Security Tool - jak odstranim?

[Swen]

Dobry den, jako nekolika lidem, se mi povedlo do pocitace nainstalovat Security Tool a nevim, jak se ho zbavit. Poradte prosim.

[motji]

Hezké dopoledne

Běžte do nouzového režimu (po restartu mačkejte F8 - nouzový režim s prací v síti).

udělejte log ze Rsitu, viz můj podpis

[Swen]

Dekuji za odpoved, zde je log:

Logfile of random's system information tool 1.06 (written by random/random)
Run by Administrator at 2010-02-20 10:42:13
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 285 GB (93%) free of 305 GB
Total RAM: 3327 MB (90% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:42:23, on 20.2.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16981)
Boot mode: Safe mode with network support

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Administrator\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\Administrator.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - Default URLSearchHook is missing
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe 1
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [PaperPort PTD] "C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe"
O4 - HKLM\..\Run: [IndexSearch] "C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe"
O4 - HKLM\..\Run: [PPort11reminder] "C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe" -r "C:\Documents and Settings\All Users\Data aplikací\ScanSoft\PaperPort\11\Config\Ereg\Ereg.ini"
O4 - HKLM\..\Run: [BrMfcWnd] C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN
O4 - HKLM\..\Run: [ControlCenter3] C:\Program Files\Brother\ControlCenter3\brctrcen.exe /autorun
O4 - HKLM\..\Run: [92549433] C:\DOCUME~1\ALLUSE~1\DATAAP~1\92549433\92549433.exe
O4 - HKLM\..\Run: [CTFMON] C:\WINDOWS\Temp\_ex-08.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - The Firebird Project - C:\Program Files\Firebird\bin\fbguard.exe
O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - The Firebird Project - C:\Program Files\Firebird\bin\fbserver.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe

--
End of file - 4812 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\1-Click Maintenance.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"nod32kui"=C:\Program Files\Eset\nod32kui.exe [2008-12-25 921600]
"HDAudDeck"=C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe [2008-04-10 29757440]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2009-01-25 155648]
""= []
"Sony Ericsson PC Suite"=C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2005-10-26 159744]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"SSBkgdUpdate"=C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2006-10-25 210472]
"PaperPort PTD"=C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe [2007-10-11 29984]
"IndexSearch"=C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe [2007-10-11 46368]
"PPort11reminder"=C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe [2007-08-31 328992]
"BrMfcWnd"=C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe [2008-02-19 1089536]
"ControlCenter3"=C:\Program Files\Brother\ControlCenter3\brctrcen.exe [2007-12-21 86016]
"92549433"=C:\DOCUME~1\ALLUSE~1\DATAAP~1\92549433\92549433.exe [2010-02-19 1033728]
"CTFMON"=C:\WINDOWS\Temp\_ex-08.exe [2010-02-19 406016]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\CTFMON.EXE [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2009-01-14 155648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ICQ6.5\ICQ.exe"="C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"
"C:\Program Files\Yaho's Miranda IM\miranda32.exe"="C:\Program Files\Yaho's Miranda IM\miranda32.exe:*:Enabled:Miranda IM"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2010-02-20 10:24:13 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Macromedia
2010-02-20 10:24:12 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Adobe
2010-02-20 10:23:47 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Mozilla
2010-02-20 10:23:15 ----ASH---- C:\Documents and Settings\Administrator\Data aplikací\desktop.ini
2010-02-20 10:23:14 ----SD---- C:\Documents and Settings\Administrator\Data aplikací\Microsoft
2010-02-20 10:23:03 ----SHD---- C:\WINDOWS\CSC
2010-02-20 10:22:57 ----A---- C:\WINDOWS\ntbtlog.txt
2010-02-20 00:09:31 ----D---- C:\Program Files\trend micro
2010-02-20 00:09:30 ----D---- C:\rsit
2010-02-19 19:09:09 ----D---- C:\Program Files\WinPcap
2010-02-19 19:05:47 ----D---- C:\Documents and Settings\All Users\Data aplikací\92549433
2010-02-14 15:35:39 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2010-02-14 15:20:52 ----D---- C:\Program Files\DAEMON Tools Lite
2010-02-14 15:20:34 ----D---- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
2010-02-11 15:48:55 ----D---- C:\Program Files\Mozilla Thunderbird
2010-02-10 23:04:59 ----HDC---- C:\WINDOWS\$NtUninstallKB978262$
2010-02-10 23:04:53 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$
2010-02-10 23:04:01 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2010-02-10 23:03:55 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2010-02-10 23:03:50 ----HDC---- C:\WINDOWS\$NtUninstallKB978251$
2010-02-10 23:03:44 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2010-02-10 23:03:34 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2010-02-10 23:03:24 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2010-02-10 23:03:16 ----HDC---- C:\WINDOWS\$NtUninstallKB977165$

======List of files/folders modified in the last 1 months======

2010-02-20 10:40:53 ----D---- C:\Program Files\Mozilla Firefox
2010-02-20 10:39:34 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-02-20 10:33:23 ----D---- C:\WINDOWS\system32
2010-02-20 10:33:23 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-02-20 10:29:38 ----D---- C:\WINDOWS\Temp
2010-02-20 10:23:14 ----D---- C:\Documents and Settings
2010-02-20 10:23:03 ----D---- C:\WINDOWS
2010-02-20 00:09:31 ----RD---- C:\Program Files
2010-02-19 19:09:09 ----D---- C:\WINDOWS\system32\drivers
2010-02-17 22:13:51 ----D---- C:\WINDOWS\Prefetch
2010-02-14 16:20:46 ----A---- C:\WINDOWS\wincmd.ini
2010-02-14 15:40:45 ----D---- C:\WINDOWS\system32\wbem
2010-02-14 15:38:43 ----SHD---- C:\WINDOWS\Installer
2010-02-14 15:38:42 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-02-14 15:38:41 ----HD---- C:\WINDOWS\inf
2010-02-14 15:38:31 ----A---- C:\WINDOWS\win.ini
2010-02-14 15:38:29 ----D---- C:\Program Files\Common Files\System
2010-02-14 15:37:21 ----D---- C:\WINDOWS\WinSxS
2010-02-14 15:37:07 ----RSD---- C:\WINDOWS\Fonts
2010-02-14 15:35:50 ----D---- C:\Program Files\Microsoft Office
2010-02-14 15:31:05 ----D---- C:\WINDOWS\system32\CatRoot2
2010-02-10 23:04:59 ----HD---- C:\WINDOWS\$hf_mig$
2010-02-10 23:04:56 ----A---- C:\WINDOWS\imsins.BAK
2010-02-10 23:04:55 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-02-01 20:26:20 ----A---- C:\WINDOWS\system32\MRT.exe
2010-01-28 20:51:06 ----D---- C:\Program Files\ICQ6.5
2010-01-21 23:33:23 ----D---- C:\WINDOWS\system32\cs-cz
2010-01-21 23:33:23 ----D---- C:\Program Files\Internet Explorer

