Nefunkční aktualizace win7 - prosím o kontrolu HJT

ErzaErik · Příspěvekod **ErzaErik** » 28 led 2011 00:56

tak jsem blbec nebo tam ta složka pořád není...

Reklama

ErzaErik · Příspěvekod **ErzaErik** » 28 led 2011 01:31

Program jsem nastavil podle návodu a vyhodil mi jen "OTL.txt"

OTL logfile created on: 28/01/2011 01:20:37 - Run 4
OTL by OldTimer - Version 3.2.20.3 Folder = C:\Users\Erik\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000809 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

4.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 75.00% Memory free
8.00 Gb Paging File | 7.00 Gb Available in Paging File | 88.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 83.65 Gb Total Space | 38.82 Gb Free Space | 46.41% Space Free | Partition Type: NTFS
Drive D: | 200.13 Gb Total Space | 41.58 Gb Free Space | 20.77% Space Free | Partition Type: NTFS

Computer Name: ERIK-VAIO | User Name: Erik | Logged in as Administrator.
Boot Mode: SafeMode | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\Erik\Desktop\OTL.exe (OldTimer Tools)

========== Modules (SafeList) ==========

MOD - C:\Users\Erik\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll (Microsoft Corporation)

========== Win32 Services (SafeList) ==========

SRV:64bit: - (NisSrv) -- C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe (Microsoft Corporation)
SRV:64bit: - (MsMpSvc) -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe (Microsoft Corporation)
SRV:64bit: - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD)
SRV:64bit: - (wlcrasvc) -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe (Microsoft Corporation)
SRV:64bit: - (SampleCollector) -- C:\Program Files\Sony\VAIO Care\VCPerfService.exe (Sony Corporation)
SRV:64bit: - (VSNService) -- C:\Program Files\Sony\VAIO Smart Network\VSNService.exe (Sony Corporation)
SRV:64bit: - (VUAgent) -- C:\Program Files\Sony\VAIO Update 5\VUAgent.exe (Sony Corporation)
SRV:64bit: - (VcmXmlIfHelper) -- C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe (Sony Corporation)
SRV:64bit: - (VcmINSMgr) -- C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe (Sony Corporation)
SRV:64bit: - (VcmIAlzMgr) -- C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe (Sony Corporation)
SRV:64bit: - (VAIO Power Management) -- C:\Program Files\Sony\VAIO Power Management\SPMService.exe (Sony Corporation)
SRV:64bit: - (btwdins) -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe (Broadcom Corporation.)
SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (TeamViewer6) -- C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (TeamViewer5) -- C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (VAIO Event Service) -- C:\Program Files (x86)\SONY\VAIO Event Service\VESMgr.exe (Sony Corporation)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (ACDaemon) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.)
SRV - (UNS) Intel(R) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
SRV - (LMS) Intel(R) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
SRV - (IAStorDataMgrSvc) Intel(R) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
SRV - (PMBDeviceInfoProvider) -- C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe (Sony Corporation)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (OMSI download service) -- D:\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe ()
SRV - (uCamMonitor) -- C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe (ArcSoft, Inc.)

