtcsetup.log
2014-06-19 14:33 - 2008-08-07 06:01 - 00160106 _____ () C:\WINDOWS\iis6.log
2014-06-19 14:33 - 2008-08-07 06:01 - 00063031 _____ () C:\WINDOWS\ocmsn.log
2014-06-19 14:33 - 2008-08-07 06:01 - 00050620 _____ () C:\WINDOWS\msgsocm.log
2014-06-19 14:33 - 2008-08-07 06:01 - 00001374 _____ () C:\WINDOWS\imsins.log
2014-06-15 20:42 - 2014-05-04 21:07 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service

Some content of TEMP:
====================
C:\Documents and Settings\DPCz\Local Settings\Temp\AskSLib.dll
C:\Documents and Settings\DPCz\Local Settings\Temp\bitool.dll
C:\Documents and Settings\DPCz\Local Settings\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp7gyboc.dll
C:\Documents and Settings\DPCz\Local Settings\Temp\fp_pl_pfs_installer.exe
C:\Documents and Settings\DPCz\Local Settings\Temp\msxml6-KB927977-enu-x86.exe
C:\Documents and Settings\DPCz\Local Settings\Temp\ssins.exe
C:\Documents and Settings\DPCz\Local Settings\Temp\{66A47ABF-70E5-469F-BEA3-BE3F4A23FE76}-35.0.1916.153_35.0.1916.114_chrome_updater.exe
C:\Documents and Settings\DPCz\Local Settings\Temp\~2F7.exe


==================== Bamital & volsnap Check =================

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\AppleSoftwareUpdate.job => C:\Program Files\Apple Software Update\SoftwareUpdate.exe
Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: avast! Antivirus (Disabled - Up to date) {7591DB91-41F0-48A3-B128-1A293FD8233D}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Documents and Settings\DPCz\Plocha" je 1 MB.


***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher
"C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE
C:\WINDOWS\system32\ctfmon.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite
"C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr
"C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched
"C:\Program Files\Common Files\Java\Java Update\jusched.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\T-Mobile CManager
"C:\Program Files\T-Mobile\Web'n'walk Manager\Manager.exe" -autorun [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabdka Start^Programy^Po sputn^Bluetooth.lnk
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^DPCz^Nabdka Start^Programy^Po sputn^StarOffice 8.lnk
C:\PROGRA~1\Sun\STAROF~1\program\QUICKS~1.EXE


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"="C:\\Program Files\\Windows Live\\Messenger\\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"="C:\\Program Files\\Windows Live\\Messenger\\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
"C:\\Documents and Settings\\DPCz\\Data aplikac\\Dropbox\\bin\\Dropbox.exe"="C:\\Documents and Settings\\DPCz\\Data aplikac\\Dropbox\\bin\\Dropbox.exe:*:Enabled:Dropbox"
"C:\\Program Files\\Bonjour\\mDNSResponder.exe"="C:\\Program Files\\Bonjour\\mDNSResponder.exe:*:Enabled:Bonjour Service"
"C:\\Program Files\\iTunes\\iTunes.exe"="C:\\Program Files\\iTunes\\iTunes.exe:*:Enabled:iTunes"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000


==================== End Of Log ==============================

Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:

Start
HKU\S-1-5-21-3086602011-2446779318-483012309-1006\...\MountPoints2: {42fdb6e8-f7ca-11e3-ac14-00248c57f213} - E:\Autorun.exe
HKU\S-1-5-21-3086602011-2446779318-483012309-1006\...\MountPoints2: {c1bd1822-8777-11e3-abdc-806d6172696f} - E:\.\Bin\ASSETUP.exe
HKU\S-1-5-21-3086602011-2446779318-483012309-1006\...\MountPoints2: {d457891a-f7ad-11e3-ac13-00248c57f213} - E:\Autorun.exe
HKU\S-1-5-21-3086602011-2446779318-483012309-1006\...\MountPoints2: {d457891d-f7ad-11e3-ac13-00248c57f213} - E:\Autorun.exe
IFEO\bitguard.exe: [Debugger] tasklist.exe
IFEO\bprotect.exe: [Debugger] tasklist.exe
IFEO\bpsvc.exe: [Debugger] tasklist.exe
IFEO\browserdefender.exe: [Debugger] tasklist.exe
IFEO\browserprotect.exe: [Debugger] tasklist.exe
IFEO\browsersafeguard.exe: [Debugger] tasklist.exe
IFEO\dprotectsvc.exe: [Debugger] tasklist.exe
IFEO\jumpflip: [Debugger] tasklist.exe
IFEO\protectedsearch.exe: [Debugger] tasklist.exe
IFEO\searchinstaller.exe: [Debugger] tasklist.exe
IFEO\searchprotection.exe: [Debugger] tasklist.exe
IFEO\searchprotector.exe: [Debugger] tasklist.exe
IFEO\searchsettings.exe: [Debugger] tasklist.exe
IFEO\searchsettings64.exe: [Debugger] tasklist.exe
IFEO\snapdo.exe: [Debugger] tasklist.exe
IFEO\stinst32.exe: [Debugger] tasklist.exe
IFEO\stinst64.exe: [Debugger] tasklist.exe
IFEO\umbrella.exe: [Debugger] tasklist.exe
IFEO\utiljumpflip.exe: [Debugger] tasklist.exe
IFEO\volaro: [Debugger] tasklist.exe
IFEO\vonteera: [Debugger] tasklist.exe
IFEO\websteroids.exe: [Debugger] tasklist.exe
IFEO\websteroidsservice.exe: [Debugger] tasklist.exe
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.default-search.net?sid=498&a ... 97&src=hmp
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2498} URL = http://www.default-search.net/search?si ... &src=ds&p={searchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2498} URL = http://www.default-search.net/search?si ... &src=ds&p={searchTerms}
FF ProfilePath: C:\Documents and Settings\DPCz\Data aplikací\Mozilla\Firefox\Profiles\xfxl6c14.default
FF DefaultSearchEngine: default-search.net
FF SearchEngineOrder.1: default-search.net
FF SelectedSearchEngine: default-search.net
FF Homepage: hxxp://www.default-search.net?sid=498&a ... 97&src=hmp
FF Keyword.URL: hxxp://www.default-search.net/search?si ... &src=ds&p=
CHR DefaultSearchKeyword: ask.com
CHR DefaultSearchProvider: default-search.net
CHR DefaultSearchURL: http://www.default-search.net/search?si ... &src=ds&p={searchTerms}
CHR DefaultNewTabURL:
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\Documents and Settings\DPCz\Local Settings\Temp
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version:05-07-2014
Ran by DPCz at 2014-07-05 17:56:36 Run:1
Running from C:\Documents and Settings\DPCz\Plocha
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
HKU\S-1-5-21-3086602011-2446779318-483012309-1006\...\MountPoints2: {42fdb6e8-f7ca-11e3-ac14-00248c57f213} - E:\Autorun.exe
HKU\S-1-5-21-3086602011-2446779318-483012309-1006\...\MountPoints2: {c1bd1822-8777-11e3-abdc-806d6172696f} - E:\.\Bin\ASSETUP.exe
HKU\S-1-5-21-3086602011-2446779318-483012309-1006\...\MountPoints2: {d457891a-f7ad-11e3-ac13-00248c57f213} - E:\Autorun.exe
HKU\S-1-5-21-3086602011-2446779318-483012309-1006\...\MountPoints2: {d457891d-f7ad-11e3-ac13-00248c57f213} - E:\Autorun.exe
IFEO\bitguard.exe: [Debugger] tasklist.exe
IFEO\bprotect.exe: [Debugger] tasklist.exe
IFEO\bpsvc.exe: [Debugger] tasklist.exe
IFEO\browserdefender.exe: [Debugger] tasklist.exe
IFEO\browserprotect.exe: [Debugger] tasklist.exe
IFEO\browsersafeguard.exe: [Debugger] tasklist.exe
IFEO\dprotectsvc.exe: [Debugger] tasklist.exe
IFEO\jumpflip: [Debugger] tasklist.exe
IFEO\protectedsearch.exe: [Debugger] tasklist.exe
IFEO\searchinstaller.exe: [Debugger] tasklist.exe
IFEO\searchprotection.exe: [Debugger] tasklist.exe
IFEO\searchprotector.exe: [Debugger] tasklist.exe
IFEO\searchsettings.exe: [Debugger] tasklist.exe
IFEO\searchsettings64.exe: [Debugger] tasklist.exe
IFEO\snapdo.exe: [Debugger] tasklist.exe
IFEO\stinst32.exe: [Debugger] tasklist.exe
IFEO\stinst64.exe: [Debugger] tasklist.exe
IFEO\umbrella.exe: [Debugger] tasklist.exe
IFEO\utiljumpflip.exe: [Debugger] tasklist.exe
IFEO\volaro: [Debugger] tasklist.exe
IFEO\vonteera: [Debugger] tasklist.exe
IFEO\websteroids.exe: [Debugger] tasklist.exe
IFEO\websteroidsservice.exe: [Debugger] tasklist.exe
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.default-search.net?sid=498&a ... 97&src=hmp
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2498} URL = http://www.default-search.net/search?si ... &src=ds&p={searchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2498} URL = http://www.default-search.net/search?si ... &src=ds&p={searchTerms}
FF ProfilePath: C:\Documents and Settings\DPCz\Data aplikací\Mozilla\Firefox\Profiles\xfxl6c14.default
FF DefaultSearchEngine: default-search.net
FF SearchEngineOrder.1: default-search.net
FF SelectedSearchEngine: default-search.net
FF Homepage: hxxp://www.default-search.net?sid=498&a ... 97&src=hmp
FF Keyword.URL: hxxp://www.default-search.net/search?si ... &src=ds&p=
CHR DefaultSearchKeyword: ask.com
CHR DefaultSearchProvider: default-search.net
CHR DefaultSearchURL: http://www.default-search.net/search?si ... &src=ds&p={searchTerms}
CHR DefaultNewTabURL:
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\Documents and Settings\DPCz\Local Settings\Temp
End
*****************

