Dobrý den,
chtěl bych vás poprosit o preventivní kontrolu logu z RSIT.
Mám podezření na neprovádění aktualizací systému.
Mám nastaveno jejich automatické sledování, ale domnívám se, že když jsem po ohlášení poslední aktualizace tuto spustil, vlastní aktualizace nejspíš neproběhla.
Následuje log z RSIT:
--------------------
Logfile of random's system information tool 1.09 (written by random/random)
Run by Václav Zíka at 2012-05-23 16:59:02
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 232 GB (76%) free of 305 GB
Total RAM: 2046 MB (71% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:59:09, on 23.5.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal
Running processes:
C:\windows\System32\smss.exe
C:\windows\system32\winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\svchost.exe
C:\windows\System32\svchost.exe
C:\windows\system32\spoolsv.exe
C:\windows\Explorer.EXE
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\windows\system32\RUNDLL32.EXE
C:\windows\RTHDCPL.EXE
C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe
C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
C:\PROGRA~1\EPSONS~1\EVENTM~1\EEventManager.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\windows\system32\WTMKM.exe
C:\Program Files\Seznam.cz\postak.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE
C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\windows\system32\nvsvc32.exe
C:\windows\system32\svchost.exe
C:\windows\system32\atwtusb.exe
C:\windows\system32\atwtusb.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\windows\system32\dllhost.exe
C:\Documents and Settings\Václav Zíka\Dokumenty\- FILES -\Viry\RSIT.exe
C:\Program Files\trend micro\Václav Zíka.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\WINDOWS\WebIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: Ukazatel S-Rank - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files\Seznam.cz\core.3.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\WINDOWS\WebIE.dll
O3 - Toolbar: Earn2Life Bar - {93344865-74BD-4873-BE65-56539D41A65C} - C:\WINDOWS\Downloaded Program Files\Earn2Life.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ArcSoft Connection Service] C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKLM\..\Run: [EEventManager] C:\PROGRA~1\EPSONS~1\EVENTM~1\EEventManager.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [MacrokeyManager] WTMKM.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [Seznam Postak] "C:\Program Files\Seznam.cz\postak.exe" -s
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: AutorunsDisabled
O4 - Global Startup: Microsoft Office Outlook 2003.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Documents and Settings\Václav Zíka\Data aplikací\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
O9 - Extra button: Earn2Life Bar - {07328B93-AFD8-4c6a-99E9-D0B3B5D6DAD9} - C:\WINDOWS\Downloaded Program Files\Earn2Life.dll
O9 - Extra 'Tools' menuitem: Earn2Life Bar - {07328B93-AFD8-4c6a-99E9-D0B3B5D6DAD9} - C:\WINDOWS\Downloaded Program Files\Earn2Life.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\WINDOWS\WebIE.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {93344865-74BD-4873-BE65-56539D41A65C} (Earn2Life Bar) - http://www.earn2life.com/plugin/Earn2Life.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\windows\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\windows\system32\browseui.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Realtime Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\windows\system32\nvsvc32.exe
O23 - Service: WTService - Unknown owner - C:\windows\system32\atwtusb.exe
--
End of file - 9464 bytes
======Scheduled tasks folder======
C:\windows\tasks\Adobe Flash Player Updater.job
C:\windows\tasks\mixpadShakeIcon.job
C:\windows\tasks\stampShakeIcon.job
C:\windows\tasks\wavepadShakeIcon.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-03-26 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\WINDOWS\WebIE.dll [2008-08-31 491520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-10-10 3834016]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-10-18 42272]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-10-18 79648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}]