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
R1 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-15 5810]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2007-10-03 102656]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S2 AMON;AMON; \??\C:\WINDOWS\system32\drivers\amon.sys []
S2 npf;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2007-11-15 34064]
S3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2009-01-14 3455488]
S3 BrScnUsb;Brother USB Still Image driver; C:\WINDOWS\system32\DRIVERS\BrScnUsb.sys [2004-10-15 15295]
S3 k750bus;Sony Ericsson 750 driver (WDM); C:\WINDOWS\system32\DRIVERS\k750bus.sys [2005-06-03 55216]
S3 k750mdfl;Sony Ericsson 750 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\k750mdfl.sys [2005-06-03 6576]
S3 k750mdm;Sony Ericsson 750 USB WMC Modem Drivers; C:\WINDOWS\system32\DRIVERS\k750mdm.sys [2005-06-03 89872]
S3 k750mgmt;Sony Ericsson 750 USB WMC Device Management Drivers; C:\WINDOWS\system32\DRIVERS\k750mgmt.sys [2005-06-03 81728]
S3 k750obex;Sony Ericsson 750 USB WMC OBEX Interface Drivers; C:\WINDOWS\system32\DRIVERS\k750obex.sys [2005-06-03 79488]
S3 monfilt;monfilt; C:\WINDOWS\system32\drivers\monfilt.sys [2008-02-14 1389056]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\WINDOWS\system32\drivers\viahduaa.sys [2008-02-14 222976]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
S4 sr;Ovladač filtru Obnovy systému; C:\WINDOWS\system32\DRIVERS\sr.sys [2008-04-14 73344]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

S2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2009-01-14 598016]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2009-01-13 593920]
S2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance; C:\Program Files\Firebird\bin\fbguard.exe [2007-12-12 65536]
S2 NOD32krn;NOD32 Kernel Service; C:\Program Files\Eset\nod32krn.exe [2008-12-25 507904]
S3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance; C:\Program Files\Firebird\bin\fbserver.exe [2007-12-12 1531989]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]

-----------------EOF-----------------

[motji]

:arrow:Stáhněte OTM http://oldtimer.geekstogo.com/OTM.exe
Stáhněte na plochu Otm, 2krát klikněte na Otm,spustí se program,
Do levého okna "Paste Instructions for Items to be Moved" pod žlutou čáru zkopírujete skript

Kód: Vybrat vše

:processes
explorer.exe
 
:files
C:\WINDOWS\system32\*.tmp.dll /s
C:\WINDOWS\system32\SET*.tmp /s
C:\WINDOWS\*.tmp /s
C:\DOCUME~1\ALLUSE~1\DATAAP~1\92549433
C:\WINDOWS\Temp\_ex-08.exe 

:reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
""=-
"92549433"=-
"CTFMON"=-

:commands
[clearallrestorepoints]
[Reboot]

-klikněte na červené tlačítko Moveit!
-sem vložte obsah zeleného okénka
-Pokud se bude chtít restartovat pc, dejte YES,log pak najdete C:\_OTM\MovedFiles. Log vložte sem

Po skriptu na Otm už by jste měl normálně pracovat ve winows.


Dejte soubor otestovat na http://www.virustotal.com


C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe


-Na virustotalu dáte procházet, a do spodního okénka nakopírujete přímo cestu k souboru a dáte odeslat
-z prohlížeče zkopírujete adresu ke stránce s výsledky


Stahněte SAS http://portable.superantispyware.com/sassaferun.php
-proveďte aktualizaci a dejte uplný sken.
-Co najde, smažte,a napište co našel.
(tato verze se neinstaluje, je v angličtině. Pokud potřebujete uplný návod, klikněte mi v podpisu na SAS)

Já tu budu až večer kolem 9 hodiny

[Swen]