'HKU\S-1-5-21-3086602011-2446779318-483012309-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{42fdb6e8-f7ca-11e3-ac14-00248c57f213}' => Key deleted successfully.
'HKCR\CLSID\{42fdb6e8-f7ca-11e3-ac14-00248c57f213}'=> Key not found.
'HKU\S-1-5-21-3086602011-2446779318-483012309-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c1bd1822-8777-11e3-abdc-806d6172696f}' => Key deleted successfully.
'HKCR\CLSID\{c1bd1822-8777-11e3-abdc-806d6172696f}'=> Key not found.
'HKU\S-1-5-21-3086602011-2446779318-483012309-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d457891a-f7ad-11e3-ac13-00248c57f213}' => Key deleted successfully.
'HKCR\CLSID\{d457891a-f7ad-11e3-ac13-00248c57f213}'=> Key not found.
'HKU\S-1-5-21-3086602011-2446779318-483012309-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d457891d-f7ad-11e3-ac13-00248c57f213}' => Key deleted successfully.
'HKCR\CLSID\{d457891d-f7ad-11e3-ac13-00248c57f213}'=> Key not found.
'HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\bitguard.exe' => Key deleted successfully.
'HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\bprotect.exe' => Key deleted successfully.
'HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\bpsvc.exe' => Key deleted successfully.
'HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\browserdefender.exe' => Key deleted successfully.
'HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\browserprotect.exe' => Key deleted successfully.
'HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\browsersafeguard.exe' => Key deleted successfully.
'HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\dprotectsvc.exe' => Key deleted successfully.
'HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\jumpflip' => Key deleted successfully.
'HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\protectedsearch.exe' => Key deleted successfully.
'HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\searchinstaller.exe' => Key deleted successfully.
'HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\searchprotection.exe' => Key deleted successfully.
'HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\searchprotector.exe' => Key deleted successfully.
'HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\searchsettings.exe' => Key deleted successfully.
'HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\searchsettings64.exe' => Key deleted successfully.
'HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\snapdo.exe' => Key deleted successfully.
'HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\stinst32.exe' => Key deleted successfully.
'HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\stinst64.exe' => Key deleted successfully.
'HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\umbrella.exe' => Key deleted successfully.
'HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\utiljumpflip.exe' => Key deleted successfully.
'HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\volaro' => Key deleted successfully.
'HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\vonteera' => Key deleted successfully.
'HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\websteroids.exe' => Key deleted successfully.
'HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\websteroidsservice.exe' => Key deleted successfully.
'HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt1' => Key deleted successfully.
'HKLM\Software\Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}'=> Key not found.
'HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt2' => Key deleted successfully.
'HKLM\Software\Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}'=> Key not found.
'HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt3' => Key deleted successfully.
'HKLM\Software\Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}'=> Key not found.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
'HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2498}' => Key deleted successfully.
'HKCR\Wow6432Node\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2498}'=> Key not found.
'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2498}' => Key deleted successfully.
'HKCR\Wow6432Node\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2498}'=> Key not found.
=> Should not be moved.
Firefox DefaultSearchEngine deleted successfully.
Firefox SearchEngineOrder.1 deleted successfully.
Firefox SelectedSearchEngine deleted successfully.
Firefox homepage deleted successfully.
Firefox Keyword.URL deleted successfully.
CHR DefaultSearchKeyword: ask.com ==> The Chrome "Settings" can be used to fix the entry.
CHR DefaultSearchProvider: default-search.net ==> The Chrome "Settings" can be used to fix the entry.
CHR DefaultSearchURL: http://www.default-search.net/search?si ... &src=ds&p={searchTerms} ==> The Chrome "Settings" can be used to fix the entry.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.

