Preventívka

[adeam]

Ahojte, potreboval by som prekontrolovať log z rsit či tam ešte niečo ostalo, dneska mi mrzol pc, prečistil som to podľa rsit (zo školenia si ešte stále niečo pamätám) PC momentálne nemrzne, ide už cca normálne
Ďakujem za kontrolu

Logfile of random's system information tool 1.09 (written by random/random)
Run by adeam at 2012-08-11 15:23:42
Microsoft Windows XP Professional Service Pack 3
System drive C: has 15 GB (38%) free of 40 GB
Total RAM: 2550 MB (77% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 3:23:45 PM, on 8/11/2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
c:\docume~1\adeam\locals~1\temp\drp\dp_sound_sigmatel_wnt5_x86-32_1102\drp\d\s\i10\STacSV.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\ROCCAT\Kone[+] Mouse\Kone[+]Monitor.EXE
C:\Program Files\Western Digital\WD Apps\WDDriveAutoUnlock.exe
C:\Program Files\Western Digital\WD SmartWare\WDDMStatus.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Western Digital\WD SmartWare\WDDMService.exe
C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe
C:\Program Files\Western Digital\WD SmartWare\WDRulesEngine.exe
C:\Program Files\Western Digital\WD SmartWare\WDFME.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Documents and Settings\adeam\My Documents\Downloads\RSIT.exe
C:\Program Files\trend micro\adeam.exe

O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [RoccatKone+] "C:\Program Files\ROCCAT\Kone[+] Mouse\Kone[+]Monitor.EXE"
O4 - HKLM\..\Run: [WD Drive Unlocker] C:\Program Files\Western Digital\WD Apps\WDDriveAutoUnlock.exe
O4 - HKLM\..\Run: [WD Quick View] C:\Program Files\Western Digital\WD SmartWare\WDDMStatus.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{5B30544F-D41B-4967-A539-CB28FD3D5131}: NameServer = 8.8.8.8,8.8.4.4
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - c:\docume~1\adeam\locals~1\temp\drp\dp_sound_sigmatel_wnt5_x86-32_1102\drp\d\s\i10\STacSV.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: WDDMService - WDC - C:\Program Files\Western Digital\WD SmartWare\WDDMService.exe
O23 - Service: WD Drive Manager (WDDriveService) - Western Digital - C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe
O23 - Service: WDFME (WDFMEService) - Western Digital - C:\Program Files\Western Digital\WD SmartWare\WDFME.exe
O23 - Service: WDRules (WDRulesService) - Western Digital - C:\Program Files\Western Digital\WD SmartWare\WDRulesEngine.exe

--
End of file - 4088 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1229272821-602609370-1177238915-1003Core.job
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1229272821-602609370-1177238915-1003UA.job
C:\WINDOWS\tasks\RunOW.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\adeam\Application Data\Mozilla\Firefox\Profiles\5sg1hk2n.default

"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.3.300.270 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_270.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.5.1]
"Description"=
"Path"=C:\WINDOWS\system32\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.5.1]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\3.0.40818.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\searchplugins\
amazondotcom.xml
bing.xml
eBay.xml
google.xml
twitter.xml
wikipedia.xml
yahoo.xml

C:\Documents and Settings\adeam\Application Data\Mozilla\Firefox\Profiles\5sg1hk2n.default\extensions\
{5384767E-00D9-40E9-B72F-9CC39D655D6F}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-08-06 453104]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-08-06 157680]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2011-01-07 111208]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2011-01-07 13880424]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2011-11-22 2219184]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-01-03 843712]
"RoccatKone+"=C:\Program Files\ROCCAT\Kone[+] Mouse\Kone[+]Monitor.EXE [2011-07-12 552960]
"WD Drive Unlocker"=C:\Program Files\Western Digital\WD Apps\WDDriveAutoUnlock.exe [2011-12-16 1687968]
"WD Quick View"=C:\Program Files\Western Digital\WD SmartWare\WDDMStatus.exe [2011-12-15 3998616]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update]
C:\Documents and Settings\adeam\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe [2012-07-12 138096]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GarenaMessenger]
C:\Program Files\Garena Plus\GarenaMessenger.exe -silentrun []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files\Skype\Phone\Skype.exe [2012-02-29 17148552]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
D:\Steam\Steam.exe [2012-08-09 1353080]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-01-17 252296]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^LOLRecorder.lnk]
I:\LOLReplay\LOLRecorder.exe [2012-04-27 497664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Pandion.lnk]
C:\PROGRA~1\Pandion\APPLIC~1\pandion.exe [2010-04-14 549888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"gupdatem"=3
"gupdate"=2