========== PROCESSES ==========
Process explorer.exe killed successfully!
========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
C:\WINDOWS\system32\SET3DE.tmp moved successfully.
C:\WINDOWS\system32\SET3E0.tmp moved successfully.
C:\WINDOWS\system32\SET3E4.tmp moved successfully.
C:\WINDOWS\system32\SET3E5.tmp moved successfully.
C:\WINDOWS\system32\SET3EC.tmp moved successfully.
C:\WINDOWS\system32\SET3EE.tmp moved successfully.
C:\WINDOWS\002678_.tmp moved successfully.
C:\WINDOWS\SET3.tmp moved successfully.
C:\WINDOWS\SET4.tmp moved successfully.
C:\WINDOWS\SET8.tmp moved successfully.
C:\WINDOWS\system32\CONFIG.TMP moved successfully.
C:\WINDOWS\Temp\exp11.tmp moved successfully.
C:\WINDOWS\Temp\exp112C.tmp moved successfully.
C:\WINDOWS\Temp\exp1132.tmp moved successfully.
C:\WINDOWS\Temp\exp11ED.tmp moved successfully.
C:\WINDOWS\Temp\exp12.tmp moved successfully.
C:\WINDOWS\Temp\exp1203.tmp moved successfully.
C:\WINDOWS\Temp\exp124B.tmp moved successfully.
C:\WINDOWS\Temp\exp129D.tmp moved successfully.
C:\WINDOWS\Temp\exp12A8.tmp moved successfully.
C:\WINDOWS\Temp\exp12DB.tmp moved successfully.
C:\WINDOWS\Temp\exp13.tmp moved successfully.
C:\WINDOWS\Temp\exp13DA.tmp moved successfully.
C:\WINDOWS\Temp\exp14.tmp moved successfully.
C:\WINDOWS\Temp\exp142E.tmp moved successfully.
C:\WINDOWS\Temp\exp146C.tmp moved successfully.
C:\WINDOWS\Temp\exp148C.tmp moved successfully.
C:\WINDOWS\Temp\exp14A1.tmp moved successfully.
C:\WINDOWS\Temp\exp15.tmp moved successfully.
C:\WINDOWS\Temp\exp15BC.tmp moved successfully.
C:\WINDOWS\Temp\exp15E1.tmp moved successfully.
C:\WINDOWS\Temp\exp16.tmp moved successfully.
C:\WINDOWS\Temp\exp16B4.tmp moved successfully.
C:\WINDOWS\Temp\exp16ED.tmp moved successfully.
C:\WINDOWS\Temp\exp17.tmp moved successfully.
C:\WINDOWS\Temp\exp176C.tmp moved successfully.
C:\WINDOWS\Temp\exp17C6.tmp moved successfully.
C:\WINDOWS\Temp\exp18.tmp moved successfully.
C:\WINDOWS\Temp\exp1870.tmp moved successfully.
C:\WINDOWS\Temp\exp19.tmp moved successfully.
C:\WINDOWS\Temp\exp1A.tmp moved successfully.
C:\WINDOWS\Temp\exp1A0D.tmp moved successfully.
C:\WINDOWS\Temp\exp1A76.tmp moved successfully.
C:\WINDOWS\Temp\exp1B.tmp moved successfully.
C:\WINDOWS\Temp\exp1B98.tmp moved successfully.
C:\WINDOWS\Temp\exp1B9A.tmp moved successfully.
C:\WINDOWS\Temp\exp1C.tmp moved successfully.
C:\WINDOWS\Temp\exp1C4D.tmp moved successfully.
C:\WINDOWS\Temp\exp1C9E.tmp moved successfully.
C:\WINDOWS\Temp\exp1CA.tmp moved successfully.
C:\WINDOWS\Temp\exp1CD7.tmp moved successfully.
C:\WINDOWS\Temp\exp1D.tmp moved successfully.
C:\WINDOWS\Temp\exp1E.tmp moved successfully.
C:\WINDOWS\Temp\exp1E6.tmp moved successfully.
C:\WINDOWS\Temp\exp1E66.tmp moved successfully.
C:\WINDOWS\Temp\exp1E75.tmp moved successfully.
C:\WINDOWS\Temp\exp1EE.tmp moved successfully.
C:\WINDOWS\Temp\exp1F.tmp moved successfully.
C:\WINDOWS\Temp\exp1F43.tmp moved successfully.
C:\WINDOWS\Temp\exp20.tmp moved successfully.
C:\WINDOWS\Temp\exp2020.tmp moved successfully.
C:\WINDOWS\Temp\exp209.tmp moved successfully.
C:\WINDOWS\Temp\exp20A.tmp moved successfully.
C:\WINDOWS\Temp\exp21.tmp moved successfully.
C:\WINDOWS\Temp\exp217.tmp moved successfully.
C:\WINDOWS\Temp\exp22.tmp moved successfully.
C:\WINDOWS\Temp\exp23.tmp moved successfully.
C:\WINDOWS\Temp\exp24.tmp moved successfully.
C:\WINDOWS\Temp\exp245.tmp moved successfully.
C:\WINDOWS\Temp\exp25.tmp moved successfully.
C:\WINDOWS\Temp\exp26.tmp moved successfully.
C:\WINDOWS\Temp\exp27.tmp moved successfully.
C:\WINDOWS\Temp\exp277D.tmp moved successfully.
C:\WINDOWS\Temp\exp28.tmp moved successfully.
C:\WINDOWS\Temp\exp2883.tmp moved successfully.
C:\WINDOWS\Temp\exp29.tmp moved successfully.
C:\WINDOWS\Temp\exp2A.tmp moved successfully.
C:\WINDOWS\Temp\exp2A2.tmp moved successfully.
C:\WINDOWS\Temp\exp2B.tmp moved successfully.
C:\WINDOWS\Temp\exp2B6.tmp moved successfully.
C:\WINDOWS\Temp\exp2C.tmp moved successfully.
C:\WINDOWS\Temp\exp2C3.tmp moved successfully.
C:\WINDOWS\Temp\exp2D.tmp moved successfully.
C:\WINDOWS\Temp\exp2DC.tmp moved successfully.
C:\WINDOWS\Temp\exp2E.tmp moved successfully.