Ukazatel S-Rank - C:\Program Files\Seznam.cz\core.3.dll [2011-05-25 1145888]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\WINDOWS\WebIE.dll [2008-08-31 491520]
{93344865-74BD-4873-BE65-56539D41A65C} - Earn2Life Bar - C:\WINDOWS\Downloaded Program Files\Earn2Life.dll [2008-09-24 331776]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2008-03-11 13520896]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2008-03-11 86016]
"RTHDCPL"=C:\windows\RTHDCPL.EXE [2008-06-27 16875008]
"RemoteControl"=C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe [2003-12-08 32768]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2008-05-27 413696]
"ArcSoft Connection Service"=C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [2008-04-17 98616]
"EEventManager"=C:\PROGRA~1\EPSONS~1\EVENTM~1\EEventManager.exe [2009-04-07 673616]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2012-05-08 348624]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-06-09 254696]
"MacrokeyManager"=C:\windows\system32\WTMKM.exe [2011-06-01 7144448]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2012-03-27 37296]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-01-02 843712]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Seznam Postak"=C:\Program Files\Seznam.cz\postak.exe [2011-05-25 491040]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2011-10-13 17351304]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
AutorunsDisabled
Microsoft Office Outlook 2003.lnk - C:\WINDOWS\Installer\{90110405-6000-11D3-8CFE-0150048383C9}\outicon.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\windows\system32\WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\IronWare Communication\IW FTPort Client\Cftp32.exe"="C:\Program Files\IronWare Communication\IW FTPort Client\Cftp32.exe:*:Enabled:IW FTPort Client"
"C:\Program Files\Phoenix Viewer\SLVoice.exe"="C:\Program Files\Phoenix Viewer\SLVoice.exe:*:Disabled:SLVoice"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\Epson Software\Event Manager\EEventManager.exe"="C:\Program Files\Epson Software\Event Manager\EEventManager.exe:*:Disabled:EEventManager Application"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.divxa32"=msaud32_divx.acm
"vidc.XVID"=xvidvfw.dll
======List of files/folders created in the last 1 month======
2012-05-12 14:49:56 ----HDC---- C:\windows\$NtUninstallKB2659262$
2012-05-12 14:45:48 ----SHD---- C:\Config.Msi
2012-05-12 14:44:31 ----HDC---- C:\windows\$NtUninstallKB2686509$
2012-05-12 14:44:18 ----HDC---- C:\windows\$NtUninstallKB2695962$
2012-05-12 14:43:37 ----A---- C:\windows\imsins.BAK
2012-05-12 14:43:29 ----HDC---- C:\windows\$NtUninstallKB2676562$
======List of files/folders modified in the last 1 month======
2012-05-23 16:59:07 ----D---- C:\windows\temp
2012-05-23 16:59:06 ----D---- C:\windows\Prefetch
2012-05-23 16:59:06 ----D---- C:\Program Files\trend micro
2012-05-23 16:45:35 ----D---- C:\WINDOWS
2012-05-23 16:45:35 ----A---- C:\windows\MAILTRAN.INI
2012-05-23 16:15:48 ----D---- C:\windows\system32\NtmsData
2012-05-23 16:01:03 ----D---- C:\windows\Registration
2012-05-23 15:52:09 ----D---- C:\Documents and Settings\Václav Zíka\Data aplikací\Skype
2012-05-23 15:51:59 ----A---- C:\windows\win.ini
2012-05-23 00:19:04 ----A---- C:\windows\SchedLgU.Txt
2012-05-23 00:19:03 ----D---- C:\windows\system32\CatRoot2
2012-05-22 23:56:37 ----A---- C:\windows\WDICT32.INI
2012-05-22 17:04:24 ----D---- C:\Program Files\Paint Shop Pro 6
2012-05-20 22:50:02 ----A---- C:\windows\goldwave.ini
2012-05-18 15:26:48 ----D---- C:\Program Files\Opera
2012-05-12 18:49:55 ----RSD---- C:\windows\assembly
2012-05-12 18:48:23 ----D---- C:\windows\Microsoft.NET
2012-05-12 14:59:53 ----D---- C:\windows\system32
2012-05-12 14:49:58 ----HD---- C:\windows\inf
2012-05-12 14:49:57 ----D---- C:\windows\WinSxS
2012-05-12 14:49:53 ----SHD---- C:\windows\Installer
2012-05-12 14:49:45 ----D---- C:\windows\system32\XPSViewer
2012-05-12 14:47:02 ----D---- C:\windows\Debug
2012-05-12 14:46:58 ----A---- C:\windows\system32\MRT.exe
2012-05-12 14:46:41 ----A---- C:\windows\system32\PerfStringBackup.INI
2012-05-12 14:44:30 ----HD---- C:\windows\$hf_mig$
2012-05-12 14:43:34 ----RSHDC---- C:\windows\system32\dllcache
2012-05-11 18:32:42 ----A---- C:\windows\WTRAN32.INI
2012-05-10 15:34:49 ----D---- C:\windows\SoftwareDistribution