========== Driver Services (SafeList) ==========

DRV:64bit: - (hamachi) -- C:\Windows\SysNative\drivers\hamachi.sys (LogMeIn, Inc.)
DRV:64bit: - (TVICHW64) -- C:\Windows\SysNative\drivers\TVicHW64.sys (EnTech Taiwan)
DRV:64bit: - (NisDrv) -- C:\Windows\SysNative\drivers\NisDrvWFP.sys (Microsoft Corporation)
DRV:64bit: - (sptd) -- C:\Windows\SysNative\drivers\sptd.sys (Duplex Secure Ltd.)
DRV:64bit: - (atikmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV:64bit: - (amdkmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV:64bit: - (amdkmdap) -- C:\Windows\SysNative\drivers\atikmpag.sys (Advanced Micro Devices, Inc.)
DRV:64bit: - (fssfltr) -- C:\Windows\SysNative\drivers\fssfltr.sys (Microsoft Corporation)
DRV:64bit: - (btnetBUs) -- C:\Windows\SysNative\drivers\btnetBus.sys ()
DRV:64bit: - (IvtBtBUs) -- C:\Windows\SysNative\drivers\IvtBtBus.sys (IVT Corporation.)
DRV:64bit: - (BtHidBus) -- C:\Windows\SysNative\drivers\BtHidBus.sys (IVT Corporation.)
DRV:64bit: - (IntcDAud) Intel(R) -- C:\Windows\SysNative\drivers\IntcDAud.sys (Intel(R) Corporation)
DRV:64bit: - (igfx) -- C:\Windows\SysNative\drivers\igdkmd64.sys (Intel Corporation)
DRV:64bit: - (RTHDMIAzAudService) -- C:\Windows\SysNative\drivers\RtHDMIVX.sys (Realtek Semiconductor Corp.)
DRV:64bit: - (HECIx64) Intel(R) -- C:\Windows\SysNative\drivers\HECIx64.sys (Intel Corporation)
DRV:64bit: - (iaStor) -- C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation)
DRV:64bit: - (btwrchid) -- C:\Windows\SysNative\drivers\btwrchid.sys (Broadcom Corporation.)
DRV:64bit: - (btwavdt) -- C:\Windows\SysNative\drivers\btwavdt.sys (Broadcom Corporation.)
DRV:64bit: - (btwaudio) -- C:\Windows\SysNative\drivers\btwaudio.sys (Broadcom Corporation.)
DRV:64bit: - (btusbflt) -- C:\Windows\SysNative\drivers\btusbflt.sys (Broadcom Corporation.)
DRV:64bit: - (btwl2cap) -- C:\Windows\SysNative\drivers\btwl2cap.sys (Broadcom Corporation.)
DRV:64bit: - (Impcd) -- C:\Windows\SysNative\drivers\Impcd.sys (Intel Corporation)
DRV:64bit: - (yukonw7) -- C:\Windows\SysNative\drivers\yk62x64.sys ()
DRV:64bit: - (athr) -- C:\Windows\SysNative\drivers\athrx.sys (Atheros Communications, Inc.)
DRV:64bit: - (rimspci) -- C:\Windows\SysNative\drivers\rimssne64.sys (REDC)
DRV:64bit: - (ApfiltrService) -- C:\Windows\SysNative\drivers\Apfiltr.sys (Alps Electric Co., Ltd.)
DRV:64bit: - (tosrfbd) -- C:\Windows\SysNative\drivers\tosrfbd.sys (TOSHIBA CORPORATION)
DRV:64bit: - (risdsnpe) -- C:\Windows\SysNative\drivers\risdsne64.sys (REDC)
DRV:64bit: - (Tosrfusb) -- C:\Windows\SysNative\drivers\tosrfusb.sys (TOSHIBA CORPORATION)
DRV:64bit: - (SFEP) -- C:\Windows\SysNative\drivers\SFEP.sys (Sony Corporation)
DRV:64bit: - (TosRfSnd) -- C:\Windows\SysNative\drivers\TosRfSnd.sys (TOSHIBA Corporation)
DRV:64bit: - (Tosrfcom) -- C:\Windows\SysNative\drivers\tosrfcom.sys (TOSHIBA Corporation)
DRV:64bit: - (tosrfnds) -- C:\Windows\SysNative\drivers\tosrfnds.sys (TOSHIBA Corporation.)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (ROOTMODEM) -- C:\Windows\SysNative\drivers\rootmdm.sys (Microsoft Corporation)
DRV:64bit: - (sdbus) -- C:\Windows\SysNative\drivers\sdbus.sys (Microsoft Corporation)
DRV:64bit: - (Tosrfhid) -- C:\Windows\SysNative\drivers\Tosrfhid.sys (TOSHIBA Corporation.)
DRV:64bit: - (tosrfbnp) -- C:\Windows\SysNative\drivers\tosrfbnp.sys (TOSHIBA Corporation)
DRV:64bit: - (tosporte) -- C:\Windows\SysNative\drivers\tosporte.sys (TOSHIBA Corporation)
DRV:64bit: - (Ntfs) -- C:\Windows\SysNative\wbem\ntfs.mof ()
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:64bit: - (ArcSoftKsUFilter) -- C:\Windows\SysNative\drivers\ArcSoftKsUFilter.sys (ArcSoft, Inc.)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKCU\..\URLSearchHook: {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - C:\Users\Erik\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Centrum.cz Search"
FF - prefs.js..browser.search.selectedEngine: "Centrum.cz Search"
FF - prefs.js..browser.startup.homepage: "http://centrum.cz/firefox"
FF - prefs.js..keyword.URL: "http://search.centrum.cz/index.php?toolbar=centrum-1.0.0&q="

