Dobrý den. Prosím o kontrolu logu. Počítač je zabržděný, sekání při rolování stránek. Předem díky.
Logfile of random's system information tool 1.09 (written by random/random)
Run by Owner at 2013-05-11 10:20:35
Microsoft Windows XP Home Edition Service Pack 2
System drive C: has 181 GB (76%) free of 238 GB
Total RAM: 479 MB (19% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:20:47, on 11.5.2013
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\VTTimer.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\Owner\Local Settings\Data aplikací\Akamai\netsession_win.exe
C:\Documents and Settings\Owner\Local Settings\Data aplikací\Akamai\netsession_win.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Owner\Dokumenty\Downloads\RSIT (1).exe
C:\Program Files\trend micro\Owner.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Documents and Settings\Owner\Local Settings\Data aplikací\Akamai\netsession_win.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{048BEF0E-27FD-4C0E-9A75-CCADA62837B7}: NameServer = 213.250.192.1,213.250.194.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{048BEF0E-27FD-4C0E-9A75-CCADA62837B7}: NameServer = 213.250.192.1,213.250.194.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{048BEF0E-27FD-4C0E-9A75-CCADA62837B7}: NameServer = 213.250.192.1,213.250.194.1
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
--
End of file - 4503 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-11-19 449512]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-11-19 155384]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"VTTimer"=C:\WINDOWS\system32\VTTimer.exe [2004-01-15 49152]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2013-03-21 5078504]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-18 15360]
"Akamai NetSession Interface"=C:\Documents and Settings\Owner\Local Settings\Data aplikací\Akamai\netsession_win.exe [2013-01-26 4480768]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Documents and Settings\Owner\Local Settings\Data aplikací\Akamai\netsession_win.exe"="C:\Documents and Settings\Owner\Local Settings\Data aplikací\Akamai\netsession_win.exe:*:Disabled:Akamai NetSession Client"
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"vidc.ffds"=ff_vfw.dll
"vidc.xvid"=xvidvfw.dll
"vidc.lags"=lagarith.dll
"msacm.ac3filter"=ac3filter.acm
"msacm.divxa32"=msaud32_divx.acm
"msacm.lameacm"=LameACM.acm
======List of files/folders created in the last 1 month======
2013-05-07 17:44:30 ----D---- C:\Program Files\trend micro
2013-05-07 17:44:29 ----D---- C:\rsit
2013-05-07 17:25:18 ----A---- C:\AdwCleaner[S1].txt
2013-05-07 17:23:50 ----A---- C:\AdwCleaner[R1].txt
2013-05-05 18:32:23 ----A---- C:\WINDOWS\wininit.ini
2013-05-05 17:59:43 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2013-05-05 17:59:03 ----D---- C:\Program Files\Spybot - Search & Destroy 2
2013-04-21 18:16:32 ----D---- C:\Documents and Settings\All Users\Data aplikací\TuneUp Software
2013-04-21 18:16:25 ----SHD---- C:\Documents and Settings\All Users\Data aplikací\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-04-14 17:22:01 ----D---- C:\Program Files\ESET
2013-04-14 17:22:01 ----D---- C:\Documents and Settings\All Users\Data aplikací\ESET
======List of files/folders modified in the last 1 month======
2013-05-11 10:18:59 ----A---- C:\WINDOWS\SchedLgU.Txt
2013-05-11 10:17:39 ----D---- C:\Documents and Settings
2013-05-11 10:16:23 ----D---- C:\WINDOWS\Prefetch
2013-05-11 10:09:08 ----D---- C:\WINDOWS\Temp
2013-05-07 17:44:30 ----RD---- C:\Program Files
2013-05-05 20:42:36 ----D---- C:\WINDOWS\system32\CatRoot2
2013-05-05 20:41:59 ----D---- C:\WINDOWS
2013-05-05 18:51:24 ----D---- C:\WINDOWS\system32
2013-05-05 18:51:13 ----SD---- C:\WINDOWS\Tasks
2013-05-05 17:59:32 ----D---- C:\WINDOWS\system32\config
2013-05-05 17:59:31 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2013-05-04 23:31:03 ----D---- C:\Program Files\Google
2013-05-04 23:29:22 ----SHD---- C:\WINDOWS\Installer
2013-05-01 19:29:02 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2013-04-24 21:13:28 ----D---- C:\Program Files\Common Files\Adobe
2013-04-21 18:17:14 ----D---- C:\Documents and Settings\Owner\Data aplikací\TuneUp Software
2013-04-14 17:23:07 ----HD---- C:\WINDOWS\inf
2013-04-14 17:23:07 ----D---- C:\WINDOWS\system32\drivers
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 uagp35;Filtr Microsoft AGPv3.5; C:\WINDOWS\system32\DRIVERS\uagp35.sys [2004-08-04 44672]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2008-01-18 77696]
R1 AmdK7;Ovladač procesoru AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2004-08-18 41216]
R1 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2013-01-10 161368]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2013-01-10 122240]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2013-01-10 105784]
R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2002-04-01 4816]
R3 FETNDIS;VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-17 27165]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-18 5888]
R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2003-07-15 578368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-18 20480]
R3 viagfx;viagfx; C:\WINDOWS\system32\DRIVERS\vtmini.sys [2004-02-04 134144]
S3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2004-08-18 9600]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2008-10-29 49920]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2008-10-29 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2008-10-29 21568]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2004-08-18 12160]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-04 31616]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-04 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-04 26496]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2008-01-18 83328]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2013-03-21 1341664]
R2 HPSLPSVC;HP Network Devices Support; C:\WINDOWS\system32\svchost.exe [2004-08-18 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2012-11-19 161768]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2004-08-18 14336]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2004-08-18 14336]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-18 14336]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-05-04 116648]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-05-04 116648]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Kontrola logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119526
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu
Zdravím!
1. Nainstalujte SP3, váš OS není aktuální a PC je tak nechráněn.
2. Odinstalujte Spybot, může být v kolizi s antispy Esetu.
3. Spusťte tuto utilitu:
1. Nainstalujte SP3, váš OS není aktuální a PC je tak nechráněn.
2. Odinstalujte Spybot, může být v kolizi s antispy Esetu.
3. Spusťte tuto utilitu:
Stáhněte AdwCleaner http://www.stahuj.centrum.cz/utility_a_ ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte na Search (Prohledat)
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola logu
# AdwCleaner v2.201 - Log vytvooen 11/05/2013 v 15:05:59
# Aktualizováno 21/04/2013 Xplode
# Operaení systém : Microsoft Windows XP Service Pack 3 (32 bits)
# Uživatel : Owner - DOMA-EF29DB4A62
# Spuštin systém : Normální
# Spuštino z : C:\Documents and Settings\Owner\Dokumenty\Downloads\adwcleaner (2).exe
# Volba [Prohledat]
***** [Služby] *****
***** [Soubory / Složky] *****
***** [Registry] *****
***** [Internetové prohlížeee] *****
-\\ Internet Explorer v6.0.2900.5512
[OK] Registry jsou eisté.
