Prosím o zkouknutí logu. Děkuji

Zpráva

lucassman · #1 Příspěvek od **lucassman** » 10 dub 2013 14:13

Logfile of random's system information tool 1.06 (written by random/random)
Run by LuC@S at 2013-04-10 15:13:03
Systém Microsoft Windows XP Professional Service Pack 2
System drive C: has 4 GB (19%) free of 20 GB
Total RAM: 1023 MB (49% free)

HijackThis download failed

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\MpIdleTask.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll [2007-07-12 501136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{855F3B16-6D32-4fe6-8A56-BBB695989046}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HControl"=C:\WINDOWS\ATK0100\HControl.exe [2005-08-29 102400]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-01-30 13594624]
"nwiz"=nwiz.exe /install []
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2005-07-22 81920]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2005-08-19 737369]
"Power_Gear"=C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe [2005-06-16 86016]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-01-30 86016]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2013-01-27 947152]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-17 15360]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan]
C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\QTTask.exe [2010-09-08 421888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe [2007-07-12 132496]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=91000000

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"D:\Program Files\Medal of Honor\MOHAA.exe"="D:\Program Files\Medal of Honor\MOHAA.exe:*:Enabled:Medal of Honor Allied Assault(tm)"
"D:\Program Files\Medal of Honor\moh_Breakthrough.exe"="D:\Program Files\Medal of Honor\moh_Breakthrough.exe:*:Enabled:Medal of Honor Allied Assault(tm) Breakthrough"
"D:\Program Files\Medal of Honor\moh_spearhead.exe"="D:\Program Files\Medal of Honor\moh_spearhead.exe:*:Enabled:Medal of Honor Allied Assault(tm) Spearhead"
"D:\Program Files\SIERRA\Half-Life\hl.exe"="D:\Program Files\SIERRA\Half-Life\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\Java\jdk1.6.0_02\jre\bin\java.exe"="C:\Program Files\Java\jdk1.6.0_02\jre\bin\java.exe:*:Enabled:Java(TM) Platform SE binary"
"D:\Program Files\Ubisoft\Crytek\Far Cry\Bin32\FarCry.exe"="D:\Program Files\Ubisoft\Crytek\Far Cry\Bin32\FarCry.exe:*:Enabled:Far Cry"
"D:\Program Files\Croteam\Serious Sam - The Second Encounter\Bin\SeriousSam.exe"="D:\Program Files\Croteam\Serious Sam - The Second Encounter\Bin\SeriousSam.exe:*:Enabled:SeriousSam"
"D:\Program Files\Serious Sam 2\Bin\Sam2.exe"="D:\Program Files\Serious Sam 2\Bin\Sam2.exe:*:Enabled:Sam2"
"D:\Program Files\Croteam\Serious Sam\Bin\SeriousSam.exe"="D:\Program Files\Croteam\Serious Sam\Bin\SeriousSam.exe:*:Enabled:SeriousSam"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{1867c860-8125-11dc-8d1d-001731a2d1aa}]
shell\1\command - .\RECYCLER\RECYCLER.exe
shell\2\command - .\RECYCLER\RECYCLER.exe
shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL .\RECYCLER\RECYCLER.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{745b0ca3-18f2-11e2-8f85-001731a2d1aa}]
shell\AutoRun\command - G:\urDrive.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a4129dca-176d-11e2-8f83-001731a2d1aa}]
shell\AutoRun\command - G:\urDrive.exe

======List of files/folders created in the last 1 months======

2013-04-10 15:13:03 ----D---- C:\rsit
2013-04-10 15:13:03 ----D---- C:\Program Files\trend micro
2013-04-10 15:05:42 ----D---- C:\Program Files\Mozilla Firefox
2013-04-10 14:53:21 ----A---- C:\WINDOWS\isRS-000.tmp
2013-04-10 14:47:33 ----SHD---- C:\Config.Msi

======List of files/folders modified in the last 1 months======

2013-04-10 15:13:03 ----RD---- C:\Program Files
2013-04-10 15:10:04 ----D---- C:\WINDOWS\Temp
2013-04-10 15:09:56 ----D---- C:\WINDOWS
2013-04-10 15:09:46 ----D---- C:\WINDOWS\system32\drivers
2013-04-10 15:09:16 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2013-04-10 15:08:38 ----A---- C:\WINDOWS\SchedLgU.Txt
2013-04-10 15:07:45 ----D---- C:\WINDOWS\Minidump
2013-04-10 15:02:25 ----D---- C:\Program Files\Mozilla Maintenance Service
2013-04-10 15:01:30 ----SHD---- C:\WINDOWS\Installer
2013-04-10 15:00:35 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2013-04-10 15:00:32 ----D---- C:\Program Files\Common Files\Microsoft Shared
2013-04-10 15:00:31 ----D---- C:\WINDOWS\system32
2013-04-10 15:00:29 ----D---- C:\Program Files\Common Files
2013-04-10 14:59:51 ----D---- C:\Program Files\MSBuild
2013-04-10 14:59:50 ----RSD---- C:\WINDOWS\Fonts
2013-04-10 14:57:06 ----D---- C:\Program Files\Common Files\System
2013-04-10 14:57:02 ----A---- C:\WINDOWS\win.ini
2013-04-10 14:52:30 ----SD---- C:\WINDOWS\Tasks
2013-04-10 14:47:35 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2013-04-10 14:47:13 ----D---- C:\Program Files\DAEMON Tools Toolbar
2013-04-10 14:45:35 ----D---- C:\Program Files\The KMPlayer
2013-04-10 14:43:03 ----D---- C:\WINDOWS\system32\CatRoot2
2013-04-02 12:33:22 ----N---- C:\WINDOWS\system32\MpSigStub.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2005-03-09 42496]
R2 irda;Protokol IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2004-08-04 87424]
R2 MDC8021X;AEGIS Protocol (IEEE 802.1x) v2.3.1.9; C:\WINDOWS\system32\DRIVERS\mdc8021x.sys [2012-08-31 15781]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2005-07-26 3644032]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2004-08-17 60800]
R3 ASNDIS5;ASNDIS5 Protocol Driver; \??\C:\WINDOWS\system32\ASNDIS5.SYS []
R3 BCM43XX;ASUS 802.11 ovladač síťového adaptéru; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2005-02-11 371712]
R3 CmBatt;Microsoft AC Adapter Driver; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2004-08-04 14080]
R3 irsir;Microsoft Serial Infrared Driver; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ATKACPI.sys [2005-02-17 5632]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2004-08-17 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-01-30 6250848]
R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 RTL8023xp;Realtek 10/100/1000 NIC Family all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtlnicxp.sys [2005-03-04 74496]
R3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2004-08-03 67584]
R3 SynMini;USB2.0 1.3M Web Cam; C:\WINDOWS\System32\Drivers\SynMini.sys [2005-10-03 720470]
R3 SynScan;USB2.0 1.3M Web Cam Still Image; C:\WINDOWS\System32\Drivers\SynScan.sys [2005-10-03 8278]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2005-08-19 190912]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2004-08-03 17024]
R4 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\system32\drivers\sfhlp02.sys []
R4 sfsync04;StarForce Protection Synchronization Driver (version 4.x); C:\WINDOWS\system32\drivers\sfsync04.sys []
S3 61883;61883 Unit Device; C:\WINDOWS\system32\DRIVERS\61883.sys [2004-08-03 48128]
S3 a2gy422q;a2gy422q; C:\WINDOWS\system32\drivers\a2gy422q.sys []
S3 AG120(ZyXEL);ZyXEL AG-120 IEEE 802.11a+g Wireless CardBus Adapter(ZyXEL); C:\WINDOWS\system32\DRIVERS\AG120.sys []
S3 Avc;AVC Device; C:\WINDOWS\system32\DRIVERS\avc.sys [2004-08-03 38912]
S3 BRGSp50;BRGSp50 NDIS Protocol Driver; C:\WINDOWS\System32\Drivers\BRGSp50.sys [2005-06-08 20608]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
S3 efipsk;efipsk; \??\C:\DOCUME~1\LuC@S\LOCALS~1\Temp\efipsk.sys []
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 MSDV;Microsoft DV Camera and VCR; C:\WINDOWS\system32\DRIVERS\msdv.sys [2004-08-03 51328]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
S3 NPF;Netgroup Packet Filter; C:\WINDOWS\system32\drivers\npf.sys []
S3 sffdisk;Ovladač třídy úložiště SFF; C:\WINDOWS\system32\DRIVERS\sffdisk.sys [2004-08-03 11136]
S3 sffp_sd;Ovladač protokolu úložiště SFF pro paměť sběrnici SDBus; C:\WINDOWS\system32\DRIVERS\sffp_sd.sys [2004-08-03 10240]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-04 31616]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-04 25856]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S3 ZDPSp50;ZDPSp50 NDIS Protocol Driver; C:\WINDOWS\System32\Drivers\ZDPSp50.sys [2004-10-25 17664]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Irmon;Sledování infračerveného přenosu; C:\WINDOWS\system32\svchost.exe [2004-08-17 14336]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-01-27 20456]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-01-30 168004]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-12-07 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-03-08 251248]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-12-07 116648]
S3 idsvc;Služba Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-04-10 115608]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-17 14336]
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