"C:\Documents and Settings\DPCz\Local Settings\Temp" directory move:

Could not move "C:\Documents and Settings\DPCz\Local Settings\Temp\etilqs_a9mXJA8csvzLGhM" => Scheduled to move on reboot.
C:\Documents and Settings\DPCz\Local Settings\Temp\Finnish.bin => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\fp_pl_pfs_installer.exe => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\French.bin => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\German.bin => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Greek.bin => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Hebrew.bin => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Hungarian.bin => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Install_log.txt => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Italian.bin => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Japanese.bin => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\JAUReg.log => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\JavaDeployReg.log => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\java_install.log => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\java_install_reg.log => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\java_install_sp.log => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jawshtml.html => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jinstall.cfg => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst1.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst10.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst101.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst102.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst105.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst107.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst108.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst109.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst10A.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst10B.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst11.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst12.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst12E.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst12F.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst13.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst131.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst138.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst13D.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst14.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst144.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst15.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst16.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst162.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst165.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst17.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst185.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst1BB.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst1C7.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst1C8.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst1CA.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst2.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst20A.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst21E.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst23.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst24.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst264.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst26D.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst2A.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst2B.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst2B7.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst2C.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst2D.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst2E.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst3.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst302.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst329.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst32D.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst33D.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst368.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst37.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst38.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst39.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst3A.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst3B.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst3B1.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst3C.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst3D.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst3FA.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst4.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst44.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst46.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst47.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst48.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst48F.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst4D.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst5.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst50.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst51.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst52.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst523.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst53.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst536.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst56.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst572.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst577.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst57C.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst581.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst590.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst59F.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst5A.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst5CE.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst5CF.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst5D0.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst5DD.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst6.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst7.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst73.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst75.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst78.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst8.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst83.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst8C.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst8F.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst9.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst90.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst97.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst99.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst9C.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jst9F.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jstA.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jstA0.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jstA1.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jstA2.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jstA3.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jstA6.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jstB.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jstB3.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jstB5.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jstB6.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jstB7.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jstB8.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jstBB.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jstBD.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jstBF.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jstC.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jstC5.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jstCB.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jstCD.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jstCE.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jstD.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jstD7.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jstDB.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jstDC.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jstDF.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jstE.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jstEF.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jstF.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jstF4.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jstFC.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jstFF.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\jusched.log => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\KB971554.log => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Korean.bin => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\log3 => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\MSI80ae1.LOG => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\MSId3d0b.LOG => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\msxml6-KB927977-enu-x86.exe => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\NetFxUpdate_v1.1.4322.log => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Norwegian.bin => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\nsaE9.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\nscCB.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\nsdC6.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\nshC8.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\nshCA.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\nsjF9.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\nskFB.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\nspFA.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\nss29.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\nsxC9.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Polish.bin => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Portuguese(Brazil).bin => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Portuguese.bin => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\RD50.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\RD5B.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\RDB3.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\RDC0.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\runservice03072014144541.bat => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Russian.bin => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\SetupAdminC68.log => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\SimChin.bin => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Spanish.bin => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\ssins.exe => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\SWEDISH.bin => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Thai.bin => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\TradChin.bin => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Turkish.bin => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Virtual_PC_2007_Install.msi => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\VPCInstallLog.txt => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{66A47ABF-70E5-469F-BEA3-BE3F4A23FE76}-35.0.1916.153_35.0.1916.114_chrome_updater.exe => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\~2F7.exe => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\~2F7.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\~2F8.msi => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\~2F8.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\~5B1.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\GoogleCrashHandler.exe => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\GoogleCrashHandler64.exe => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\GoogleUpdate.exe => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\GoogleUpdateBroker.exe => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\GoogleUpdateHelper.msi => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\GoogleUpdateOnDemand.exe => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\GoogleUpdateSetup.exe => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdate.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_am.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_ar.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_bg.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_bn.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_ca.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_cs.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_da.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_de.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_el.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_en-GB.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_en.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_es-419.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_es.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_et.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_fa.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_fi.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_fil.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_fr.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_gu.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_hi.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_hr.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_hu.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_id.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_is.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_it.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_iw.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_ja.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_kn.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_ko.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_lt.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_lv.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_ml.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_mr.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_ms.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_nl.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_no.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_pl.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_pt-BR.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_pt-PT.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_ro.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_ru.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_sk.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_sl.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_sr.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_sv.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_sw.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_ta.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_te.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_th.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_tr.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_uk.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_ur.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_vi.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_zh-CN.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\goopdateres_zh-TW.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\npGoogleUpdate3.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\psmachine.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\{EABA626B-3EFE-4DBA-BCAB-525989189534}\psuser.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\WLXPL_DX\DEC2006_d3dx9_32_x86.cab => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\WLXPL_DX\DSETUP.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\WLXPL_DX\dsetup32.