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 239496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"D:\Steam\Steam.exe"="D:\Steam\Steam.exe:*:Enabled:Steam"
"C:\Program Files\BitTorrent\BitTorrent.exe"="C:\Program Files\BitTorrent\BitTorrent.exe:*:Enabled:BitTorrent"
"C:\Program Files\HLSW\hlsw.exe"="C:\Program Files\HLSW\hlsw.exe:*:Enabled:HLSW Application"
"C:\Riot Games\League of Legends\lol.launcher.exe"="C:\Riot Games\League of Legends\lol.launcher.exe:*:Enabled:Play League of Legends"
"C:\Documents and Settings\adeam\Local Settings\Application Data\Facebook\Video\Skype\FacebookVideoCalling.exe"="C:\Documents and Settings\adeam\Local Settings\Application Data\Facebook\Video\Skype\FacebookVideoCalling.exe:*:Enabled:Facebook Video Calling Plugin"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"D:\Steam\steamapps\common\alien swarm\srcds.exe"="D:\Steam\steamapps\common\alien swarm\srcds.exe:*:Enabled:Alien Swarm Dedicated Server"
"D:\Steam\steamapps\common\eufloria\Eufloria.exe"="D:\Steam\steamapps\common\eufloria\Eufloria.exe:*:Enabled:Eufloria"
"D:\Steam\steamapps\common\stronghold kingdoms\StrongholdKingdoms.exe"="D:\Steam\steamapps\common\stronghold kingdoms\StrongholdKingdoms.exe:*:Enabled:Stronghold Kingdoms"
"C:\Program Files\TeamViewer\Version7\TeamViewer.exe"="C:\Program Files\TeamViewer\Version7\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe"="C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"D:\Steam\steamapps\common\alien swarm\swarm.exe"="D:\Steam\steamapps\common\alien swarm\swarm.exe:*:Enabled:Alien Swarm"
"D:\Steam\steamapps\common\left 4 dead 2\left4dead2.exe"="D:\Steam\steamapps\common\left 4 dead 2\left4dead2.exe:*:Enabled:Left 4 Dead 2"
"D:\Steam\steamapps\adeaminator\counter-strike\hl.exe"="D:\Steam\steamapps\adeaminator\counter-strike\hl.exe:*:Enabled:Counter-Strike"
"D:\Steam\steamapps\common\dota 2 beta\dota.exe"="D:\Steam\steamapps\common\dota 2 beta\dota.exe:*:Enabled:Dota 2"
"C:\Program Files\GigaTribe\gigatribe.exe"="C:\Program Files\GigaTribe\gigatribe.exe:*:Enabled:GigaTribe"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=yv12vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
"MSVideo8"=VfWWDM32.dll