-\\ Google Chrome v26.0.1410.64
Soubor : C:\Documents and Settings\Owner\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Preferences
[OK] Soubor je eistý.
*************************
AdwCleaner[R1].txt - [1379 octets] - [07/05/2013 17:23:50]
AdwCleaner[R2].txt - [804 octets] - [11/05/2013 15:05:59]
AdwCleaner[S1].txt - [1282 octets] - [07/05/2013 17:25:18]
########## EOF - C:\AdwCleaner[R2].txt - [923 octets] ##########
# Aktualizováno 21/04/2013 Xplode
# Operaení systém : Microsoft Windows XP Service Pack 3 (32 bits)
# Uživatel : Owner - DOMA-EF29DB4A62
# Spuštin systém : Normální
# Spuštino z : C:\Documents and Settings\Owner\Dokumenty\Downloads\adwcleaner (2).exe
# Volba [Prohledat]
***** [Služby] *****
***** [Soubory / Složky] *****
***** [Registry] *****
***** [Internetové prohlížeee] *****
-\\ Internet Explorer v6.0.2900.5512
[OK] Registry jsou eisté.
-\\ Google Chrome v26.0.1410.64
Soubor : C:\Documents and Settings\Owner\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Preferences
[OK] Soubor je eistý.
*************************
AdwCleaner[R1].txt - [1379 octets] - [07/05/2013 17:23:50]
AdwCleaner[R2].txt - [804 octets] - [11/05/2013 15:05:59]
AdwCleaner[S1].txt - [1282 octets] - [07/05/2013 17:25:18]
########## EOF - C:\AdwCleaner[R2].txt - [923 octets] ##########
-
Rudy
- Site Admin
- Příspěvky: 119526
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu
Toto je OK. Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.:files
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\Documents and Settings\Owner\Local Settings\Data aplikací\Akamai
:reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Akamai NetSession Interface"=-
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola logu
Logfile of random's system information tool 1.09 (written by random/random)
Run by Owner at 2013-05-11 19:26:26
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 180 GB (76%) free of 238 GB
Total RAM: 479 MB (23% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:26:36, on 11.5.2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\VTTimer.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Owner\Plocha\RSIT.exe
C:\Program Files\trend micro\Owner.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 8266544671
O17 - HKLM\System\CCS\Services\Tcpip\..\{048BEF0E-27FD-4C0E-9A75-CCADA62837B7}: NameServer = 213.250.192.1,213.250.194.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{048BEF0E-27FD-4C0E-9A75-CCADA62837B7}: NameServer = 213.250.192.1,213.250.194.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{048BEF0E-27FD-4C0E-9A75-CCADA62837B7}: NameServer = 213.250.192.1,213.250.194.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{048BEF0E-27FD-4C0E-9A75-CCADA62837B7}: NameServer = 213.250.192.1,213.250.194.1
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
--
End of file - 5046 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-11-19 449512]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-11-19 155384]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"VTTimer"=C:\WINDOWS\system32\VTTimer.exe [2004-01-15 49152]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2013-03-21 5078504]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Documents and Settings\Owner\Local Settings\Data aplikací\Akamai\netsession_win.exe"="C:\Documents and Settings\Owner\Local Settings\Data aplikací\Akamai\netsession_win.exe:*:Disabled:Akamai NetSession Client"
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"vidc.ffds"=ff_vfw.dll
"vidc.xvid"=xvidvfw.dll
"vidc.lags"=lagarith.dll
"msacm.ac3filter"=ac3filter.acm
"msacm.divxa32"=msaud32_divx.acm
"msacm.lameacm"=LameACM.acm
======List of files/folders created in the last 1 month======
2013-05-11 19:22:30 ----D---- C:\_OTM
2013-05-11 19:09:52 ----HDC---- C:\WINDOWS\$NtUninstallKB2467659$
2013-05-11 19:09:26 ----D---- C:\WINDOWS\ie8updates
2013-05-11 19:09:24 ----HD---- C:\WINDOWS\$hf_mig$
2013-05-11 19:08:45 ----D---- C:\WINDOWS\WBEM
2013-05-11 19:07:14 ----HDC---- C:\WINDOWS\ie8
2013-05-11 19:02:19 ----A---- C:\WINDOWS\system32\MRT.exe
2013-05-11 18:36:31 ----A---- C:\WINDOWS\system32\wups2.dll
2013-05-11 18:36:19 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2013-05-11 15:10:37 ----A---- C:\AdwCleaner[R3].txt
2013-05-11 15:05:59 ----A---- C:\AdwCleaner[R2].txt
2013-05-11 15:01:11 ----A---- C:\WINDOWS\OEWABLog.txt
2013-05-11 15:00:36 ----D---- C:\WINDOWS\Prefetch
2013-05-11 14:49:53 ----A---- C:\WINDOWS\setuplog.txt
2013-05-11 14:49:00 ----N---- C:\WINDOWS\system32\msxml6r.dll
2013-05-11 14:49:00 ----N---- C:\WINDOWS\system32\msxml6.dll
2013-05-11 14:48:57 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2013-05-11 14:48:57 ----N---- C:\WINDOWS\system32\azroles.dll
2013-05-11 14:48:57 ----N---- C:\WINDOWS\system32\ativvaxx.dll
2013-05-11 14:48:57 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2013-05-11 14:48:57 ----N---- C:\WINDOWS\system32\ati3duag.dll
2013-05-11 14:48:57 ----N---- C:\WINDOWS\system32\ati3d1ag.dll
2013-05-11 14:48:57 ----N---- C:\WINDOWS\system32\ati2dvag.dll
2013-05-11 14:48:57 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2013-05-11 14:48:57 ----N---- C:\WINDOWS\system32\ati2cqag.dll
2013-05-11 14:48:57 ----N---- C:\WINDOWS\system32\aaclient.dll
2013-05-11 14:48:56 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2013-05-11 14:48:56 ----N---- C:\WINDOWS\system32\eapolqec.dll
2013-05-11 14:48:56 ----N---- C:\WINDOWS\system32\dot3ui.dll
2013-05-11 14:48:56 ----N---- C:\WINDOWS\system32\dot3svc.dll
2013-05-11 14:48:56 ----N---- C:\WINDOWS\system32\dot3msm.dll