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\WLXPL_DX\dxdllreg_x86.cab => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\WLXPL_DX\dxsetup.exe => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\WLXPL_DX\dxupdate.cab => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\desktop.ini => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\index.dat => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\QB4T0N41\3.6[1].js => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\QB4T0N41\all[1].js => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\QB4T0N41\arrow_blue_gr_bg[1].gif => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\QB4T0N41\bg-body_990[1].png => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\QB4T0N41\bg-line-dashed[1].gif => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\QB4T0N41\bigfoot[1].js => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\QB4T0N41\carousel_1360659738[1].jpg => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\QB4T0N41\chrome-16[1].png => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\QB4T0N41\desktop.ini => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\QB4T0N41\done[1].htm => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\QB4T0N41\google_logo_116x41[1].png => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\QB4T0N41\menu[1].css => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\QB4T0N41\ownloader%2Fdone%2F%3Fcreated%3D2014-01-27%252018%3A53%3A28%26user%3D%26success%3Dchrome%2Flista-centrumcz-pro-internet-explorer%26error%3D&rx=0&eae=6&osd=1&vis=0&fu=0&ifi=1&dtd=329 not found.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\QB4T0N41\search[1].js => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\QB4T0N41\show_ads[2].js => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\QB4T0N41\slider[1].js => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\QB4T0N41\st_footbox_bg_alt[1].png => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\QB4T0N41\tb-mail-sprite[1].gif => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\HM21A0VU\6862c2eb55ec78c78459b86d6f8f7cdf[1].jpg => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\HM21A0VU\9bd60b3dc93a241f96dc6029d24f224c[1].jpg => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\HM21A0VU\bg-header_990[1].png => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\HM21A0VU\bg-m0-magazin[1].png => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\HM21A0VU\builder[1].js => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\HM21A0VU\css[1].css => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\HM21A0VU\desktop.ini => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\HM21A0VU\download-list-check[1].png => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\HM21A0VU\functions[1].js => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\HM21A0VU\hc-all[1].css => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\HM21A0VU\iframe-bg[1].png => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\HM21A0VU\menu.min[1].js => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\HM21A0VU\show_ads_impl[2].js => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\HM21A0VU\stahuj-cz-k[1].png => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\HM21A0VU\st_footbox_logo[1].png => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\HM21A0VU\success-icon[1].png => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\HM21A0VU\userstyle[1].css => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\5CLKF5T9\bg-line-h[1].gif => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\5CLKF5T9\bg-m0-o-hrach[1].png => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\5CLKF5T9\bg-m0-poradna[1].png => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\5CLKF5T9\button_search_stahuj_bg[1].gif => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\5CLKF5T9\cJZKeOuBrn4kERxqtaUH3fY6323mHUZFJMgTvxaG2iE[1].eot => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\5CLKF5T9\desktop.ini => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\5CLKF5T9\dragdrop[1].js => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\5CLKF5T9\dwn_bg-line-dashed-vertic[1].gif => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\5CLKF5T9\effects[1].js => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\5CLKF5T9\ga[1].js => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\5CLKF5T9\hc-all[1].js => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\5CLKF5T9\ico-hp-rss[1].gif => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\5CLKF5T9\nod32[1].gif => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\5CLKF5T9\osd[2].js => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\5CLKF5T9\prototype[1].js => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\5CLKF5T9\replace_flash[1].js => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\5CLKF5T9\search-white[1].png => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\5CLKF5T9\st_footbox_bg_bot[1].png => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\0PA741YF\bg-m0-o-pc[1].png => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\0PA741YF\bg-m0-shop[1].png => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\0PA741YF\bg-m0-stahuj-a[1].png => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\0PA741YF\carousel_1339743693[1].jpg => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\0PA741YF\controls[1].js => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\0PA741YF\d41d8cd98f00b204e9800998ecf8427e_5[1].jpg => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\0PA741YF\d41d8cd98f00b204e9800998ecf8427e_6[1].jpg => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\0PA741YF\desktop.ini => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\0PA741YF\fio_hypoteka_novy_990x100_centrum[1].swf => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\0PA741YF\ico_atlas[1].gif => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\0PA741YF\ico_centrum[1].gif => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\0PA741YF\lightbox[1].css => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\0PA741YF\promo[1].htm => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\0PA741YF\scm_1ab099fd075fa158fc16568c27721fae[1].js => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\0PA741YF\screen-stahuj[1].css => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\0PA741YF\scriptaculous[1].js => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\0PA741YF\st_footbox_bg_sipka[1].png => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\0PA741YF\unchecked[1].png => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Temporary Internet Files\Content.IE5\0PA741YF\uninstall2[1].htm => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\304.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\DECODED_IMAGES => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\DECODED_MESSAGE_CATALOGS => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\icon_128.png => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\icon_16.png => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\main.html => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\main.js => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\manifest.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\zh_TW\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\zh_CN\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\vi\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\uk\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\tr\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\th\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\sv\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\sr\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\sl\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\sk\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\ru\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\ro\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\pt_PT\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\pt_BR\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\pl\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\no\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\nl\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\ms\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\lv\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\lt\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\ko\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\ja\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\it\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\id\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\hu\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\hi\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\he\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\fr\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\fil\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\fi\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\et\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\es_419\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\es\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\en_US\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\en_GB\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\el\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\de\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\da\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\cs\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\ca\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\bg\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\scoped_dir_2544_11537\CRX_INSTALL\_locales\ar\messages.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\nsqF8\Helper.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\nsqF8\Uninstall.exe => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\nsdC7\Helper.dll => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\nsdC7\Starter.exe => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\nsdC7\tbicon.exe => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\nsdC7\nscCB.tmp\extensions.sqlite => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\nsdC7\nscCB.tmp\ffExtension.exe => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\nsdC7\nscCB.tmp\install.rdf => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\nsdC7\nscCB.tmp\mediabar.exe => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\nsdC7\nscCB.tmp\pack.exe => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\nsdC7\nscCB.tmp\Search_Results.xml => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\nsdC7\nscCB.tmp\Search_Results.xml.old => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\nsdC7\nscCB.tmp\SettingsManagerMediaBar.exe => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\NDP1.1sp1-KB2833941-X86\NDP1.1sp1-KB2833941-X86-msi.0.log => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\NDP1.1sp1-KB2833941-X86\NDP1.1sp1-KB2833941-X86-wrapper.log => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Install\Autorun.exe => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Install\Autorun.ico => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Install\Autorun.inf => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Install\en\setup.exe => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Install\Drivers\setup.exe => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Install\cs\setup.exe => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\History\History.IE5\desktop.ini => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\History\History.IE5\index.dat => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Cookies\dpcz@atlascz.adocean[1].txt => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Cookies\dpcz@centrum[1].txt => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Cookies\dpcz@doubleclick[1].txt => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Cookies\dpcz@google[1].txt => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Cookies\dpcz@hit.gemius[1].txt => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Cookies\dpcz@skype[1].txt => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Cookies\dpcz@stahuj.centrum[2].txt => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Cookies\dpcz@toplist[1].txt => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Cookies\dpcz@www.stahuj.centrum[2].txt => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\Cookies\index.dat => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\chrome_BITS_956_17055\BIT6E.tmp => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\APNLogs\ic.log => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\APN-Stub\Stbbc287115-4ff2-49af-8a34-f89b59aabd0f.log => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\664_16302\crl-set => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\664_16302\manifest.fingerprint => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\664_16302\manifest.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\3744_29212\crl-set => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\3744_29212\manifest.fingerprint => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\3744_29212\manifest.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\3700_23253\crl-set => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\3700_23253\manifest.fingerprint => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\3700_23253\manifest.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\3580_18606\crl-set => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\3580_18606\manifest.fingerprint => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\3580_18606\manifest.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\3432_32676\crl-set => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\3432_32676\manifest.fingerprint => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\3432_32676\manifest.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\3404_20815\crl-set => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\3404_20815\manifest.fingerprint => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\3404_20815\manifest.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\3232_776\crl-set => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\3232_776\manifest.fingerprint => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\3232_776\manifest.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\3132_15928\crl-set => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\3132_15928\manifest.fingerprint => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\3132_15928\manifest.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\2868_4275\crl-set => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\2868_4275\manifest.fingerprint => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\2868_4275\manifest.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\2652_14739\crl-set => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\2652_14739\manifest.fingerprint => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\2652_14739\manifest.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\2632_19061\crl-set => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\2632_19061\manifest.fingerprint => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\2632_19061\manifest.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\2284_14198\crl-set => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\2284_14198\manifest.fingerprint => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\2284_14198\manifest.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\2236_25484\crl-set => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\2236_25484\manifest.fingerprint => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\2236_25484\manifest.json => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\2236_18011\crl-set => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\2236_18011\manifest.fingerprint => Moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp\2236_18011\manifest.json => Moved successfully.
Could not move "C:\Documents and Settings\DPCz\Local Settings\Temp" directory. => Scheduled to move on reboot.


