VIRY.CZ

Prohlížeče explorer i google se zaplevelují vyskakovacími okny, které prakticky znemožňují práci na internetu.
Pro opravu jsem udělal:
Sken Microsoft Security Essential - nic nenašel
Pročistění aplikací CCleaner - vymazáno asi 1500 souborů
Vytvoření logu aplikací RSIT
Tento log přikládám a prosím o jeho zkontrolování.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Jiří at 2014-10-17 15:00:01
Microsoft Windows 7 Ultimate Service Pack 1
System drive F: has 107 GB (70%) free of 153 GB
Total RAM: 2047 MB (40% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:01:25, on 17.10.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17344)
Boot mode: Normal

Running processes:
F:\Windows\system32\taskhost.exe
F:\Windows\system32\Dwm.exe
F:\Windows\Explorer.EXE
F:\Program Files\Microsoft Security Client\msseces.exe
F:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
F:\Program Files\Common Files\Java\Java Update\jusched.exe
F:\Program Files\HP\HP Software Update\hpwuSchd2.exe
F:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
F:\Program Files\OnlineMapFinder_9p\bar\1.bin\APPINTEGRATOR.EXE
F:\Program Files\VoipDiscount.com\VoipDiscount\voipdiscount.exe
F:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
F:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
F:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
F:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
F:\Program Files\Skype\Phone\Skype.exe
F:\Program Files\CCleaner\CCleaner.exe
F:\Windows\system32\wbem\unsecapp.exe
F:\Program Files\Internet Explorer\iexplore.exe
F:\Program Files\Internet Explorer\iexplore.exe
F:\Program Files\Internet Explorer\iexplore.exe
F:\Windows\system32\Macromed\Flash\FlashUtil32_15_0_0_167_ActiveX.exe
F:\Program Files\Internet Explorer\iexplore.exe
F:\Users\Jiří\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UWS7EPG0\RSIT.exe
F:\Program Files\trend micro\Jiří.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.tb.ask.com/index.jhtml?n=78 ... wwodlX8A8A
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - F:\Program Files\Ask.com\GenericAskToolbar.dll (file missing)
R3 - URLSearchHook: (no name) - {6d010537-9e99-400b-b652-b0d5a5757e5d} - F:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pSrcAs.dll
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - F:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - F:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Search Assistant BHO - {6a79cdac-f710-4996-842b-fdc33b785a35} - F:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pSrcAs.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - F:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - F:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - F:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - F:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - F:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Ask Shopping Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - "F:\Program Files\AskPartnerNetwork\Toolbar\ORJ\Passport.dll" (file missing)
O2 - BHO: Toolbar BHO - {d9f16d8b-81b5-4667-af4d-25365bbf7fc9} - F:\PROGRA~1\ONLINE~2\bar\1.bin\9pbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - F:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - F:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: Ask Shopping Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - "F:\Program Files\AskPartnerNetwork\Toolbar\ORJ\Passport.dll" (file missing)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - F:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: OnlineMapFinder - {f41a56d2-7b52-4d16-812c-a63c6ca9d4c5} - F:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pbar.dll
O4 - HKLM\..\Run: [MSC] "F:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [BCSSync] "F:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [Adobe ARM] "F:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "F:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [HP Software Update] F:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [hpqSRMon] F:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe
O4 - HKLM\..\Run: [ApnTBMon] "F:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
O4 - HKLM\..\Run: [OnlineMapFinder EPM Support] "F:\PROGRA~1\ONLINE~2\bar\1.bin\9pmedint.exe" T8EPMSUP.DLL,S
O4 - HKLM\..\Run: [OnlineMapFinder AppIntegrator 32-bit] F:\PROGRA~1\ONLINE~2\bar\1.bin\AppIntegrator.exe
O4 - HKLM\..\Run: [OnlineMapFinder Search Scope Monitor] "F:\PROGRA~1\ONLINE~2\bar\1.bin\9psrchmn.exe" /m=2 /w /h
O4 - HKCU\..\Run: [VoipDiscount] "F:\Program Files\VoipDiscount.com\VoipDiscount\voipdiscount.exe" -nosplash -minimized
O4 - HKCU\..\Run: [CCleaner Monitoring] "F:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] F:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] F:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "F:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "F:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://F:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://F:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - F:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - F:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - F:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - F:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - F:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - F:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - http://fpdownload2.macromedia.com/get/s ... tor/sw.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - F:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - F:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - F:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - F:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Ask Update Service (APNMCP) - APN LLC. - F:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - F:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - F:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - F:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: KMService - Unknown owner - F:\Windows\system32\srvany.exe
O23 - Service: OnlineMapFinderService (OnlineMapFinder_9pService) - Mindspark - F:\PROGRA~1\ONLINE~2\bar\1.bin\9pbarsvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - F:\Program Files\Skype\Updater\Updater.exe