#2 Příspěvek od **cernohous13** » 10 dub 2013 14:58

Zdravím,

jaký máš problém s instalací SP3?
http://windows.microsoft.com/cs-CZ/wind ... pack-3-sp3

Stáhni OTM z jednoho odkazu a rozbal nejlépe na plochu.
http://oldtimer.geekstogo.com/OTM.exe
http://www.itxassociates.com/OT-Tools/OTM.exe

Spusť program „OTM.exe“ (pro Vistu a Win7 – pravým a „Run As Administrator“).
Do okna pod žlutou čáru vlož celý text zeleným písmem ze „Scriptu“

Klikni na červené „Moveit!“

Při nabídce restartu „YES“
a log potom najdeš v C:\_OTM\MovedFiles\ - dej mi ho sem na kontrolu

Script OTM

Kód: Vybrat vše

:Commands
[emptytemp]
[emptyflash]
[emptyjava]
[clearallrestorepoints]

:Files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp /s
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
RECYCLER.exe /s
C:\Documents and Settings\LuC@S\Local Settings\temp\efipsk.sys

:Reg
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{855F3B16-6D32-4fe6-8A56-BBB695989046}"=-
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{1867c860-8125-11dc-8d1d-001731a2d1aa}]
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{745b0ca3-18f2-11e2-8f85-001731a2d1aa}]
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a4129dca-176d-11e2-8f83-001731a2d1aa}]

:Services
efipsk

lucassman · #3 Příspěvek od **lucassman** » 10 dub 2013 15:04

Měl jsem ten, že přes Windows Update mi to vždy ukončilo instalaci hned na začátku, ale teď jsem ho stáhnul manuálně z webu Microsoftu a zkouším naistalovat.
On je to notebook a docela stará šunka, navíc ho používala už skoro celá naše rodina a příbuzenstvo takže dostal zabrat a byla tu i trocha toho warezu (MS Office), ale to jsem dneska všechno smazal.

lucassman · #4 Příspěvek od **lucassman** » 10 dub 2013 15:26

Nový log, tenotkrát už s SP3
::::::::::::::::::::::::::::::::::::::::::::::::
Logfile of random's system information tool 1.09 (written by random/random)
Run by LuC@S at 2013-04-10 16:26:09
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 9 GB (47%) free of 20 GB
Total RAM: 1023 MB (47% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:26:20, on 10.4.2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.17055)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\ATK0100\HControl.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Microsoft Security Client\msseces.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\ATK0100\ATKOSD.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\LuC@S\Plocha\RSIT.exe
C:\Program Files\trend micro\LuC@S.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://google.icq.com/search/search_frame.php
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com?o=10148&l=dis&tb=STT
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - (no file)
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O3 - Toolbar: (no name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - (no file)
O4 - HKLM\..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Power_Gear] C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe 1
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 6508553078
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O24 - Desktop Component 0: (no name) - file:///H:/target=

--
End of file - 5341 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\MpIdleTask.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\LuC@S\Data aplikací\Mozilla\Firefox\Profiles\lx46bpdf.default

prefs.js - "browser.startup.homepage" - "www.seznam.cz"
prefs.js - "extensions.enabledItems" - "DTToolbar@toolbarnet.com:1.1.8.0191, {20a82645-c095-46ed-80e3-08825760534b}:1.2.1, {3713a489-0634-4472-8456-dc7abd7eba00}:1.3.1, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.25, nasanightlaunch@example.com:0.6.20110608"

"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.6.602.180 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_6_602_180.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nsIQTScriptablePlugin.xpt

C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Documents and Settings\LuC@S\Data aplikací\Mozilla\Firefox\Profiles\lx46bpdf.default\searchplugins\
askcom.xml
daemon-search.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll [2007-07-12 501136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{855F3B16-6D32-4fe6-8A56-BBB695989046}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HControl"=C:\WINDOWS\ATK0100\HControl.exe [2005-08-29 102400]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-01-30 13594624]
"nwiz"=nwiz.exe /install []
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2005-07-22 81920]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2005-08-19 737369]
"Power_Gear"=C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe [2005-06-16 86016]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-01-30 86016]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2013-01-27 947152]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan]
C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\QTTask.exe [2010-09-08 421888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe [2007-07-12 132496]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=0x91000000