2012-05-05 02:02:13 ----A---- C:\windows\system32\FlashPlayerApp.exe
2012-05-04 20:09:48 ----A---- C:\windows\NeroDigital.ini
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 avipbb;avipbb; C:\windows\system32\DRIVERS\avipbb.sys [2012-05-08 137928]
R1 avkmgr;avkmgr; C:\windows\system32\DRIVERS\avkmgr.sys [2011-10-11 36000]
R1 intelppm;Řadič procesoru Intel; C:\windows\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\windows\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 ssmdrv;ssmdrv; C:\windows\system32\DRIVERS\ssmdrv.sys [2010-06-17 28520]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\windows\System32\drivers\ws2ifsl.sys [2001-10-25 12032]
R2 avgntflt;avgntflt; C:\windows\system32\DRIVERS\avgntflt.sys [2012-05-08 83392]
R3 Afc;PPdus ASPI Shell; C:\windows\system32\drivers\Afc.sys [2006-11-10 18688]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\windows\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\windows\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RtkHDAud.sys [2008-06-27 4742656]
R3 moufiltr;Tablet Mouse Filter Driver; C:\windows\system32\DRIVERS\moufiltr.sys [2009-03-08 6144]
R3 mouhid;Ovladač myši standardu HID; C:\windows\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 nv;nv; C:\windows\system32\DRIVERS\nv4_mini.sys [2008-03-11 6593376]
R3 pfc;Padus ASPI Shell; C:\windows\system32\drivers\pfc.sys [2003-12-05 10368]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\windows\system32\DRIVERS\Rtenicxp.sys [2008-01-03 105856]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\windows\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 usbprint;Třída USB Printer; C:\windows\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\windows\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\windows\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 vhidmini;Generic Virtual HID Driver; C:\windows\system32\DRIVERS\walvhid.sys [2009-08-20 6144]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 CFcatchme;CFcatchme; \??\C:\DOCUME~1\VCLAVZ~1\LOCALS~1\Temp\CFcatchme.sys []
S3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
S3 k750bus;Sony Ericsson 750 driver (WDM); C:\windows\system32\DRIVERS\k750bus.sys [2005-07-07 55216]
S3 k750mdfl;Sony Ericsson 750 USB WMC Modem Filter; C:\windows\system32\DRIVERS\k750mdfl.sys [2005-07-07 6576]
S3 k750mdm;Sony Ericsson 750 USB WMC Modem Drivers; C:\windows\system32\DRIVERS\k750mdm.sys [2005-07-07 89872]
S3 k750mgmt;Sony Ericsson 750 USB WMC Device Management Drivers; C:\windows\system32\DRIVERS\k750mgmt.sys [2005-07-07 81728]
S3 k750obex;Sony Ericsson 750 USB WMC OBEX Interface Drivers; C:\windows\system32\DRIVERS\k750obex.sys [2005-07-07 79488]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 xpsec;Ovladač IPSEC; C:\windows\system32\drivers\xpsec.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2008-04-17 102712]
R2 AntiVirService;Avira Realtime Protection; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2012-05-08 110032]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2012-05-08 86224]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-10-03 153376]
R2 NVSvc;NVIDIA Display Driver Service; C:\windows\system32\nvsvc32.exe [2008-03-11 155716]
R2 WTService;WTService; C:\windows\system32\atwtusb.exe [2011-04-27 871936]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-03-12 136176]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-05 257696]
S3 aspnet_state;Stavová služba ASP.NET; C:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-03-12 136176]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosim o preventivni kontrolu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119506
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosim o preventivni kontrolu
Zdravím!
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Po skenu restartujte PC.:files
C:\Program Files\Skype\Toolbars
C:\WINDOWS\Downloaded Program Files\Earn2Life.dll
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{93344865-74BD-4873-BE65-56539D41A65C}"=-
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosim o preventivni kontrolu
Instrukce provedeny, po rebootu jsem nalezl následující log:
All processes killed
========== FILES ==========
C:\Program Files\Skype\Toolbars\Shared folder moved successfully.