--
End of file - 9762 bytes

======Scheduled tasks folder======

F:\Windows\tasks\Adobe Flash Player Updater.job - F:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
F:\Windows\tasks\GoogleUpdateTaskMachineCore.job - F:\Program Files\Google\Update\GoogleUpdate.exe /c
F:\Windows\tasks\GoogleUpdateTaskMachineUA.job - F:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
F:\Windows\tasks\Norton Security Scan for Jiří.job - F:\PROGRA~1\NORTON~2\Engine\410~1.28\Nss.exe /scan-quick /scheduled

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - F:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-09-20 328248]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - F:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6a79cdac-f710-4996-842b-fdc33b785a35}]
Search Assistant BHO - F:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pSrcAs.dll [2014-10-01 144968]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - F:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - F:\Program Files\Java\jre7\bin\ssv.dll [2013-08-09 463272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - F:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2014-03-26 194504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - F:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14 1709152]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - F:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Ask Shopping Toolbar - F:\Program Files\AskPartnerNetwork\Toolbar\ORJ\Passport.dll [2014-09-22 12184]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d9f16d8b-81b5-4667-af4d-25365bbf7fc9}]
Toolbar BHO - F:\PROGRA~1\ONLINE~2\bar\1.bin\9pbar.dll [2014-10-01 1037896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - F:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-08-09 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - F:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-09-20 509496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Shopping Toolbar - F:\Program Files\AskPartnerNetwork\Toolbar\ORJ\Passport.dll [2014-09-22 12184]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - F:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2014-03-26 194504]
{f41a56d2-7b52-4d16-812c-a63c6ca9d4c5} - OnlineMapFinder - F:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pbar.dll [2014-10-01 1037896]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MSC"=F:\Program Files\Microsoft Security Client\msseces.exe [2014-08-22 974432]
"BCSSync"=F:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
"Adobe ARM"=F:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-03 946352]
"SunJavaUpdateSched"=F:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-03-12 253816]
"HP Software Update"=F:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-05-08 54840]
"hpqSRMon"=F:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe [2008-07-22 150528]
"ApnTBMon"=F:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [2014-09-22 1942424]
"OnlineMapFinder EPM Support"=F:\PROGRA~1\ONLINE~2\bar\1.bin\9pmedint.exe [2014-10-01 12872]
"OnlineMapFinder AppIntegrator 32-bit"=F:\PROGRA~1\ONLINE~2\bar\1.bin\AppIntegrator.exe [2014-10-01 225864]
"OnlineMapFinder Search Scope Monitor"=F:\PROGRA~1\ONLINE~2\bar\1.bin\9psrchmn.exe [2014-10-01 55880]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"VoipDiscount"=F:\Program Files\VoipDiscount.com\VoipDiscount\voipdiscount.exe [2014-04-06 19803464]
"CCleaner Monitoring"=F:\Program Files\CCleaner\CCleaner.exe [2014-09-26 4811032]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
F:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
F:\Program Files\Skype\Phone\Skype.exe [2014-10-01 22066272]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
F:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.exe [2009-09-20 270336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=F:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=F:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv

======File associations======

.js - edit - F:\Windows\System32\Notepad.exe %1
.js - open - F:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-10-17 15:00:02 ----D---- F:\Program Files\trend micro
2014-10-17 15:00:01 ----D---- F:\rsit
2014-10-17 14:44:03 ----D---- F:\Windows\pss
2014-10-17 13:41:36 ----D---- F:\Program Files\Common Files\Skype
2014-10-15 08:14:19 ----A---- F:\Windows\system32\generaltel.dll
2014-10-15 08:14:19 ----A---- F:\Windows\system32\aepdu.dll
2014-10-15 08:14:17 ----A---- F:\Windows\system32\aeinv.dll
2014-10-15 08:14:16 ----A---- F:\Windows\system32\win32k.sys
2014-10-15 08:13:55 ----A---- F:\Windows\system32\rastls.dll
2014-10-15 08:13:53 ----A---- F:\Windows\system32\JavaScriptCollectionAgent.dll
2014-10-15 08:13:53 ----A---- F:\Windows\system32\ieetwproxystub.dll
2014-10-15 08:13:53 ----A---- F:\Windows\system32\ieetwcollector.exe
2014-10-15 08:13:52 ----A---- F:\Windows\system32\MsSpellCheckingFacility.exe
2014-10-15 08:13:52 ----A---- F:\Windows\system32\jsproxy.dll
2014-10-15 08:13:51 ----A---- F:\Windows\system32\wininet.dll
2014-10-15 08:13:51 ----A---- F:\Windows\system32\vbscript.dll
2014-10-15 08:13:51 ----A---- F:\Windows\system32\ieUnatt.exe
2014-10-15 08:13:51 ----A---- F:\Windows\system32\ieetwcollectorres.dll
2014-10-15 08:13:51 ----A---- F:\Windows\system32\dxtmsft.dll
2014-10-15 08:13:49 ----A---- F:\Windows\system32\dxtrans.dll
2014-10-15 08:13:48 ----A---- F:\Windows\system32\mshtmled.dll
2014-10-15 08:13:48 ----A---- F:\Windows\system32\ieui.dll
2014-10-15 08:13:47 ----A---- F:\Windows\system32\mshtmlmedia.dll
2014-10-15 08:13:46 ----A---- F:\Windows\system32\MshtmlDac.dll
2014-10-15 08:13:46 ----A---- F:\Windows\system32\iertutil.dll
2014-10-15 08:13:44 ----A---- F:\Windows\system32\jscript9diag.dll
2014-10-15 08:13:43 ----A---- F:\Windows\system32\jscript9.dll
2014-10-15 08:13:42 ----A---- F:\Windows\system32\mshtml.dll
2014-10-15 08:13:40 ----A---- F:\Windows\system32\urlmon.dll
2014-10-15 08:13:40 ----A---- F:\Windows\system32\iernonce.dll
2014-10-15 08:13:40 ----A---- F:\Windows\system32\ie4uinit.exe
2014-10-15 08:13:39 ----A---- F:\Windows\system32\iedkcs32.dll
2014-10-15 08:13:39 ----A---- F:\Windows\system32\ieapfltr.dll
2014-10-15 08:13:38 ----A---- F:\Windows\system32\msfeeds.dll
2014-10-15 08:13:36 ----A---- F:\Windows\system32\msrating.dll
2014-10-15 08:13:36 ----A---- F:\Windows\system32\iesetup.dll
2014-10-15 08:13:35 ----A---- F:\Windows\system32\ieframe.dll
2014-10-15 08:11:47 ----A---- F:\Windows\system32\mscorier.dll
2014-10-15 08:11:47 ----A---- F:\Windows\system32\dfshim.dll
2014-10-15 08:11:46 ----A---- F:\Windows\system32\mscories.dll
2014-10-15 08:11:40 ----A---- F:\Windows\system32\KBDYAK.DLL
2014-10-15 08:11:40 ----A---- F:\Windows\system32\KBDTAT.DLL
2014-10-15 08:11:40 ----A---- F:\Windows\system32\KBDRU1.DLL
2014-10-15 08:11:40 ----A---- F:\Windows\system32\KBDRU.DLL
2014-10-15 08:11:40 ----A---- F:\Windows\system32\KBDBASH.DLL
2014-10-15 08:11:29 ----A---- F:\Windows\system32\mstscax.dll
2014-10-15 08:11:29 ----A---- F:\Windows\system32\mstsc.exe
2014-10-15 08:11:28 ----A---- F:\Windows\system32\termsrv.dll
2014-10-15 08:11:28 ----A---- F:\Windows\system32\rdpcorets.dll
2014-10-15 08:11:27 ----A---- F:\Windows\system32\winsta.dll
2014-10-15 08:11:27 ----A---- F:\Windows\system32\winlogon.exe