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"D:\Program Files\Medal of Honor\MOHAA.exe"="D:\Program Files\Medal of Honor\MOHAA.exe:*:Enabled:Medal of Honor Allied Assault(tm)"
"D:\Program Files\Medal of Honor\moh_Breakthrough.exe"="D:\Program Files\Medal of Honor\moh_Breakthrough.exe:*:Enabled:Medal of Honor Allied Assault(tm) Breakthrough"
"D:\Program Files\Medal of Honor\moh_spearhead.exe"="D:\Program Files\Medal of Honor\moh_spearhead.exe:*:Enabled:Medal of Honor Allied Assault(tm) Spearhead"
"D:\Program Files\SIERRA\Half-Life\hl.exe"="D:\Program Files\SIERRA\Half-Life\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\Java\jdk1.6.0_02\jre\bin\java.exe"="C:\Program Files\Java\jdk1.6.0_02\jre\bin\java.exe:*:Enabled:Java(TM) Platform SE binary"
"D:\Program Files\Ubisoft\Crytek\Far Cry\Bin32\FarCry.exe"="D:\Program Files\Ubisoft\Crytek\Far Cry\Bin32\FarCry.exe:*:Enabled:Far Cry"
"D:\Program Files\Croteam\Serious Sam - The Second Encounter\Bin\SeriousSam.exe"="D:\Program Files\Croteam\Serious Sam - The Second Encounter\Bin\SeriousSam.exe:*:Enabled:SeriousSam"
"D:\Program Files\Serious Sam 2\Bin\Sam2.exe"="D:\Program Files\Serious Sam 2\Bin\Sam2.exe:*:Enabled:Sam2"
"D:\Program Files\Croteam\Serious Sam\Bin\SeriousSam.exe"="D:\Program Files\Croteam\Serious Sam\Bin\SeriousSam.exe:*:Enabled:SeriousSam"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"VIDC.DIVX"=divx.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=yv12vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
"vidc.VP60"=C:\WINDOWS\system32\vp6vfw.dll
"vidc.VP61"=C:\WINDOWS\system32\vp6vfw.dll