C:\WINDOWS\Temp\exp2E2.tmp moved successfully.
C:\WINDOWS\Temp\exp2E6.tmp moved successfully.
C:\WINDOWS\Temp\exp2F.tmp moved successfully.
C:\WINDOWS\Temp\exp2F72.tmp moved successfully.
C:\WINDOWS\Temp\exp3.tmp moved successfully.
C:\WINDOWS\Temp\exp30.tmp moved successfully.
C:\WINDOWS\Temp\exp31.tmp moved successfully.
C:\WINDOWS\Temp\exp32.tmp moved successfully.
C:\WINDOWS\Temp\exp33.tmp moved successfully.
C:\WINDOWS\Temp\exp34.tmp moved successfully.
C:\WINDOWS\Temp\exp35.tmp moved successfully.
C:\WINDOWS\Temp\exp351.tmp moved successfully.
C:\WINDOWS\Temp\exp35F.tmp moved successfully.
C:\WINDOWS\Temp\exp36.tmp moved successfully.
C:\WINDOWS\Temp\exp37.tmp moved successfully.
C:\WINDOWS\Temp\exp38.tmp moved successfully.
C:\WINDOWS\Temp\exp382.tmp moved successfully.
C:\WINDOWS\Temp\exp38D6.tmp moved successfully.
C:\WINDOWS\Temp\exp39.tmp moved successfully.
C:\WINDOWS\Temp\exp3A.tmp moved successfully.
C:\WINDOWS\Temp\exp3B.tmp moved successfully.
C:\WINDOWS\Temp\exp3C.tmp moved successfully.
C:\WINDOWS\Temp\exp3D.tmp moved successfully.
C:\WINDOWS\Temp\exp3D8.tmp moved successfully.
C:\WINDOWS\Temp\exp3E.tmp moved successfully.
C:\WINDOWS\Temp\exp3E2.tmp moved successfully.
C:\WINDOWS\Temp\exp3EF.tmp moved successfully.
C:\WINDOWS\Temp\exp3F.tmp moved successfully.
C:\WINDOWS\Temp\exp3F4.tmp moved successfully.
C:\WINDOWS\Temp\exp40.tmp moved successfully.
C:\WINDOWS\Temp\exp41.tmp moved successfully.
C:\WINDOWS\Temp\exp416E.tmp moved successfully.
C:\WINDOWS\Temp\exp41A.tmp moved successfully.
C:\WINDOWS\Temp\exp42.tmp moved successfully.
C:\WINDOWS\Temp\exp427.tmp moved successfully.
C:\WINDOWS\Temp\exp43.tmp moved successfully.
C:\WINDOWS\Temp\exp44.tmp moved successfully.
C:\WINDOWS\Temp\exp45.tmp moved successfully.
C:\WINDOWS\Temp\exp46.tmp moved successfully.
C:\WINDOWS\Temp\exp47.tmp moved successfully.
C:\WINDOWS\Temp\exp48.tmp moved successfully.
C:\WINDOWS\Temp\exp48D.tmp moved successfully.
C:\WINDOWS\Temp\exp49.tmp moved successfully.
C:\WINDOWS\Temp\exp4A.tmp moved successfully.
C:\WINDOWS\Temp\exp4A6.tmp moved successfully.
C:\WINDOWS\Temp\exp4AC.tmp moved successfully.
C:\WINDOWS\Temp\exp4B.tmp moved successfully.
C:\WINDOWS\Temp\exp4B6.tmp moved successfully.
C:\WINDOWS\Temp\exp4B8.tmp moved successfully.
C:\WINDOWS\Temp\exp4BE.tmp moved successfully.
C:\WINDOWS\Temp\exp4C.tmp moved successfully.
C:\WINDOWS\Temp\exp4D.tmp moved successfully.
C:\WINDOWS\Temp\exp4E.tmp moved successfully.
C:\WINDOWS\Temp\exp4F.tmp moved successfully.
C:\WINDOWS\Temp\exp4F3.tmp moved successfully.
C:\WINDOWS\Temp\exp50.tmp moved successfully.
C:\WINDOWS\Temp\exp504.tmp moved successfully.
C:\WINDOWS\Temp\exp51.tmp moved successfully.
C:\WINDOWS\Temp\exp52.tmp moved successfully.
C:\WINDOWS\Temp\exp53.tmp moved successfully.
C:\WINDOWS\Temp\exp54.tmp moved successfully.
C:\WINDOWS\Temp\exp55.tmp moved successfully.
C:\WINDOWS\Temp\exp56.tmp moved successfully.
C:\WINDOWS\Temp\exp562.tmp moved successfully.
C:\WINDOWS\Temp\exp567.tmp moved successfully.
C:\WINDOWS\Temp\exp56B.tmp moved successfully.
C:\WINDOWS\Temp\exp57.tmp moved successfully.
C:\WINDOWS\Temp\exp577.tmp moved successfully.
C:\WINDOWS\Temp\exp58.tmp moved successfully.
C:\WINDOWS\Temp\exp59.tmp moved successfully.
C:\WINDOWS\Temp\exp590.tmp moved successfully.
C:\WINDOWS\Temp\exp591.tmp moved successfully.
C:\WINDOWS\Temp\exp5A.tmp moved successfully.
C:\WINDOWS\Temp\exp5B.tmp moved successfully.
C:\WINDOWS\Temp\exp5BA.tmp moved successfully.
C:\WINDOWS\Temp\exp5C.tmp moved successfully.
C:\WINDOWS\Temp\exp5D.tmp moved successfully.
C:\WINDOWS\Temp\exp5D5.tmp moved successfully.
C:\WINDOWS\Temp\exp5D8.tmp moved successfully.
C:\WINDOWS\Temp\exp5D9.tmp moved successfully.
C:\WINDOWS\Temp\exp5E.tmp moved successfully.
C:\WINDOWS\Temp\exp5E8.tmp moved successfully.
C:\WINDOWS\Temp\exp5F.tmp moved successfully.
C:\WINDOWS\Temp\exp5FE.tmp moved successfully.
C:\WINDOWS\Temp\exp60.tmp moved successfully.
C:\WINDOWS\Temp\exp607.tmp moved successfully.
C:\WINDOWS\Temp\exp60DE.tmp moved successfully.
C:\WINDOWS\Temp\exp61.tmp moved successfully.
C:\WINDOWS\Temp\exp610.tmp moved successfully.