2014-10-15 08:11:27 ----A---- F:\Windows\system32\rdpcorekmts.dll
2014-10-15 08:11:27 ----A---- F:\Windows\system32\drivers\rdpwd.sys
2014-10-15 08:11:27 ----A---- F:\Windows\system32\aaclient.dll
2014-10-15 08:11:26 ----A---- F:\Windows\system32\TSpkg.dll
2014-10-15 08:11:26 ----A---- F:\Windows\system32\drivers\tssecsrv.sys
2014-10-15 08:11:26 ----A---- F:\Windows\system32\credssp.dll
2014-10-15 08:10:53 ----A---- F:\Windows\system32\msi.dll
2014-10-15 08:10:34 ----A---- F:\Windows\system32\packager.dll
2014-10-15 08:10:18 ----A---- F:\Windows\system32\blackbox.dll
2014-10-15 08:10:17 ----A---- F:\Windows\system32\drmv2clt.dll
2014-10-15 08:10:16 ----A---- F:\Windows\system32\wmdrmsdk.dll
2014-10-15 08:10:15 ----A---- F:\Windows\system32\wmp.dll
2014-10-15 08:10:12 ----A---- F:\Windows\system32\mf.dll
2014-10-15 08:10:11 ----A---- F:\Windows\system32\drmmgrtn.dll
2014-10-15 08:10:11 ----A---- F:\Windows\system32\ci.dll
2014-10-15 08:10:11 ----A---- F:\Windows\system32\AUDIOKSE.dll
2014-10-15 08:10:10 ----A---- F:\Windows\system32\drivers\PEAuth.sys
2014-10-15 08:10:09 ----A---- F:\Windows\system32\winresume.exe
2014-10-15 08:10:09 ----A---- F:\Windows\system32\winload.exe
2014-10-15 08:10:09 ----A---- F:\Windows\system32\ntkrnlpa.exe
2014-10-15 08:10:09 ----A---- F:\Windows\system32\AudioSes.dll
2014-10-15 08:10:08 ----A---- F:\Windows\system32\wintrust.dll
2014-10-15 08:10:08 ----A---- F:\Windows\system32\ntoskrnl.exe
2014-10-15 08:10:08 ----A---- F:\Windows\system32\EncDump.dll
2014-10-15 08:10:08 ----A---- F:\Windows\system32\cryptsvc.dll
2014-10-15 08:10:07 ----A---- F:\Windows\system32\quartz.dll
2014-10-15 08:10:07 ----A---- F:\Windows\system32\evr.dll
2014-10-15 08:10:06 ----A---- F:\Windows\system32\pcasvc.dll
2014-10-15 08:10:06 ----A---- F:\Windows\system32\cryptui.dll
2014-10-15 08:10:06 ----A---- F:\Windows\system32\crypt32.dll
2014-10-15 08:10:05 ----A---- F:\Windows\system32\mfplat.dll
2014-10-15 08:10:04 ----A---- F:\Windows\system32\cryptsp.dll
2014-10-15 08:10:04 ----A---- F:\Windows\system32\AudioEng.dll
2014-10-15 08:10:03 ----A---- F:\Windows\system32\audiosrv.dll
2014-10-15 08:10:02 ----A---- F:\Windows\system32\msscp.dll
2014-10-15 08:10:02 ----A---- F:\Windows\system32\audiodg.exe
2014-10-15 08:10:01 ----A---- F:\Windows\system32\rrinstaller.exe
2014-10-15 08:10:01 ----A---- F:\Windows\system32\msnetobj.dll
2014-10-15 08:10:00 ----A---- F:\Windows\system32\mfps.dll
2014-10-15 08:10:00 ----A---- F:\Windows\system32\appidsvc.dll
2014-10-15 08:09:59 ----A---- F:\Windows\system32\appidpolicyconverter.exe
2014-10-15 08:09:59 ----A---- F:\Windows\system32\appidapi.dll
2014-10-15 08:09:58 ----A---- F:\Windows\system32\setbcdlocale.dll
2014-10-15 08:09:58 ----A---- F:\Windows\system32\mfpmp.exe
2014-10-15 08:09:58 ----A---- F:\Windows\system32\drivers\appid.sys
2014-10-15 08:09:57 ----A---- F:\Windows\system32\appidcertstorecheck.exe
2014-10-15 08:09:55 ----A---- F:\Windows\system32\spwmp.dll
2014-10-15 08:09:55 ----A---- F:\Windows\system32\mferror.dll
2014-10-15 08:09:55 ----A---- F:\Windows\system32\dxmasf.dll
2014-10-15 08:09:54 ----A---- F:\Windows\system32\wmploc.DLL
2014-10-01 18:28:19 ----D---- F:\Program Files\OnlineMapFinder_9p
2014-10-01 07:55:00 ----A---- F:\Windows\system32\qdvd.dll
2014-09-24 08:00:49 ----A---- F:\Windows\system32\tzres.dll