======List of files/folders created in the last 1 month======

2013-04-10 16:23:46 ----A---- C:\WINDOWS\OEWABLog.txt
2013-04-10 16:22:41 ----D---- C:\WINDOWS\Prefetch
2013-04-10 16:20:19 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$
2013-04-10 16:20:13 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$
2013-04-10 16:20:05 ----HDC---- C:\WINDOWS\$NtUninstallKB979683$
2013-04-10 16:19:58 ----HDC---- C:\WINDOWS\$NtUninstallKB979559$
2013-04-10 16:19:52 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2013-04-10 16:19:47 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2013-04-10 16:19:41 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2013-04-10 16:19:35 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2013-04-10 16:19:29 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2013-04-10 16:19:24 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2013-04-10 16:19:17 ----HDC---- C:\WINDOWS\$NtUninstallKB978251$
2013-04-10 16:19:10 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2013-04-10 16:19:04 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2013-04-10 16:18:57 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2013-04-10 16:18:51 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2013-04-10 16:18:44 ----HDC---- C:\WINDOWS\$NtUninstallKB975561$
2013-04-10 16:18:38 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2013-04-10 16:18:32 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2013-04-10 16:18:27 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2013-04-10 16:18:21 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2013-04-10 16:18:15 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2013-04-10 16:18:09 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2013-04-10 16:18:04 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2013-04-10 16:17:57 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2013-04-10 16:17:50 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2013-04-10 16:17:45 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2013-04-10 16:17:39 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2013-04-10 16:17:33 ----HDC---- C:\WINDOWS\$NtUninstallKB973354$
2013-04-10 16:17:26 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2013-04-10 16:17:18 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2013-04-10 16:17:12 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2013-04-10 16:17:07 ----HDC---- C:\WINDOWS\$NtUninstallKB971633$
2013-04-10 16:17:01 ----HDC---- C:\WINDOWS\$NtUninstallKB971557$
2013-04-10 16:16:54 ----HDC---- C:\WINDOWS\$NtUninstallKB971486$
2013-04-10 16:16:47 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$
2013-04-10 16:16:41 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2013-04-10 16:16:35 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2013-04-10 16:16:29 ----HDC---- C:\WINDOWS\$NtUninstallKB969947$
2013-04-10 16:16:23 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2013-04-10 16:16:17 ----HDC---- C:\WINDOWS\$NtUninstallKB968537$
2013-04-10 16:16:10 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2013-04-10 16:16:00 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2013-04-10 16:15:53 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2013-04-10 16:15:47 ----HDC---- C:\WINDOWS\$NtUninstallKB961373$
2013-04-10 16:15:42 ----HDC---- C:\WINDOWS\$NtUninstallKB961371$
2013-04-10 16:15:25 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2013-04-10 16:15:19 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2013-04-10 16:15:14 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2013-04-10 16:15:07 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2013-04-10 16:15:01 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2013-04-10 16:14:54 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$
2013-04-10 16:14:48 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
2013-04-10 16:14:43 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2013-04-10 16:14:36 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
2013-04-10 16:14:31 ----HDC---- C:\WINDOWS\$NtUninstallKB957095$
2013-04-10 16:14:26 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2013-04-10 16:14:20 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
2013-04-10 16:14:13 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2013-04-10 16:14:08 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2013-04-10 16:13:56 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2013-04-10 16:13:46 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2013-04-10 16:13:40 ----HDC---- C:\WINDOWS\$NtUninstallKB973687_1$
2013-04-10 16:13:34 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2013-04-10 16:13:28 ----HDC---- C:\WINDOWS\$NtUninstallKB974112_1$
2013-04-10 16:13:23 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
2013-04-10 16:13:17 ----HDC---- C:\WINDOWS\$NtUninstallKB954211$
2013-04-10 16:13:09 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2013-04-10 16:13:03 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2013-04-10 16:12:57 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2013-04-10 16:12:50 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2013-04-10 16:12:44 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
2013-04-10 16:12:39 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2013-04-10 16:12:31 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2013-04-10 16:12:25 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2013-04-10 16:12:20 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2013-04-10 16:12:14 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2013-04-10 16:12:09 ----HDC---- C:\WINDOWS\$NtUninstallKB938464$
2013-04-10 16:12:04 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2013-04-10 16:11:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2013-04-10 16:11:50 ----D---- C:\WINDOWS\LastGood.Tmp
2013-04-10 16:08:39 ----A---- C:\WINDOWS\setuplog.txt
2013-04-10 16:07:53 ----D---- C:\WINDOWS\l2schemas
2013-04-10 16:07:52 ----D---- C:\WINDOWS\system32\cs
2013-04-10 16:07:52 ----D---- C:\WINDOWS\system32\bits
2013-04-10 15:59:38 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2013-04-10 15:55:32 ----N---- C:\WINDOWS\system32\drivers\adv11nt5.dll
2013-04-10 15:55:32 ----N---- C:\WINDOWS\system32\drivers\adv09nt5.dll
2013-04-10 15:55:32 ----N---- C:\WINDOWS\system32\drivers\adv08nt5.dll
2013-04-10 15:55:32 ----N---- C:\WINDOWS\system32\drivers\adv07nt5.dll
2013-04-10 15:55:32 ----N---- C:\WINDOWS\system32\drivers\adv05nt5.dll
2013-04-10 15:55:32 ----N---- C:\WINDOWS\system32\drivers\adv02nt5.dll
2013-04-10 15:55:32 ----N---- C:\WINDOWS\system32\drivers\adv01nt5.dll
2013-04-10 15:55:32 ----N---- C:\WINDOWS\system32\aaclient.dll
2013-04-10 15:55:31 ----N---- C:\WINDOWS\system32\drivers\agpcpq.sys
2013-04-10 15:55:31 ----N---- C:\WINDOWS\system32\drivers\agp440.sys
2013-04-10 15:55:30 ----N---- C:\WINDOWS\system32\drivers\amdagp.sys
2013-04-10 15:55:30 ----N---- C:\WINDOWS\system32\drivers\alim1541.sys
2013-04-10 15:55:26 ----N---- C:\WINDOWS\system32\drivers\atv10nt5.dll
2013-04-10 15:55:26 ----N---- C:\WINDOWS\system32\drivers\atv06nt5.dll
2013-04-10 15:55:26 ----N---- C:\WINDOWS\system32\drivers\atv04nt5.dll
2013-04-10 15:55:26 ----N---- C:\WINDOWS\system32\drivers\atv02nt5.dll
2013-04-10 15:55:26 ----N---- C:\WINDOWS\system32\drivers\atv01nt5.dll
2013-04-10 15:55:26 ----N---- C:\WINDOWS\system32\ativvaxx.dll
2013-04-10 15:55:26 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2013-04-10 15:55:26 ----N---- C:\WINDOWS\system32\ati3duag.dll
2013-04-10 15:55:26 ----N---- C:\WINDOWS\system32\ati3d1ag.dll
2013-04-10 15:55:26 ----N---- C:\WINDOWS\system32\ati2dvag.dll
2013-04-10 15:55:26 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2013-04-10 15:55:26 ----N---- C:\WINDOWS\system32\ati2cqag.dll
2013-04-10 15:55:25 ----N---- C:\WINDOWS\system32\drivers\bthprint.sys
2013-04-10 15:55:25 ----N---- C:\WINDOWS\system32\drivers\bthpan.sys
2013-04-10 15:55:25 ----N---- C:\WINDOWS\system32\drivers\bthmodem.sys
2013-04-10 15:55:25 ----N---- C:\WINDOWS\system32\drivers\bthenum.sys
2013-04-10 15:55:25 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2013-04-10 15:55:25 ----N---- C:\WINDOWS\system32\azroles.dll
2013-04-10 15:55:24 ----N---- C:\WINDOWS\system32\drivers\bthusb.sys
2013-04-10 15:55:22 ----N---- C:\WINDOWS\system32\drivers\ch7xxnt5.dll
2013-04-10 15:55:18 ----N---- C:\WINDOWS\system32\credssp.dll