2013-05-11 14:48:56 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2013-05-11 14:48:56 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2013-05-11 14:48:56 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2013-05-11 14:48:56 ----N---- C:\WINDOWS\system32\dot3api.dll
2013-05-11 14:48:56 ----N---- C:\WINDOWS\system32\dimsroam.dll
2013-05-11 14:48:56 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2013-05-11 14:48:56 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2013-05-11 14:48:56 ----N---- C:\WINDOWS\system32\credssp.dll
2013-05-11 14:48:55 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2013-05-11 14:48:55 ----N---- C:\WINDOWS\system32\eapsvc.dll
2013-05-11 14:48:55 ----N---- C:\WINDOWS\system32\eapqec.dll
2013-05-11 14:48:55 ----N---- C:\WINDOWS\system32\eappprxy.dll
2013-05-11 14:48:55 ----N---- C:\WINDOWS\system32\eapphost.dll
2013-05-11 14:48:55 ----N---- C:\WINDOWS\system32\eappgnui.dll
2013-05-11 14:48:55 ----N---- C:\WINDOWS\system32\eappcfg.dll
2013-05-11 14:48:54 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2013-05-11 14:48:54 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2013-05-11 14:48:53 ----N---- C:\WINDOWS\system32\mmcperf.exe
2013-05-11 14:48:53 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2013-05-11 14:48:53 ----N---- C:\WINDOWS\system32\mmcex.dll
2013-05-11 14:48:53 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2013-05-11 14:48:53 ----N---- C:\WINDOWS\system32\mdmxsdk.dll
2013-05-11 14:48:53 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2013-05-11 14:48:53 ----N---- C:\WINDOWS\system32\kmsvc.dll
2013-05-11 14:48:53 ----N---- C:\WINDOWS\system32\kbdpash.dll
2013-05-11 14:48:53 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2013-05-11 14:48:52 ----N---- C:\WINDOWS\system32\onex.dll
2013-05-11 14:48:52 ----N---- C:\WINDOWS\system32\nv4_disp.dll
2013-05-11 14:48:52 ----N---- C:\WINDOWS\system32\napstat.exe
2013-05-11 14:48:52 ----N---- C:\WINDOWS\system32\napmontr.dll
2013-05-11 14:48:52 ----N---- C:\WINDOWS\system32\napipsec.dll
2013-05-11 14:48:52 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2013-05-11 14:48:52 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2013-05-11 14:48:52 ----N---- C:\WINDOWS\system32\mssha.dll
2013-05-11 14:48:51 ----N---- C:\WINDOWS\system32\slserv.exe
2013-05-11 14:48:51 ----N---- C:\WINDOWS\system32\slrundll.exe
2013-05-11 14:48:51 ----N---- C:\WINDOWS\system32\slgen.dll
2013-05-11 14:48:51 ----N---- C:\WINDOWS\system32\slextspk.dll
2013-05-11 14:48:51 ----N---- C:\WINDOWS\system32\slcoinst.dll
2013-05-11 14:48:51 ----N---- C:\WINDOWS\system32\setupn.exe
2013-05-11 14:48:51 ----N---- C:\WINDOWS\system32\s3gnb.dll
2013-05-11 14:48:51 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2013-05-11 14:48:51 ----N---- C:\WINDOWS\system32\rasqec.dll
2013-05-11 14:48:51 ----N---- C:\WINDOWS\system32\qutil.dll
2013-05-11 14:48:51 ----N---- C:\WINDOWS\system32\qcliprov.dll
2013-05-11 14:48:51 ----N---- C:\WINDOWS\system32\qagentrt.dll
2013-05-11 14:48:51 ----N---- C:\WINDOWS\system32\qagent.dll
2013-05-11 14:48:51 ----N---- C:\WINDOWS\system32\photometadatahandler.dll
2013-05-11 14:48:50 ----N---- C:\WINDOWS\system32\xpsp3res.dll
2013-05-11 14:48:50 ----N---- C:\WINDOWS\system32\verclsid.exe
2013-05-11 14:48:50 ----N---- C:\WINDOWS\system32\tzchange.exe
2013-05-11 14:48:50 ----N---- C:\WINDOWS\system32\tspkg.dll
2013-05-11 14:48:50 ----N---- C:\WINDOWS\system32\tsgqec.dll
2013-05-11 14:48:49 ----N---- C:\WINDOWS\system32\wmphoto.dll
2013-05-11 14:48:49 ----N---- C:\WINDOWS\system32\wlanapi.dll
2013-05-11 14:48:49 ----N---- C:\WINDOWS\system32\windowscodecsext.dll
2013-05-11 14:48:49 ----N---- C:\WINDOWS\system32\windowscodecs.dll
2013-05-11 14:48:47 ----N---- C:\WINDOWS\slrundll.exe
2013-05-11 14:48:47 ----D---- C:\WINDOWS\system32\cs-cz
2013-05-11 14:48:47 ----A---- C:\WINDOWS\system32\xmllite.dll
2013-05-11 14:48:46 ----D---- C:\WINDOWS\l2schemas
2013-05-11 14:48:45 ----D---- C:\WINDOWS\system32\cs
2013-05-11 14:48:45 ----D---- C:\WINDOWS\system32\bits
2013-05-11 14:46:23 ----D---- C:\WINDOWS\ServicePackFiles
2013-05-11 14:43:55 ----N---- C:\WINDOWS\system32\drivers\amdagp.sys
2013-05-11 14:43:55 ----N---- C:\WINDOWS\system32\drivers\alim1541.sys
2013-05-11 14:43:55 ----N---- C:\WINDOWS\system32\drivers\agpcpq.sys
2013-05-11 14:43:55 ----N---- C:\WINDOWS\system32\drivers\agp440.sys
2013-05-11 14:43:55 ----N---- C:\WINDOWS\system32\drivers\adv11nt5.dll
2013-05-11 14:43:55 ----N---- C:\WINDOWS\system32\drivers\adv09nt5.dll
2013-05-11 14:43:55 ----N---- C:\WINDOWS\system32\drivers\adv08nt5.dll
2013-05-11 14:43:55 ----N---- C:\WINDOWS\system32\drivers\adv07nt5.dll
2013-05-11 14:43:55 ----N---- C:\WINDOWS\system32\drivers\adv05nt5.dll
2013-05-11 14:43:55 ----N---- C:\WINDOWS\system32\drivers\adv02nt5.dll
2013-05-11 14:43:55 ----N---- C:\WINDOWS\system32\drivers\adv01nt5.dll
2013-05-11 14:43:55 ----D---- C:\WINDOWS\network diagnostic
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\atv04nt5.dll
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\atv02nt5.dll
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\atv01nt5.dll
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\atinxsxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\atinxbxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\atintuxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\atinttxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\atinsnxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\atinrvxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\atinraxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\atinpdxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\atinmdxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\atinbtxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\ati2mtag.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\ati2mtaa.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\ati1xsxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\ati1xbxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\ati1tuxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\ati1ttxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\ati1snxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\ati1rvxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\ati1raxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\ati1pdxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\ati1mdxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\ati1btxx.sys
