Problém s rychlostí PC +

mEEEgy · Příspěvekod **mEEEgy** » 17 črc 2011 18:02

Ehm, Takže?

Reklama

Příspěvekod **jaro3** » 18 črc 2011 10:06

Takže si odinstaluj ten cracklý ESET NOD32 , co Ti psal už Žbeky!!
Pak si nainstaluj free antivir Avira10 nebo Avast6 , nebo AVG 2011.

Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
SRV - (ICQ Service) -- File not found
SRV - (HidServ) -- File not found
SRV - (AppMgmt) -- File not found
IE - HKLM\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - Reg Error: Key error. File not found
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.defaulturl: "http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampie7&query="
FF - prefs.js..browser.search.selectedEngine: "Web Search..."
FF - prefs.js..extensions.enabledItems: vshare@toolbar:1.0.0
FF - prefs.js..keyword.URL: "http://vshare.toolbarhome.com/search.aspx?srch=ku&q="
[2009.07.09 17:26:06 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Extensions
[2011.07.02 20:07:38 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions
[2011.06.23 10:58:33 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2011.03.01 22:04:11 | 000,000,000 | ---D | M] (vShare) -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\vshare@toolbar
[2009.11.01 20:20:19 | 000,002,059 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\searchplugins\daemon-search.xml
[2011.03.29 18:50:19 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010.11.22 05:27:28 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
File not found (No name found) --
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMIN\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\GPRNRXXF.DEFAULT\EXTENSIONS\VSHARE@TOOLBAR
O1 HOSTS File: ([2008.04.14 14:00:00 | 000,000,737 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {5E5AB302-7F65-44CD-8211-C1D4CAACCEA3} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [KernelFaultCheck] File not found
O1 HOSTS File: ([2008.04.14 14:00:00 | 000,000,737 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {5E5AB302-7F65-44CD-8211-C1D4CAACCEA3} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [KernelFaultCheck] File not found
[2008.04.14 14:00:00 | 000,461,976 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2008.04.14 14:00:00 | 000,458,898 | ---- | C] () -- C:\WINDOWS\System32\perfh005.dat
[2008.04.14 14:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2008.04.14 14:00:00 | 000,269,162 | ---- | C] () -- C:\WINDOWS\System32\perfi005.dat
[2008.04.14 14:00:00 | 000,091,962 | ---- | C] () -- C:\WINDOWS\System32\perfc005.dat
[2008.04.14 14:00:00 | 000,080,088 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2008.04.14 14:00:00 | 000,032,072 | ---- | C] () -- C:\WINDOWS\System32\perfd005.dat
[2008.04.14 14:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
@Alternate Data Stream - 500 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:05EE1EEF
@Alternate Data Stream - 450290 bytes -> C:\WINDOWS\Temp:temp
@Alternate Data Stream - 118 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:8DB31C20
@Alternate Data Stream - 109 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:D1B5B4F1
@Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Data aplikací\TEMP:0E636D62

:Files
C:\WINDOWS\System32\*.tmp 
C:\WINDOWS\*.tmp 
C:\WINDOWS\system32\*.tmp.dll 
C:\WINDOWS\System32\dllcache\*.tmp
C:\WINDOWS\system32\SET*.tmp 
c:\windows\Tasks\*.job 
C:\*.tmp
C:\Documents and Settings\All Users\Data aplikací\*.tmp
[8 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[7 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
C:\WINDOWS\System32\drivers\bapcggwn.sys
C:\WINDOWS\tmp2Level.ini
C:\WINDOWS\System32\d3d9caps.dat
C:\WINDOWS\System32\d3d8caps.dat
C:\Documents and Settings\All Users\Data aplikací\Alwil Software
C:\Documents and Settings\Admin\Data aplikací\inst.exe
C:\Documents and Settings\Admin\Data aplikací\pcouffin.cat
C:\Documents and Settings\Admin\Data aplikací\pcouffin.inf
C:\Documents and Settings\Admin\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\WINDOWS\ativpsrm.bin

:Services
bapcggwn

:Reg
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" =-
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"5401:TCP" =- 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"TNod" =-

:Commands
[resethosts]
[purity]
[emptytemp]
[EMPTYFLASH]
[start explorer]
[Reboot]

Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.

Aktualizuj javu:
Java SE Runtime Environment 6u26

Klikni na Accept License Agreement
Vyber si OS (Windows nebo Windows x64, Offline Installation)
jre-6u25-windows-i586-p.exe nebo
jre-6u25-windows-x64.exe
Stáhni ( download) a nainstaluj.
Ostatní javy odeber v přidat/odebrat programy.

+
Poklepej znovu na ikonu OTL by OldTimer, pod Vlastní skenování/opravy (Custom Scans/Fixes) vlož následující text , zeleně zbarvený:

Kód: Vybrat vše

netsvcs
%SYSTEMDRIVE%\*.exe
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
/md5stop
%systemroot%\*. /mp /s
CREATERESTOREPOINT

Neměň nastavení, jen klikni na Prohledat (Run Scan), nech sken dokončit. Až se se objeví textový soubor , tak sem vlož prosím jeho celý obsah.

mEEEgy · Příspěvekod **mEEEgy** » 18 črc 2011 15:58

První log:

All processes killed
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
Service ICQ Service stopped successfully!
Service ICQ Service deleted successfully!
File File not found not found.
Service HidServ stopped successfully!
Service HidServ deleted successfully!
File File not found not found.
Service AppMgmt stopped successfully!
Service AppMgmt deleted successfully!
File File not found not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{855F3B16-6D32-4fe6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4fe6-8A56-BBB695989046}\ not found.
Prefs.js: "ICQ Search" removed from browser.search.defaultenginename
Prefs.js: "http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampie7&query=" removed from browser.search.defaulturl
Prefs.js: "Web Search..." removed from browser.search.selectedEngine
Prefs.js: vshare@toolbar:1.0.0 removed from extensions.enabledItems
Prefs.js: "http://vshare.toolbarhome.com/search.aspx?srch=ku&q=" removed from keyword.URL
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Extensions folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\search_engine folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\META-INF folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults\preferences folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\components folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\tr folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\sk folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\ru folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\it folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\he folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\fr folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\es folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\en-US folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\de folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\cs folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\bg folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}\defaults\preferences folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}\defaults folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}\chrome folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\vshare@toolbar\modules folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\vshare@toolbar\locale\en-US folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\vshare@toolbar\locale folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\vshare@toolbar\components folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\vshare@toolbar\chrome folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\vshare@toolbar folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions folder moved successfully.
Folder C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\ not found.
Folder C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\extensions\vshare@toolbar\ not found.
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\searchplugins\daemon-search.xml moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions folder moved successfully.
Folder C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\ not found.
127.0.0.1 localhost removed from HOSTS file successfully
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{5E5AB302-7F65-44CD-8211-C1D4CAACCEA3} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5E5AB302-7F65-44CD-8211-C1D4CAACCEA3}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\KernelFaultCheck deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{32099AAC-C132-4136-9E9A-4E364A424E17} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{5E5AB302-7F65-44CD-8211-C1D4CAACCEA3} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5E5AB302-7F65-44CD-8211-C1D4CAACCEA3}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\KernelFaultCheck not found.
C:\WINDOWS\system32\perfh009.dat moved successfully.
C:\WINDOWS\system32\perfh005.dat moved successfully.
C:\WINDOWS\system32\perfi009.dat moved successfully.
C:\WINDOWS\system32\perfi005.dat moved successfully.
C:\WINDOWS\system32\perfc005.dat moved successfully.
C:\WINDOWS\system32\perfc009.dat moved successfully.
C:\WINDOWS\system32\perfd005.dat moved successfully.
C:\WINDOWS\system32\perfd009.dat moved successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:05EE1EEF deleted successfully.
ADS C:\WINDOWS\Temp:temp deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:8DB31C20 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:D1B5B4F1 deleted successfully.
ADS C:\Documents and Settings\All Users\Data aplikací\TEMP:0E636D62 deleted successfully.
========== FILES ==========
C:\WINDOWS\System32\CONFIG.TMP moved successfully.
C:\WINDOWS\System32\tmp1A31.tmp moved successfully.
C:\WINDOWS\System32\tmp1A32.tmp moved successfully.
C:\WINDOWS\System32\tmp253D.tmp moved successfully.
C:\WINDOWS\System32\tmp253E.tmp moved successfully.
C:\WINDOWS\System32\tmpC59F.tmp moved successfully.
C:\WINDOWS\System32\tmpC5A0.tmp moved successfully.
C:\WINDOWS\1C4551A64743409391E41477CD655043.TMP folder moved successfully.
C:\WINDOWS\8A809006C25A4A3A9DAB94659BCDB107.TMP folder moved successfully.
C:\WINDOWS\95FC26FB19FD4A96BBB1B1062E8648F5.TMP folder moved successfully.
C:\WINDOWS\D56B0E274A3E46C9B5C1D93D580C099C.TMP folder moved successfully.
C:\WINDOWS\msdownld.tmp folder moved successfully.
C:\WINDOWS\SET3.tmp moved successfully.
C:\WINDOWS\SET4.tmp moved successfully.
C:\WINDOWS\SET8.tmp moved successfully.
C:\WINDOWS\system32\_000012_.tmp.dll moved successfully.
File\Folder C:\WINDOWS\System32\dllcache\*.tmp not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-682003330-117609710-1801674531-1004Core.job moved successfully.
c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-682003330-117609710-1801674531-1004UA.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-682003330-117609710-1801674531-1004Core.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-682003330-117609710-1801674531-1004UA.job moved successfully.
c:\windows\Tasks\User_Feed_Synchronization-{191ABA24-8723-47CD-B893-FA7522C9F96E}.job moved successfully.
File\Folder C:\*.tmp not found.
File\Folder C:\Documents and Settings\All Users\Data aplikací\*.tmp not found.
File\Folder [8 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] not found.
File\Folder [7 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] not found.
C:\WINDOWS\System32\drivers\bapcggwn.sys moved successfully.
C:\WINDOWS\tmp2Level.ini moved successfully.
C:\WINDOWS\System32\d3d9caps.dat moved successfully.
C:\WINDOWS\System32\d3d8caps.dat moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Alwil Software\Avast5\log folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Alwil Software\Avast5 folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Alwil Software folder moved successfully.
C:\Documents and Settings\Admin\Data aplikací\inst.exe moved successfully.
C:\Documents and Settings\Admin\Data aplikací\pcouffin.cat moved successfully.
C:\Documents and Settings\Admin\Data aplikací\pcouffin.inf moved successfully.
C:\Documents and Settings\Admin\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini moved successfully.
C:\WINDOWS\ativpsrm.bin moved successfully.
========== SERVICES/DRIVERS ==========
Error: No service named bapcggwn was found to stop!
Service\Driver key bapcggwn not found.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\\FirstRunDisabled deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\5401:TCP deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\\TNod not found.
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: Admin
->Temp folder emptied: 160380683 bytes
->Temporary Internet Files folder emptied: 12788755 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 93740641 bytes
->Google Chrome cache emptied: 306631522 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 55288 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 16535 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 103730676 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 3790504 bytes

Total Files Cleaned = 650,00 mb

[EMPTYFLASH]

User: Admin
->Flash cache emptied: 0 bytes

User: All Users

User: Default User

User: LocalService

User: NetworkService

Total Flash Files Cleaned = 0,00 mb

OTL by OldTimer - Version 3.2.26.1 log created on 07182011_154016

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...

mEEEgy · Příspěvekod **mEEEgy** » 18 črc 2011 15:59

Druhý log:

OTL logfile created on: 18.7.2011 15:51:08 - Run 2
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Documents and Settings\Admin\Plocha
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 1,32 Gb Available Physical Memory | 65,87% Memory free
3,85 Gb Paging File | 3,24 Gb Available in Paging File | 84,34% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 465,76 Gb Total Space | 253,73 Gb Free Space | 54,48% Space Free | Partition Type: NTFS
Drive E: | 2,38 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: M3NH | User Name: Admin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Documents and Settings\Admin\Plocha\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\AVG\AVG10\avgtray.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG10\avgnsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG10\avgcsrvx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG10\avgchsvx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG10\avgfws.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe ()
PRC - C:\Program Files\AVG\AVG10\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG10\avgrsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG10\avgam.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
PRC - C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe (TuneUp Software)
PRC - C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe (TuneUp Software)
PRC - C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe (Samsung Electronics Co., Ltd.)
PRC - C:\Program Files\DNA\btdna.exe (BitTorrent, Inc.)
PRC - C:\WINDOWS\system32\FsUsbExService.Exe (Teruten)
PRC - C:\Program Files\TO2SSM\McciTrayApp.exe (Motive Communications, Inc.)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\WINDOWS\system32\LGAutorunService.exe ()
PRC - C:\Program Files\bin32\nSvcAppFlt.exe ()
PRC - C:\Program Files\bin32\nSvcIp.exe ()
PRC - C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe (Nero AG)
PRC - C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
PRC - C:\Program Files\A4Tech\Mouse\Amoumain.exe (A4Tech Co.,Ltd.)
PRC - C:\Program Files\Razer\Copperhead\razerhid.exe ()
PRC - C:\Program Files\Razer\Copperhead\razerofa.exe (Razer Inc.)

========== Modules (SafeList) ==========

MOD - C:\Documents and Settings\Admin\Plocha\OTL.exe (OldTimer Tools)
MOD - C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll (Microsoft Corporation)
MOD - C:\Program Files\Common Files\Motive\McciContextHook_6-1-0_DSR.dll (Motive Communications, Inc.)
MOD - C:\WINDOWS\system32\Amhooker.dll (A4Tech Co.,Ltd.)