C:\WINDOWS\Temp\exp61F.tmp moved successfully.
C:\WINDOWS\Temp\exp62.tmp moved successfully.
C:\WINDOWS\Temp\exp626.tmp moved successfully.
C:\WINDOWS\Temp\exp62F.tmp moved successfully.
C:\WINDOWS\Temp\exp63.tmp moved successfully.
C:\WINDOWS\Temp\exp633.tmp moved successfully.
C:\WINDOWS\Temp\exp63E.tmp moved successfully.
C:\WINDOWS\Temp\exp64.tmp moved successfully.
C:\WINDOWS\Temp\exp65.tmp moved successfully.
C:\WINDOWS\Temp\exp66.tmp moved successfully.
C:\WINDOWS\Temp\exp666.tmp moved successfully.
C:\WINDOWS\Temp\exp66E.tmp moved successfully.
C:\WINDOWS\Temp\exp67.tmp moved successfully.
C:\WINDOWS\Temp\exp68.tmp moved successfully.
C:\WINDOWS\Temp\exp68A.tmp moved successfully.
C:\WINDOWS\Temp\exp69.tmp moved successfully.
C:\WINDOWS\Temp\exp698.tmp moved successfully.
C:\WINDOWS\Temp\exp69D.tmp moved successfully.
C:\WINDOWS\Temp\exp69E.tmp moved successfully.
C:\WINDOWS\Temp\exp6A.tmp moved successfully.
C:\WINDOWS\Temp\exp6B.tmp moved successfully.
C:\WINDOWS\Temp\exp6C.tmp moved successfully.
C:\WINDOWS\Temp\exp6D.tmp moved successfully.
C:\WINDOWS\Temp\exp6E.tmp moved successfully.
C:\WINDOWS\Temp\exp6F.tmp moved successfully.
C:\WINDOWS\Temp\exp70.tmp moved successfully.
C:\WINDOWS\Temp\exp71.tmp moved successfully.
C:\WINDOWS\Temp\exp72.tmp moved successfully.
C:\WINDOWS\Temp\exp73.tmp moved successfully.
C:\WINDOWS\Temp\exp73D.tmp moved successfully.
C:\WINDOWS\Temp\exp74.tmp moved successfully.
C:\WINDOWS\Temp\exp75.tmp moved successfully.
C:\WINDOWS\Temp\exp76.tmp moved successfully.
C:\WINDOWS\Temp\exp77.tmp moved successfully.
C:\WINDOWS\Temp\exp776.tmp moved successfully.
C:\WINDOWS\Temp\exp78.tmp moved successfully.
C:\WINDOWS\Temp\exp79.tmp moved successfully.
C:\WINDOWS\Temp\exp7A.tmp moved successfully.
C:\WINDOWS\Temp\exp7B.tmp moved successfully.
C:\WINDOWS\Temp\exp7BD.tmp moved successfully.
C:\WINDOWS\Temp\exp7C.tmp moved successfully.
C:\WINDOWS\Temp\exp7C6.tmp moved successfully.
C:\WINDOWS\Temp\exp7D.tmp moved successfully.
C:\WINDOWS\Temp\exp7D2.tmp moved successfully.
C:\WINDOWS\Temp\exp7D9.tmp moved successfully.
C:\WINDOWS\Temp\exp7E.tmp moved successfully.
C:\WINDOWS\Temp\exp7F.tmp moved successfully.
C:\WINDOWS\Temp\exp80.tmp moved successfully.
C:\WINDOWS\Temp\exp81.tmp moved successfully.
C:\WINDOWS\Temp\exp81B.tmp moved successfully.
C:\WINDOWS\Temp\exp82.tmp moved successfully.
C:\WINDOWS\Temp\exp827.tmp moved successfully.
C:\WINDOWS\Temp\exp83.tmp moved successfully.
C:\WINDOWS\Temp\exp834.tmp moved successfully.
C:\WINDOWS\Temp\exp835.tmp moved successfully.
C:\WINDOWS\Temp\exp84.tmp moved successfully.
C:\WINDOWS\Temp\exp85.tmp moved successfully.
C:\WINDOWS\Temp\exp86.tmp moved successfully.
C:\WINDOWS\Temp\exp865.tmp moved successfully.
C:\WINDOWS\Temp\exp87.tmp moved successfully.
C:\WINDOWS\Temp\exp877.tmp moved successfully.
C:\WINDOWS\Temp\exp88.tmp moved successfully.
C:\WINDOWS\Temp\exp89.tmp moved successfully.
C:\WINDOWS\Temp\exp8A.tmp moved successfully.
C:\WINDOWS\Temp\exp8B.tmp moved successfully.
C:\WINDOWS\Temp\exp8C.tmp moved successfully.
C:\WINDOWS\Temp\exp8CE.tmp moved successfully.
C:\WINDOWS\Temp\exp8D.tmp moved successfully.
C:\WINDOWS\Temp\exp8E.tmp moved successfully.
C:\WINDOWS\Temp\exp8F.tmp moved successfully.
C:\WINDOWS\Temp\exp8F5.tmp moved successfully.
C:\WINDOWS\Temp\exp90.tmp moved successfully.
C:\WINDOWS\Temp\exp91.tmp moved successfully.
C:\WINDOWS\Temp\exp92.tmp moved successfully.
C:\WINDOWS\Temp\exp93.tmp moved successfully.
C:\WINDOWS\Temp\exp93F.tmp moved successfully.
C:\WINDOWS\Temp\exp94.tmp moved successfully.
C:\WINDOWS\Temp\exp95.tmp moved successfully.
C:\WINDOWS\Temp\exp96.tmp moved successfully.
C:\WINDOWS\Temp\exp97.tmp moved successfully.
C:\WINDOWS\Temp\exp97F.tmp moved successfully.
C:\WINDOWS\Temp\exp98.tmp moved successfully.
C:\WINDOWS\Temp\exp981.tmp moved successfully.
C:\WINDOWS\Temp\exp98B.tmp moved successfully.
C:\WINDOWS\Temp\exp99.tmp moved successfully.
C:\WINDOWS\Temp\exp9A.tmp moved successfully.
C:\WINDOWS\Temp\exp9AA.tmp moved successfully.
C:\WINDOWS\Temp\exp9B.tmp moved successfully.
C:\WINDOWS\Temp\exp9C.tmp moved successfully.
C:\WINDOWS\Temp\exp9CB.tmp moved successfully.