2013-05-11 14:43:53 ----N---- C:\WINDOWS\system32\drivers\ch7xxnt5.dll
2013-05-11 14:43:53 ----N---- C:\WINDOWS\system32\drivers\hsfdpsp2.sys
2013-05-11 14:43:53 ----N---- C:\WINDOWS\system32\drivers\hsfcxts2.sys
2013-05-11 14:43:53 ----N---- C:\WINDOWS\system32\drivers\hsfbs2s2.sys
2013-05-11 14:43:53 ----N---- C:\WINDOWS\system32\drivers\hidir.sys
2013-05-11 14:43:53 ----N---- C:\WINDOWS\system32\drivers\hidbth.sys
2013-05-11 14:43:53 ----N---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2013-05-11 14:43:53 ----N---- C:\WINDOWS\system32\drivers\gagp30kx.sys
2013-05-11 14:43:53 ----N---- C:\WINDOWS\system32\drivers\bthusb.sys
2013-05-11 14:43:53 ----N---- C:\WINDOWS\system32\drivers\bthprint.sys
2013-05-11 14:43:53 ----N---- C:\WINDOWS\system32\drivers\bthport.sys
2013-05-11 14:43:53 ----N---- C:\WINDOWS\system32\drivers\bthpan.sys
2013-05-11 14:43:53 ----N---- C:\WINDOWS\system32\drivers\bthmodem.sys
2013-05-11 14:43:53 ----N---- C:\WINDOWS\system32\drivers\bthenum.sys
2013-05-11 14:43:53 ----N---- C:\WINDOWS\system32\drivers\atv10nt5.dll
2013-05-11 14:43:53 ----N---- C:\WINDOWS\system32\drivers\atv06nt5.dll
2013-05-11 14:43:52 ----N---- C:\WINDOWS\system32\drivers\s3gnbm.sys
2013-05-11 14:43:52 ----N---- C:\WINDOWS\system32\drivers\rndismpx.sys
2013-05-11 14:43:52 ----N---- C:\WINDOWS\system32\drivers\rfcomm.sys
2013-05-11 14:43:52 ----N---- C:\WINDOWS\system32\drivers\recagent.sys
2013-05-11 14:43:52 ----N---- C:\WINDOWS\system32\drivers\nv4_mini.sys
2013-05-11 14:43:52 ----N---- C:\WINDOWS\system32\drivers\ntmtlfax.sys
2013-05-11 14:43:52 ----N---- C:\WINDOWS\system32\drivers\mutohpen.sys
2013-05-11 14:43:52 ----N---- C:\WINDOWS\system32\drivers\mtxparhm.sys
2013-05-11 14:43:52 ----N---- C:\WINDOWS\system32\drivers\mtlstrm.sys
2013-05-11 14:43:52 ----N---- C:\WINDOWS\system32\drivers\mtlmnt5.sys
2013-05-11 14:43:52 ----N---- C:\WINDOWS\system32\drivers\mdmxsdk.sys
2013-05-11 14:43:51 ----N---- C:\WINDOWS\system32\drivers\usbvideo.sys
2013-05-11 14:43:51 ----N---- C:\WINDOWS\system32\drivers\usb8023x.sys
2013-05-11 14:43:51 ----N---- C:\WINDOWS\system32\drivers\smbali.sys
2013-05-11 14:43:51 ----N---- C:\WINDOWS\system32\drivers\slwdmsup.sys
2013-05-11 14:43:51 ----N---- C:\WINDOWS\system32\drivers\slnthal.sys
2013-05-11 14:43:51 ----N---- C:\WINDOWS\system32\drivers\slntamr.sys
2013-05-11 14:43:51 ----N---- C:\WINDOWS\system32\drivers\slnt7554.sys
2013-05-11 14:43:51 ----N---- C:\WINDOWS\system32\drivers\sisagp.sys
2013-05-11 14:43:51 ----N---- C:\WINDOWS\system32\drivers\siint5.dll
2013-05-11 14:43:51 ----N---- C:\WINDOWS\system32\drivers\sffp_mmc.sys
2013-05-11 14:43:50 ----N---- C:\WINDOWS\system32\drivers\watv10nt.sys
2013-05-11 14:43:50 ----N---- C:\WINDOWS\system32\drivers\watv06nt.sys
2013-05-11 14:43:50 ----N---- C:\WINDOWS\system32\drivers\wadv11nt.sys
2013-05-11 14:43:50 ----N---- C:\WINDOWS\system32\drivers\wadv09nt.sys
2013-05-11 14:43:50 ----N---- C:\WINDOWS\system32\drivers\wadv08nt.sys
2013-05-11 14:43:50 ----N---- C:\WINDOWS\system32\drivers\wadv07nt.sys
2013-05-11 14:43:50 ----N---- C:\WINDOWS\system32\drivers\wacompen.sys
2013-05-11 14:43:50 ----N---- C:\WINDOWS\system32\drivers\viaagp.sys
2013-05-11 14:43:50 ----N---- C:\WINDOWS\system32\drivers\vchnt5.dll
2013-05-11 14:41:46 ----D---- C:\WINDOWS\system32\ReinstallBackups
2013-05-11 14:38:47 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2013-05-11 14:37:31 ----D---- C:\WINDOWS\EHome
2013-05-07 17:44:30 ----D---- C:\Program Files\trend micro
2013-05-07 17:44:29 ----D---- C:\rsit
2013-05-07 17:25:18 ----A---- C:\AdwCleaner[S1].txt
2013-05-07 17:23:50 ----A---- C:\AdwCleaner[R1].txt
2013-05-05 18:32:23 ----A---- C:\WINDOWS\wininit.ini
2013-05-05 17:59:43 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2013-04-21 18:16:32 ----D---- C:\Documents and Settings\All Users\Data aplikací\TuneUp Software
2013-04-21 18:16:25 ----SHD---- C:\Documents and Settings\All Users\Data aplikací\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-04-14 17:22:01 ----D---- C:\Program Files\ESET
2013-04-14 17:22:01 ----D---- C:\Documents and Settings\All Users\Data aplikací\ESET
======List of files/folders modified in the last 1 month======
2013-05-11 19:24:13 ----D---- C:\WINDOWS\Temp
2013-05-11 19:23:20 ----A---- C:\WINDOWS\SchedLgU.Txt
2013-05-11 19:23:03 ----D---- C:\WINDOWS\system32
2013-05-11 19:23:02 ----D---- C:\WINDOWS
2013-05-11 19:22:31 ----SD---- C:\WINDOWS\Tasks
2013-05-11 19:17:57 ----RSHDC---- C:\WINDOWS\system32\dllcache
2013-05-11 19:17:49 ----D---- C:\WINDOWS\system32\CatRoot2
2013-05-11 19:17:19 ----D---- C:\Program Files\Internet Explorer
2013-05-11 19:17:18 ----D---- C:\WINDOWS\Help
2013-05-11 19:11:45 ----HD---- C:\WINDOWS\inf
2013-05-11 19:11:08 ----A---- C:\WINDOWS\imsins.BAK
2013-05-11 19:08:36 ----D---- C:\WINDOWS\Media
2013-05-11 19:02:24 ----D---- C:\WINDOWS\Debug
2013-05-11 18:36:54 ----D---- C:\WINDOWS\SoftwareDistribution
2013-05-11 15:02:25 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2013-05-11 15:01:36 ----SHD---- C:\WINDOWS\Installer