========== Win32 Services (SafeList) ==========

SRV - (wbmuky) -- File not found
SRV - (jktgzui) -- File not found
SRV - (AVGIDSAgent) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe (AVG Technologies CZ, s.r.o.)
SRV - (avgfws) -- C:\Program Files\AVG\AVG10\avgfws.exe (AVG Technologies CZ, s.r.o.)
SRV - (avgwd) -- C:\Program Files\AVG\AVG10\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
SRV - (TuneUp.UtilitiesSvc) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe (TuneUp Software)
SRV - (UxTuneUp) -- C:\WINDOWS\system32\uxtuneup.dll (TuneUp Software)
SRV - (npggsvc) -- C:\WINDOWS\System32\GameMon.des (INCA Internet Co., Ltd.)
SRV - (FLEXnet Licensing Service) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.)
SRV - (FsUsbExService) -- C:\WINDOWS\system32\FsUsbExService.Exe (Teruten)
SRV - (NOD32FiXTemDono) -- C:\WINDOWS\System32\regedt32.exe (Microsoft Corporation)
SRV - (ServiceLayer) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (Nokia.)
SRV - (LG SCSI Commander) -- C:\WINDOWS\system32\LGAutorunService.exe ()
SRV - (ForceWare Intelligent Application Manager (IAM)) ForceWare Intelligent Application Manager (IAM) -- C:\Program Files\bin32\nSvcAppFlt.exe ()
SRV - (nSvcIp) -- C:\Program Files\bin32\nSvcIp.exe ()
SRV - (MSSQL$SONY_MEDIAMGR) -- C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe (Microsoft Corporation)
SRV - (SQLAgent$SONY_MEDIAMGR) -- C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE (Microsoft Corporation)

========== Driver Services (SafeList) ==========

DRV - (AVGIDSDriver) -- C:\WINDOWS\system32\drivers\AVGIDSDriver.sys (AVG Technologies CZ, s.r.o. )
DRV - (Avgtdix) -- C:\WINDOWS\system32\drivers\avgtdix.sys (AVG Technologies CZ, s.r.o.)
DRV - (Avgrkx86) -- C:\WINDOWS\system32\DRIVERS\avgrkx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (Avgmfx86) -- C:\WINDOWS\system32\drivers\avgmfx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (AVGIDSEH) -- C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys (AVG Technologies CZ, s.r.o. )
DRV - (dtsoftbus01) -- C:\WINDOWS\system32\drivers\dtsoftbus01.sys (DT Soft Ltd)
DRV - (AVGIDSShim) -- C:\WINDOWS\system32\drivers\AVGIDSShim.sys (AVG Technologies CZ, s.r.o. )
DRV - (AVGIDSFilter) -- C:\WINDOWS\system32\drivers\AVGIDSFilter.sys (AVG Technologies CZ, s.r.o. )
DRV - (Avgldx86) -- C:\WINDOWS\system32\drivers\avgldx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (ESLvnic1) -- C:\WINDOWS\system32\drivers\ESLvnic.sys (Turtle Entertainment GmbH)
DRV - (TuneUpUtilitiesDrv) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys (TuneUp Software)
DRV - (atksgt) -- C:\WINDOWS\system32\drivers\atksgt.sys ()
DRV - (lirsgt) -- C:\WINDOWS\system32\drivers\lirsgt.sys ()
DRV - (Avgfwfd) -- C:\WINDOWS\system32\drivers\avgfwdx.sys (AVG Technologies CZ, s.r.o.)
DRV - (Avgfwdx) -- C:\WINDOWS\system32\drivers\avgfwdx.sys (AVG Technologies CZ, s.r.o.)
DRV - (npf) -- C:\WINDOWS\system32\drivers\npf.sys (CACE Technologies, Inc.)
DRV - (hamachi) -- C:\WINDOWS\system32\drivers\hamachi.sys (Applied Networking Inc.)
DRV - (sptd) -- C:\WINDOWS\System32\Drivers\sptd.sys ()
DRV - (ati2mtag) -- C:\WINDOWS\system32\drivers\ati2mtag.sys (ATI Technologies Inc.)
DRV - (FsUsbExDisk) -- C:\WINDOWS\system32\FsUsbExDisk.Sys ()
DRV - (ss_bmdm) -- C:\WINDOWS\system32\drivers\ss_bmdm.sys (MCCI Corporation)
DRV - (ss_bbus) SAMSUNG USB Mobile Device (WDM) -- C:\WINDOWS\system32\drivers\ss_bbus.sys (MCCI)
DRV - (ss_bmdfl) SAMSUNG USB Mobile Modem (Filter) -- C:\WINDOWS\system32\drivers\ss_bmdfl.sys (MCCI Corporation)
DRV - (USBModem) -- C:\WINDOWS\system32\drivers\lgusbmodem.sys (LG Electronics Inc.)
DRV - (UsbDiag) -- C:\WINDOWS\system32\drivers\lgusbdiag.sys (LG Electronics Inc.)
DRV - (usbbus) -- C:\WINDOWS\system32\drivers\lgusbbus.sys (LG Electronics Inc.)
DRV - (AtiHdmiService) -- C:\WINDOWS\system32\drivers\AtiHdmi.sys (ATI Research Inc.)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.)
DRV - (NVHDA) -- C:\WINDOWS\system32\drivers\nvhda32.sys (NVIDIA Corporation)
DRV - (MREMP50) -- C:\Program Files\Common Files\Motive\MREMP50.sys (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (MRESP50) -- C:\Program Files\Common Files\Motive\MRESP50.sys (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (nvnetbus) -- C:\WINDOWS\system32\drivers\nvnetbus.sys (NVIDIA Corporation)
DRV - (NVENETFD) -- C:\WINDOWS\system32\drivers\NVENETFD.sys (NVIDIA Corporation)
DRV - (nvsmu) -- C:\WINDOWS\system32\drivers\nvsmu.sys (NVIDIA Corporation)
DRV - (pccsmcfd) -- C:\WINDOWS\system32\drivers\pccsmcfd.sys (Nokia)
DRV - (Amusbprt) -- C:\WINDOWS\system32\drivers\Amusbprt.sys (A4Tech Co.,Ltd.)
DRV - (Amfilter) -- C:\WINDOWS\system32\drivers\Amfilter.sys (A4Tech Co.,Ltd.)
DRV - (AmdPPM) -- C:\WINDOWS\system32\drivers\AmdPPM.sys (Advanced Micro Devices)
DRV - (Razerlow) -- C:\WINDOWS\system32\drivers\Razerlow.sys (Razer (Asia-Pacific) Pte Ltd)
DRV - (MTsensor) -- C:\WINDOWS\system32\drivers\ASACPI.sys ()
DRV - (DgiVecp) -- C:\WINDOWS\system32\drivers\Dgivecp.Sys (DeviceGuys, Inc.)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "AVG Secure Search"
FF - prefs.js..browser.search.defaulturl: ""
FF - prefs.js..browser.search.selectedEngine: "AVG Secure Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://start.icq.com/"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.1.3
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems:
FF - prefs.js..keyword.URL: "http://search.avg.com/?d=4e243667&i=23&tp=ab&nt=1&q="
FF - prefs.js..keyword.enabled: true

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@bittorrent.com/BitTorrentDNA: C:\Program Files\DNA\plugins\npbtdna.dll (BitTorrent, Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll (DivX, Inc)
FF - HKLM\Software\MozillaPlugins\@gamersfirst.com/LiveLauncher: C:\Program Files\GamersFirst\LIVE!\nplivelauncher.dll File not found
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18: C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@Webzen.com/NPGameWebStarter: C:\Program Files\WEBZEN\WebzenGameStarter\NPGameWebStarter.dll (WEBZEN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Documents and Settings\Admin\Local Settings\Data aplikací\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Admin\Local Settings\Data aplikací\Google\Update\1.3.21.57\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Admin\Local Settings\Data aplikací\Google\Update\1.3.21.57\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files\AVG\AVG10\Firefox4\ [2011.07.18 15:33:23 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.04.29 16:29:59 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.07.18 15:48:34 | 000,000,000 | ---D | M]