=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2014-07-05 18:00:05)<=

C:\Documents and Settings\DPCz\Local Settings\Temp\etilqs_a9mXJA8csvzLGhM => Is moved successfully.
C:\Documents and Settings\DPCz\Local Settings\Temp => Moved successfully.

==== End of Fixlog ====

Smazáno. Nastala nějaká změna?

Při startu OS naskočí postupně tři chybové hlášky:
winlogon.exe; userinit.exe; GoogleUpdate.exe

Vždy s touto cestou:
C:\program files\seting manager\x64\sysapcrt.dll - chybná kopie bitového systému

OK. Dejte log ComboFix:

Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se

jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine

aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,

pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k

nezadoucim kolizim s rezidentem antispyware.

ComboFix 14-07-03.01 - DPCz 05.07.2014 21:15:20.1.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.1015.285 [GMT 2:00]
Spuštěný z: d:\download\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\DPCz\WINDOWS
c:\program files\Java\jre7\bin\jp2ssv.dll
c:\windows\IsUn0405.exe
c:\windows\system32\Thumbs.db
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-06-05 do 2014-07-05 )))))))))))))))))))))))))))))))
.
.
2014-07-05 11:55 . 2014-07-05 16:20 -------- d-----w- C:\FRST
2014-07-05 08:48 . 2014-07-05 09:34 -------- d-----w- c:\documents and settings\DPCz\Data aplikací\Apple Computer
2014-07-05 08:48 . 2014-07-05 08:48 -------- d-----w- c:\documents and settings\DPCz\Local Settings\Data aplikací\Apple Computer
2014-07-05 08:47 . 2012-08-21 11:01 26840 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2014-07-05 08:46 . 2014-07-05 08:46 -------- d-----w- c:\program files\iPod
2014-07-05 08:46 . 2014-07-05 08:47 -------- d-----w- c:\documents and settings\All Users\Data aplikací\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-07-05 08:46 . 2014-07-05 08:47 -------- d-----w- c:\program files\iTunes
2014-07-05 08:46 . 2014-07-05 08:46 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Apple Computer
2014-07-05 08:45 . 2014-07-05 08:45 -------- d-----w- c:\documents and settings\DPCz\Local Settings\Data aplikací\Apple
2014-07-05 08:45 . 2014-07-05 08:45 -------- d-----w- c:\program files\Apple Software Update
2014-07-05 08:45 . 2014-07-05 08:45 -------- d-----w- c:\documents and settings\LocalService\Data aplikací\Apple Computer
2014-07-05 08:44 . 2014-07-05 08:44 -------- d-----w- c:\program files\Bonjour
2014-07-05 08:43 . 2014-07-05 08:46 -------- d-----w- c:\program files\Common Files\Apple
2014-07-05 08:43 . 2014-07-05 08:45 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Apple
2014-07-03 13:30 . 2014-07-03 13:31 -------- d-----w- c:\documents and settings\DPCz\Local Settings\Data aplikací\Linkey
2014-07-03 13:30 . 2014-07-03 13:30 -------- d-----w- c:\documents and settings\DPCz\Data aplikací\Settings Manager
2014-07-03 13:29 . 2014-07-03 13:29 -------- d-----w- c:\program files\Settings Manager
2014-07-03 13:29 . 2014-07-05 19:33 -------- d-----w- c:\documents and settings\All Users\Data aplikací\smdmf
2014-07-03 13:26 . 2014-07-03 13:26 -------- d-----w- c:\program files\pazera-software
2014-07-03 12:50 . 2014-07-03 16:56 -------- d-----w- c:\program files\VideoLAN
2014-07-03 12:45 . 2014-07-03 12:45 79 ----a-w- c:\windows\system32\ssinstall-uninstall.bat
2014-07-03 12:45 . 2014-07-03 12:45 2324216 ----a-w- c:\windows\system32\ssins.exe
2014-07-03 12:30 . 2014-07-03 12:30 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Gemfor
2014-07-03 12:27 . 2014-07-03 12:27 -------- d-----w- c:\windows\system32\C2MP
2014-06-19 12:34 . 2014-06-19 12:35 -------- d-----w- c:\documents and settings\All Users\Data aplikací\{CC71B1CB-A2E4-4CF7-8EDB-A0E290BA1604}
2014-06-19 12:34 . 2014-06-19 12:34 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\Gemfor
2014-06-19 12:34 . 2014-06-19 12:34 -------- d-----w- c:\program files\T-Mobile
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-07-05 12:37 . 2014-03-26 20:20 165232 ---ha-w- c:\documents and settings\DPCz\Data aplikací\Microsoft\Virtual PC\VPCKeyboard.dll
2014-05-24 11:05 . 2014-05-04 19:22 692400 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-05-24 11:05 . 2014-05-04 19:22 70832 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-05-24 10:26 . 2014-01-27 17:39 777488 ----a-w- c:\windows\system32\drivers\aswsnx.sys
2014-05-24 10:26 . 2014-01-27 17:39 411680 ----a-w- c:\windows\system32\drivers\aswsp.sys
2014-05-24 10:26 . 2014-01-27 17:39 54832 ----a-w- c:\windows\system32\drivers\aswrdr.sys
2014-05-04 18:35 . 2014-01-27 17:39 57672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2014-05-04 18:35 . 2014-05-04 18:36 24184 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2014-05-04 18:35 . 2014-05-04 18:35 43152 ----a-w- c:\windows\avastSS.scr
2014-05-04 18:35 . 2014-01-27 17:39 776976 ----a-w- c:\windows\system32\drivers\aswsnx.sys.1400927208328
2014-05-04 18:35 . 2014-01-27 17:39 180632 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2014-05-04 18:35 . 2014-01-27 17:39 67824 ----a-w- c:\windows\system32\drivers\aswmonflt.sys
2014-05-04 18:35 . 2014-01-27 17:39 49944 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2014-05-04 18:35 . 2014-01-27 17:39 54832 ----a-w- c:\windows\system32\drivers\aswrdr.sys.1400927208328
2014-05-04 18:35 . 2014-01-27 17:39 271264 ----a-w- c:\windows\system32\aswBoot.exe
2014-04-14 18:13 . 2014-04-18 10:49 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2014-04-14 17:47 . 2008-08-07 22:24 145408 ----a-w- c:\windows\system32\javacpl.cpl
2008-05-07 14:34 . 2008-08-07 22:20 15523560 ----a-w- c:\program files\U1 Setup.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-05-04 18:35 260976 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2007-12-19 135168]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2007-12-19 159744]
"Persistence"="c:\windows\system32\igfxpers.exe" [2007-12-19 131072]
"RTHDCPL"="RTHDCPL.EXE" [2008-07-31 16806912]
"ETDWare"="c:\program files\Elantech\ETDCtrl.exe" [2008-09-03 335872]
"ETDWareDetect"="c:\program files\Elantech\ETDDect.exe" [2008-08-22 204800]
"AsusTray"="c:\program files\EeePC\ACPI\AsTray.exe" [2008-09-02 106496]
"AsusACPIServer"="c:\program files\EeePC\ACPI\AsAcpiSvr.exe" [2008-09-02 593920]