2013-05-11 15:00:14 ----D---- C:\WINDOWS\system32\Setup
2013-05-11 15:00:14 ----D---- C:\WINDOWS\AppPatch
2013-05-11 15:00:13 ----D---- C:\WINDOWS\system32\wbem
2013-05-11 15:00:12 ----RSD---- C:\WINDOWS\Fonts
2013-05-11 15:00:07 ----D---- C:\WINDOWS\system32\drivers
2013-05-11 14:59:26 ----D---- C:\WINDOWS\security
2013-05-11 14:52:02 ----D---- C:\WINDOWS\system32\CatRoot
2013-05-11 14:49:06 ----D---- C:\WINDOWS\WinSxS
2013-05-11 14:49:02 ----D---- C:\Program Files\Messenger
2013-05-11 14:48:59 ----D---- C:\WINDOWS\ime
2013-05-11 14:48:47 ----D---- C:\WINDOWS\system32\usmt
2013-05-11 14:48:45 ----D---- C:\WINDOWS\PeerNet
2013-05-11 14:48:45 ----D---- C:\Program Files\Movie Maker
2013-05-11 14:46:12 ----D---- C:\WINDOWS\system32\Restore
2013-05-11 14:46:12 ----D---- C:\WINDOWS\system32\npp
2013-05-11 14:46:10 ----D---- C:\WINDOWS\msagent
2013-05-11 14:46:08 ----D---- C:\WINDOWS\srchasst
2013-05-11 14:46:06 ----D---- C:\Program Files\NetMeeting
2013-05-11 14:46:04 ----D---- C:\WINDOWS\system32\Com
2013-05-11 14:45:58 ----D---- C:\Program Files\Windows Media Player
2013-05-11 14:45:57 ----D---- C:\Program Files\Windows NT
2013-05-11 14:45:57 ----D---- C:\Program Files\Outlook Express
2013-05-11 14:45:45 ----D---- C:\Program Files\Common Files\System
2013-05-11 14:45:27 ----D---- C:\WINDOWS\system32\oobe
2013-05-11 14:45:25 ----D---- C:\WINDOWS\system
2013-05-11 12:18:43 ----RD---- C:\Program Files
2013-05-11 12:18:43 ----D---- C:\WINDOWS\system32\config
2013-05-11 12:02:31 ----SD---- C:\WINDOWS\Downloaded Program Files
2013-05-11 10:17:39 ----D---- C:\Documents and Settings
2013-05-05 17:59:31 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2013-05-04 23:31:03 ----D---- C:\Program Files\Google
2013-05-01 19:29:02 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2013-04-24 21:13:28 ----D---- C:\Program Files\Common Files\Adobe
2013-04-21 18:17:14 ----D---- C:\Documents and Settings\Owner\Data aplikací\TuneUp Software
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 uagp35;Filtr Microsoft AGPv3.5; C:\WINDOWS\system32\DRIVERS\uagp35.sys [2008-04-14 44672]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2008-01-18 77696]
R1 AmdK7;Ovladač procesoru AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2008-04-14 41600]
R1 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2013-01-10 161368]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2013-01-10 122240]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2013-01-10 105784]
R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2002-04-01 4816]
R3 FETNDIS;VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-17 27165]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-18 5888]
R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2003-07-15 578368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 viagfx;viagfx; C:\WINDOWS\system32\DRIVERS\vtmini.sys [2004-02-04 134144]
S3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2008-10-29 49920]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2008-10-29 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2008-10-29 21568]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2004-08-18 12160]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2008-01-18 83328]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2013-03-21 1341664]
R2 HPSLPSVC;HP Network Devices Support; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2012-11-19 161768]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-05-04 116648]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-05-04 116648]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
-----------------EOF-----------------
Run by Owner at 2013-05-11 19:26:26
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 180 GB (76%) free of 238 GB
Total RAM: 479 MB (23% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:26:36, on 11.5.2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\VTTimer.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Owner\Plocha\RSIT.exe
C:\Program Files\trend micro\Owner.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 8266544671
O17 - HKLM\System\CCS\Services\Tcpip\..\{048BEF0E-27FD-4C0E-9A75-CCADA62837B7}: NameServer = 213.250.192.1,213.250.194.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{048BEF0E-27FD-4C0E-9A75-CCADA62837B7}: NameServer = 213.250.192.1,213.250.194.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{048BEF0E-27FD-4C0E-9A75-CCADA62837B7}: NameServer = 213.250.192.1,213.250.194.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{048BEF0E-27FD-4C0E-9A75-CCADA62837B7}: NameServer = 213.250.192.1,213.250.194.1
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
--
End of file - 5046 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-11-19 449512]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-11-19 155384]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"VTTimer"=C:\WINDOWS\system32\VTTimer.exe [2004-01-15 49152]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2013-03-21 5078504]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Documents and Settings\Owner\Local Settings\Data aplikací\Akamai\netsession_win.exe"="C:\Documents and Settings\Owner\Local Settings\Data aplikací\Akamai\netsession_win.exe:*:Disabled:Akamai NetSession Client"
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"vidc.ffds"=ff_vfw.dll
"vidc.xvid"=xvidvfw.dll
"vidc.lags"=lagarith.dll
"msacm.ac3filter"=ac3filter.acm
"msacm.divxa32"=msaud32_divx.acm
"msacm.lameacm"=LameACM.acm
======List of files/folders created in the last 1 month======
2013-05-11 19:22:30 ----D---- C:\_OTM
2013-05-11 19:09:52 ----HDC---- C:\WINDOWS\$NtUninstallKB2467659$
2013-05-11 19:09:26 ----D---- C:\WINDOWS\ie8updates