======List of files/folders modified in the last 1 month======

2014-10-17 15:01:27 ----D---- F:\Windows\Temp
2014-10-17 15:00:15 ----D---- F:\Windows\Prefetch
2014-10-17 15:00:02 ----RD---- F:\Program Files
2014-10-17 14:44:03 ----D---- F:\Windows
2014-10-17 14:41:53 ----D---- F:\Users\Jiří\AppData\Roaming\Skype
2014-10-17 14:39:11 ----D---- F:\Windows\Panther
2014-10-17 14:39:11 ----D---- F:\Windows\inf
2014-10-17 14:39:07 ----D---- F:\Windows\Logs
2014-10-17 14:39:06 ----D---- F:\Windows\debug
2014-10-17 14:08:13 ----D---- F:\Windows\system32\config
2014-10-17 14:06:51 ----D---- F:\Program Files\CCleaner
2014-10-17 13:41:48 ----SHD---- F:\Windows\Installer
2014-10-17 13:41:47 ----D---- F:\ProgramData\Skype
2014-10-17 13:41:46 ----HD---- F:\Config.Msi
2014-10-17 13:41:37 ----RD---- F:\Program Files\Skype
2014-10-17 13:41:36 ----D---- F:\Program Files\Common Files
2014-10-17 13:25:27 ----D---- F:\Windows\system32\Macromed
2014-10-17 13:25:27 ----D---- F:\Windows\System32
2014-10-17 12:46:23 ----D---- F:\Windows\Tasks
2014-10-16 14:59:09 ----D---- F:\Windows\rescache
2014-10-16 08:17:56 ----D---- F:\Windows\Microsoft.NET
2014-10-16 08:11:25 ----RSD---- F:\Windows\assembly
2014-10-16 07:32:35 ----D---- F:\Windows\system32\catroot2
2014-10-16 07:27:41 ----D---- F:\Windows\winsxs
2014-10-16 07:24:19 ----SD---- F:\Windows\system32\CompatTel
2014-10-16 07:24:16 ----D---- F:\Windows\system32\en-US
2014-10-16 07:24:13 ----D---- F:\Program Files\Internet Explorer
2014-10-16 07:24:08 ----RSD---- F:\Windows\Fonts
2014-10-16 07:24:07 ----D---- F:\Windows\system32\drivers
2014-10-16 07:24:07 ----D---- F:\Windows\system32\de-DE
2014-10-16 07:24:07 ----D---- F:\Windows\system32\cs-CZ
2014-10-16 07:24:05 ----D---- F:\Program Files\Windows Media Player
2014-10-16 07:24:04 ----D---- F:\Windows\system32\Dism
2014-10-16 07:24:02 ----D---- F:\Windows\system32\CodeIntegrity
2014-10-16 07:24:02 ----D---- F:\Windows\system32\Boot
2014-10-15 22:26:38 ----D---- F:\ProgramData\Microsoft Help
2014-10-15 22:22:04 ----SHD---- F:\System Volume Information
2014-10-15 22:20:54 ----D---- F:\Windows\system32\MRT
2014-10-15 21:56:53 ----A---- F:\Windows\system32\MRT.exe
2014-10-15 08:08:31 ----D---- F:\Windows\system32\catroot
2014-09-24 09:53:40 ----A---- F:\Windows\system32\FlashPlayerApp.exe
2014-09-22 08:41:56 ----N---- F:\Windows\system32\MpSigStub.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 MpFilter;Microsoft Malware Protection Driver; F:\Windows\system32\DRIVERS\MpFilter.sys [2014-07-17 231800]
R0 rdyboost;ReadyBoost; F:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; F:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; F:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 eeCtrl;Symantec Eraser Control driver; \??\F:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [2014-09-12 378672]
R2 NisDrv;Microsoft Network Inspection System; F:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-07-17 95920]
R3 AgereSoftModem;Agere Systems Soft Modem; F:\Windows\system32\DRIVERS\AGRSM.sys [2009-07-14 1035776]
R3 E100B;Intel(R) PRO Adapter Driver; F:\Windows\system32\DRIVERS\e100b325.sys [2009-07-14 159232]
R3 smwdm;smwdm; F:\Windows\system32\drivers\smwdm.sys [2004-09-01 259648]
S2 Parvdm;Parvdm; F:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; F:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; F:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; F:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 Dot4;MS IEEE-1284.4 Driver; F:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 131072]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; F:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 16384]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; F:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 36864]
S3 pciide;pciide; F:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; F:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; F:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 15872]
S3 s3cap;s3cap; F:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; F:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; F:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; F:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; F:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; F:\Windows\system32\drivers\tsusbhub.sys []