C:\WINDOWS\Temp\exp9D.tmp moved successfully.
C:\WINDOWS\Temp\exp9E.tmp moved successfully.
C:\WINDOWS\Temp\exp9F.tmp moved successfully.
C:\WINDOWS\Temp\exp9F5.tmp moved successfully.
C:\WINDOWS\Temp\exp9FC.tmp moved successfully.
C:\WINDOWS\Temp\expA0.tmp moved successfully.
C:\WINDOWS\Temp\expA1.tmp moved successfully.
C:\WINDOWS\Temp\expA15.tmp moved successfully.
C:\WINDOWS\Temp\expA2.tmp moved successfully.
C:\WINDOWS\Temp\expA3.tmp moved successfully.
C:\WINDOWS\Temp\expA4.tmp moved successfully.
C:\WINDOWS\Temp\expA5.tmp moved successfully.
C:\WINDOWS\Temp\expA6.tmp moved successfully.
C:\WINDOWS\Temp\expA60.tmp moved successfully.
C:\WINDOWS\Temp\expA7.tmp moved successfully.
C:\WINDOWS\Temp\expA76.tmp moved successfully.
C:\WINDOWS\Temp\expA8.tmp moved successfully.
C:\WINDOWS\Temp\expA80.tmp moved successfully.
C:\WINDOWS\Temp\expA9.tmp moved successfully.
C:\WINDOWS\Temp\expAA.tmp moved successfully.
C:\WINDOWS\Temp\expAB.tmp moved successfully.
C:\WINDOWS\Temp\expAC.tmp moved successfully.
C:\WINDOWS\Temp\expAD.tmp moved successfully.
C:\WINDOWS\Temp\expADB.tmp moved successfully.
C:\WINDOWS\Temp\expAE.tmp moved successfully.
C:\WINDOWS\Temp\expAE7.tmp moved successfully.
C:\WINDOWS\Temp\expAF.tmp moved successfully.
C:\WINDOWS\Temp\expAF2.tmp moved successfully.
C:\WINDOWS\Temp\expAF4.tmp moved successfully.
C:\WINDOWS\Temp\expB0.tmp moved successfully.
C:\WINDOWS\Temp\expB1.tmp moved successfully.
C:\WINDOWS\Temp\expB2.tmp moved successfully.
C:\WINDOWS\Temp\expB3.tmp moved successfully.
C:\WINDOWS\Temp\expB4.tmp moved successfully.
C:\WINDOWS\Temp\expB5.tmp moved successfully.
C:\WINDOWS\Temp\expB6.tmp moved successfully.
C:\WINDOWS\Temp\expB7.tmp moved successfully.
C:\WINDOWS\Temp\expB8.tmp moved successfully.
C:\WINDOWS\Temp\expB84.tmp moved successfully.
C:\WINDOWS\Temp\expB9.tmp moved successfully.
C:\WINDOWS\Temp\expBA.tmp moved successfully.
C:\WINDOWS\Temp\expBB.tmp moved successfully.
C:\WINDOWS\Temp\expBC.tmp moved successfully.
C:\WINDOWS\Temp\expBD.tmp moved successfully.
C:\WINDOWS\Temp\expBE.tmp moved successfully.
C:\WINDOWS\Temp\expBF.tmp moved successfully.
C:\WINDOWS\Temp\expC0.tmp moved successfully.
C:\WINDOWS\Temp\expC1.tmp moved successfully.
C:\WINDOWS\Temp\expC2.tmp moved successfully.
C:\WINDOWS\Temp\expC3.tmp moved successfully.
C:\WINDOWS\Temp\expC4.tmp moved successfully.
C:\WINDOWS\Temp\expC5.tmp moved successfully.
C:\WINDOWS\Temp\expC6.tmp moved successfully.
C:\WINDOWS\Temp\expC7.tmp moved successfully.
C:\WINDOWS\Temp\expC8.tmp moved successfully.
C:\WINDOWS\Temp\expC9.tmp moved successfully.
C:\WINDOWS\Temp\expCA.tmp moved successfully.
C:\WINDOWS\Temp\expCB.tmp moved successfully.
C:\WINDOWS\Temp\expCC.tmp moved successfully.
C:\WINDOWS\Temp\expCC3.tmp moved successfully.
C:\WINDOWS\Temp\expCD.tmp moved successfully.
C:\WINDOWS\Temp\expCE.tmp moved successfully.
C:\WINDOWS\Temp\expCF.tmp moved successfully.
C:\WINDOWS\Temp\expD0.tmp moved successfully.
C:\WINDOWS\Temp\expD1.tmp moved successfully.
C:\WINDOWS\Temp\expD1D.tmp moved successfully.
C:\WINDOWS\Temp\expD2.tmp moved successfully.
C:\WINDOWS\Temp\expD3.tmp moved successfully.
C:\WINDOWS\Temp\expD4.tmp moved successfully.
C:\WINDOWS\Temp\expD5.tmp moved successfully.
C:\WINDOWS\Temp\expD5E.tmp moved successfully.
C:\WINDOWS\Temp\expD6D.tmp moved successfully.
C:\WINDOWS\Temp\expDA8.tmp moved successfully.
C:\WINDOWS\Temp\expDE7.tmp moved successfully.
C:\WINDOWS\Temp\expE0D.tmp moved successfully.
C:\WINDOWS\Temp\expE16.tmp moved successfully.
C:\WINDOWS\Temp\expF24.tmp moved successfully.
C:\WINDOWS\Temp\expF43.tmp moved successfully.
C:\WINDOWS\Temp\expF70.tmp moved successfully.
C:\WINDOWS\Temp\expFA2.tmp moved successfully.
C:\WINDOWS\Temp\expFB3.tmp moved successfully.
C:\WINDOWS\Temp\expFEB.tmp moved successfully.
C:\WINDOWS\Temp\expFFF.tmp moved successfully.
C:\DOCUME~1\ALLUSE~1\DATAAP~1\92549433 folder moved successfully.
C:\WINDOWS\Temp\_ex-08.exe moved successfully.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\92549433 deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\CTFMON deleted successfully.
========== COMMANDS ==========