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010/12/08 21:25:01 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010/12/23 19:42:05 | 000,000,000 | ---D | M]

[2010/12/08 21:25:05 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Erik\AppData\Roaming\Mozilla\Extensions
[2011/01/24 18:28:12 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Erik\AppData\Roaming\Mozilla\Firefox\Profiles\hs6kni35.default\extensions
[2011/01/06 23:36:12 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2011/01/06 23:35:56 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
[2010/11/18 17:44:16 | 001,680,272 | ---- | M] (Caminova, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdjvu.dll
[2010/03/26 07:34:16 | 000,001,425 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\Cetrumcz_igeared.xml
[2010/07/23 01:28:35 | 000,000,638 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2010/07/23 01:28:35 | 000,001,687 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\mall-cz.xml
[2010/07/23 01:28:35 | 000,001,367 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010/07/23 01:28:35 | 000,000,654 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2010/07/23 01:28:35 | 000,001,179 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: ([2011/01/21 21:40:58 | 000,000,098 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2:64bit: - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - No CLSID value found.
O2 - BHO: (QIPBHO Class) - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - C:\Users\Erik\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - No CLSID value found.
O2 - BHO: (Kwyshell MidpX) - {EBE9E2B5-B526-48BC-AD46-687263EDCB0E} - D:\Kwyshell\MidpX\JadInvoker\MidpInvoker.dll (Kwyshell G.Corp)
O3 - HKLM\..\Toolbar: (Kwyshell MidpX) - {EBE9E2B5-B526-48BC-AD46-687263EDCB0E} - D:\Kwyshell\MidpX\JadInvoker\MidpInvoker.dll (Kwyshell G.Corp)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4:64bit: - HKLM..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe (Alps Electric Co., Ltd.)
O4:64bit: - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [DjVu Printer Pilot virtual printer agent] D:\DjVu Printer Pilot\djvpagent.exe ()
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [ISBMgr.exe] C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe (Sony Corporation)
O4 - HKLM..\Run: [MarketingTools] C:\Program Files (x86)\SONY\Marketing Tools\MarketingTools.exe (Sony Corporation)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKCU..\Run: [Elbserver] C:\Program Files (x86)\Sony\Media Gallery\ElbServer.exe (Sony Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8:64bit: - Extra context menu item: Link to &MidpX - D:\Kwyshell\MidpX\JadInvoker\Extent\jad_wrap.htm ()
O8:64bit: - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8:64bit: - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O8 - Extra context menu item: Link to &MidpX - D:\Kwyshell\MidpX\JadInvoker\Extent\jad_wrap.htm ()
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9:64bit: - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9:64bit: - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.46.172.36 213.46.172.37
O18:64bit: - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (systempropertiesperformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - Reg Error: Key error. - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O20 - Winlogon\Notify\VESWinlogon: DllName - VESWinlogon.dll - C:\Windows\SysWow64\VESWinlogon.dll (Sony Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011/01/27 03:23:44 | 000,000,000 | ---D | M] - D:\AutoShutdown -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

CREATERESTOREPOINT
Error creating restore point.