"AsusEPCMonitor"="c:\program files\EeePC\ACPI\AsEPCMon.exe" [2008-05-20 94208]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-07-04 3890208]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2014-05-26 152392]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
SuperHybridEngine.lnk - c:\program files\ASUS\EeePC\Super Hybrid Engine\SuperHybridEngine.exe [2011-9-11 311296]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Bluetooth.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\Bluetooth.lnk
backup=c:\windows\pss\Bluetooth.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^DPCz^Nabídka Start^Programy^Po spuštění^StarOffice 8.lnk]
path=c:\documents and settings\DPCz\Nabídka Start\Programy\Po spuštění\StarOffice 8.lnk
backup=c:\windows\pss\StarOffice 8.lnkStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2008-01-11 20:16 39792 ----a-w- c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
2008-04-14 12:00 15360 ----a-w- c:\windows\system32\ctfmon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
2013-10-28 08:29 3675352 ----a-w- c:\program files\DAEMON Tools Lite\DTLite.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
2007-10-18 09:34 5724184 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2013-07-02 08:16 254336 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\T-Mobile CManager]
2012-07-14 08:49 1841264 ----a-w- c:\program files\T-Mobile\Web'n'walk Manager\Manager.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Documents and Settings\\DPCz\\Data aplikací\\Dropbox\\bin\\Dropbox.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
.
R0 aswRvrt;avast! Revert;c:\windows\system32\drivers\aswRvrt.sys [27.1.2014 19:39 49944]
R0 aswVmm;avast! VM Monitor;c:\windows\system32\drivers\aswVmm.sys [27.1.2014 19:39 180632]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswsnx.sys [27.1.2014 19:39 777488]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswsp.sys [27.1.2014 19:39 411680]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [28.1.2014 21:47 243128]
R1 F06DEFF2-5B9C-490D-910F-35D3A9119622;F06DEFF2-5B9C-490D-910F-35D3A9119622;c:\program files\Settings Manager\smdmf\smdmfmgrc2.cfg [3.7.2014 15:30 34192]
R2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys [4.5.2014 20:36 24184]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswmonflt.sys [27.1.2014 19:39 67824]
R2 MbnExt;Mobile Broadband Extension Service;c:\windows\system32\svchost.exe -k MbnExt [7.8.2008 5:50 14336]
R2 SmdmFService;SmdmF Service;c:\program files\Settings Manager\smdmf\SmdmFService.exe [3.7.2014 15:30 3572240]
R3 huawei_enumerator;huawei_enumerator;c:\windows\system32\drivers\ew_jubusenum.sys [19.6.2014 14:33 76544]
R3 RT80x86;Ralink 802.11n Wireless Driver;c:\windows\system32\drivers\rt2860.sys [7.8.2008 23:54 625024]
S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [23.10.2013 9:15 172192]
S2 ssinstall;SInstalátor;c:\windows\system32\ssins.exe [3.7.2014 14:45 2324216]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\drivers\ew_hwusbdev.sys [19.6.2014 14:33 102784]
S3 ew_usbenumfilter;huawei_CompositeFilter;c:\windows\system32\drivers\ew_usbenumfilter.sys [19.6.2014 14:33 11136]
S3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\drivers\ew_jucdcacm.sys [19.6.2014 14:33 95616]
S3 huawei_cdcecm;huawei_cdcecm;c:\windows\system32\drivers\ew_jucdcecm.sys [19.6.2014 14:33 70016]
S3 huawei_ext_ctrl;huawei_ext_ctrl;c:\windows\system32\drivers\ew_juextctrl.sys [19.6.2014 14:33 27520]
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
MbnExt REG_MULTI_SZ MbnExt
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-06-19 17:37 1091912 ----a-w- c:\program files\Google\Chrome\Application\35.0.1916.153\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-07-05 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-04 11:05]
.
2014-07-05 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2011-06-01 15:57]
.
2014-07-05 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2014-05-04 18:35]
.
2014-03-23 c:\windows\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
- c:\windows\system32\xp_eos.exe [2014-03-19 23:28]
.
.
------- Doplňkový sken -------
.
uInternet Connection Wizard,ShellNext = hxxp://eeepc.asus.com/global
uInternet Settings,ProxyOverride = *.local
IE: Odeslat do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat do zařízení Bluetooth - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
TCP: DhcpNameServer = 10.0.11.254
FF - ProfilePath - c:\documents and settings\DPCz\Data aplikací\Mozilla\Firefox\Profiles\xfxl6c14.default\
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-10 - (no file)
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2014-07-05 21:35
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\F06DEFF2-5B9C-490D-910F-35D3A9119622]
"ImagePath"="\??\c:\program files\Settings Manager\smdmf\smdmfmgrc2.cfg"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'explorer.exe'(1936)
c:\windows\Microsoft.NET\Framework\v1.1.4322\fusion.dll
c:\program files\eee storage\xpclient.dll
c:\program files\eee storage\logicnp.eznamespaceextensions.dll
c:\windows\system32\webcheck.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\windows\system32\igfxsrvc.exe
c:\windows\RTHDCPL.EXE
c:\windows\system32\igfxext.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
c:\program files\Java\jre7\bin\jqs.exe
c:\program files\Google\Update\GoogleUpdate.exe
c:\program files\Settings Manager\smdmf\smdmfu.exe
c:\program files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
c:\program files\iPod\bin\iPodService.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\windows\system32\wbem\unsecapp.exe
.
**************************************************************************
.
Celkový čas: 2014-07-05 21:38:04 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-07-05 19:37
.
Před spuštěním: Volných bajtů: 72 573 177 856
Po spuštění: Volných bajtů: 72 855 511 040
.
WindowsXP-KB310994-SP2-Home-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
.
- - End Of File - - D05B73F7D946C3B520442D6B72E45AC6
8F558EB6672622401DA993E1E865C861

Ještě dočistíme. Přesuňte ComboFix na plochu. Otevřte poznámkový blok a zkopírujte do něj:

KillAll::

Folder::
c:\program files\Settings Manager

Driver::
F06DEFF2-5B9C-490D-910F-35D3A9119622

Reboot::

Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.