C:\Program Files\Skype\Toolbars\Internet Explorer folder moved successfully.
C:\Program Files\Skype\Toolbars folder moved successfully.
C:\WINDOWS\Downloaded Program Files\Earn2Life.dll moved successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{93344865-74BD-4873-BE65-56539D41A65C} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{93344865-74BD-4873-BE65-56539D41A65C}\ not found.
========== COMMANDS ==========
[EMPTYTEMP]
User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: All Users
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: Václav Zíka
->Temp folder emptied: 298200089 bytes
->Temporary Internet Files folder emptied: 2580062212 bytes
->Java cache emptied: 70099165 bytes
->FireFox cache emptied: 50725852 bytes
->Opera cache emptied: 9604167 bytes
->Flash cache emptied: 1925482 bytes
User: Václav ZÃka
User: Václav ZĂka
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2134153 bytes
%systemroot%\System32 .tmp files removed: 2504 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 33251 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 12214712 bytes
Total Files Cleaned = 2 885,00 mb
[EMPTYFLASH]
User: Administrator
User: All Users
User: Default User
User: LocalService
User: NetworkService
User: Václav Zíka
->Flash cache emptied: 0 bytes
User: Václav ZÃka
User: Václav ZĂka
Total Flash Files Cleaned = 0,00 mb
OTM by OldTimer - Version 3.1.19.0 log created on 05242012_201754
Files moved on Reboot...
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\XZNZ1X8E\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Finternet-radio%2Fethnic;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;adu[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\XZNZ1X8E\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Finternet-radio%2Fhornipipes;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\XZNZ1X8E\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Finternet-radio%2Foldies;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;adu[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\WDER0PYV\hoto=3&thumb=portrait&no_flash=1&target=&no_fake_vid=&race=&mapause=1&models=&explicit=1&looking_for_person=1&varname=simple&height=248&find_sex=2&land=&abs_age=18-35&numpins=10 not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\WDER0PYV\size=300x250;cfp=1;rndc=1336164724;noperf=1;alias=93244161;kvpg=shoutcast;kvugc=0;kvmn=93244161;extmirroring=0;target=_blank;aduho=120;grp=164715968;defaultalias=74AS300[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\WDER0PYV\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Fradio%2Fadult;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;aduho=120;grp[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\QTXI7A9S\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Finternet-radio%2Fscottish+traditions+;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;tar[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\QTXI7A9S\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Fradio%2Fethnic%2520fusion;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;a[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\QTXI7A9S\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Fradio%2Fnew%2520age;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;aduho=1[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\QTXI7A9S\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Fradio%2Fnew%2520age;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;aduho=1[2] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\O5IF0TQF\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Finternet-radio%2Foldies;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;adu[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\O5IF0TQF\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Fradio%2Falternative;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;aduho=1[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\O5IF0TQF\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Fradio%2Fblues;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;aduho=120;grp[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\GNXFYAFT\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Finternet-radio%2Fharp;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;aduho[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\GNXFYAFT\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Finternet-radio%2Fhornpipe;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;a[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\GNXFYAFT\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Fradio%2Fethnic%2520fusion;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;a[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\8L2BKXIR\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Finternet-radio%2Fceltic;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;adu[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\8L2BKXIR\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Fradio%2Fnew%2520age;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;aduho=1[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\8L2BKXIR\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Fradio%2Freggae;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;aduho=120;gr[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\8L2BKXIR\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Fradio%2Fthemes;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;aduho=120;gr[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\4DMNGXIB\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Finternet-radio%2Fceltic;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;adu[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\4DMNGXIB\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Fradio%2Freggae;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;aduho=120;gr[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\41ANS9IN\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Finternet-radio%2Fceltic;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;adu[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\41ANS9IN\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Fradio%2Ffolk;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;aduho=120;grp=[1] not found!
Registry entries deleted on Reboot...
All processes killed
========== FILES ==========
C:\Program Files\Skype\Toolbars\Shared folder moved successfully.
C:\Program Files\Skype\Toolbars\Internet Explorer folder moved successfully.
C:\Program Files\Skype\Toolbars folder moved successfully.
C:\WINDOWS\Downloaded Program Files\Earn2Life.dll moved successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{93344865-74BD-4873-BE65-56539D41A65C} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{93344865-74BD-4873-BE65-56539D41A65C}\ not found.