========== Files/Folders - Created Within 30 Days ==========

[2011/01/27 21:27:40 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\slozka
[2011/01/27 21:25:27 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\pokusná
[2011/01/27 18:56:24 | 000,000,000 | ---D | C] -- C:\Users\Erik\Desktop\jar
[2011/01/27 17:50:52 | 000,000,000 | ---D | C] -- C:\Users\Erik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MidpX J2ME Emulators Package
[2011/01/27 17:50:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MidpX J2ME Emulators Package
[2011/01/26 21:54:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Security Client
[2011/01/26 21:54:31 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2011/01/26 21:52:39 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2011/01/26 13:31:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Stardock
[2011/01/22 12:57:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpeedFan
[2011/01/21 11:53:42 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Erik\Desktop\OTL.exe
[2011/01/21 11:28:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2011/01/20 23:30:29 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2011/01/18 17:09:47 | 000,000,000 | ---D | C] -- C:\Users\Erik\AppData\Roaming\Malwarebytes
[2011/01/18 17:09:41 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2011/01/18 17:09:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/01/18 17:09:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/01/18 17:09:36 | 000,024,152 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2011/01/18 17:09:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2011/01/18 16:39:21 | 000,000,000 | ---D | C] -- C:\Users\Erik\DoctorWeb
[2011/01/17 02:45:07 | 000,000,000 | ---D | C] -- C:\Windows\pss
[2011/01/16 01:43:15 | 000,000,000 | ---D | C] -- C:\ProgramData\PCinMyHand
[2011/01/16 01:15:30 | 000,000,000 | ---D | C] -- C:\Users\Erik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AutoShutdown
[2011/01/16 01:15:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoShutdown
[2011/01/15 03:38:06 | 000,000,000 | ---D | C] -- C:\Users\Erik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AgataSoft
[2011/01/15 03:38:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AgataSoft
[2011/01/09 22:24:28 | 000,000,000 | R--D | C] -- C:\Users\Erik\Desktop\Vše
[2011/01/09 02:33:07 | 000,000,000 | ---D | C] -- C:\Users\Erik\AppData\Roaming\PhoneRemoteControl
[2011/01/09 02:32:24 | 000,000,000 | ---D | C] -- C:\Users\Erik\AppData\Local\Downloaded Installations
[2011/01/09 02:29:45 | 000,000,000 | ---D | C] -- C:\Users\Erik\AppData\Local\Sony Ericsson
[2011/01/09 02:28:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Sony Ericsson
[2011/01/08 14:41:38 | 000,000,000 | ---D | C] -- C:\Users\Erik\AppData\Local\Diagnostics
[2011/01/08 03:46:33 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\vidcap32.Exe
[2011/01/08 03:46:33 | 000,147,456 | ---- | C] (VM) -- C:\Windows\VMCap.exe
[2011/01/08 03:46:33 | 000,053,248 | ---- | C] (VM) -- C:\Windows\StillCap.exe
[2011/01/08 03:27:50 | 000,053,248 | ---- | C] ( ) -- C:\Windows\vsnpstd3.dll
[2011/01/03 03:39:42 | 000,000,000 | ---D | C] -- C:\Users\Erik\AppData\Roaming\WinBatch
[2011/01/03 02:01:52 | 000,066,560 | ---- | C] (Nokia) -- C:\Windows\SysNative\nmwcdclsx64.dll
[2011/01/03 02:01:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Installations
[2011/01/02 23:46:34 | 000,000,000 | ---D | C] -- C:\Users\Erik\AppData\Roaming\Toshiba
[2011/01/02 23:30:19 | 000,000,000 | ---D | C] -- C:\Users\Erik\Documents\Bluetooth
[2011/01/02 23:29:03 | 000,000,000 | ---D | C] -- C:\Users\Erik\AppData\Local\Toshiba
[2011/01/02 23:29:03 | 000,000,000 | ---D | C] -- C:\ProgramData\TOSHIBA
[2011/01/02 23:17:10 | 000,000,000 | -HSD | C] -- C:\Windows\SysWow64\%APPDATA%
[2011/01/02 23:14:22 | 000,000,000 | ---D | C] -- C:\Users\Erik\AppData\Local\ElevatedDiagnostics
[2011/01/02 22:56:19 | 000,000,000 | ---D | C] -- C:\Users\Erik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sony Ericsson
[2011/01/02 22:53:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mobile Witch Remote Control
[1 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/01/28 01:19:17 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/01/28 01:19:10 | 3106,480,128 | -HS- | M] () -- C:\hiberfil.sys
[2011/01/28 01:18:37 | 000,010,096 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/01/28 01:18:37 | 000,010,096 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/01/27 23:56:37 | 000,002,723 | ---- | M] () -- C:\Users\Public\Desktop\Microsoft Office Word 2007.lnk