Restore points cleared and new OTM Restore Point set!

OTM by OldTimer - Version 3.1.9.0 log created on 02202010_111053

[Swen]

analisis/4e30d565917158316a541bb29d73bf5f3a01dab1240363276de0c5d59b2bfffe-1245216703

[Swen]

Provedl jsem kontrolu v SAS, co nasel jsem smazal, restartoval se mi system, ale bohuzel v Statistics/Logs zadny log neni, snad to nevadi.

Prozatim dekuji, preju hezky den a pokud mi to vecer pomuzete dokoncit, budu rad.

[motji]

Poprosím o ten odkaz na virustotal znovu, celý link - kliknete do prohlížeče, až budete mít výsledek (pokud se Vás zeptá, zda soubor otestovat znovu, dáte ano ).

Poprosím o nový log ze Rsitu, jak to ted vypadá s počítačem?

[Swen]

tak snad uz to bude spravne
http://www.virustotal.com/cs/analisis/4 ... 1266695521



Logfile of random's system information tool 1.06 (written by random/random)
Run by J&J at 2010-02-20 20:58:17
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 285 GB (93%) free of 305 GB
Total RAM: 3327 MB (83% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:58:20, on 20.2.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16981)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Eset\nod32kui.exe
C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Brother\ControlCenter3\brccMCtl.exe
C:\Program Files\Common Files\Teleca Shared\CapabilityManager.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\Brother\Brmfcmon\BrMfcmon.exe
C:\Program Files\Common Files\Teleca Shared\Generic.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\Program Files\Firebird\bin\fbguard.exe
C:\Program Files\Eset\nod32krn.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Firebird\bin\fbserver.exe
C:\Program Files\ICQ6.5\ICQ.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\J&J\Plocha\RSIT.exe
C:\Program Files\trend micro\J&J.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe 1
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [PaperPort PTD] "C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe"
O4 - HKLM\..\Run: [IndexSearch] "C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe"
O4 - HKLM\..\Run: [PPort11reminder] "C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe" -r "C:\Documents and Settings\All Users\Data aplikací\ScanSoft\PaperPort\11\Config\Ereg\Ereg.ini"
O4 - HKLM\..\Run: [BrMfcWnd] C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN
O4 - HKLM\..\Run: [ControlCenter3] C:\Program Files\Brother\ControlCenter3\brctrcen.exe /autorun
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - The Firebird Project - C:\Program Files\Firebird\bin\fbguard.exe
O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - The Firebird Project - C:\Program Files\Firebird\bin\fbserver.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe

--
End of file - 5769 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\1-Click Maintenance.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"nod32kui"=C:\Program Files\Eset\nod32kui.exe [2008-12-25 921600]
"HDAudDeck"=C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe [2008-04-10 29757440]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2009-01-25 155648]
"Sony Ericsson PC Suite"=C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2005-10-26 159744]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"SSBkgdUpdate"=C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2006-10-25 210472]
"PaperPort PTD"=C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe [2007-10-11 29984]
"IndexSearch"=C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe [2007-10-11 46368]
"PPort11reminder"=C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe [2007-08-31 328992]
"BrMfcWnd"=C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe [2008-02-19 1089536]
"ControlCenter3"=C:\Program Files\Brother\ControlCenter3\brctrcen.exe [2007-12-21 86016]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2009-10-30 369200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2009-01-14 155648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ICQ6.5\ICQ.exe"="C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"
"C:\Program Files\Yaho's Miranda IM\miranda32.exe"="C:\Program Files\Yaho's Miranda IM\miranda32.exe:*:Enabled:Miranda IM"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2010-02-20 11:21:06 ----D---- C:\Documents and Settings\J&J\Data aplikací\SUPERAntiSpyware.com
2010-02-20 11:21:06 ----D---- C:\Documents and Settings\All Users\Data aplikací\SUPERAntiSpyware.com
2010-02-20 11:10:53 ----D---- C:\_OTM
2010-02-20 10:23:03 ----SHD---- C:\WINDOWS\CSC
2010-02-20 10:22:57 ----A---- C:\WINDOWS\ntbtlog.txt
2010-02-20 00:09:31 ----D---- C:\Program Files\trend micro
2010-02-20 00:09:30 ----D---- C:\rsit
2010-02-19 19:09:09 ----D---- C:\Program Files\WinPcap
2010-02-14 15:35:39 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2010-02-14 15:20:52 ----D---- C:\Program Files\DAEMON Tools Lite
2010-02-14 15:20:36 ----D---- C:\Documents and Settings\J&J\Data aplikací\DAEMON Tools Lite
2010-02-14 15:20:34 ----D---- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
2010-02-11 15:49:21 ----D---- C:\Documents and Settings\J&J\Data aplikací\Thunderbird
2010-02-11 15:48:55 ----D---- C:\Program Files\Mozilla Thunderbird
2010-02-10 23:04:59 ----HDC---- C:\WINDOWS\$NtUninstallKB978262$
2010-02-10 23:04:53 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$
2010-02-10 23:04:01 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2010-02-10 23:03:55 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2010-02-10 23:03:50 ----HDC---- C:\WINDOWS\$NtUninstallKB978251$
2010-02-10 23:03:44 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2010-02-10 23:03:34 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2010-02-10 23:03:24 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2010-02-10 23:03:16 ----HDC---- C:\WINDOWS\$NtUninstallKB977165$