2013-04-10 15:55:16 ----N---- C:\WINDOWS\system32\dimsroam.dll
2013-04-10 15:55:16 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2013-04-10 15:55:16 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2013-04-10 15:55:14 ----N---- C:\WINDOWS\system32\dot3ui.dll
2013-04-10 15:55:14 ----N---- C:\WINDOWS\system32\dot3svc.dll
2013-04-10 15:55:14 ----N---- C:\WINDOWS\system32\dot3msm.dll
2013-04-10 15:55:14 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2013-04-10 15:55:14 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2013-04-10 15:55:14 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2013-04-10 15:55:14 ----N---- C:\WINDOWS\system32\dot3api.dll
2013-04-10 15:55:12 ----N---- C:\WINDOWS\system32\eappgnui.dll
2013-04-10 15:55:12 ----N---- C:\WINDOWS\system32\eappcfg.dll
2013-04-10 15:55:12 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2013-04-10 15:55:12 ----N---- C:\WINDOWS\system32\eapolqec.dll
2013-04-10 15:55:11 ----N---- C:\WINDOWS\system32\eapsvc.dll
2013-04-10 15:55:11 ----N---- C:\WINDOWS\system32\eapqec.dll
2013-04-10 15:55:11 ----N---- C:\WINDOWS\system32\eappprxy.dll
2013-04-10 15:55:11 ----N---- C:\WINDOWS\system32\eapphost.dll
2013-04-10 15:55:10 ----N---- C:\WINDOWS\system32\faxpatch.exe
2013-04-10 15:55:09 ----A---- C:\WINDOWS\003007_.tmp
2013-04-10 15:55:07 ----N---- C:\WINDOWS\system32\drivers\gagp30kx.sys
2013-04-10 15:55:06 ----N---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2013-04-10 15:55:05 ----N---- C:\WINDOWS\system32\drivers\hidbth.sys
2013-04-10 15:55:04 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2013-04-10 15:55:04 ----N---- C:\WINDOWS\system32\drivers\hidir.sys
2013-04-10 15:55:00 ----N---- C:\WINDOWS\system32\comsdupd.exe
2013-04-10 15:54:59 ----N---- C:\WINDOWS\system32\drivers\irbus.sys
2013-04-10 15:54:58 ----N---- C:\WINDOWS\system32\smtpapi.dll
2013-04-10 15:54:58 ----N---- C:\WINDOWS\system32\rwnh.dll
2013-04-10 15:54:55 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2013-04-10 15:54:54 ----N---- C:\WINDOWS\system32\kbdpash.dll
2013-04-10 15:54:54 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2013-04-10 15:54:54 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2013-04-10 15:54:53 ----N---- C:\WINDOWS\system32\kmsvc.dll
2013-04-10 15:54:52 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2013-04-10 15:54:43 ----N---- C:\WINDOWS\system32\mdmxsdk.dll
2013-04-10 15:54:42 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2013-04-10 15:54:41 ----N---- C:\WINDOWS\system32\mmcperf.exe
2013-04-10 15:54:41 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2013-04-10 15:54:41 ----N---- C:\WINDOWS\system32\mmcex.dll
2013-04-10 15:54:29 ----N---- C:\WINDOWS\system32\mssha.dll
2013-04-10 15:54:28 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2013-04-10 15:54:26 ----N---- C:\WINDOWS\system32\napmontr.dll
2013-04-10 15:54:26 ----N---- C:\WINDOWS\system32\napipsec.dll
2013-04-10 15:54:26 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2013-04-10 15:54:26 ----N---- C:\WINDOWS\system32\drivers\mutohpen.sys
2013-04-10 15:54:26 ----A---- C:\WINDOWS\system32\msxml6r.dll
2013-04-10 15:54:25 ----N---- C:\WINDOWS\system32\napstat.exe
2013-04-10 15:54:17 ----N---- C:\WINDOWS\system32\onex.dll
2013-04-10 15:54:13 ----N---- C:\WINDOWS\system32\rasqec.dll
2013-04-10 15:54:13 ----N---- C:\WINDOWS\system32\qutil.dll
2013-04-10 15:54:13 ----N---- C:\WINDOWS\system32\qcliprov.dll
2013-04-10 15:54:13 ----N---- C:\WINDOWS\system32\qagentrt.dll
2013-04-10 15:54:13 ----N---- C:\WINDOWS\system32\qagent.dll
2013-04-10 15:54:12 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2013-04-10 15:54:12 ----N---- C:\WINDOWS\system32\drivers\rndismpx.sys
2013-04-10 15:54:12 ----N---- C:\WINDOWS\system32\drivers\rfcomm.sys
2013-04-10 15:54:11 ----N---- C:\WINDOWS\system32\s3gnb.dll
2013-04-10 15:54:10 ----N---- C:\WINDOWS\system32\setupn.exe
2013-04-10 15:54:10 ----N---- C:\WINDOWS\system32\drivers\sffp_mmc.sys
2013-04-10 15:54:09 ----N---- C:\WINDOWS\system32\slserv.exe
2013-04-10 15:54:09 ----N---- C:\WINDOWS\system32\slrundll.exe
2013-04-10 15:54:09 ----N---- C:\WINDOWS\system32\slgen.dll
2013-04-10 15:54:09 ----N---- C:\WINDOWS\system32\slextspk.dll
2013-04-10 15:54:09 ----N---- C:\WINDOWS\system32\slcoinst.dll
2013-04-10 15:54:09 ----N---- C:\WINDOWS\system32\drivers\smbali.sys
2013-04-10 15:54:09 ----N---- C:\WINDOWS\system32\drivers\sisagp.sys
2013-04-10 15:54:09 ----N---- C:\WINDOWS\system32\drivers\siint5.dll
2013-04-10 15:54:09 ----N---- C:\WINDOWS\slrundll.exe
2013-04-10 15:54:08 ----N---- C:\WINDOWS\system32\spupdwxp.exe
2013-04-10 15:54:08 ----A---- C:\WINDOWS\system32\spdwnwxp.exe
2013-04-10 15:54:04 ----N---- C:\WINDOWS\system32\tspkg.dll
2013-04-10 15:54:04 ----N---- C:\WINDOWS\system32\tsgqec.dll
2013-04-10 15:54:03 ----N---- C:\WINDOWS\system32\drivers\usbvideo.sys
2013-04-10 15:54:03 ----N---- C:\WINDOWS\system32\drivers\usb8023x.sys
2013-04-10 15:54:03 ----N---- C:\WINDOWS\system32\drivers\uagp35.sys
2013-04-10 15:54:02 ----N---- C:\WINDOWS\system32\drivers\viaagp.sys
2013-04-10 15:54:02 ----N---- C:\WINDOWS\system32\drivers\vchnt5.dll
2013-04-10 15:54:01 ----N---- C:\WINDOWS\system32\drivers\wacompen.sys
2013-04-10 15:53:59 ----N---- C:\WINDOWS\system32\wlanapi.dll
2013-04-10 15:51:45 ----N---- C:\WINDOWS\system32\drivers\wadv11nt.sys
2013-04-10 15:51:45 ----N---- C:\WINDOWS\system32\drivers\slwdmsup.sys
2013-04-10 15:51:45 ----N---- C:\WINDOWS\system32\drivers\mtlstrm.sys
2013-04-10 15:51:45 ----N---- C:\WINDOWS\system32\drivers\mdmxsdk.sys
2013-04-10 15:51:45 ----N---- C:\WINDOWS\system32\drivers\hsfcxts2.sys
2013-04-10 15:51:45 ----N---- C:\WINDOWS\system32\drivers\atinxbxx.sys
2013-04-10 15:51:45 ----N---- C:\WINDOWS\system32\drivers\atinsnxx.sys
2013-04-10 15:51:45 ----N---- C:\WINDOWS\system32\drivers\atinrvxx.sys
2013-04-10 15:51:45 ----N---- C:\WINDOWS\system32\drivers\ati1tuxx.sys
2013-04-10 15:51:44 ----N---- C:\WINDOWS\system32\drivers\watv06nt.sys
2013-04-10 15:51:44 ----N---- C:\WINDOWS\system32\drivers\slntamr.sys
2013-04-10 15:51:44 ----N---- C:\WINDOWS\system32\drivers\recagent.sys
2013-04-10 15:51:44 ----N---- C:\WINDOWS\system32\drivers\ntmtlfax.sys
2013-04-10 15:51:44 ----N---- C:\WINDOWS\system32\drivers\mtlmnt5.sys
2013-04-10 15:51:44 ----N---- C:\WINDOWS\system32\drivers\hsfbs2s2.sys
2013-04-10 15:51:44 ----N---- C:\WINDOWS\system32\drivers\atintuxx.sys
2013-04-10 15:51:44 ----N---- C:\WINDOWS\system32\drivers\atinbtxx.sys
2013-04-10 15:51:44 ----N---- C:\WINDOWS\system32\drivers\ati2mtag.sys
2013-04-10 15:51:44 ----N---- C:\WINDOWS\system32\drivers\ati2mtaa.sys
2013-04-10 15:51:44 ----N---- C:\WINDOWS\system32\drivers\ati1xsxx.sys
2013-04-10 15:51:44 ----N---- C:\WINDOWS\system32\drivers\ati1btxx.sys
2013-04-10 15:51:43 ----N---- C:\WINDOWS\system32\drivers\watv10nt.sys
2013-04-10 15:51:43 ----N---- C:\WINDOWS\system32\drivers\wadv09nt.sys
2013-04-10 15:51:43 ----N---- C:\WINDOWS\system32\drivers\wadv08nt.sys
2013-04-10 15:51:43 ----N---- C:\WINDOWS\system32\drivers\wadv07nt.sys
2013-04-10 15:51:43 ----N---- C:\WINDOWS\system32\drivers\slnthal.sys
2013-04-10 15:51:43 ----N---- C:\WINDOWS\system32\drivers\slnt7554.sys
2013-04-10 15:51:43 ----N---- C:\WINDOWS\system32\drivers\s3gnbm.sys
2013-04-10 15:51:43 ----N---- C:\WINDOWS\system32\drivers\mtxparhm.sys
2013-04-10 15:51:43 ----N---- C:\WINDOWS\system32\drivers\hsfdpsp2.sys
2013-04-10 15:51:43 ----N---- C:\WINDOWS\system32\drivers\atinxsxx.sys
2013-04-10 15:51:43 ----N---- C:\WINDOWS\system32\drivers\atinttxx.sys
2013-04-10 15:51:43 ----N---- C:\WINDOWS\system32\drivers\atinraxx.sys
2013-04-10 15:51:43 ----N---- C:\WINDOWS\system32\drivers\atinpdxx.sys
2013-04-10 15:51:43 ----N---- C:\WINDOWS\system32\drivers\atinmdxx.sys
2013-04-10 15:51:43 ----N---- C:\WINDOWS\system32\drivers\ati1xbxx.sys
2013-04-10 15:51:43 ----N---- C:\WINDOWS\system32\drivers\ati1ttxx.sys
2013-04-10 15:51:43 ----N---- C:\WINDOWS\system32\drivers\ati1snxx.sys
2013-04-10 15:51:43 ----N---- C:\WINDOWS\system32\drivers\ati1rvxx.sys
2013-04-10 15:51:43 ----N---- C:\WINDOWS\system32\drivers\ati1raxx.sys
2013-04-10 15:51:43 ----N---- C:\WINDOWS\system32\drivers\ati1pdxx.sys
2013-04-10 15:51:43 ----N---- C:\WINDOWS\system32\drivers\ati1mdxx.sys
2013-04-10 15:13:03 ----D---- C:\rsit
2013-04-10 15:13:03 ----D---- C:\Program Files\trend micro
2013-04-10 15:05:42 ----D---- C:\Program Files\Mozilla Firefox
2013-04-10 14:47:33 ----SHD---- C:\Config.Msi