[2011/01/26 21:54:57 | 000,001,912 | ---- | M] () -- C:\Windows\epplauncher.mif
[2011/01/25 12:55:30 | 000,146,316 | ---- | M] () -- C:\test.xml
[2011/01/24 21:57:41 | 000,221,687 | ---- | M] () -- C:\Users\Erik\Desktop\df.jpg
[2011/01/22 13:21:07 | 000,001,090 | ---- | M] () -- C:\Users\Public\Desktop\TeamViewer 6.lnk
[2011/01/22 12:57:24 | 000,000,045 | ---- | M] () -- C:\Windows\SysWow64\initdebug.nfo
[2011/01/21 21:40:58 | 000,000,098 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\Hosts
[2011/01/21 11:53:46 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Erik\Desktop\OTL.exe
[2011/01/21 11:28:16 | 000,000,561 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011/01/20 23:07:15 | 006,917,572 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011/01/20 02:40:41 | 000,000,069 | ---- | M] () -- C:\Windows\NeroDigital.ini
[2011/01/18 17:09:42 | 000,001,109 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/01/17 00:52:18 | 141,776,104 | ---- | M] () -- C:\Users\Erik\Desktop\Zaklady bunecne biologie - ALBERTS.pdf
[2011/01/16 01:15:30 | 000,000,685 | ---- | M] () -- C:\Users\Erik\Desktop\AutoShutdown.lnk
[2011/01/14 15:34:20 | 000,002,393 | ---- | M] () -- C:\Users\Erik\Desktop\Google Chrome.lnk
[2011/01/13 01:02:11 | 000,000,000 | ---- | M] () -- C:\Windows\SysNative\tree
[2011/01/09 22:13:25 | 000,000,032 | ---- | M] () -- C:\Windows\0
[2011/01/09 02:28:44 | 000,000,874 | ---- | M] () -- C:\Users\Public\Desktop\Sony Ericsson PC Suite 6.0.lnk
[2011/01/06 23:35:55 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2011/01/03 02:03:19 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\BSPRINT.INI
[2011/01/03 02:02:23 | 000,000,000 | ---- | M] () -- C:\Windows\SysNative\0
[1 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/01/27 23:38:18 | 000,002,723 | ---- | C] () -- C:\Users\Public\Desktop\Microsoft Office Word 2007.lnk
[2011/01/26 21:54:57 | 000,001,912 | ---- | C] () -- C:\Windows\epplauncher.mif
[2011/01/24 21:57:41 | 000,221,687 | ---- | C] () -- C:\Users\Erik\Desktop\df.jpg
[2011/01/22 12:57:24 | 000,000,045 | ---- | C] () -- C:\Windows\SysWow64\initdebug.nfo
[2011/01/21 11:28:16 | 000,000,561 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011/01/18 17:09:42 | 000,001,109 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/01/17 00:44:22 | 141,776,104 | ---- | C] () -- C:\Users\Erik\Desktop\Zaklady bunecne biologie - ALBERTS.pdf
[2011/01/16 01:15:30 | 000,000,685 | ---- | C] () -- C:\Users\Erik\Desktop\AutoShutdown.lnk
[2011/01/13 01:02:11 | 000,000,000 | ---- | C] () -- C:\Windows\SysNative\tree
[2011/01/09 02:28:44 | 000,000,874 | ---- | C] () -- C:\Users\Public\Desktop\Sony Ericsson PC Suite 6.0.lnk
[2011/01/08 03:46:33 | 000,024,576 | ---- | C] () -- C:\Windows\RunSetup.dll
[2011/01/08 03:27:50 | 000,788,480 | ---- | C] () -- C:\Windows\SysNative\drivers\snpstd3.sys
[2011/01/07 19:00:05 | 000,001,090 | ---- | C] () -- C:\Users\Public\Desktop\TeamViewer 6.lnk
[2011/01/03 02:03:19 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\BSPRINT.INI
[2011/01/03 02:02:23 | 000,000,032 | ---- | C] () -- C:\Windows\0
[2011/01/03 02:02:23 | 000,000,000 | ---- | C] () -- C:\Windows\SysNative\0
[2010/12/11 22:03:09 | 000,036,864 | ---- | C] () -- C:\Windows\SysWow64\djvppm.dll
[2010/11/18 15:41:03 | 000,047,104 | ---- | C] () -- C:\Windows\SysWow64\KMVIDC32.DLL
[2010/11/08 15:00:04 | 000,129,024 | ---- | C] () -- C:\Windows\SysWow64\AVERM.dll
[2010/11/08 15:00:04 | 000,028,672 | ---- | C] () -- C:\Windows\SysWow64\AVEQT.dll
[2010/11/02 23:01:13 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2010/10/24 15:30:13 | 000,000,026 | ---- | C] () -- C:\Windows\Irremote.ini
[2010/10/24 00:46:24 | 000,000,761 | ---- | C] () -- C:\Windows\m3jp2k.ini
[2010/10/24 00:46:24 | 000,000,702 | ---- | C] () -- C:\Windows\mmtvmj.ini
[2010/10/24 00:46:23 | 000,000,714 | ---- | C] () -- C:\Windows\m3jpeg.ini
[2010/10/24 00:46:20 | 000,019,968 | ---- | C] () -- C:\Windows\SysWow64\cpuinf32.dll
[2010/10/24 00:46:18 | 000,152,064 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2010/10/24 00:46:15 | 000,761,856 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2010/10/23 21:29:49 | 000,000,090 | ---- | C] () -- C:\Windows\WININIT.INI
[2009/12/26 01:43:03 | 000,208,896 | ---- | C] () -- C:\Windows\SysWow64\iglhsip32.dll
[2009/12/26 01:43:03 | 000,143,360 | ---- | C] () -- C:\Windows\SysWow64\iglhcp32.dll
[2009/07/14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 22:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/06/07 12:27:20 | 000,073,728 | ---- | C] () -- C:\Windows\SysWow64\vbzlib1.dll