[2011.08.16 19:23:43 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\searchplugins\icqplugin-1.xml
[2011.05.10 07:24:46 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\searchplugins\icqplugin-10.xml
[2009.07.11 00:19:27 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\searchplugins\icqplugin-2.xml
[2009.12.16 18:12:00 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\searchplugins\icqplugin-3.xml
[2010.01.08 21:19:51 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\searchplugins\icqplugin-4.xml
[2010.01.27 21:41:01 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\searchplugins\icqplugin-5.xml
[2010.04.01 08:15:39 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\searchplugins\icqplugin-6.xml
[2010.05.24 15:45:22 | 000,000,961 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\searchplugins\icqplugin-7.xml
[2011.01.01 21:03:14 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\searchplugins\icqplugin-8.xml
[2011.04.29 16:30:12 | 000,000,950 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\searchplugins\icqplugin-9.xml
[2011.06.20 10:45:18 | 000,000,168 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\searchplugins\icqplugin.gif
[2011.06.20 10:45:18 | 000,000,618 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\searchplugins\icqplugin.src
[2011.03.30 15:14:34 | 000,001,042 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\searchplugins\icqplugin.xml
[2011.06.23 20:51:07 | 000,001,583 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\searchplugins\web-search.xml
[2009.07.24 14:48:46 | 000,001,201 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\gprnrxxf.default\searchplugins\winamp-search.xml
[2011.07.18 15:48:36 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011.07.18 15:48:36 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
File not found (No name found) --
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMIN\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\GPRNRXXF.DEFAULT\EXTENSIONS\{800B5000-A755-47E1-992B-48A1C1357F07}
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMIN\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\GPRNRXXF.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\ADMIN\DATA APLIKACĂ\MOZILLA\FIREFOX\PROFILES\GPRNRXXF.DEFAULT\EXTENSIONS\VSHARE@TOOLBAR
[2011.07.18 15:48:21 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011.04.29 16:29:58 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011.07.18 15:48:21 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2010.01.01 10:00:00 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2010.01.01 10:00:00 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2010.01.01 10:00:00 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2010.01.01 10:00:00 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2010.01.01 10:00:00 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: ([2011.07.18 15:40:21 | 000,000,098 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [LanguageShortcut] C:\Program Files\CyberLink\PowerDVD\Language\Language.exe ()
O4 - HKLM..\Run: [razer] C:\Program Files\Razer\Copperhead\razerhid.exe ()
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [TO2SSM_McciTrayApp] C:\Program Files\TO2SSM\McciTrayApp.exe (Motive Communications, Inc.)
O4 - HKLM..\Run: [WheelMouse] C:\Program Files\A4Tech\Mouse\Amoumain.exe (A4Tech Co.,Ltd.)
O4 - HKCU..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe (Samsung Electronics Co., Ltd.)
O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKCU..\Run: [BitTorrent DNA] C:\Program Files\DNA\btdna.exe (BitTorrent, Inc.)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - Startup: C:\Documents and Settings\Admin\Nabídka Start\Programy\Po spuštění\Xfire.lnk = C:\Program Files\Xfire\Xfire.exe (Xfire Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O9 - Extra Button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe (ICQ, LLC.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\system32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\system32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\system32\nvLsp.dll (NVIDIA)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\WINDOWS\system32\nvLsp.dll (NVIDIA)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Admin\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Admin\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.05.25 14:26:15 | 000,323,584 | R--- | M] (Nival Interactive) - E:\AutoRun.exe -- [ CDFS ]
O32 - AutoRun File - [2006.05.25 14:26:15 | 000,050,534 | R--- | M] () - E:\AutoRun.ico -- [ CDFS ]
O32 - AutoRun File - [2006.05.25 14:25:49 | 000,000,000 | R--D | M] - E:\Autorun -- [ CDFS ]
O32 - AutoRun File - [2006.05.25 14:26:15 | 000,000,047 | R--- | M] () - E:\autorun.inf -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgchsvx.exe /sync) - C:\Program Files\AVG\AVG10\avgchsvx.exe (AVG Technologies CZ, s.r.o.)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgrsx.exe /sync /restart) - C:\Program Files\AVG\AVG10\avgrsx.exe (AVG Technologies CZ, s.r.o.)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - File not found
NetSvcs: HidServ - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: UxTuneUp - C:\WINDOWS\system32\uxtuneup.dll (TuneUp Software)
NetSvcs: WmdmPmSp - File not found
NetSvcs: jktgzui - File not found
NetSvcs: wbmuky - File not found

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2011.08.17 16:55:25 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Admin\Recent
[2011.08.17 16:53:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Universal Anticheat 3
[2011.08.17 16:52:44 | 006,433,969 | ---- | C] (DExUS ) -- C:\Documents and Settings\Admin\Plocha\install3.exe
[2011.08.16 20:21:37 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2011.08.16 20:20:35 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Admin\Dokumenty\Filmy
[2011.08.16 20:20:34 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Admin\Dokumenty\Obrázky
[2011.07.18 15:48:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2011.07.18 15:48:34 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2011.07.18 15:48:34 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2011.07.18 15:48:34 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2011.07.18 15:48:34 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2011.07.18 15:48:18 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2011.07.18 15:47:07 | 016,619,296 | ---- | C] (Sun Microsystems, Inc.) -- C:\Documents and Settings\Admin\Plocha\jre-6u26-windows-i586.exe
[2011.07.18 15:45:34 | 016,920,864 | ---- | C] (Sun Microsystems, Inc.) -- C:\Documents and Settings\Admin\Plocha\jre-6u26-windows-x64.exe
[2011.07.18 15:40:16 | 000,000,000 | ---D | C] -- C:\_OTL
[2011.07.18 15:38:59 | 000,000,000 | -H-D | C] -- C:\$AVG
[2011.07.18 15:34:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Data aplikací\AVG10
[2011.07.18 15:34:20 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Data aplikací\Common Files
[2011.07.18 15:34:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\AVG 2011
[2011.07.18 15:33:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\AVG10
[2011.07.18 15:33:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\AVG
[2011.07.18 15:32:55 | 000,000,000 | ---D | C] -- C:\Program Files\AVG
[2011.07.18 15:32:32 | 000,579,584 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Admin\Plocha\OTL.exe
[2011.07.18 15:29:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\MFAData
[2011.07.18 15:26:22 | 005,570,000 | ---- | C] (AVG Technologies) -- C:\Documents and Settings\Admin\Plocha\avg_isct_stb_all_2011_1390.exe
[2011.07.17 22:25:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dokumenty\My Games
[2011.07.14 23:08:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Data aplikací\SLAnticheat
[2011.07.14 23:07:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Nabídka Start\Programy\SPEEDLINK ANTICHEAT
[2011.07.14 23:07:55 | 000,000,000 | ---D | C] -- C:\Program Files\SPEEDLINK ANTICHEAT
[2011.07.13 21:29:56 | 000,000,000 | R--D | C] -- C:\Program Files\Skype
[2011.07.13 21:29:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Skype
[2011.07.13 16:39:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\aTube Catcher
[2011.07.13 12:00:44 | 000,018,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll
[2011.07.08 13:15:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Local Settings\Data aplikací\Facebook
[2011.07.02 18:56:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dokumenty\Downloads
[2011.07.02 18:54:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Nabídka Start\Programy\Google Chrome
[2011.07.02 18:54:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Local Settings\Data aplikací\Google
[2011.07.01 11:18:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dokumenty\Rockstar Games
[2011.07.01 11:12:19 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Data aplikací\SecuROM
[2011.06.30 19:54:26 | 000,107,888 | ---- | C] (Sony DADC Austria AG.) -- C:\WINDOWS\System32\CmdLineExt.dll
[2011.06.30 19:18:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Rockstar Games
[2011.06.30 19:18:04 | 000,000,000 | ---D | C] -- C:\Program Files\Rockstar Games
[2011.06.26 09:40:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\Ubisoft
[2011.06.25 23:54:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Local Settings\Data aplikací\OpenCandy
[2011.06.25 23:54:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Data aplikací\OpenCandy
[2011.06.25 15:51:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\InstallShield
[2011.06.24 18:21:13 | 000,000,000 | ---D | C] -- C:\Program Files\EA Sports
[2011.06.24 18:21:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Nabídka Start\Programy\EA Sports
[2011.06.19 18:38:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dokumenty\FIFA 11
[2011.06.19 17:00:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dokumenty\FFOutput
[2011.06.19 11:37:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Local Settings\Data aplikací\Two Worlds II
[2011.06.18 23:01:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Plocha\Download
[2009.07.30 17:12:03 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Admin\Data aplikací\pcouffin.sys