======List of files/folders modified in the last 1 months======

2010-02-20 20:49:08 ----D---- C:\Program Files\Mozilla Firefox
2010-02-20 20:43:47 ----D---- C:\Documents and Settings\J&J\Data aplikací\ICQ
2010-02-20 18:18:36 ----D---- C:\WINDOWS\system32
2010-02-20 18:18:36 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-02-20 18:15:41 ----D---- C:\WINDOWS\Temp
2010-02-20 16:48:26 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-02-20 12:00:33 ----A---- C:\WINDOWS\wincmd.ini
2010-02-20 11:54:54 ----D---- C:\WINDOWS\Prefetch
2010-02-20 11:22:26 ----D---- C:\WINDOWS\system32\CatRoot2
2010-02-20 11:10:55 ----D---- C:\WINDOWS
2010-02-20 10:23:14 ----D---- C:\Documents and Settings
2010-02-20 00:09:31 ----RD---- C:\Program Files
2010-02-19 19:09:09 ----D---- C:\WINDOWS\system32\drivers
2010-02-14 19:29:54 ----D---- C:\Documents and Settings\J&J\Data aplikací\foobar2000
2010-02-14 15:46:05 ----SD---- C:\Documents and Settings\J&J\Data aplikací\Microsoft
2010-02-14 15:40:45 ----D---- C:\WINDOWS\system32\wbem
2010-02-14 15:38:43 ----SHD---- C:\WINDOWS\Installer
2010-02-14 15:38:42 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-02-14 15:38:41 ----HD---- C:\WINDOWS\inf
2010-02-14 15:38:31 ----A---- C:\WINDOWS\win.ini
2010-02-14 15:38:29 ----D---- C:\Program Files\Common Files\System
2010-02-14 15:37:21 ----D---- C:\WINDOWS\WinSxS
2010-02-14 15:37:07 ----RSD---- C:\WINDOWS\Fonts
2010-02-14 15:35:50 ----D---- C:\Program Files\Microsoft Office
2010-02-10 23:04:59 ----HD---- C:\WINDOWS\$hf_mig$
2010-02-10 23:04:56 ----A---- C:\WINDOWS\imsins.BAK
2010-02-10 23:04:55 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-02-01 20:26:20 ----A---- C:\WINDOWS\system32\MRT.exe
2010-01-28 20:51:06 ----D---- C:\Program Files\ICQ6.5
2010-01-21 23:33:23 ----D---- C:\WINDOWS\system32\cs-cz
2010-01-21 23:33:23 ----D---- C:\Program Files\Internet Explorer

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 SASDIFSV;SASDIFSV; \??\C:\DOCUME~1\J&J\LOCALS~1\Temp\SAS_SelfExtract\SASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; \??\C:\DOCUME~1\J&J\LOCALS~1\Temp\SAS_SelfExtract\SASKUTIL.sys []
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
R1 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]
R2 AMON;AMON; \??\C:\WINDOWS\system32\drivers\amon.sys []
R2 npf;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2007-11-15 34064]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2009-01-14 3455488]
R3 BrScnUsb;Brother USB Still Image driver; C:\WINDOWS\system32\DRIVERS\BrScnUsb.sys [2004-10-15 15295]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 monfilt;monfilt; C:\WINDOWS\system32\drivers\monfilt.sys [2008-02-14 1389056]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-15 5810]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2007-10-03 102656]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\WINDOWS\system32\drivers\viahduaa.sys [2008-02-14 222976]
S3 aaohgxdg;aaohgxdg; C:\WINDOWS\system32\drivers\aaohgxdg.sys []
S3 k750bus;Sony Ericsson 750 driver (WDM); C:\WINDOWS\system32\DRIVERS\k750bus.sys [2005-06-03 55216]
S3 k750mdfl;Sony Ericsson 750 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\k750mdfl.sys [2005-06-03 6576]
S3 k750mdm;Sony Ericsson 750 USB WMC Modem Drivers; C:\WINDOWS\system32\DRIVERS\k750mdm.sys [2005-06-03 89872]
S3 k750mgmt;Sony Ericsson 750 USB WMC Device Management Drivers; C:\WINDOWS\system32\DRIVERS\k750mgmt.sys [2005-06-03 81728]
S3 k750obex;Sony Ericsson 750 USB WMC OBEX Interface Drivers; C:\WINDOWS\system32\DRIVERS\k750obex.sys [2005-06-03 79488]
S3 SASENUM;SASENUM; \??\C:\DOCUME~1\J&J\LOCALS~1\Temp\SAS_SelfExtract\SASENUM.SYS []
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
S4 sr;Ovladač filtru Obnovy systému; C:\WINDOWS\system32\DRIVERS\sr.sys [2008-04-14 73344]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2009-01-14 598016]
R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance; C:\Program Files\Firebird\bin\fbguard.exe [2007-12-12 65536]
R2 NOD32krn;NOD32 Kernel Service; C:\Program Files\Eset\nod32krn.exe [2008-12-25 507904]
R3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance; C:\Program Files\Firebird\bin\fbserver.exe [2007-12-12 1531989]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2009-01-13 593920]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]

-----------------EOF-----------------

[motji]

Log je v pořádku, jak to vypadá s počítačem?

:arrow:Otevřete znovu Otm a klikněte na tlačítko CleanUp,potvrďte ok



Z mého podpisu stahněte Ccleaner
- nainstalujte, při výběru, co se má nainstalovat, dejte pryč fajfku u instalace yahoo toolbaru

záložka čistič
-nechejte v levém sloupečku zatrhnuté vše jak je, klikněte na analyzovat
-po analýze klikněte na Spustit Ccleaner

záložka Registry
- klikněte na hledej problémy
- pak klikněte na opravit vybrané problémy -- udělat zálohu registrů - nemusíte
- kliknete opravit všechny problémy ok zavřít

Záložka Nástroje
- zde můžete odinstalovat programy. Je to důkladnější odinstalace než u přidat/odebrat programy ve Windows.

Ccleaner - čistič doporučuji používat, krásně pročistí pc od dočasných souborů.
Registry pročistí třeba po odinstalaci nějakého programu.



SAS můžete použít na občasný sken

Nemáte firewall,k čemu je užitečný se dozvíte zde http://www.viry.cz/forum/viewtopic.php?f=41&t=20980

[Swen]

Vsechno sem provedl, pocitac se chova normalne. Je-li to vse, tak mockrat dekuju a preju hezky zbytek vecera.

[motji]

Je to vše
Není zač, kdyby byly problémy, ozvěte se