========== COMMANDS ==========
[EMPTYTEMP]
User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: All Users
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: Václav Zíka
->Temp folder emptied: 298200089 bytes
->Temporary Internet Files folder emptied: 2580062212 bytes
->Java cache emptied: 70099165 bytes
->FireFox cache emptied: 50725852 bytes
->Opera cache emptied: 9604167 bytes
->Flash cache emptied: 1925482 bytes
User: Václav ZÃka
User: Václav ZĂka
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2134153 bytes
%systemroot%\System32 .tmp files removed: 2504 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 33251 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 12214712 bytes
Total Files Cleaned = 2 885,00 mb
[EMPTYFLASH]
User: Administrator
User: All Users
User: Default User
User: LocalService
User: NetworkService
User: Václav Zíka
->Flash cache emptied: 0 bytes
User: Václav ZÃka
User: Václav ZĂka
Total Flash Files Cleaned = 0,00 mb
OTM by OldTimer - Version 3.1.19.0 log created on 05242012_201754
Files moved on Reboot...
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\XZNZ1X8E\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Finternet-radio%2Fethnic;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;adu[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\XZNZ1X8E\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Finternet-radio%2Fhornipipes;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\XZNZ1X8E\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Finternet-radio%2Foldies;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;adu[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\WDER0PYV\hoto=3&thumb=portrait&no_flash=1&target=&no_fake_vid=&race=&mapause=1&models=&explicit=1&looking_for_person=1&varname=simple&height=248&find_sex=2&land=&abs_age=18-35&numpins=10 not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\WDER0PYV\size=300x250;cfp=1;rndc=1336164724;noperf=1;alias=93244161;kvpg=shoutcast;kvugc=0;kvmn=93244161;extmirroring=0;target=_blank;aduho=120;grp=164715968;defaultalias=74AS300[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\WDER0PYV\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Fradio%2Fadult;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;aduho=120;grp[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\QTXI7A9S\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Finternet-radio%2Fscottish+traditions+;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;tar[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\QTXI7A9S\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Fradio%2Fethnic%2520fusion;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;a[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\QTXI7A9S\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Fradio%2Fnew%2520age;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;aduho=1[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\QTXI7A9S\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Fradio%2Fnew%2520age;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;aduho=1[2] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\O5IF0TQF\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Finternet-radio%2Foldies;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;adu[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\O5IF0TQF\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Fradio%2Falternative;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;aduho=1[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\O5IF0TQF\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Fradio%2Fblues;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;aduho=120;grp[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\GNXFYAFT\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Finternet-radio%2Fharp;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;aduho[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\GNXFYAFT\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Finternet-radio%2Fhornpipe;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;a[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\GNXFYAFT\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Fradio%2Fethnic%2520fusion;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;a[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\8L2BKXIR\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Finternet-radio%2Fceltic;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;adu[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\8L2BKXIR\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Fradio%2Fnew%2520age;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;aduho=1[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\8L2BKXIR\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Fradio%2Freggae;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;aduho=120;gr[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\8L2BKXIR\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Fradio%2Fthemes;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;aduho=120;gr[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\4DMNGXIB\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Finternet-radio%2Fceltic;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;adu[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\4DMNGXIB\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Fradio%2Freggae;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;aduho=120;gr[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\41ANS9IN\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Finternet-radio%2Fceltic;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;adu[1] not found!
File C:\Documents and Settings\Václav Zíka\Local Settings\Temp\Temporary Internet Files\Content.IE5\41ANS9IN\size=728x90;noperf=1;alias=93242111;kvpg=shoutcast%2Fradio%2Ffolk;kvugc=0;kvui=00603cd2962b11e1840663c33caf3189;kvmn=93242111;extmirroring=0;target=_blank;aduho=120;grp=[1] not found!
Registry entries deleted on Reboot...
-
Rudy
- Site Admin
- Příspěvky: 119506
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosim o preventivni kontrolu
Vyčištěno.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosim o preventivni kontrolu
Vřelé díky. 
-
Rudy
- Site Admin
- Příspěvky: 119506
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosim o preventivni kontrolu
Nemáte zač!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?