========== Files - Modified Within 30 Days ==========

[2011.08.17 16:53:28 | 000,000,709 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Universal Anticheat 3.lnk
[2011.08.17 16:52:50 | 006,433,969 | ---- | M] (DExUS ) -- C:\Documents and Settings\Admin\Plocha\install3.exe
[2011.08.16 20:21:45 | 000,000,339 | RHS- | M] () -- C:\boot.ini
[2011.08.16 20:02:23 | 000,002,263 | ---- | M] () -- C:\Documents and Settings\Admin\Plocha\Google Chrome.lnk
[2011.08.16 20:01:22 | 003,072,054 | ---- | M] () -- C:\Documents and Settings\Admin\Plocha\web.bmp
[2011.08.16 17:43:01 | 000,000,952 | ---- | M] () -- C:\Documents and Settings\Admin\Local Settings\Data aplikací\SRDownloader.nast
[2011.07.18 15:48:21 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll
[2011.07.18 15:48:21 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2011.07.18 15:48:21 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2011.07.18 15:48:21 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2011.07.18 15:48:21 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2011.07.18 15:47:28 | 016,619,296 | ---- | M] (Sun Microsystems, Inc.) -- C:\Documents and Settings\Admin\Plocha\jre-6u26-windows-i586.exe
[2011.07.18 15:46:13 | 122,659,520 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm
[2011.07.18 15:46:13 | 000,657,312 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\iavifw.avm
[2011.07.18 15:45:55 | 016,920,864 | ---- | M] (Sun Microsystems, Inc.) -- C:\Documents and Settings\Admin\Plocha\jre-6u26-windows-x64.exe
[2011.07.18 15:41:56 | 000,167,952 | ---- | M] () -- C:\WINDOWS\System32\ativvaxx.cap
[2011.07.18 15:41:56 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011.07.18 15:41:55 | 000,000,000 | ---- | M] () -- C:\WINDOWS\ativpsrm.bin
[2011.07.18 15:40:21 | 000,000,098 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\Hosts
[2011.07.18 15:34:09 | 000,000,708 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\AVG 2011.lnk
[2011.07.18 15:32:33 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Admin\Plocha\OTL.exe
[2011.07.18 15:26:26 | 005,570,000 | ---- | M] (AVG Technologies) -- C:\Documents and Settings\Admin\Plocha\avg_isct_stb_all_2011_1390.exe
[2011.07.18 01:31:30 | 213,286,912 | ---- | M] () -- C:\Documents and Settings\Admin\Plocha\South Park - Cartman vs Dědeček.avi
[2011.07.18 01:31:30 | 000,000,056 | ---- | M] () -- C:\Documents and Settings\Admin\Plocha\South Park - Cartman vs Dědeček.avi.sfl
[2011.07.18 01:24:01 | 000,000,156 | ---- | M] () -- C:\WINDOWS\Twunk001.MTX
[2011.07.18 01:24:01 | 000,000,003 | ---- | M] () -- C:\WINDOWS\Twain001.Mtx
[2011.07.17 23:43:05 | 000,138,160 | ---- | M] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2011.07.17 23:42:59 | 000,271,200 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.xtr
[2011.07.17 22:17:20 | 000,012,598 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011.07.17 22:12:32 | 000,001,108 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Sběratelská edice Heroes of Might and Magic V.lnk
[2011.07.17 21:06:24 | 000,271,200 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.ex0
[2011.07.16 16:54:51 | 009,120,408 | ---- | M] () -- C:\Documents and Settings\Admin\Plocha\WWE Wade Barrett 2011 Theme 'End Of Days'.mp3
[2011.07.16 16:53:46 | 010,079,447 | ---- | M] () -- C:\Documents and Settings\Admin\Plocha\WWE Heath Slater 2011 Theme 'Black & White'.mp3
[2011.07.16 16:18:50 | 000,008,618 | ---- | M] () -- C:\Documents and Settings\Admin\Local Settings\Data aplikací\SRDownloader.err
[2011.07.14 16:38:53 | 1630,947,328 | ---- | M] () -- C:\Documents and Settings\Admin\Plocha\Ironclad-2011-BRRip-Xvid----cz-titulky.avi
[2011.07.13 14:44:19 | 001,574,744 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011.07.12 02:07:23 | 602,329,826 | ---- | M] () -- C:\Documents and Settings\Admin\Dokumenty\dnb.rar
[2011.07.12 02:03:35 | 000,000,205 | ---- | M] () -- C:\Documents and Settings\Admin\Dokumenty\PWOOptions.ini
[2011.07.12 01:49:41 | 000,149,450 | ---- | M] () -- C:\Documents and Settings\Admin\Plocha\Justin Gabriel Haircut.JPG
[2011.07.11 11:16:36 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2011.07.10 23:42:12 | 000,015,258 | ---- | M] () -- C:\Documents and Settings\Admin\Plocha\config_mp.cfg
[2011.07.06 19:52:42 | 000,041,272 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2011.07.06 19:52:42 | 000,022,712 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011.07.05 09:30:15 | 000,001,176 | ---- | M] () -- C:\Documents and Settings\Admin\Data aplikací\vso_ts_preview.xml
[2011.07.04 11:31:46 | 013,723,146 | ---- | M] () -- C:\Documents and Settings\Admin\Plocha\Plocha.rar
[2011.07.03 20:34:16 | 015,533,417 | ---- | M] () -- C:\Documents and Settings\Admin\Plocha\ba_vs_sach_grunex_5v5_citystreets_03072011.dm_1
[2011.07.01 17:52:25 | 000,000,213 | ---- | M] () -- C:\Documents and Settings\Admin\Plocha\Counter-Strike Source.url
[2011.06.30 19:54:26 | 000,107,888 | ---- | M] (Sony DADC Austria AG.) -- C:\WINDOWS\System32\CmdLineExt.dll
[2011.06.27 16:50:18 | 000,001,843 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Call of Duty - Black Ops.lnk
[2011.06.26 09:40:49 | 000,001,971 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Assassin's Creed Brotherhood.lnk
[2011.06.24 18:30:02 | 000,001,932 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\FIFA 11.lnk
[2011.06.19 11:54:09 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini

========== Files Created - No Company Name ==========

[2011.08.17 16:53:28 | 000,000,709 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Universal Anticheat 3.lnk
[2011.08.16 20:21:45 | 000,000,223 | ---- | C] () -- C:\Boot.bak
[2011.08.16 20:21:40 | 000,261,312 | RHS- | C] () -- C:\cmldr
[2011.08.16 20:01:22 | 003,072,054 | ---- | C] () -- C:\Documents and Settings\Admin\Plocha\web.bmp
[2011.07.18 15:46:13 | 122,659,520 | ---- | C] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm
[2011.07.18 15:46:13 | 000,657,312 | ---- | C] () -- C:\WINDOWS\System32\drivers\AVG\iavifw.avm
[2011.07.18 15:41:55 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2011.07.18 15:34:09 | 000,000,708 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\AVG 2011.lnk
[2011.07.18 01:31:30 | 000,000,056 | ---- | C] () -- C:\Documents and Settings\Admin\Plocha\South Park - Cartman vs Dědeček.avi.sfl
[2011.07.18 01:30:53 | 213,286,912 | ---- | C] () -- C:\Documents and Settings\Admin\Plocha\South Park - Cartman vs Dědeček.avi
[2011.07.17 22:12:32 | 000,001,108 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Sběratelská edice Heroes of Might and Magic V.lnk
[2011.07.16 16:54:38 | 009,120,408 | ---- | C] () -- C:\Documents and Settings\Admin\Plocha\WWE Wade Barrett 2011 Theme 'End Of Days'.mp3
[2011.07.16 16:53:32 | 010,079,447 | ---- | C] () -- C:\Documents and Settings\Admin\Plocha\WWE Heath Slater 2011 Theme 'Black & White'.mp3
[2011.07.14 14:50:13 | 1630,947,328 | ---- | C] () -- C:\Documents and Settings\Admin\Plocha\Ironclad-2011-BRRip-Xvid----cz-titulky.avi
[2011.07.12 02:02:17 | 602,329,826 | ---- | C] () -- C:\Documents and Settings\Admin\Dokumenty\dnb.rar
[2011.07.12 01:49:41 | 000,149,450 | ---- | C] () -- C:\Documents and Settings\Admin\Plocha\Justin Gabriel Haircut.JPG
[2011.07.10 20:02:57 | 000,015,258 | ---- | C] () -- C:\Documents and Settings\Admin\Plocha\config_mp.cfg
[2011.07.04 11:31:35 | 013,723,146 | ---- | C] () -- C:\Documents and Settings\Admin\Plocha\Plocha.rar
[2011.07.03 20:58:11 | 015,533,417 | ---- | C] () -- C:\Documents and Settings\Admin\Plocha\ba_vs_sach_grunex_5v5_citystreets_03072011.dm_1
[2011.07.02 18:55:03 | 000,002,263 | ---- | C] () -- C:\Documents and Settings\Admin\Plocha\Google Chrome.lnk
[2011.07.01 17:52:25 | 000,000,213 | ---- | C] () -- C:\Documents and Settings\Admin\Plocha\Counter-Strike Source.url
[2011.06.28 03:09:09 | 000,000,677 | ---- | C] () -- C:\Documents and Settings\Admin\Plocha\Pokemon World Online.lnk
[2011.06.27 16:50:18 | 000,001,843 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Call of Duty - Black Ops.lnk
[2011.06.26 09:40:49 | 000,001,971 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\Assassin's Creed Brotherhood.lnk
[2011.06.24 18:30:02 | 000,001,932 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\FIFA 11.lnk
[2011.04.09 18:55:28 | 000,179,261 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2011.04.08 13:28:58 | 000,041,872 | ---- | C] () -- C:\WINDOWS\System32\xfcodec.dll
[2010.12.04 00:26:49 | 000,138,160 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2010.12.04 00:26:27 | 000,271,200 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2010.12.04 00:26:19 | 000,075,136 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2010.11.06 18:23:42 | 000,008,618 | ---- | C] () -- C:\Documents and Settings\Admin\Local Settings\Data aplikací\SRDownloader.err
[2010.10.13 15:12:56 | 000,000,354 | ---- | C] () -- C:\WINDOWS\level.ini
[2010.10.09 15:01:16 | 000,000,952 | ---- | C] () -- C:\Documents and Settings\Admin\Local Settings\Data aplikací\SRDownloader.nast
[2010.09.25 15:10:04 | 000,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll
[2010.09.18 16:05:51 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\SI.bin
[2010.07.11 15:10:34 | 000,221,291 | ---- | C] () -- C:\WINDOWS\Imei_dll.dll
[2010.07.11 15:10:34 | 000,040,960 | ---- | C] () -- C:\WINDOWS\Sublock.dll
[2010.06.26 00:06:49 | 002,474,392 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
[2010.06.07 19:50:40 | 000,000,118 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI
[2010.02.24 12:27:19 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll
[2010.02.24 12:27:19 | 000,036,608 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys
[2010.02.24 12:27:13 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\Admin\Data aplikací\$_hpcst$.hpc
[2009.12.16 18:07:31 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2009.11.21 15:52:59 | 000,281,760 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2009.11.21 15:52:59 | 000,025,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2009.11.21 13:52:05 | 000,135,168 | ---- | C] () -- C:\WINDOWS\System32\LGAutorunService.exe
[2009.11.21 13:52:05 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\SendScsiCmd.dll
[2009.11.16 18:33:38 | 000,053,299 | ---- | C] () -- C:\WINDOWS\System32\pthreadVC.dll
[2009.09.12 09:00:07 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2009.07.30 17:12:23 | 000,001,176 | ---- | C] () -- C:\Documents and Settings\Admin\Data aplikací\vso_ts_preview.xml
[2009.07.19 17:48:47 | 000,682,280 | ---- | C] () -- C:\WINDOWS\System32\pbsvc.exe
[2009.07.16 17:44:34 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009.07.10 21:47:03 | 000,138,056 | ---- | C] () -- C:\Documents and Settings\Admin\Data aplikací\PnkBstrK.sys
[2009.07.10 18:21:34 | 000,000,319 | ---- | C] () -- C:\WINDOWS\game.ini
[2009.07.10 14:42:55 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2009.07.09 17:26:06 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2009.06.18 13:13:52 | 000,003,972 | ---- | C] () -- C:\WINDOWS\System32\drivers\PciBus.sys
[2009.06.18 12:59:47 | 000,000,673 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2009.06.18 12:51:18 | 000,000,125 | ---- | C] () -- C:\Documents and Settings\Admin\Local Settings\Data aplikací\fusioncache.dat
[2009.06.18 12:43:55 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2009.06.18 12:42:58 | 001,574,744 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009.06.18 11:30:45 | 000,593,920 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe
[2009.06.18 11:27:21 | 000,000,381 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2009.06.18 11:15:12 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2009.06.18 11:09:49 | 000,003,948 | R--- | C] () -- C:\WINDOWS\System32\drivers\nvphy.bin
[2009.06.18 11:09:25 | 000,031,506 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini
[2009.06.18 11:09:17 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2009.06.18 11:09:03 | 000,031,115 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2009.06.18 11:09:03 | 000,010,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2009.06.18 11:05:39 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2009.06.18 11:02:25 | 000,021,812 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2009.06.07 13:27:20 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\vbzlib1.dll
[2009.04.29 03:42:28 | 003,107,788 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat
[2009.04.29 03:42:28 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat
[2009.04.01 21:59:00 | 000,188,348 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2009.02.18 19:55:20 | 000,294,912 | ---- | C] () -- C:\WINDOWS\System32\ATIODE.exe
[2009.02.03 22:52:02 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ATIODCLI.exe
[2008.04.14 14:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2008.04.14 14:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2008.04.14 14:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2008.04.14 14:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2008.04.14 14:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2008.04.14 14:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2008.04.14 14:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
[2008.04.14 14:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2007.10.25 18:26:10 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys

========== Custom Scans ==========

< %SYSTEMDRIVE%\*.exe >
[2010.11.09 17:22:00 | 000,000,256 | ---- | M] () -- C:\2xhs.exe
[2007.11.07 08:03:18 | 000,562,688 | ---- | M] (Microsoft Corporation) -- C:\install.exe
[2010.11.10 14:00:24 | 000,000,257 | ---- | M] () -- C:\jshd.exe

< MD5 for: AGP440.SYS >
[2004.08.10 14:00:00 | 016,971,599 | ---- | M] () .cab file -- C:\Documents and Settings\Admin\Plocha\Složky\Zaloha\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008.04.14 14:00:00 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys

< MD5 for: ATAPI.SYS >
[2004.08.10 14:00:00 | 016,971,599 | ---- | M] () .cab file -- C:\Documents and Settings\Admin\Plocha\Složky\Zaloha\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008.04.14 14:00:00 | 020,102,206 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008.04.14 14:00:00 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004.08.10 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\Documents and Settings\Admin\Plocha\Složky\Zaloha\WINDOWS\system32\drivers\atapi.sys

< MD5 for: EVENTLOG.DLL >
[2008.04.14 14:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\dllcache\eventlog.dll
[2008.04.14 14:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=2EE99F67C930931EB404DADCE57E976E -- C:\WINDOWS\system32\eventlog.dll
[2004.08.10 14:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- C:\Documents and Settings\Admin\Plocha\Složky\Zaloha\WINDOWS\system32\dllcache\eventlog.dll
[2004.08.10 14:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- C:\Documents and Settings\Admin\Plocha\Složky\Zaloha\WINDOWS\system32\eventlog.dll

< MD5 for: NETLOGON.DLL >
[2004.08.10 14:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=96353FCECBA774BB8DA74A1C6507015A -- C:\Documents and Settings\Admin\Plocha\Složky\Zaloha\WINDOWS\system32\dllcache\netlogon.dll
[2004.08.10 14:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=96353FCECBA774BB8DA74A1C6507015A -- C:\Documents and Settings\Admin\Plocha\Složky\Zaloha\WINDOWS\system32\netlogon.dll
[2008.04.14 14:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\dllcache\netlogon.dll
[2008.04.14 14:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=C2ED0E3408F50BBC149D4F0936E67832 -- C:\WINDOWS\system32\netlogon.dll

< MD5 for: NVATABUS.SYS >
[2005.07.27 16:44:46 | 000,098,176 | ---- | M] (NVIDIA Corporation) MD5=303009434D4B31E0E821C624101F8B84 -- C:\Documents and Settings\Admin\Plocha\Složky\Zaloha\utils\asrock\deska\IDE\Win2K\sataraid\nvatabus.sys
[2005.07.27 16:44:46 | 000,098,176 | ---- | M] (NVIDIA Corporation) MD5=303009434D4B31E0E821C624101F8B84 -- C:\Documents and Settings\Admin\Plocha\Složky\Zaloha\utils\asrock\deska\IDE\WinXP\sataraid\nvatabus.sys
[2005.07.27 16:44:46 | 000,098,176 | ---- | M] (NVIDIA Corporation) MD5=303009434D4B31E0E821C624101F8B84 -- C:\Documents and Settings\Admin\Plocha\Složky\Zaloha\utils\asrock\sata\32bit\nvatabus.sys

< MD5 for: SCECLI.DLL >
[2004.08.10 14:00:00 | 000,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- C:\Documents and Settings\Admin\Plocha\Složky\Zaloha\WINDOWS\system32\dllcache\scecli.dll
[2004.08.10 14:00:00 | 000,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- C:\Documents and Settings\Admin\Plocha\Složky\Zaloha\WINDOWS\system32\scecli.dll
[2008.04.14 14:00:00 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\dllcache\scecli.dll
[2008.04.14 14:00:00 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=830CE8951C71F361D7D2F38416CC8BC1 -- C:\WINDOWS\system32\scecli.dll

< %systemroot%\*. /mp /s >

< End of report >

Příspěvekod **jaro3** » 18 črc 2011 19:38

Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
SRV - (wbmuky) -- File not found
SRV - (jktgzui) -- File not found
O1 HOSTS File: ([2011.07.18 15:40:21 | 000,000,098 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O32 - AutoRun File - [2006.05.25 14:26:15 | 000,323,584 | R--- | M] (Nival Interactive) - E:\AutoRun.exe -- [ CDFS ]
O32 - AutoRun File - [2006.05.25 14:26:15 | 000,050,534 | R--- | M] () - E:\AutoRun.ico -- [ CDFS ]
O32 - AutoRun File - [2006.05.25 14:25:49 | 000,000,000 | R--D | M] - E:\Autorun -- [ CDFS ]
O32 - AutoRun File - [2006.05.25 14:26:15 | 000,000,047 | R--- | M] () - E:\autorun.inf -- [ CDFS ]

:Files
C:\2xhs.exe
C:\jshd.exe
C:\install.exe

:Reg
:Commands
[resethosts]
[purity]
[emptytemp]
[start explorer]
[Reboot]

Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.

V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému

Toto otestuj na Virustotal
C:\WINDOWS\system32\drivers\atapi.sys

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/40 , nebo 1/40. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.

Vypni rez.ochrany a firewall.

Spusť F-Secure Online Scanner

Tento skener je možno použít jen v prohlížeči Internet Explorer! Postupuj podle instrukcí na stránce F-Secure pro správnou instalaci. Akceptuj licenci. Po instalaci ActiveX, klikni na Full System Scan. Když stahování skončeno, automaticky začne sken . Vyčkej konce skenu, po jeho dobu neprováděj jiné operace ani neklikej myší. Když skončí sken klikni na tlačítko Automatic clearing (recommended). Poté klikni na tlačítko Show Report a zkopíruj a vlož sem .

mEEEgy · Příspěvekod **mEEEgy** » 18 črc 2011 22:14

První log:
All processes killed
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
Service wbmuky stopped successfully!
Service wbmuky deleted successfully!
File File not found not found.
Service jktgzui stopped successfully!
Service jktgzui deleted successfully!
File File not found not found.
127.0.0.1 localhost removed from HOSTS file successfully
::1 localhost removed from HOSTS file successfully
File move failed. E:\AutoRun.exe scheduled to be moved on reboot.
File move failed. E:\AutoRun.ico scheduled to be moved on reboot.
File not found.
File move failed. E:\autorun.inf scheduled to be moved on reboot.
========== FILES ==========
C:\2xhs.exe moved successfully.
C:\jshd.exe moved successfully.
C:\install.exe moved successfully.
========== REGISTRY ==========
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: Admin
->Temp folder emptied: 772954 bytes
->Temporary Internet Files folder emptied: 419310 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Google Chrome cache emptied: 96526147 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 695 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 66 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 93,00 mb

OTL by OldTimer - Version 3.2.26.1 log created on 07182011_220502

Files\Folders moved on Reboot...
File\Folder E:\AutoRun.exe not found!
File\Folder E:\AutoRun.ico not found!
File\Folder E:\autorun.inf not found!

Registry entries deleted on Reboot...

mEEEgy · Příspěvekod **mEEEgy** » 18 črc 2011 22:14

Odkaz:
http://www.virustotal.com/file-scan/rea ... 1311019747

Příspěvekod **jaro3** » 18 črc 2011 22:49

Odkaz neodkazuje na ten soubor...