2013-05-11 19:09:24 ----HD---- C:\WINDOWS\$hf_mig$
2013-05-11 19:08:45 ----D---- C:\WINDOWS\WBEM
2013-05-11 19:07:14 ----HDC---- C:\WINDOWS\ie8
2013-05-11 19:02:19 ----A---- C:\WINDOWS\system32\MRT.exe
2013-05-11 18:36:31 ----A---- C:\WINDOWS\system32\wups2.dll
2013-05-11 18:36:19 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2013-05-11 15:10:37 ----A---- C:\AdwCleaner[R3].txt
2013-05-11 15:05:59 ----A---- C:\AdwCleaner[R2].txt
2013-05-11 15:01:11 ----A---- C:\WINDOWS\OEWABLog.txt
2013-05-11 15:00:36 ----D---- C:\WINDOWS\Prefetch
2013-05-11 14:49:53 ----A---- C:\WINDOWS\setuplog.txt
2013-05-11 14:49:00 ----N---- C:\WINDOWS\system32\msxml6r.dll
2013-05-11 14:49:00 ----N---- C:\WINDOWS\system32\msxml6.dll
2013-05-11 14:48:57 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2013-05-11 14:48:57 ----N---- C:\WINDOWS\system32\azroles.dll
2013-05-11 14:48:57 ----N---- C:\WINDOWS\system32\ativvaxx.dll
2013-05-11 14:48:57 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2013-05-11 14:48:57 ----N---- C:\WINDOWS\system32\ati3duag.dll
2013-05-11 14:48:57 ----N---- C:\WINDOWS\system32\ati3d1ag.dll
2013-05-11 14:48:57 ----N---- C:\WINDOWS\system32\ati2dvag.dll
2013-05-11 14:48:57 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2013-05-11 14:48:57 ----N---- C:\WINDOWS\system32\ati2cqag.dll
2013-05-11 14:48:57 ----N---- C:\WINDOWS\system32\aaclient.dll
2013-05-11 14:48:56 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2013-05-11 14:48:56 ----N---- C:\WINDOWS\system32\eapolqec.dll
2013-05-11 14:48:56 ----N---- C:\WINDOWS\system32\dot3ui.dll
2013-05-11 14:48:56 ----N---- C:\WINDOWS\system32\dot3svc.dll
2013-05-11 14:48:56 ----N---- C:\WINDOWS\system32\dot3msm.dll
2013-05-11 14:48:56 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2013-05-11 14:48:56 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2013-05-11 14:48:56 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2013-05-11 14:48:56 ----N---- C:\WINDOWS\system32\dot3api.dll
2013-05-11 14:48:56 ----N---- C:\WINDOWS\system32\dimsroam.dll
2013-05-11 14:48:56 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2013-05-11 14:48:56 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2013-05-11 14:48:56 ----N---- C:\WINDOWS\system32\credssp.dll
2013-05-11 14:48:55 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2013-05-11 14:48:55 ----N---- C:\WINDOWS\system32\eapsvc.dll
2013-05-11 14:48:55 ----N---- C:\WINDOWS\system32\eapqec.dll
2013-05-11 14:48:55 ----N---- C:\WINDOWS\system32\eappprxy.dll
2013-05-11 14:48:55 ----N---- C:\WINDOWS\system32\eapphost.dll
2013-05-11 14:48:55 ----N---- C:\WINDOWS\system32\eappgnui.dll
2013-05-11 14:48:55 ----N---- C:\WINDOWS\system32\eappcfg.dll
2013-05-11 14:48:54 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2013-05-11 14:48:54 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2013-05-11 14:48:53 ----N---- C:\WINDOWS\system32\mmcperf.exe
2013-05-11 14:48:53 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2013-05-11 14:48:53 ----N---- C:\WINDOWS\system32\mmcex.dll
2013-05-11 14:48:53 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2013-05-11 14:48:53 ----N---- C:\WINDOWS\system32\mdmxsdk.dll
2013-05-11 14:48:53 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2013-05-11 14:48:53 ----N---- C:\WINDOWS\system32\kmsvc.dll
2013-05-11 14:48:53 ----N---- C:\WINDOWS\system32\kbdpash.dll
2013-05-11 14:48:53 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2013-05-11 14:48:52 ----N---- C:\WINDOWS\system32\onex.dll
2013-05-11 14:48:52 ----N---- C:\WINDOWS\system32\nv4_disp.dll
2013-05-11 14:48:52 ----N---- C:\WINDOWS\system32\napstat.exe
2013-05-11 14:48:52 ----N---- C:\WINDOWS\system32\napmontr.dll
2013-05-11 14:48:52 ----N---- C:\WINDOWS\system32\napipsec.dll
2013-05-11 14:48:52 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2013-05-11 14:48:52 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2013-05-11 14:48:52 ----N---- C:\WINDOWS\system32\mssha.dll
2013-05-11 14:48:51 ----N---- C:\WINDOWS\system32\slserv.exe
2013-05-11 14:48:51 ----N---- C:\WINDOWS\system32\slrundll.exe
2013-05-11 14:48:51 ----N---- C:\WINDOWS\system32\slgen.dll
2013-05-11 14:48:51 ----N---- C:\WINDOWS\system32\slextspk.dll
2013-05-11 14:48:51 ----N---- C:\WINDOWS\system32\slcoinst.dll
2013-05-11 14:48:51 ----N---- C:\WINDOWS\system32\setupn.exe
2013-05-11 14:48:51 ----N---- C:\WINDOWS\system32\s3gnb.dll
2013-05-11 14:48:51 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2013-05-11 14:48:51 ----N---- C:\WINDOWS\system32\rasqec.dll
2013-05-11 14:48:51 ----N---- C:\WINDOWS\system32\qutil.dll
2013-05-11 14:48:51 ----N---- C:\WINDOWS\system32\qcliprov.dll
2013-05-11 14:48:51 ----N---- C:\WINDOWS\system32\qagentrt.dll
2013-05-11 14:48:51 ----N---- C:\WINDOWS\system32\qagent.dll
2013-05-11 14:48:51 ----N---- C:\WINDOWS\system32\photometadatahandler.dll
2013-05-11 14:48:50 ----N---- C:\WINDOWS\system32\xpsp3res.dll
2013-05-11 14:48:50 ----N---- C:\WINDOWS\system32\verclsid.exe
2013-05-11 14:48:50 ----N---- C:\WINDOWS\system32\tzchange.exe
2013-05-11 14:48:50 ----N---- C:\WINDOWS\system32\tspkg.dll
2013-05-11 14:48:50 ----N---- C:\WINDOWS\system32\tsgqec.dll
2013-05-11 14:48:49 ----N---- C:\WINDOWS\system32\wmphoto.dll
2013-05-11 14:48:49 ----N---- C:\WINDOWS\system32\wlanapi.dll
2013-05-11 14:48:49 ----N---- C:\WINDOWS\system32\windowscodecsext.dll
2013-05-11 14:48:49 ----N---- C:\WINDOWS\system32\windowscodecs.dll
2013-05-11 14:48:47 ----N---- C:\WINDOWS\slrundll.exe
2013-05-11 14:48:47 ----D---- C:\WINDOWS\system32\cs-cz
2013-05-11 14:48:47 ----A---- C:\WINDOWS\system32\xmllite.dll
2013-05-11 14:48:46 ----D---- C:\WINDOWS\l2schemas
2013-05-11 14:48:45 ----D---- C:\WINDOWS\system32\cs