======List of files/folders modified in the last 1 month======

2013-04-10 16:25:20 ----D---- C:\WINDOWS\system32
2013-04-10 16:25:20 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2013-04-10 16:24:02 ----D---- C:\WINDOWS\Temp
2013-04-10 16:23:46 ----D---- C:\WINDOWS
2013-04-10 16:23:41 ----D---- C:\WINDOWS\Debug
2013-04-10 16:23:19 ----D---- C:\WINDOWS\system32\CatRoot2
2013-04-10 16:22:12 ----D---- C:\WINDOWS\system32\Setup
2013-04-10 16:22:12 ----D---- C:\WINDOWS\AppPatch
2013-04-10 16:22:11 ----D---- C:\WINDOWS\system32\wbem
2013-04-10 16:22:09 ----RSD---- C:\WINDOWS\Fonts
2013-04-10 16:22:00 ----D---- C:\WINDOWS\system32\drivers
2013-04-10 16:21:15 ----A---- C:\WINDOWS\SchedLgU.Txt
2013-04-10 16:20:22 ----HD---- C:\WINDOWS\inf
2013-04-10 16:20:20 ----RSHDC---- C:\WINDOWS\system32\dllcache
2013-04-10 16:20:20 ----D---- C:\WINDOWS\system32\CatRoot
2013-04-10 16:19:31 ----D---- C:\Program Files\Outlook Express
2013-04-10 16:18:46 ----D---- C:\Program Files\Movie Maker
2013-04-10 16:12:15 ----D---- C:\Program Files\Messenger
2013-04-10 16:11:41 ----D---- C:\WINDOWS\security
2013-04-10 16:08:12 ----D---- C:\WINDOWS\WinSxS
2013-04-10 16:08:06 ----D---- C:\WINDOWS\ehome
2013-04-10 16:08:05 ----D---- C:\WINDOWS\system32\inetsrv
2013-04-10 16:08:05 ----D---- C:\WINDOWS\network diagnostic
2013-04-10 16:08:05 ----D---- C:\WINDOWS\ime
2013-04-10 16:08:05 ----D---- C:\WINDOWS\Help
2013-04-10 16:07:53 ----D---- C:\WINDOWS\system32\usmt
2013-04-10 16:07:53 ----D---- C:\WINDOWS\system32\cs-cz
2013-04-10 16:07:52 ----SHD---- C:\WINDOWS\Installer
2013-04-10 16:07:52 ----D---- C:\WINDOWS\PeerNet
2013-04-10 16:06:08 ----D---- C:\WINDOWS\ServicePackFiles
2013-04-10 16:06:00 ----D---- C:\WINDOWS\system32\Restore
2013-04-10 16:06:00 ----D---- C:\WINDOWS\system32\npp
2013-04-10 16:05:58 ----D---- C:\WINDOWS\msagent
2013-04-10 16:05:57 ----D---- C:\WINDOWS\srchasst
2013-04-10 16:05:57 ----D---- C:\Program Files\NetMeeting
2013-04-10 16:05:55 ----D---- C:\WINDOWS\system32\Com
2013-04-10 16:05:52 ----D---- C:\Program Files\Windows NT
2013-04-10 16:05:52 ----D---- C:\Program Files\Windows Media Player
2013-04-10 16:05:48 ----D---- C:\Program Files\Common Files\System
2013-04-10 16:05:31 ----D---- C:\WINDOWS\system32\oobe
2013-04-10 16:05:30 ----D---- C:\WINDOWS\system
2013-04-10 15:37:06 ----D---- C:\Program Files\Google
2013-04-10 15:37:04 ----SD---- C:\WINDOWS\Tasks
2013-04-10 15:31:06 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2013-04-10 15:13:03 ----RD---- C:\Program Files
2013-04-10 15:09:17 ----D---- C:\Program Files\Mozilla Maintenance Service
2013-04-10 15:09:16 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2013-04-10 15:07:45 ----D---- C:\WINDOWS\Minidump
2013-04-10 15:00:35 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2013-04-10 15:00:32 ----D---- C:\Program Files\Common Files\Microsoft Shared
2013-04-10 15:00:29 ----D---- C:\Program Files\Common Files
2013-04-10 14:59:51 ----D---- C:\Program Files\MSBuild
2013-04-10 14:57:02 ----A---- C:\WINDOWS\win.ini
2013-04-10 14:47:13 ----D---- C:\Program Files\DAEMON Tools Toolbar
2013-04-10 14:45:35 ----D---- C:\Program Files\The KMPlayer
2013-04-02 12:33:22 ----N---- C:\WINDOWS\system32\MpSigStub.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 MpFilter;Microsoft Malware Protection Driver; C:\WINDOWS\system32\DRIVERS\MpFilter.sys [2013-01-20 195296]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-12-29 691696]
R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2005-03-09 42496]
R2 irda;Protokol IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-13 88192]
R2 MDC8021X;AEGIS Protocol (IEEE 802.1x) v2.3.1.9; C:\WINDOWS\system32\DRIVERS\mdc8021x.sys [2012-08-31 15781]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2005-07-26 3644032]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 ASNDIS5;ASNDIS5 Protocol Driver; \??\C:\WINDOWS\system32\ASNDIS5.SYS []
R3 BCM43XX;ASUS 802.11 ovladač síťového adaptéru; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2005-02-11 371712]
R3 irsir;Microsoft Serial Infrared Driver; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ATKACPI.sys [2005-02-17 5632]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-01-30 6250848]
R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 RTL8023xp;Realtek 10/100/1000 NIC Family all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtlnicxp.sys [2005-03-04 74496]
R3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-13 79232]
R3 SynMini;USB2.0 1.3M Web Cam; C:\WINDOWS\System32\Drivers\SynMini.sys [2005-10-03 720470]
R3 SynScan;USB2.0 1.3M Web Cam Still Image; C:\WINDOWS\System32\Drivers\SynScan.sys [2005-10-03 8278]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2005-08-19 190912]
S3 61883;61883 Unit Device; C:\WINDOWS\system32\DRIVERS\61883.sys [2008-04-13 48128]
S3 abvahdew;abvahdew; C:\WINDOWS\system32\drivers\abvahdew.sys []
S3 AG120(ZyXEL);ZyXEL AG-120 IEEE 802.11a+g Wireless CardBus Adapter(ZyXEL); C:\WINDOWS\system32\DRIVERS\AG120.sys []
S3 Avc;AVC Device; C:\WINDOWS\system32\DRIVERS\avc.sys [2008-04-13 38912]
S3 BRGSp50;BRGSp50 NDIS Protocol Driver; C:\WINDOWS\System32\Drivers\BRGSp50.sys [2005-06-08 20608]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 efipsk;efipsk; \??\C:\DOCUME~1\LuC@S\LOCALS~1\Temp\efipsk.sys []
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 MSDV;Microsoft DV Camera and VCR; C:\WINDOWS\system32\DRIVERS\msdv.sys [2008-04-13 51200]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NPF;Netgroup Packet Filter; C:\WINDOWS\system32\drivers\npf.sys []
S3 sffdisk;Ovladač třídy úložiště SFF; C:\WINDOWS\system32\DRIVERS\sffdisk.sys [2008-04-13 11904]
S3 sffp_sd;Ovladač protokolu úložiště SFF pro paměť sběrnici SDBus; C:\WINDOWS\system32\DRIVERS\sffp_sd.sys [2008-04-13 11008]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S3 ZDPSp50;ZDPSp50 NDIS Protocol Driver; C:\WINDOWS\System32\Drivers\ZDPSp50.sys [2004-10-25 17664]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Irmon;Sledování infračerveného přenosu; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-01-27 20456]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-01-30 168004]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-04-10 253656]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Služba Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-04-10 115608]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