========== Custom Scans ==========

< %SYSTEMDRIVE%\*.* >
[2011/01/28 01:19:10 | 3106,480,128 | -HS- | M] () -- C:\hiberfil.sys
[2010/10/24 00:02:20 | 000,708,042 | ---- | M] () -- C:\lv.log
[2006/12/01 23:37:14 | 000,904,704 | ---- | M] (Microsoft Corporation) -- C:\msdia80.dll
[2011/01/28 01:19:14 | 4141,977,600 | -HS- | M] () -- C:\pagefile.sys
[2010/10/23 21:28:37 | 000,002,895 | ---- | M] () -- C:\RHDSetup.log
[2010/10/24 00:02:05 | 000,000,076 | -H-- | M] () -- C:\splash.idx
[2011/01/25 12:55:30 | 000,146,316 | ---- | M] () -- C:\test.xml
[2010/06/14 15:30:26 | 000,004,112 | -H-- | M] () -- C:\version

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[1 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\drivers\*.sys /90 >
[2010/10/30 10:21:27 | 000,010,240 | ---- | M] (Windows (R) Win 7 DDK provider) -- C:\Windows\SysWOW64\drivers\FldSafe.sys
[2010/12/20 18:09:00 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys

< End of report >

ErzaErik · Příspěvekod **ErzaErik** » 28 led 2011 01:34

..a do třetice posílám zase screen:

ErzaErik · Příspěvekod **ErzaErik** » 28 led 2011 01:39

...mít kam udělat zálohu, tak to celé přeinstaluju a neotravuju vás tady. Díky za všechnu pomoc

Příspěvekod **jaro3** » 28 led 2011 10:13

Nemáš zač , ještě jsme nic neudělali..

C:\Windows\SysNative\tree----najdi v TotalCommanderu..

Tyhle složky si sám vytvářel?
C:\Windows\SysNative\slozka
C:\Windows\SysNative\pokusná-----mohl si je dát do system32 a ony se překopírovaly , nebo jinam..

program AutoShutdown jsi sám instaloval?

Problém bude ve souboru hosts.

Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
IE - HKCU\..\URLSearchHook: {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - C:\Users\Erik\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
O1 HOSTS File: ([2011/01/21 21:40:58 | 000,000,098 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2:64bit: - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - No CLSID value found.
O2 - BHO: (QIPBHO Class) - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - C:\Users\Erik\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O18:64bit: - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found

:Files
C:\WINDOWS\System32\*.tmp 
C:\WINDOWS\*.tmp 
C:\WINDOWS\system32\*.tmp.dll 
C:\WINDOWS\System32\dllcache\*.tmp
C:\WINDOWS\system32\SET*.tmp 
c:\windows\Tasks\*.job 
C:\*.tmp
C:\Documents and Settings\All Users\Data aplikací\*.tmp
C:\Windows\SysNative\drivers\*.tmp
C:\Windows\SysWow64\drivers\*.tmp
C:\Program Files (x86)\*.tmp
C:\Windows\SysWow64\*.tmp
C:\Windows\SysNative\*.tmp
C:\Windows\0
C:\Windows\SysNative\0
ipconfig /flushdns /c

:Reg
:Commands
[resethosts]
[purity]
[emptytemp]
[EMPTYFLASH]
[start explorer]
[Reboot]

Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.