======List of files/folders created in the last 1 month======

2012-08-11 15:03:40 ----A---- C:\WINDOWS\ntbtlog.txt
2012-08-06 19:48:23 ----D---- C:\Program Files\Common Files\Java
2012-08-06 19:47:53 ----D---- C:\Program Files\Oracle
2012-08-06 19:47:44 ----D---- C:\Documents and Settings\adeam\Application Data\Oracle
2012-08-06 19:47:41 ----A---- C:\WINDOWS\system32\npDeployJava1.dll
2012-08-06 19:47:41 ----A---- C:\WINDOWS\system32\javaws.exe
2012-08-06 19:42:56 ----D---- C:\Documents and Settings\adeam\Application Data\.minecraft
2012-08-05 17:38:19 ----D---- C:\Program Files\trend micro
2012-08-05 17:38:18 ----D---- C:\rsit
2012-07-30 00:17:22 ----D---- C:\Documents and Settings\All Users\Application Data\Western Digital
2012-07-30 00:16:34 ----A---- C:\WINDOWS\system32\drivers\wdcsam.sys
2012-07-30 00:16:33 ----DC---- C:\WINDOWS\system32\DRVSTORE
2012-07-30 00:16:28 ----D---- C:\Program Files\Western Digital
2012-07-30 00:16:28 ----D---- C:\Program Files\Common Files\Western Digital
2012-07-29 21:42:43 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2012-07-29 21:42:42 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2012-07-29 21:42:41 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2012-07-29 21:42:41 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2012-07-29 21:42:40 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2012-07-29 21:42:40 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2012-07-29 21:42:39 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2012-07-29 21:42:39 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2012-07-29 21:42:38 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2012-07-29 21:42:38 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2012-07-29 21:42:38 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2012-07-29 21:42:37 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2012-07-29 21:42:37 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2012-07-29 21:42:37 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2012-07-29 21:42:36 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2012-07-29 21:42:36 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2012-07-29 21:42:36 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2012-07-29 21:42:35 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2012-07-29 21:42:35 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2012-07-29 21:42:32 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2012-07-29 21:42:32 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2012-07-29 21:42:32 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2012-07-29 21:42:31 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2012-07-29 21:42:31 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2012-07-29 21:42:29 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2012-07-29 21:42:29 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2012-07-29 21:42:29 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2012-07-29 21:42:29 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2012-07-29 21:42:28 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2012-07-29 21:42:28 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2012-07-29 21:42:28 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2012-07-29 21:42:27 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2012-07-29 21:42:27 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2012-07-29 21:42:26 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2012-07-29 21:42:26 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2012-07-29 21:42:26 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2012-07-29 21:42:26 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2012-07-29 21:42:25 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2012-07-29 21:42:25 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2012-07-29 21:42:25 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2012-07-29 21:42:24 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2012-07-29 21:42:24 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2012-07-29 21:42:23 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2012-07-29 21:42:23 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2012-07-29 21:42:23 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2012-07-29 21:42:22 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2012-07-29 21:42:22 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2012-07-29 21:42:22 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2012-07-29 21:42:22 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2012-07-29 21:42:21 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2012-07-29 21:42:18 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2012-07-29 21:42:18 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2012-07-29 21:42:18 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2012-07-29 21:42:15 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2012-07-29 21:42:15 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2012-07-29 21:42:14 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2012-07-29 21:42:14 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2012-07-29 21:42:14 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2012-07-29 21:42:14 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2012-07-29 21:42:13 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2012-07-29 21:42:13 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2012-07-29 21:42:13 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2012-07-29 21:42:12 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2012-07-29 21:42:12 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2012-07-29 21:42:12 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2012-07-29 21:42:05 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2012-07-29 21:42:04 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2012-07-29 21:42:04 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2012-07-29 21:42:04 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2012-07-29 21:42:04 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2012-07-29 21:42:03 ----A---- C:\WINDOWS\system32\xinput9_1_0.dll
2012-07-29 21:42:03 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2012-07-29 21:42:02 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2012-07-29 21:42:02 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2012-07-29 21:42:00 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2012-07-16 15:20:31 ----A---- C:\WINDOWS\system32\drivers\bthpan.sys
2012-07-16 15:19:50 ----A---- C:\WINDOWS\system32\drivers\rfcomm.sys
2012-07-16 15:19:49 ----A---- C:\WINDOWS\system32\drivers\BthEnum.sys
2012-07-16 15:19:46 ----A---- C:\WINDOWS\system32\irmon.dll
2012-07-16 15:19:45 ----A---- C:\WINDOWS\system32\irftp.exe
2012-07-16 15:19:44 ----A---- C:\WINDOWS\system32\wshirda.dll
2012-07-16 15:19:20 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2012-07-12 23:26:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2691442$
2012-07-12 23:25:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2718523$
2012-07-12 23:25:51 ----HDC---- C:\WINDOWS\$NtUninstallKB2655992$
2012-07-12 23:25:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2719985$
2012-07-12 23:23:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2698365$