S3 usbscan;Ovladač skeneru USB; F:\Windows\system32\drivers\usbscan.sys [2013-07-03 36352]
S3 VGPU;VGPU; F:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;Filtr VIA sběrnice AGP; F:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; F:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; F:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; F:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; F:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-12-18 65192]
R2 APNMCP;Ask Update Service; F:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe [2014-09-22 166296]
R2 c2cautoupdatesvc;Skype Click to Call Updater; F:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-07-14 1390176]
R2 c2cpnrsvc;Skype Click to Call PNR Service; F:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-07-14 1767520]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; F:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; F:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 HPSLPSVC;HP Network Devices Support; F:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 MsMpSvc;Microsoft Antimalware Service; F:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-08-22 22192]
R2 Net Driver HPZ12;Net Driver HPZ12; F:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 OnlineMapFinder_9pService;OnlineMapFinderService; F:\PROGRA~1\ONLINE~2\bar\1.bin\9pbarsvc.exe [2014-10-01 90696]
R2 Pml Driver HPZ12;Pml Driver HPZ12; F:\Windows\System32\svchost.exe [2009-07-14 20992]
R3 hpqcxs08;hpqcxs08; F:\Windows\system32\svchost.exe [2009-07-14 20992]
R3 NisSrv;@F:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; F:\Program Files\Microsoft Security Client\NisSrv.exe [2014-08-22 288120]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; F:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); F:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-17 107912]
S2 KMService;KMService; F:\Windows\system32\srvany.exe [2013-01-19 8192]
S2 SkypeUpdate;Skype Updater; F:\Program Files\Skype\Updater\Updater.exe [2014-04-03 315008]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; F:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-24 267440]
S3 AppMgmt;@appmgmts.dll,-3250; F:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 gupdatem;Služba Google Update (gupdatem); F:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-17 107912]
S3 gusvc;Google Software Updater; F:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-02-14 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; F:\Windows\system32\IEEtwCollector.exe [2014-09-19 108032]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; F:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 ose;Office Source Engine; F:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; F:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; F:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; F:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; F:\Windows\system32\Wat\WatAdminSvc.exe [2013-01-19 1343400]
S4 aspnet_state;Stavová služba ASP.NET; F:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 NetMsmqActivator;@F:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; F:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@F:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; F:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@F:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; F:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

Zdravim

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c

type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5

*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s

Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).

Dík, půjdu na to.

Provedl jsem co jste mi poradil.
Omlouvám se že to tak trvalo, ale musel jsem odjet.
Oba logy vložím do nové zprávy:

2. Prosím o kontrolu logu-naskakující reklamy v prohlížečích

kde ze jsou ty logy?

15.11. pro neaktivitu

http://forum.viry.cz/viewtopic.php?f=12&t=123975

VIRY.CZ

Prosím o kontrolu logu-naskakující reklamy v prohlížečích

Prosím o kontrolu logu-naskakující reklamy v prohlížečích

Re: Prosím o kontrolu logu-naskakující reklamy v prohlížečíc

Re: Prosím o kontrolu logu-naskakující reklamy v prohlížečíc

Re: Prosím o kontrolu logu-naskakující reklamy v prohlížečíc

Re: Prosím o kontrolu logu-naskakující reklamy v prohlížečíc

Re: Prosím o kontrolu logu-naskakující reklamy v prohlížečíc