#5 Příspěvek od **cernohous13** » 10 dub 2013 15:31

Většinou mají problém s instalací nelegální OS

Až budeš mít i ostatní aktualizace tak pokračuj podle návodu s OTM

lucassman · #6 Příspěvek od **lucassman** » 10 dub 2013 15:48

All processes killed
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 7409051 bytes
->Temporary Internet Files folder emptied: 64599 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 41 bytes

User: Guest
->Temp folder emptied: 1558 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: LuC@S
->Temp folder emptied: 577475 bytes
->Temporary Internet Files folder emptied: 228146 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 68955424 bytes
->Apple Safari cache emptied: 18407424 bytes
->Flash cache emptied: 1264 bytes

User: NetworkService
->Temp folder emptied: 285710 bytes
->Temporary Internet Files folder emptied: 33237 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2134153 bytes
%systemroot%\System32 .tmp files removed: 2504 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 532369 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 253823569 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 336,00 mb

[EMPTYFLASH]

User: Administrator

User: All Users

User: Default User
->Flash cache emptied: 0 bytes

User: Guest

User: LocalService

User: LuC@S
->Flash cache emptied: 0 bytes

User: NetworkService

Total Flash Files Cleaned = 0,00 mb

[EMPTYJAVA]

User: Administrator

User: All Users

User: Default User

User: Guest

User: LocalService

User: LuC@S
->Java cache emptied: 0 bytes

User: NetworkService

Total Java Files Cleaned = 0,00 mb

Restore point Set: OTM Restore Point
========== FILES ==========
C:\WINDOWS\system32\_000110_.tmp.dll moved successfully.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP120.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP13.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP14C.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP154.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1A4.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1BB.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP21.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP22.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP29E.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2C8.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP352.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP3A7.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP3FB.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4E2.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP507.tmp folder moved successfully.
C:\WINDOWS\Installer\MSI19.tmp moved successfully.
C:\WINDOWS\tasks\Adobe Flash Player Updater.job moved successfully.
File/Folder C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job not found.
File/Folder C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job not found.
File/Folder RECYCLER.exe not found.
File/Folder C:\Documents and Settings\LuC@S\Local Settings\temp\efipsk.sys not found.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{855F3B16-6D32-4fe6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4fe6-8A56-BBB695989046}\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg\ deleted successfully.
Registry key HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{1867c860-8125-11dc-8d1d-001731a2d1aa}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1867c860-8125-11dc-8d1d-001731a2d1aa}\ not found.
Registry key HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{745b0ca3-18f2-11e2-8f85-001731a2d1aa}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{745b0ca3-18f2-11e2-8f85-001731a2d1aa}\ not found.
Registry key HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a4129dca-176d-11e2-8f83-001731a2d1aa}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a4129dca-176d-11e2-8f83-001731a2d1aa}\ not found.
========== SERVICES/DRIVERS ==========
Service efipsk stopped successfully!
Service efipsk deleted successfully!

OTM by OldTimer - Version 3.1.21.0 log created on 04102013_164413

Files moved on Reboot...

Registry entries deleted on Reboot...

#7 Příspěvek od **cernohous13** » 10 dub 2013 15:54

Spusť opět OTM -> CleanUp! - odinstaluje a vyčistí po sobě.

Stáhni AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Ulož nejlépe na plochu -> ukonči všechny programy -> spusť AdwCleaner -> klikni na Prohledat
Proběhne skenování a pak se objeví log, případně bude uložen na systémovém disku jako AdwCleaner[R?].txt, ten mi sem dej

Stáhni a nainstaluj MBAM zde http://www.download.com/Malwarebytes-An ... tag=button (nelekej se přesměrování vyčkej)
Spustit > na 3.záložce "Aktualizace" > Kontrola aktualizací
následně na 1.záložce "Kontrolor" -> Úplná kontrola -> Prohledat
po dokončení scanu vyskočí okno Notepad s výsledkem - obsah zkopíruj do své odpovědi
zatím nic nemazat - počkej na posouzení

lucassman · #8 Příspěvek od **lucassman** » 10 dub 2013 16:00

AdwCleaner
:::::::::::::::::::::::::::::
# AdwCleaner v2.200 - Log vytvooen 10/04/2013 v 16:59:34
# Aktualizováno 02/04/2013 Xplode
# Operaení systém : Microsoft Windows XP Service Pack 3 (32 bits)
# Uživatel : LuC@S - NOTEBOOK
# Spuštin systém : Normální
# Spuštino z : C:\Documents and Settings\LuC@S\Plocha\adwcleaner.exe
# Volba [Prohledat]

***** [Služby] *****

***** [Soubory / Složky] *****

Složka Nalezeno : C:\Documents and Settings\LuC@S\Local Settings\Data aplikací\PackageAware
Složka Nalezeno : C:\Program Files\DAEMON Tools Toolbar
Soubor Nalezeno : C:\Documents and Settings\LuC@S\Data aplikací\Mozilla\Firefox\Profiles\lx46bpdf.default\searchplugins\Askcom.xml
Soubor Nalezeno : C:\Documents and Settings\LuC@S\Data aplikací\Mozilla\Firefox\Profiles\lx46bpdf.default\searchplugins\daemon-search.xml

***** [Registry] *****

Hodnota Nalezeno : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Hodnota Nalezeno : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Hodnota Nalezeno : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Klíe Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BE9654C9-9D79-42EC-B55A-3CAEB12DBF58}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Klíe Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Klíe Nalezeno : HKCU\Software\XTTB00001
Klíe Nalezeno : HKLM\SOFTWARE\14919ea49a8f3b4aa3cf1058d9a64cec
Klíe Nalezeno : HKLM\SOFTWARE\Classes\Interface\{AEBF09E2-0C15-43C8-99BF-928C645D98A0}
Klíe Nalezeno : HKU\S-1-5-21-1715567821-616249376-725345543-1003\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Klíe Nalezeno : HKU\S-1-5-21-1715567821-616249376-725345543-1003\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Klíe Nalezeno : HKU\S-1-5-21-1715567821-616249376-725345543-1003\Software\Microsoft\Internet Explorer\SearchScopes\{BE9654C9-9D79-42EC-B55A-3CAEB12DBF58}