ComboFix 14-07-03.01 - DPCz 06.07.2014 10:34:56.2.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.1015.476 [GMT 2:00]
Spuštěný z: c:\documents and settings\DPCz\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\DPCz\Plocha\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\Settings Manager
c:\program files\Settings Manager\smdmf\favicon.ico
c:\program files\Settings Manager\smdmf\Helper.dll
c:\program files\Settings Manager\smdmf\Internet Explorer Settings.exe
c:\program files\Settings Manager\smdmf\smdmf.dll
c:\program files\Settings Manager\smdmf\smdmfbho.dll
c:\program files\Settings Manager\smdmf\smdmfldr.dll
c:\program files\Settings Manager\smdmf\smdmfldr_u.dll
c:\program files\Settings Manager\smdmf\smdmfmgrc2.cfg
c:\program files\Settings Manager\smdmf\SmdmFService.exe
c:\program files\Settings Manager\smdmf\smdmfu.exe
c:\program files\Settings Manager\smdmf\sysapcrt.dll
c:\program files\Settings Manager\smdmf\tbicon.exe
c:\program files\Settings Manager\smdmf\Uninstall.exe
c:\program files\Settings Manager\smdmf\x64\smdmfbho.dll
c:\program files\Settings Manager\smdmf\x64\smdmfldr.dll
c:\program files\Settings Manager\smdmf\x64\smdmfldr_u.dll
c:\program files\Settings Manager\smdmf\x64\sysapcrt.dll
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_F06DEFF2-5B9C-490D-910F-35D3A9119622
-------\Service_F06DEFF2-5B9C-490D-910F-35D3A9119622
-------\Legacy_SmdmFService
-------\Legacy_SmdmFService
-------\Service_SmdmFService
-------\Service_SmdmFService
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-06-06 do 2014-07-06 )))))))))))))))))))))))))))))))
.
.
2014-07-05 11:55 . 2014-07-05 16:20 -------- d-----w- C:\FRST
2014-07-05 08:48 . 2014-07-05 09:34 -------- d-----w- c:\documents and settings\DPCz\Data aplikací\Apple Computer
2014-07-05 08:48 . 2014-07-05 08:48 -------- d-----w- c:\documents and settings\DPCz\Local Settings\Data aplikací\Apple Computer
2014-07-05 08:47 . 2012-08-21 11:01 26840 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2014-07-05 08:46 . 2014-07-05 08:46 -------- d-----w- c:\program files\iPod
2014-07-05 08:46 . 2014-07-05 08:47 -------- d-----w- c:\documents and settings\All Users\Data aplikací\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-07-05 08:46 . 2014-07-05 08:47 -------- d-----w- c:\program files\iTunes
2014-07-05 08:46 . 2014-07-05 08:46 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Apple Computer
2014-07-05 08:45 . 2014-07-05 08:45 -------- d-----w- c:\documents and settings\DPCz\Local Settings\Data aplikací\Apple
2014-07-05 08:45 . 2014-07-05 08:45 -------- d-----w- c:\program files\Apple Software Update
2014-07-05 08:45 . 2014-07-05 08:45 -------- d-----w- c:\documents and settings\LocalService\Data aplikací\Apple Computer
2014-07-05 08:44 . 2014-07-05 08:44 -------- d-----w- c:\program files\Bonjour
2014-07-05 08:43 . 2014-07-05 08:46 -------- d-----w- c:\program files\Common Files\Apple
2014-07-05 08:43 . 2014-07-05 08:45 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Apple
2014-07-03 13:30 . 2014-07-03 13:31 -------- d-----w- c:\documents and settings\DPCz\Local Settings\Data aplikací\Linkey
2014-07-03 13:30 . 2014-07-03 13:30 -------- d-----w- c:\documents and settings\DPCz\Data aplikací\Settings Manager
2014-07-03 13:29 . 2014-07-06 08:47 -------- d-----w- c:\documents and settings\All Users\Data aplikací\smdmf
2014-07-03 13:26 . 2014-07-03 13:26 -------- d-----w- c:\program files\pazera-software
2014-07-03 12:50 . 2014-07-03 16:56 -------- d-----w- c:\program files\VideoLAN
2014-07-03 12:45 . 2014-07-03 12:45 79 ----a-w- c:\windows\system32\ssinstall-uninstall.bat
2014-07-03 12:45 . 2014-07-03 12:45 2324216 ----a-w- c:\windows\system32\ssins.exe
2014-07-03 12:30 . 2014-07-03 12:30 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Gemfor
2014-07-03 12:27 . 2014-07-03 12:27 -------- d-----w- c:\windows\system32\C2MP
2014-06-19 12:34 . 2014-06-19 12:35 -------- d-----w- c:\documents and settings\All Users\Data aplikací\{CC71B1CB-A2E4-4CF7-8EDB-A0E290BA1604}
2014-06-19 12:34 . 2014-06-19 12:34 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\Gemfor
2014-06-19 12:34 . 2014-06-19 12:34 -------- d-----w- c:\program files\T-Mobile
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-07-05 12:37 . 2014-03-26 20:20 165232 ---ha-w- c:\documents and settings\DPCz\Data aplikací\Microsoft\Virtual PC\VPCKeyboard.dll
2014-05-24 11:05 . 2014-05-04 19:22 692400 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-05-24 11:05 . 2014-05-04 19:22 70832 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-05-24 10:26 . 2014-01-27 17:39 777488 ----a-w- c:\windows\system32\drivers\aswsnx.sys
2014-05-24 10:26 . 2014-01-27 17:39 411680 ----a-w- c:\windows\system32\drivers\aswsp.sys
2014-05-24 10:26 . 2014-01-27 17:39 54832 ----a-w- c:\windows\system32\drivers\aswrdr.sys
2014-05-04 18:35 . 2014-01-27 17:39 57672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2014-05-04 18:35 . 2014-05-04 18:36 24184 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2014-05-04 18:35 . 2014-05-04 18:35 43152 ----a-w- c:\windows\avastSS.scr
2014-05-04 18:35 . 2014-01-27 17:39 776976 ----a-w- c:\windows\system32\drivers\aswsnx.sys.1400927208328
2014-05-04 18:35 . 2014-01-27 17:39 180632 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2014-05-04 18:35 . 2014-01-27 17:39 67824 ----a-w- c:\windows\system32\drivers\aswmonflt.sys
2014-05-04 18:35 . 2014-01-27 17:39 49944 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2014-05-04 18:35 . 2014-01-27 17:39 54832 ----a-w- c:\windows\system32\drivers\aswrdr.sys.1400927208328
2014-05-04 18:35 . 2014-01-27 17:39 271264 ----a-w- c:\windows\system32\aswBoot.exe
2014-04-14 18:13 . 2014-04-18 10:49 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2014-04-14 17:47 . 2008-08-07 22:24 145408 ----a-w- c:\windows\system32\javacpl.cpl
2008-05-07 14:34 . 2008-08-07 22:20 15523560 ----a-w- c:\program files\U1 Setup.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-05-04 18:35 260976 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2007-12-19 135168]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2007-12-19 159744]
"Persistence"="c:\windows\system32\igfxpers.exe" [2007-12-19 131072]