======List of files/folders modified in the last 1 month======

2012-08-11 15:23:43 ----D---- C:\WINDOWS\Temp
2012-08-11 15:23:06 ----D---- C:\Program Files\Java
2012-08-11 15:23:00 ----D---- C:\WINDOWS\Prefetch
2012-08-11 15:22:54 ----D---- C:\WINDOWS\system32
2012-08-11 15:22:50 ----SHD---- C:\WINDOWS\Installer
2012-08-11 15:22:00 ----RD---- C:\Program Files
2012-08-11 15:21:15 ----D---- C:\WINDOWS\system32\CatRoot2
2012-08-11 15:20:08 ----D---- C:\Documents and Settings\All Users\Application Data\Hi-Rez Studios
2012-08-11 15:17:39 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2012-08-11 15:13:21 ----SHD---- C:\WINDOWS\CSC
2012-08-11 15:03:40 ----D---- C:\WINDOWS
2012-08-11 02:00:09 ----A---- C:\WINDOWS\SchedLgU.Txt
2012-08-10 13:23:37 ----D---- C:\Program Files\SpeedFan
2012-08-06 22:04:48 ----D---- C:\Documents and Settings\adeam\Application Data\BitTorrent
2012-08-06 19:48:23 ----D---- C:\Program Files\Common Files
2012-08-06 19:47:23 ----A---- C:\WINDOWS\system32\javaw.exe
2012-08-06 19:47:23 ----A---- C:\WINDOWS\system32\java.exe
2012-08-05 21:43:53 ----D---- C:\Documents and Settings\adeam\Application Data\Skype
2012-08-03 16:02:38 ----D---- C:\Program Files\TeamSpeak 3 Client
2012-08-02 23:21:07 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2012-08-02 22:19:47 ----D---- C:\Program Files\Mozilla Firefox
2012-08-02 21:58:16 ----D---- C:\Riot Games
2012-08-02 19:36:23 ----HD---- C:\WINDOWS\inf
2012-07-31 20:08:24 ----D---- C:\Documents and Settings\adeam\Application Data\HLSW
2012-07-30 00:16:37 ----D---- C:\WINDOWS\system32\drivers
2012-07-29 21:42:45 ----D---- C:\WINDOWS\system32\DirectX
2012-07-29 21:42:12 ----RSD---- C:\WINDOWS\assembly
2012-07-29 21:42:07 ----D---- C:\WINDOWS\Microsoft.NET
2012-07-29 20:36:21 ----D---- C:\Program Files\Notepad++
2012-07-29 20:36:21 ----D---- C:\Documents and Settings\adeam\Application Data\Notepad++
2012-07-16 15:20:36 ----RSHDC---- C:\WINDOWS\system32\dllcache
2012-07-16 15:19:30 ----D---- C:\WINDOWS\security
2012-07-12 23:26:02 ----A---- C:\WINDOWS\imsins.BAK
2012-07-12 23:25:56 ----HD---- C:\WINDOWS\$hf_mig$
2012-07-12 23:23:55 ----A---- C:\WINDOWS\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 giveio;giveio; C:\WINDOWS\system32\giveio.sys [1996-04-03 5248]
R0 mv61xx;mv61xx; C:\WINDOWS\system32\DRIVERS\mv61xx.sys [2010-10-26 159024]
R0 ohci1394;Texas Instruments OHCI Compliant IEEE 1394 Host Controller; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 speedfan;speedfan; C:\WINDOWS\system32\speedfan.sys [2011-03-18 25240]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2011-11-21 115008]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2011-11-21 94872]
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 36352]
R1 kbdhid;Keyboard HID Driver; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2011-11-21 141264]
R3 Arp1394;1394 ARP Client Protocol; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 BthEnum;Bluetooth Request Block Driver; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-14 17024]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-14 101120]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-14 18944]
R3 e1express;Intel(R) PRO/1000 PCI Express Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e1e5132.sys [2010-03-26 243928]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HECI;Intel(R) Management Engine Interface; C:\WINDOWS\system32\DRIVERS\HECI.sys [2007-07-09 44416]
R3 hidusb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2007-02-18 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2011-01-08 9888672]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda32.sys [2010-11-12 100456]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-14 59136]
R3 STHDA;IDT High Definition Audio CODEC; C:\WINDOWS\system32\drivers\sthda.sys [2009-03-12 1550613]
R3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S3 BCM43XX;ASUS 802.11 Network Adapter Driver; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2005-02-11 371712]
S3 BTHPORT;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-13 272128]
S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 GGSAFERDriver;GGSAFER Driver; \??\I:\Garena\safedrv.sys []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 tcpip helper;tcpip helper; \??\C:\Program Files\Garena Plus\x86\tcpiphlp.sys []
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 usbvideo;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-14 121984]
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\WINDOWS\system32\DRIVERS\wdcsam.sys [2011-12-16 11520]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2011-11-22 814264]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2012-08-06 161776]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2011-01-07 156776]
R2 STacSV;Audio Service; c:\docume~1\adeam\locals~1\temp\drp\dp_sound_sigmatel_wnt5_x86-32_1102\drp\d\s\i10\STacSV.exe [2009-03-12 254036]
R2 WDDMService;WDDMService; C:\Program Files\Western Digital\WD SmartWare\WDDMService.exe [2011-12-15 265624]
R2 WDDriveService;WD Drive Manager; C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe [2011-12-16 246688]
R2 WDFMEService;WDFME; C:\Program Files\Western Digital\WD SmartWare\WDFME.exe [2011-12-15 1591176]
R2 WDRulesService;WDRules; C:\Program Files\Western Digital\WD SmartWare\WDRulesEngine.exe [2011-12-15 1091992]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-02-29 158856]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-02 250056]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2011-11-22 33584]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2012-04-22 489256]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-03-27 136176]
S4 gupdatem;Google Update Service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-03-27 136176]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

[Márty84]

Zdravim

Na logu se pracuje, bude to nejakou dobu trvat.