***** [Internetové prohlížeee] *****

-\\ Internet Explorer v7.0.6000.17055

[HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://www.ask.com?o=10148&l=dis&tb=STT
[HKCU\Software\Microsoft\Internet Explorer\Main - Search Bar] = hxxp://google.icq.com/search/search_frame.php

-\\ Mozilla Firefox v20.0 (cs)

Soubor : C:\Documents and Settings\LuC@S\Data aplikací\Mozilla\Firefox\Profiles\lx46bpdf.default\prefs.js

Nalezeno : user_pref("browser.search.order.1", "Ask.com");

*************************

AdwCleaner[R1].txt - [3294 octets] - [10/04/2013 16:59:34]

########## EOF - C:\AdwCleaner[R1].txt - [3354 octets] ##########

#9 Příspěvek od **cernohous13** » 10 dub 2013 16:04

Spusť znovu AdwCleaner
Klikni na Vymazat
bude provedena oprava, restartuje se a vypadne log (C:\AdwCleaner [S?].txt) , jeho obsah vložíš sem

lucassman · #10 Příspěvek od **lucassman** » 10 dub 2013 16:48

Log z MBAM
:::::::::::::::::::::::::::::::::::
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verze: v2013.04.04.07

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 7.0.5730.11
LuC@S :: NOTEBOOK [administrátor]

10.4.2013 17:01:47
mbam-log-2013-04-10 (17-01-47).txt

Typ: Kompletní kontrola (C:\|D:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 288663
Uplynulý čas: 28 minut, 18 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

lucassman · #11 Příspěvek od **lucassman** » 10 dub 2013 16:53

nový log z adwcleaner
::::::::::::::::::::::::::::::::::::::
# AdwCleaner v2.200 - Log vytvooen 10/04/2013 v 17:49:11
# Aktualizováno 02/04/2013 Xplode
# Operaení systém : Microsoft Windows XP Service Pack 3 (32 bits)
# Uživatel : LuC@S - NOTEBOOK
# Spuštin systém : Normální
# Spuštino z : C:\Documents and Settings\LuC@S\Plocha\adwcleaner.exe
# Volba [Vymazat]

***** [Služby] *****

***** [Soubory / Složky] *****

Složka Vymazáno : C:\Documents and Settings\LuC@S\Local Settings\Data aplikací\PackageAware
Složka Vymazáno : C:\Program Files\DAEMON Tools Toolbar
Soubor Vymazáno : C:\Documents and Settings\LuC@S\Data aplikací\Mozilla\Firefox\Profiles\lx46bpdf.default\searchplugins\Askcom.xml
Soubor Vymazáno : C:\Documents and Settings\LuC@S\Data aplikací\Mozilla\Firefox\Profiles\lx46bpdf.default\searchplugins\daemon-search.xml

***** [Registry] *****

Hodnota Vymazáno : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Hodnota Vymazáno : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Hodnota Vymazáno : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Klíe Vymazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Klíe Vymazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Klíe Vymazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BE9654C9-9D79-42EC-B55A-3CAEB12DBF58}
Klíe Vymazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
Klíe Vymazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Klíe Vymazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
Klíe Vymazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Klíe Vymazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Klíe Vymazáno : HKCU\Software\XTTB00001
Klíe Vymazáno : HKLM\SOFTWARE\14919ea49a8f3b4aa3cf1058d9a64cec
Klíe Vymazáno : HKLM\SOFTWARE\Classes\Interface\{AEBF09E2-0C15-43C8-99BF-928C645D98A0}

***** [Internetové prohlížeee] *****

-\\ Internet Explorer v7.0.6000.17055

Zaminino : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://www.ask.com?o=10148&l=dis&tb=STT --> hxxp://www.google.com
Zaminino : [HKCU\Software\Microsoft\Internet Explorer\Main - Search Bar] = hxxp://google.icq.com/search/search_frame.php --> hxxp://www.google.com

-\\ Mozilla Firefox v20.0 (cs)

Soubor : C:\Documents and Settings\LuC@S\Data aplikací\Mozilla\Firefox\Profiles\lx46bpdf.default\prefs.js

Vymazáno : user_pref("browser.search.order.1", "Ask.com");

*************************

AdwCleaner[R1].txt - [3423 octets] - [10/04/2013 16:59:34]
AdwCleaner[R2].txt - [3542 octets] - [10/04/2013 17:48:57]
AdwCleaner[S1].txt - [337 octets] - [10/04/2013 17:48:37]
AdwCleaner[S2].txt - [3080 octets] - [10/04/2013 17:49:11]

########## EOF - C:\AdwCleaner[S2].txt - [3140 octets] ##########

#12 Příspěvek od **cernohous13** » 10 dub 2013 17:00

Tak už bych jen uklidil

smaž
C:\AdwCleaner[R1].txt
C:\AdwCleaner[R2].txt
C:\AdwCleaner[S1].txt
C:\AdwCleaner[S2].txt

Mohu doporučit kontrolu a vyčištění Ccleanerem

Stáhni Ccleaner - http://www.slunecnice.cz/sw/ccleaner/
Při instalaci vyhodit fajfku u "Instalovat Yahoo! Toolbar" (nebo i další pokud budou v nabídce)

zavřít Internetový prohlížeč a
spustit "Čistič" > "Spustit Ccleaner" - odstraní nepotřebné
spustit "Registry" > "Hledej problémy" > "Opravit vybrané problémy"
souhlas se zálohou registrů - opakovat dokud nebudou registry čisté.
spustit "Nástroje" > "Start" - tady můžeš zkusit deaktivovat procesy, které při spuštění nepotřebuješ (pokud by ti potom něco nechodilo, stejným způsobem je povolíš)
Návod:http://jnp.zive.cz/Clanky/Prirucka-do-k ... fault.aspx

Ten si můžeš nechat i na budoucí občasné čištění.

Po vyčištění by se hodila defragmentace
doporučuji http://www.slunecnice.cz/sw/defraggler/ + čeština

lucassman · #13 Příspěvek od **lucassman** » 10 dub 2013 17:04

OK,
děkuji vám.

#14 Příspěvek od **cernohous13** » 10 dub 2013 17:41

Jestli už nejsou problémy, tak nemáš zač - rádo se stalo a jsme tady i příště

VIRY.CZ

Prosím o zkouknutí logu. Děkuji

Prosím o zkouknutí logu. Děkuji

Re: Prosím o zkouknutí logu. Děkuji

Re: Prosím o zkouknutí logu. Děkuji

Re: Prosím o zkouknutí logu. Děkuji

Re: Prosím o zkouknutí logu. Děkuji

Re: Prosím o zkouknutí logu. Děkuji

Re: Prosím o zkouknutí logu. Děkuji

Re: Prosím o zkouknutí logu. Děkuji

Re: Prosím o zkouknutí logu. Děkuji

Re: Prosím o zkouknutí logu. Děkuji

Re: Prosím o zkouknutí logu. Děkuji

Re: Prosím o zkouknutí logu. Děkuji

Re: Prosím o zkouknutí logu. Děkuji

Re: Prosím o zkouknutí logu. Děkuji