V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému

Toto otestuj na Virustotal
C:\Windows\epplauncher.mif

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/40 , nebo 1/40. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.

ErzaErik · Příspěvekod **ErzaErik** » 28 led 2011 14:32

Po zadání "C:\Windows\SysNative\tree" vyskočí příkazový řádek, chvíli se něco děje a potom se sám vypne. Ani s příkazovým řádkem samotným jsem moc úspěšný nebyl (viz. screen).

C:\Windows\SysNative\slozka
C:\Windows\SysNative\pokusná --- tyhle složky jsem vytvořil já, asi když jsem objevoval, co umí příkazový řádek :-D

AutoShutdown.exe jsem používal k automatickým akcím s pc (vypnutí, restart, odhlášení,...)

VirusTotal: http://www.virustotal.com/file-scan/rep ... 1296221326

ErzaErik · Příspěvekod **ErzaErik** » 28 led 2011 14:47

...výstup z OTL:
(možná tam nebudou sedět velikosti smazaných souborů, je to tím, že napoprvé jsem do toho textu něco nechtě připsal, tak jsem OTL spustil znovu)

All processes killed
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}\ not found.
File C:\Users\Erik\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll not found.
127.0.0.1 localhost removed from HOSTS file successfully
::1 localhost removed from HOSTS file successfully
64bit-Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}\ not found.
File C:\Users\Erik\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\grooveLocalGWS\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{88FED34C-F0CA-4636-A375-3CB6248B04CD}\ not found.
File {88FED34C-F0CA-4636-A375-3CB6248B04CD} - Reg Error: Key error. File not found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ms-help\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{314111c7-a502-11d2-bbca-00c04f8ec294}\ not found.
File {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found not found.
========== FILES ==========
File\Folder C:\WINDOWS\System32\*.tmp not found.
File\Folder C:\WINDOWS\*.tmp not found.
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\System32\dllcache\*.tmp not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
File\Folder c:\windows\Tasks\*.job not found.
File\Folder C:\*.tmp not found.
File\Folder C:\Documents and Settings\All Users\Data aplikací\*.tmp not found.
File\Folder C:\Windows\SysNative\drivers\*.tmp not found.
File\Folder C:\Windows\SysWow64\drivers\*.tmp not found.
File\Folder C:\Program Files (x86)\*.tmp not found.
File\Folder C:\Windows\SysWow64\*.tmp not found.
File\Folder C:\Windows\SysNative\*.tmp not found.
File\Folder C:\Windows\0 not found.
File\Folder C:\Windows\SysNative\0 not found.
< ipconfig /flushdns /c >
Konfigurace protokolu IP syst‚mu Windows
MezipamŘś pýekl d nˇ DNS byla ŁspŘçnŘ vypr zdnŘna.
C:\Users\Erik\Desktop\cmd.bat deleted successfully.
C:\Users\Erik\Desktop\cmd.txt deleted successfully.
========== REGISTRY ==========
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Erik
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 13846 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 49554 bytes
%systemroot%\sysnative\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 0.00 mb

[EMPTYFLASH]

User: Administrator

User: All Users

User: Default

User: Default User

User: Erik
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0.00 mb

OTL by OldTimer - Version 3.2.20.3 log created on 01282011_143740

Files\Folders moved on Reboot...
C:\Users\Erik\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

Registry entries deleted on Reboot...

Příspěvekod **jaro3** » 28 led 2011 15:26

C:\Windows\SysNative\tree----psal jsem otevřít v TotalCommanderu , nemáš ho?

C:\Windows\SysNative\slozka
C:\Windows\SysNative\pokusná
to smažeme..

tree taky...

Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

:Files
C:\Windows\SysNative\slozka
C:\Windows\SysNative\pokusná
C:\Windows\SysNative\tree

:Reg
:Commands
[purity]
[emptytemp]
[start explorer]
[Reboot]

Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.

C:\windows\system32\drivers\etc\hosts
tento soubor otevři v pozn. bloku a celý jeho obsah sem vlož...