2013-05-11 14:48:45 ----D---- C:\WINDOWS\system32\bits
2013-05-11 14:46:23 ----D---- C:\WINDOWS\ServicePackFiles
2013-05-11 14:43:55 ----N---- C:\WINDOWS\system32\drivers\amdagp.sys
2013-05-11 14:43:55 ----N---- C:\WINDOWS\system32\drivers\alim1541.sys
2013-05-11 14:43:55 ----N---- C:\WINDOWS\system32\drivers\agpcpq.sys
2013-05-11 14:43:55 ----N---- C:\WINDOWS\system32\drivers\agp440.sys
2013-05-11 14:43:55 ----N---- C:\WINDOWS\system32\drivers\adv11nt5.dll
2013-05-11 14:43:55 ----N---- C:\WINDOWS\system32\drivers\adv09nt5.dll
2013-05-11 14:43:55 ----N---- C:\WINDOWS\system32\drivers\adv08nt5.dll
2013-05-11 14:43:55 ----N---- C:\WINDOWS\system32\drivers\adv07nt5.dll
2013-05-11 14:43:55 ----N---- C:\WINDOWS\system32\drivers\adv05nt5.dll
2013-05-11 14:43:55 ----N---- C:\WINDOWS\system32\drivers\adv02nt5.dll
2013-05-11 14:43:55 ----N---- C:\WINDOWS\system32\drivers\adv01nt5.dll
2013-05-11 14:43:55 ----D---- C:\WINDOWS\network diagnostic
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\atv04nt5.dll
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\atv02nt5.dll
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\atv01nt5.dll
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\atinxsxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\atinxbxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\atintuxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\atinttxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\atinsnxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\atinrvxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\atinraxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\atinpdxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\atinmdxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\atinbtxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\ati2mtag.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\ati2mtaa.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\ati1xsxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\ati1xbxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\ati1tuxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\ati1ttxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\ati1snxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\ati1rvxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\ati1raxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\ati1pdxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\ati1mdxx.sys
2013-05-11 14:43:54 ----N---- C:\WINDOWS\system32\drivers\ati1btxx.sys
2013-05-11 14:43:53 ----N---- C:\WINDOWS\system32\drivers\ch7xxnt5.dll
2013-05-11 14:43:53 ----N---- C:\WINDOWS\system32\drivers\hsfdpsp2.sys
2013-05-11 14:43:53 ----N---- C:\WINDOWS\system32\drivers\hsfcxts2.sys
2013-05-11 14:43:53 ----N---- C:\WINDOWS\system32\drivers\hsfbs2s2.sys
2013-05-11 14:43:53 ----N---- C:\WINDOWS\system32\drivers\hidir.sys
2013-05-11 14:43:53 ----N---- C:\WINDOWS\system32\drivers\hidbth.sys
2013-05-11 14:43:53 ----N---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2013-05-11 14:43:53 ----N---- C:\WINDOWS\system32\drivers\gagp30kx.sys
2013-05-11 14:43:53 ----N---- C:\WINDOWS\system32\drivers\bthusb.sys
2013-05-11 14:43:53 ----N---- C:\WINDOWS\system32\drivers\bthprint.sys
2013-05-11 14:43:53 ----N---- C:\WINDOWS\system32\drivers\bthport.sys
2013-05-11 14:43:53 ----N---- C:\WINDOWS\system32\drivers\bthpan.sys
2013-05-11 14:43:53 ----N---- C:\WINDOWS\system32\drivers\bthmodem.sys
2013-05-11 14:43:53 ----N---- C:\WINDOWS\system32\drivers\bthenum.sys
2013-05-11 14:43:53 ----N---- C:\WINDOWS\system32\drivers\atv10nt5.dll
2013-05-11 14:43:53 ----N---- C:\WINDOWS\system32\drivers\atv06nt5.dll
2013-05-11 14:43:52 ----N---- C:\WINDOWS\system32\drivers\s3gnbm.sys
2013-05-11 14:43:52 ----N---- C:\WINDOWS\system32\drivers\rndismpx.sys
2013-05-11 14:43:52 ----N---- C:\WINDOWS\system32\drivers\rfcomm.sys
2013-05-11 14:43:52 ----N---- C:\WINDOWS\system32\drivers\recagent.sys
2013-05-11 14:43:52 ----N---- C:\WINDOWS\system32\drivers\nv4_mini.sys
2013-05-11 14:43:52 ----N---- C:\WINDOWS\system32\drivers\ntmtlfax.sys
2013-05-11 14:43:52 ----N---- C:\WINDOWS\system32\drivers\mutohpen.sys
2013-05-11 14:43:52 ----N---- C:\WINDOWS\system32\drivers\mtxparhm.sys
2013-05-11 14:43:52 ----N---- C:\WINDOWS\system32\drivers\mtlstrm.sys
2013-05-11 14:43:52 ----N---- C:\WINDOWS\system32\drivers\mtlmnt5.sys
2013-05-11 14:43:52 ----N---- C:\WINDOWS\system32\drivers\mdmxsdk.sys
2013-05-11 14:43:51 ----N---- C:\WINDOWS\system32\drivers\usbvideo.sys
2013-05-11 14:43:51 ----N---- C:\WINDOWS\system32\drivers\usb8023x.sys
2013-05-11 14:43:51 ----N---- C:\WINDOWS\system32\drivers\smbali.sys
2013-05-11 14:43:51 ----N---- C:\WINDOWS\system32\drivers\slwdmsup.sys
2013-05-11 14:43:51 ----N---- C:\WINDOWS\system32\drivers\slnthal.sys
2013-05-11 14:43:51 ----N---- C:\WINDOWS\system32\drivers\slntamr.sys
2013-05-11 14:43:51 ----N---- C:\WINDOWS\system32\drivers\slnt7554.sys
2013-05-11 14:43:51 ----N---- C:\WINDOWS\system32\drivers\sisagp.sys
2013-05-11 14:43:51 ----N---- C:\WINDOWS\system32\drivers\siint5.dll
2013-05-11 14:43:51 ----N---- C:\WINDOWS\system32\drivers\sffp_mmc.sys
2013-05-11 14:43:50 ----N---- C:\WINDOWS\system32\drivers\watv10nt.sys
2013-05-11 14:43:50 ----N---- C:\WINDOWS\system32\drivers\watv06nt.sys
2013-05-11 14:43:50 ----N---- C:\WINDOWS\system32\drivers\wadv11nt.sys
2013-05-11 14:43:50 ----N---- C:\WINDOWS\system32\drivers\wadv09nt.sys
2013-05-11 14:43:50 ----N---- C:\WINDOWS\system32\drivers\wadv08nt.sys
2013-05-11 14:43:50 ----N---- C:\WINDOWS\system32\drivers\wadv07nt.sys
2013-05-11 14:43:50 ----N---- C:\WINDOWS\system32\drivers\wacompen.sys
2013-05-11 14:43:50 ----N---- C:\WINDOWS\system32\drivers\viaagp.sys
2013-05-11 14:43:50 ----N---- C:\WINDOWS\system32\drivers\vchnt5.dll