[Márty84]

Stahnete OTM http://oldtimer.geekstogo.com/OTM.exe , ulozte nejlepe na plochu a spustte.
Do leveho okna zkopirujte tento skript (vcetne te dvojtecky pred slovem commands)

Kód: Vybrat vše

:commands
[EMPTYTEMP]
[EMPTYFLASH]
[RESETHOSTS]
[Purity]

:services
JavaQuickStarterService
SkypeUpdate
AdobeFlashPlayerUpdateSvc

:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1229272821-602609370-1177238915-1003Core.job
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1229272821-602609370-1177238915-1003UA.job
C:\WINDOWS\tasks\RunOW.job
C:\Program Files\Mozilla Firefox\searchplugins\bing.xml

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
[-HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvMediaCenter"=-
"Adobe ARM"=-
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GarenaMessenger]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]

Kliknete na MoveIt a nechte program pracovat. Pri otazce na restart souhlaste.
Po restartu sem dejte log, ktery na vas vyskoci, nebo bude zde C:\_OTM\MovedFiles\xxxxxxxx_xxxxxx (misto tech x budou cisla, predstavujici datum a cas spusteni)





Udelejte !!!uplnou!!! kontrolu s MBAM http://forum.viry.cz/viewtopic.php?f=29&t=115222 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

[adeam]

steam zo startupu poprosím neodstranovať, pošlete mi nový script, alebo stačí odstrániť predposledný riadok ?
Ďakujem

[Márty84]

Tento radek smazte

[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]

[adeam]

Spustene:

All processes killed
========== COMMANDS ==========

[EMPTYTEMP]

User: adeam
->Temp folder emptied: 533102426 bytes
->Temporary Internet Files folder emptied: 78023461 bytes
->Java cache emptied: 6425069 bytes
->FireFox cache emptied: 17652071 bytes
->Google Chrome cache emptied: 272385142 bytes
->Flash cache emptied: 38989 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2402044 bytes
%systemroot%\System32 .tmp files removed: 4528145 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 702054427 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 289609387 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 199 bytes

Total Files Cleaned = 1,818.00 mb


[EMPTYFLASH]

User: adeam
->Flash cache emptied: 0 bytes

User: All Users

User: Default User

User: LocalService

User: NetworkService

Total Flash Files Cleaned = 0.00 mb

C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
========== SERVICES/DRIVERS ==========
Service JavaQuickStarterService stopped successfully!
Service JavaQuickStarterService deleted successfully!
Service SkypeUpdate stopped successfully!
Service SkypeUpdate deleted successfully!
Service AdobeFlashPlayerUpdateSvc stopped successfully!
Service AdobeFlashPlayerUpdateSvc deleted successfully!
========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
C:\WINDOWS\tasks\Adobe Flash Player Updater.job moved successfully.
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1229272821-602609370-1177238915-1003Core.job moved successfully.
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1229272821-602609370-1177238915-1003UA.job moved successfully.
C:\WINDOWS\tasks\RunOW.job moved successfully.
C:\Program Files\Mozilla Firefox\searchplugins\bing.xml moved successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\NvMediaCenter deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GarenaMessenger\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched\ deleted successfully.

OTM by OldTimer - Version 3.1.21.0 log created on 08112012_155711

Files moved on Reboot...

Registry entries deleted on Reboot...

[Márty84]

OTM provedlo co melo. Smazlo i skoro 2GB smeti

Ted jeste MBAM

[adeam]

Na MBAM momentálne nemám čas, nemyslím si však že by som nejaký malware v pc mal, používam ESET NOD32 Antivirus 4, kúpenú licenciu
Ďakujem za ochotu a okrem toho MBAM ste ešte niečo plánovali ?

[Márty84]

Pokud by nic nenasel, tak jen vseobecny uklid.



Stahnete OTC http://oldtimer.geekstogo.com/OTC.exe , ulozte a spustte.
Kliknete na napis CleanUp a pote OK - Po uklidu dojde k restartu pc.

Stahnete TFC http://oldtimer.geekstogo.com/TFC.exe , ulozte a spustte
Kliknete na START a pote OK - Po uklidu dojde k restartu pc.
Po pouziti muzete programek smazat

Stahnete Ccleaner http://www.stahuj.centrum.cz/utility_a_ ... /ccleaner/ a spustte.
Pri instalaci pozor na toolbar, jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!

Defragmentujte disk
Stahnete napriklad program Defraggler http://www.stahuj.centrum.cz/utility_a_ ... efraggler/
Pri instalaci opet pozor na toolbar
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci

[adeam]

Dobre, ďakujem za pomoc

[Márty84]

Nemate zac, mejte se