ErzaErik · Příspěvekod **ErzaErik** » 28 led 2011 17:14

Když jsem tohle Total commanderu napsal, tak mi vyhodil příkazový řádek, kde se chvíli něco načítalo a potom se sám zavřel. Když jsem po něm chtěl vyjet umístění jen "C:\Windows\SysNative", tak viz. screen.

OTL:

All processes killed
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
========== FILES ==========
C:\Windows\SysNative\slozka folder moved successfully.
C:\Windows\SysNative\pokusná folder moved successfully.
C:\Windows\SysNative\tree moved successfully.
========== REGISTRY ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Erik
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Google Chrome cache emptied: 11408102 bytes
->Flash cache emptied: 621 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 109279 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 49853 bytes
%systemroot%\sysnative\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 11.00 mb

OTL by OldTimer - Version 3.2.20.3 log created on 01282011_170301

Files\Folders moved on Reboot...
C:\Users\Erik\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

Registry entries deleted on Reboot...

"C:\windows\system32\drivers\etc\hosts":

127.0.0.1 localhost
::1 localhost

Příspěvekod **jaro3** » 28 led 2011 19:28

V TC klikej a najdeš , viz screen

Nic nevyhledávej , nevkládej.
Pak poklepej na soubor hosts a otevři v pozn. bloku , obsah sem vlož.

ten druhý najdi ve win rovnou:
C:\windows\system32\drivers\etc\hosts
udělej to samé.

Nebo se na to vykašli a :
Pokud zadáš: Start-->Spustit a vložíš do řádku:

Kód: Vybrat vše

notepad C:\Windows\system32\drivers\etc\hosts

měl by se ti otevřít soubor hosts s obsahem:
Kód: Vybrat vše
127.0.0.1 localhost

Vlož sem celý jeho obsah.

ErzaErik · Příspěvekod **ErzaErik** » 28 led 2011 21:29

"c:\windows\sysnative\drivers\etc\hosts":

127.0.0.1 localhost
::1 localhost

"c:\windows\system32\drivers\etc\hosts":

127.0.0.1 localhost
::1 localhost

Příspěvekod **jaro3** » 28 led 2011 21:48

jen tohle tam je???

Vytvoř si na disku C novou složku a pojmenuj ji jako pch a do ní si ulož tento skript a hosts soubor.

Vytvoř si originální hosts soubor:
Spusť Poznámkový blok (Notepad): Start -> Spustit.. otevře se ti okno a do něj napiš notepad a dej Ok.
Otevře se ti poznámkový blok a do něj zkopíruj celý text

Kód: Vybrat vše

# Copyright © 1993-1999 Microsoft Corp.
#  
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#  
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#  
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a "#" symbol.
#  
# For example:
#  
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
#  
127.0.0.1 localhost

Zvol v menu záložku Soubor -> Uložit jako... a nastav/vyplň tyto údaje
Název souboru: hosts
Uložit jako typ: Všechny soubory
Ulož tento soubor do již předem vytvořeného adresáře (pch).

Pak jdi přes Start => Spustit a proveď tento příkaz.
cmd /c copy c:\pch\hosts %WINDIR%\system32\drivers\etc\hosts
proveď restart PC a po najetí zpět proveď tento příkaz.
cmd /c dir /a %WINDIR%\system32\drivers\etc>>dirl.txt&dirl.txt&del dirl.txt
a vlož sem ten log co se ti zobrazí.

Nefunkční aktualizace win7 - prosím o kontrolu HJT

Re: Nefunkční aktualizace win7 - prosím o kontrolu HJT

Re: Nefunkční aktualizace win7 - prosím o kontrolu HJT

Re: Nefunkční aktualizace win7 - prosím o kontrolu HJT

Re: Nefunkční aktualizace win7 - prosím o kontrolu HJT

Re: Nefunkční aktualizace win7 - prosím o kontrolu HJT

Re: Nefunkční aktualizace win7 - prosím o kontrolu HJT

Re: Nefunkční aktualizace win7 - prosím o kontrolu HJT

Re: Nefunkční aktualizace win7 - prosím o kontrolu HJT

Re: Nefunkční aktualizace win7 - prosím o kontrolu HJT

Re: Nefunkční aktualizace win7 - prosím o kontrolu HJT

Re: Nefunkční aktualizace win7 - prosím o kontrolu HJT

Re: Nefunkční aktualizace win7 - prosím o kontrolu HJT

Kdo je online