"RTHDCPL"="RTHDCPL.EXE" [2008-07-31 16806912]
"ETDWare"="c:\program files\Elantech\ETDCtrl.exe" [2008-09-03 335872]
"ETDWareDetect"="c:\program files\Elantech\ETDDect.exe" [2008-08-22 204800]
"AsusTray"="c:\program files\EeePC\ACPI\AsTray.exe" [2008-09-02 106496]
"AsusACPIServer"="c:\program files\EeePC\ACPI\AsAcpiSvr.exe" [2008-09-02 593920]
"AsusEPCMonitor"="c:\program files\EeePC\ACPI\AsEPCMon.exe" [2008-05-20 94208]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-07-04 3890208]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2014-05-26 152392]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
SuperHybridEngine.lnk - c:\program files\ASUS\EeePC\Super Hybrid Engine\SuperHybridEngine.exe [2011-9-11 311296]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Bluetooth.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\Bluetooth.lnk
backup=c:\windows\pss\Bluetooth.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^DPCz^Nabídka Start^Programy^Po spuštění^StarOffice 8.lnk]
path=c:\documents and settings\DPCz\Nabídka Start\Programy\Po spuštění\StarOffice 8.lnk
backup=c:\windows\pss\StarOffice 8.lnkStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2008-01-11 20:16 39792 ----a-w- c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
2008-04-14 12:00 15360 ----a-w- c:\windows\system32\ctfmon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
2013-10-28 08:29 3675352 ----a-w- c:\program files\DAEMON Tools Lite\DTLite.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
2007-10-18 09:34 5724184 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2013-07-02 08:16 254336 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\T-Mobile CManager]
2012-07-14 08:49 1841264 ----a-w- c:\program files\T-Mobile\Web'n'walk Manager\Manager.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Documents and Settings\\DPCz\\Data aplikací\\Dropbox\\bin\\Dropbox.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
.
R0 aswRvrt;avast! Revert;c:\windows\system32\drivers\aswRvrt.sys [27.1.2014 19:39 49944]
R0 aswVmm;avast! VM Monitor;c:\windows\system32\drivers\aswVmm.sys [27.1.2014 19:39 180632]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswsnx.sys [27.1.2014 19:39 777488]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswsp.sys [27.1.2014 19:39 411680]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [28.1.2014 21:47 243128]
R2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys [4.5.2014 20:36 24184]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswmonflt.sys [27.1.2014 19:39 67824]
R2 MbnExt;Mobile Broadband Extension Service;c:\windows\system32\svchost.exe -k MbnExt [7.8.2008 5:50 14336]
R2 ssinstall;SInstalátor;c:\windows\system32\ssins.exe [3.7.2014 14:45 2324216]
R3 huawei_enumerator;huawei_enumerator;c:\windows\system32\drivers\ew_jubusenum.sys [19.6.2014 14:33 76544]
R3 RT80x86;Ralink 802.11n Wireless Driver;c:\windows\system32\drivers\rt2860.sys [7.8.2008 23:54 625024]
S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [23.10.2013 9:15 172192]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\drivers\ew_hwusbdev.sys [19.6.2014 14:33 102784]
S3 ew_usbenumfilter;huawei_CompositeFilter;c:\windows\system32\drivers\ew_usbenumfilter.sys [19.6.2014 14:33 11136]
S3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\drivers\ew_jucdcacm.sys [19.6.2014 14:33 95616]
S3 huawei_cdcecm;huawei_cdcecm;c:\windows\system32\drivers\ew_jucdcecm.sys [19.6.2014 14:33 70016]
S3 huawei_ext_ctrl;huawei_ext_ctrl;c:\windows\system32\drivers\ew_juextctrl.sys [19.6.2014 14:33 27520]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
MbnExt REG_MULTI_SZ MbnExt
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-06-19 17:37 1091912 ----a-w- c:\program files\Google\Chrome\Application\35.0.1916.153\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-07-05 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-04 11:05]
.
2014-07-05 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2011-06-01 15:57]
.
2014-07-06 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2014-05-04 18:35]
.
2014-03-23 c:\windows\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
- c:\windows\system32\xp_eos.exe [2014-03-19 23:28]
.
.
------- Doplňkový sken -------
.
uInternet Connection Wizard,ShellNext = hxxp://eeepc.asus.com/global
uInternet Settings,ProxyOverride = *.local
IE: Odeslat do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat do zařízení Bluetooth - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
TCP: DhcpNameServer = 85.132.166.13 85.132.166.14
FF - ProfilePath - c:\documents and settings\DPCz\Data aplikací\Mozilla\Firefox\Profiles\xfxl6c14.default\
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-Settings Manager - c:\program files\Settings Manager\smdmf\Uninstall.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2014-07-06 10:50
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'explorer.exe'(2956)
c:\windows\Microsoft.NET\Framework\v1.1.4322\fusion.dll
c:\program files\eee storage\xpclient.dll
c:\program files\eee storage\logicnp.eznamespaceextensions.dll
c:\windows\system32\webcheck.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
c:\program files\Java\jre7\bin\jqs.exe
c:\program files\Google\Update\GoogleUpdate.exe
c:\windows\system32\igfxsrvc.exe
c:\windows\RTHDCPL.EXE
c:\windows\system32\igfxext.exe
c:\program files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
c:\program files\iPod\bin\iPodService.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\windows\system32\wbem\unsecapp.exe
.
**************************************************************************
.
Celkový čas: 2014-07-06 10:53:07 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-07-06 08:53
ComboFix2.txt 2014-07-05 19:38
.
Před spuštěním: Volných bajtů: 72 781 492 224
Po spuštění: Volných bajtů: 72 736 616 448
.
- - End Of File - - 9013A4E15DEF0197DA8F5D0B1B04020D
8F558EB6672622401DA993E1E865C861

Smazáno. CF odinstalujte pomocí T-Cleaneru: http://vyosek.ic.cz/pro_usery/T-Cleaner.exe . Nastala nějaká změna?

Vše vyřešeno, žádné chybové hlášky. Tímto Vám velmi děkuji za odbornou pomoc. Posílám drobnou finanční pomoc.

S pozdravem Czikó Pavel

Za podporu děkujeme a vy nemáte zač!