2013-05-11 14:41:46 ----D---- C:\WINDOWS\system32\ReinstallBackups
2013-05-11 14:38:47 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2013-05-11 14:37:31 ----D---- C:\WINDOWS\EHome
2013-05-07 17:44:30 ----D---- C:\Program Files\trend micro
2013-05-07 17:44:29 ----D---- C:\rsit
2013-05-07 17:25:18 ----A---- C:\AdwCleaner[S1].txt
2013-05-07 17:23:50 ----A---- C:\AdwCleaner[R1].txt
2013-05-05 18:32:23 ----A---- C:\WINDOWS\wininit.ini
2013-05-05 17:59:43 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2013-04-21 18:16:32 ----D---- C:\Documents and Settings\All Users\Data aplikací\TuneUp Software
2013-04-21 18:16:25 ----SHD---- C:\Documents and Settings\All Users\Data aplikací\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-04-14 17:22:01 ----D---- C:\Program Files\ESET
2013-04-14 17:22:01 ----D---- C:\Documents and Settings\All Users\Data aplikací\ESET
======List of files/folders modified in the last 1 month======
2013-05-11 19:24:13 ----D---- C:\WINDOWS\Temp
2013-05-11 19:23:20 ----A---- C:\WINDOWS\SchedLgU.Txt
2013-05-11 19:23:03 ----D---- C:\WINDOWS\system32
2013-05-11 19:23:02 ----D---- C:\WINDOWS
2013-05-11 19:22:31 ----SD---- C:\WINDOWS\Tasks
2013-05-11 19:17:57 ----RSHDC---- C:\WINDOWS\system32\dllcache
2013-05-11 19:17:49 ----D---- C:\WINDOWS\system32\CatRoot2
2013-05-11 19:17:19 ----D---- C:\Program Files\Internet Explorer
2013-05-11 19:17:18 ----D---- C:\WINDOWS\Help
2013-05-11 19:11:45 ----HD---- C:\WINDOWS\inf
2013-05-11 19:11:08 ----A---- C:\WINDOWS\imsins.BAK
2013-05-11 19:08:36 ----D---- C:\WINDOWS\Media
2013-05-11 19:02:24 ----D---- C:\WINDOWS\Debug
2013-05-11 18:36:54 ----D---- C:\WINDOWS\SoftwareDistribution
2013-05-11 15:02:25 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2013-05-11 15:01:36 ----SHD---- C:\WINDOWS\Installer
2013-05-11 15:00:14 ----D---- C:\WINDOWS\system32\Setup
2013-05-11 15:00:14 ----D---- C:\WINDOWS\AppPatch
2013-05-11 15:00:13 ----D---- C:\WINDOWS\system32\wbem
2013-05-11 15:00:12 ----RSD---- C:\WINDOWS\Fonts
2013-05-11 15:00:07 ----D---- C:\WINDOWS\system32\drivers
2013-05-11 14:59:26 ----D---- C:\WINDOWS\security
2013-05-11 14:52:02 ----D---- C:\WINDOWS\system32\CatRoot
2013-05-11 14:49:06 ----D---- C:\WINDOWS\WinSxS
2013-05-11 14:49:02 ----D---- C:\Program Files\Messenger
2013-05-11 14:48:59 ----D---- C:\WINDOWS\ime
2013-05-11 14:48:47 ----D---- C:\WINDOWS\system32\usmt
2013-05-11 14:48:45 ----D---- C:\WINDOWS\PeerNet
2013-05-11 14:48:45 ----D---- C:\Program Files\Movie Maker
2013-05-11 14:46:12 ----D---- C:\WINDOWS\system32\Restore
2013-05-11 14:46:12 ----D---- C:\WINDOWS\system32\npp
2013-05-11 14:46:10 ----D---- C:\WINDOWS\msagent
2013-05-11 14:46:08 ----D---- C:\WINDOWS\srchasst
2013-05-11 14:46:06 ----D---- C:\Program Files\NetMeeting
2013-05-11 14:46:04 ----D---- C:\WINDOWS\system32\Com
2013-05-11 14:45:58 ----D---- C:\Program Files\Windows Media Player
2013-05-11 14:45:57 ----D---- C:\Program Files\Windows NT
2013-05-11 14:45:57 ----D---- C:\Program Files\Outlook Express
2013-05-11 14:45:45 ----D---- C:\Program Files\Common Files\System
2013-05-11 14:45:27 ----D---- C:\WINDOWS\system32\oobe
2013-05-11 14:45:25 ----D---- C:\WINDOWS\system
2013-05-11 12:18:43 ----RD---- C:\Program Files
2013-05-11 12:18:43 ----D---- C:\WINDOWS\system32\config
2013-05-11 12:02:31 ----SD---- C:\WINDOWS\Downloaded Program Files
2013-05-11 10:17:39 ----D---- C:\Documents and Settings
2013-05-05 17:59:31 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2013-05-04 23:31:03 ----D---- C:\Program Files\Google
2013-05-01 19:29:02 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2013-04-24 21:13:28 ----D---- C:\Program Files\Common Files\Adobe
2013-04-21 18:17:14 ----D---- C:\Documents and Settings\Owner\Data aplikací\TuneUp Software
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 uagp35;Filtr Microsoft AGPv3.5; C:\WINDOWS\system32\DRIVERS\uagp35.sys [2008-04-14 44672]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2008-01-18 77696]
R1 AmdK7;Ovladač procesoru AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2008-04-14 41600]
R1 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2013-01-10 161368]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2013-01-10 122240]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2013-01-10 105784]
R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2002-04-01 4816]
R3 FETNDIS;VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-17 27165]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-18 5888]
R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2003-07-15 578368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 viagfx;viagfx; C:\WINDOWS\system32\DRIVERS\vtmini.sys [2004-02-04 134144]
S3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2008-10-29 49920]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2008-10-29 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2008-10-29 21568]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2004-08-18 12160]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2008-01-18 83328]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2013-03-21 1341664]
R2 HPSLPSVC;HP Network Devices Support; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2012-11-19 161768]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-05-04 116648]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-05-04 116648]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119526
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu
Dvouklikem na soubor spusťte HijackThis. Klikněte na "Do a system scan only" a v otevřeném okně vlevo ve čtverečcích zaškrtněte:
Klikněte na >FixChecked<. Pak znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?