Jak to vypadá s PC?

mEEEgy · Příspěvekod **mEEEgy** » 18 črc 2011 23:12

No, ale co sem viděl tak to bylo čisté, už to bylo i v databazi, zatím probíhá kontrola a 1 nalezený spyware, du se vykoupat tak to hodím potom.

mEEEgy · Příspěvekod **mEEEgy** » 18 črc 2011 23:50

Tohle mi to vyhodilo

Hlášení kontroly

Pondělí, Červenec 18, 2011 22:20:52 - 23:46:41

Název počítače: M3NH
Typ kontroly: Kontrolovat systém na přítomnost malwaru, spywaru a programů rootkit
Cíl: C:\

Nalezený malware: 5

TrackingCookie.Yieldmanager (spyware)
Systém (Vyléčeno)
Suspicious:W32/Malware!Gemini (virus)
C:\DOCUMENTS AND SETTINGS\ADMIN\PLOCHA\SLOŽKY\ZALOHA\UTILS\TCMDR650.EXE (Nevyčištěno & Odesláno)
Suspicious:W32/Malware!Gemini (virus)
C:\DOCUMENTS AND SETTINGS\ADMIN\PLOCHA\SLOŽKY\ZALOHA\UTILS\AIDA\WINCMD+VYPAL\TCMDR650.EXE (Nevyčištěno & Odesláno)
Suspicious:W32/Malware!Gemini (virus)
C:\DOCUMENTS AND SETTINGS\ADMIN\PLOCHA\SLOŽKY\ZALOHA\PROGRAM FILES\MACROMEDIA\FLASH MX\FLASH.EXE (Nevyčištěno & Odesláno)
Trojan.Generic.IS.560592 (virus)
C:\DOCUMENTS AND SETTINGS\ADMIN\PLOCHA\SLOŽKY\ZALOHA\PROGRAM FILES\MOZILLA FIREFOX\PLUGINS\NPBERSMB.DLL (Přejmenováno & Odesláno)
Statistika

Kontrolováno:
Soubory: 88592
Systém: 4795
Nekontrolováno: 20
Akce:
Vyléčeno: 1
Přejmenováno: 1
Odstraněno: 0
Nevyčištěno: 3
Odesláno: 4
Nekontrolované soubory:
C:\PAGEFILE.SYS
C:\WINDOWS\SYSTEM32\CONFIG\DEFAULT
C:\WINDOWS\SYSTEM32\CONFIG\SAM
C:\WINDOWS\SYSTEM32\CONFIG\SOFTWARE
C:\WINDOWS\SYSTEM32\CONFIG\SYSTEM
C:\WINDOWS\SYSTEM32\CONFIG\SECURITY
C:\SYSTEM VOLUME INFORMATION\MOUNTPOINTMANAGERREMOTEDATABASE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{F2F52A5D-EAD3-489F-BE0D-11574678E7C7}\RP14\A0001831.EXE
C:\PROGRAM FILES\ESET\ESET NOD32 ANTIVIRUS\NODENABLE.EXE
C:\PROGRAM FILES\ESET\ESET SMART SECURITY\TNODUP.EXE
C:\DOCUMENTS AND SETTINGS\ADMIN\PLOCHA\SLOŽKY\ZALOHA\PROGRAM FILES\OCEAN TECHNOLOGY\GG E-SPORTS PLATFORM\GGLOADER.DLL
C:\DOCUMENTS AND SETTINGS\ADMIN\LOCAL SETTINGS\TEMP\ETILQS_5UPBI5MCDPJDFXCKICET
C:\DOCUMENTS AND SETTINGS\ADMIN\LOCAL SETTINGS\TEMP\ETILQS_DQVM985ARCAEEKELFKYN
C:\DOCUMENTS AND SETTINGS\ADMIN\LOCAL SETTINGS\TEMP\HSPERFDATA_ADMIN\6004
C:\DOCUMENTS AND SETTINGS\ADMIN\LOCAL SETTINGS\TEMP\HSPERFDATA_ADMIN\5348
C:\DOCUMENTS AND SETTINGS\ADMIN\LOCAL SETTINGS\DATA APLIKACÍ\GOOGLE\CHROME\USER DATA\DEFAULT\CACHE\DATA_0
C:\DOCUMENTS AND SETTINGS\ADMIN\LOCAL SETTINGS\DATA APLIKACÍ\GOOGLE\CHROME\USER DATA\DEFAULT\CACHE\DATA_1
C:\DOCUMENTS AND SETTINGS\ADMIN\LOCAL SETTINGS\DATA APLIKACÍ\GOOGLE\CHROME\USER DATA\DEFAULT\CACHE\DATA_2
C:\DOCUMENTS AND SETTINGS\ADMIN\LOCAL SETTINGS\DATA APLIKACÍ\GOOGLE\CHROME\USER DATA\DEFAULT\CACHE\DATA_3
C:\DOCUMENTS AND SETTINGS\ADMIN\LOCAL SETTINGS\DATA APLIKACÍ\GOOGLE\CHROME\USER DATA\DEFAULT\CACHE\INDEX

Příspěvekod **jaro3** » 19 črc 2011 08:58

Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

:Files
C:\DOCUMENTS AND SETTINGS\ADMIN\PLOCHA\SLOŽKY\ZALOHA\UTILS\TCMDR650.EXE
C:\DOCUMENTS AND SETTINGS\ADMIN\PLOCHA\SLOŽKY\ZALOHA\UTILS\AIDA\WINCMD+VYPAL\TCMDR650.EXE
C:\DOCUMENTS AND SETTINGS\ADMIN\PLOCHA\SLOŽKY\ZALOHA\PROGRAM FILES\MACROMEDIA\FLASH MX\FLASH.EXE

:Reg
:Commands
[purity]
[emptytemp]
[start explorer]
[Reboot]

Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.

mEEEgy · Příspěvekod **mEEEgy** » 19 črc 2011 14:05

All processes killed
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
========== FILES ==========
C:\DOCUMENTS AND SETTINGS\ADMIN\PLOCHA\SLOŽKY\ZALOHA\UTILS\tcmdr650.exe moved successfully.
C:\DOCUMENTS AND SETTINGS\ADMIN\PLOCHA\SLOŽKY\ZALOHA\UTILS\AIDA\WINCMD+VYPAL\tcmdr650.exe moved successfully.
C:\DOCUMENTS AND SETTINGS\ADMIN\PLOCHA\SLOŽKY\ZALOHA\PROGRAM FILES\MACROMEDIA\FLASH MX\Flash.exe moved successfully.
========== REGISTRY ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: Admin
->Temp folder emptied: 514578045 bytes
->Temporary Internet Files folder emptied: 4660507 bytes
->Java cache emptied: 29626 bytes
->FireFox cache emptied: 0 bytes
->Google Chrome cache emptied: 355057972 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 2537 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 66 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 19199855 bytes

Total Files Cleaned = 852,00 mb

OTL by OldTimer - Version 3.2.26.1 log created on 07192011_135529

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...

Problém s rychlostí PC + Vyřešeno

Re: Problém s rychlostí PC +

Re: Problém s rychlostí PC +

Re: Problém s rychlostí PC +

Re: Problém s rychlostí PC +

Re: Problém s rychlostí PC +

Re: Problém s rychlostí PC +

Re: Problém s rychlostí PC +

Re: Problém s rychlostí PC +

Re: Problém s rychlostí PC +

Re: Problém s rychlostí PC +

Re: Problém s rychlostí PC +

Re: Problém s rychlostí PC +

Kdo je online