Kontrola logu, zpomalení

[northendcz]

Ahoj, poslední dva týdny pozoruji významné zpomalení, už se seká nejen obraz ale i zvuk na youtube.
Už je to sice staré železo ale snad ještě vydrží abych dopsal bakalářku
díky

- při prvním skenování mi FIRST 2x spadl (neodesílat zprávu o chybách) log se mi podařilo vytvořit až na

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 17-01-2014 03
Ran by Honza (administrator) on QWERTZ on 18-01-2014 11:50:30
Running from C:\Documents and Settings\Honza\Plocha
Microsoft Windows XP Home Edition Service Pack 2 (X86) OS Language: Czech
Internet Explorer Version 6
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) ===================

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
(Sun Microsystems, Inc.) C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
(Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(VŠB-TU Ostrava) C:\Program Files\SafeQ\SafeQ_cli.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(ZONER software) C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTray.exe
(Cisco Systems, Inc.) C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
(Highresolution Enterprises) C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe
(PortableApps.com) D:\install\SkypePortable\SkypePortable.exe
(SafeNet Inc.) C:\WINDOWS\system32\hasplms.exe
(Flexera Software, Inc.) C:\Program Files\Common Files\Scia\LicenceServer\FlexnetServer\lmadmin.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
(Skype Technologies S.A.) D:\install\SkypePortable\App\Skype\Phone\Skype.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\tv_w32.exe
(Flexera Software, Inc.) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Nemetschek SCIA) C:\Program Files\Common Files\Scia\LicenceServer\FlexnetServer\scia\SCIA.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\system32\taskmgr.exe
(Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Realtek Semiconductor Corp.) C:\Program Files\REALTEK\USB Wireless LAN Utility\RtWLan.exe
(Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
(Google) C:\Documents and Settings\Honza\Local Settings\Data aplikací\Google\Google Talk Plugin\googletalkplugin.exe
(forum.viry.cz) C:\Documents and Settings\Honza\Plocha\FRSTLauncher.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Zástupce stránky vlastností sběrnice High Definition Audio] - C:\Windows\system32\HDAShCut.exe [61952 2005-01-07] (Windows (R) Server 2003 DDK provider)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe [36975 2005-11-10] (Sun Microsystems, Inc.)
HKLM\...\Run: [SMSERIAL] - C:\Windows\sm56hlpr.exe [544768 2005-04-26] (Motorola Inc.)
HKLM\...\Run: [SynTPLpr] - C:\Program Files\Synaptics\SynTP\SynTPLpr.exe [98394 2004-10-05] (Synaptics, Inc.)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [688218 2004-10-05] (Synaptics, Inc.)
HKLM\...\Run: [SafeQClient] - C:\Program Files\SafeQ\SafeQ_cli.exe [493056 2013-09-18] (VŠB-TU Ostrava)
HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-26] (Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3764024 2014-01-12] (AVAST Software)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxsrvc.dll (Intel Corporation)
HKCU\...\Run: [Google Update] - C:\Documents and Settings\Honza\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [116648 2013-10-18] (Google Inc.)
HKCU\...\Run: [GoogleChromeAutoLaunch_BF058E5DC45404DBFB94F54EFA6335B9] - C:\Program Files\Google\Chrome\Application\chrome.exe [866584 2014-01-11] (Google Inc.)
HKCU\...\Run: [Zoner Photo Studio Autoupdate] - C:\PROGRAM FILES\ZONER\PHOTO STUDIO 15\Program32\ZPSTRAY.EXE [774680 2013-06-07] (ZONER software)
MountPoints2: {bfd16451-68e4-11e3-b03d-000ae4ba6c2d} - G:\StartPortableApps.exe
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\X-Mouse Button Control.lnk
ShortcutTarget: X-Mouse Button Control.lnk -> C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe (Highresolution Enterprises)
Startup: C:\Documents and Settings\Honza\Nabídka Start\Programy\Po spuštění\Zástupce - SkypePortable.lnk
ShortcutTarget: Zástupce - SkypePortable.lnk -> D:\install\SkypePortable\SkypePortable.exe (PortableApps.com)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... R}&ar=home
SearchScopes: HKLM - DefaultScope value is missing.
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll (Sun Microsystems, Inc.)
Toolbar: HKCU - &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\Windows\system32\browseui.dll (Společnost Microsoft)
Toolbar: HKCU - &Odkazy - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\Windows\system32\SHELL32.dll (Microsoft Corporation)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138

Chrome:
=======
CHR HomePage: hxxp://qip.ru
CHR Extension: (Dokumenty Google) - C:\Documents and Settings\Honza\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-09-21]
CHR Extension: (Disk Google) - C:\Documents and Settings\Honza\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-09-21]
CHR Extension: (YouTube) - C:\Documents and Settings\Honza\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-09-21]
CHR Extension: (Vyhled\u00E1v\u00E1n\u00ED Google) - C:\Documents and Settings\Honza\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-09-21]
CHR Extension: (AdBlock) - C:\Documents and Settings\Honza\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-09-21]
CHR Extension: (goo.gl URL Shortener) - C:\Documents and Settings\Honza\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\iblijlcdoidgdpfknkckljiocdbnlagk [2013-09-21]
CHR Extension: (Kontrola e-mailu Google) - C:\Documents and Settings\Honza\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2013-09-21]
CHR Extension: (Google) - C:\Documents and Settings\Honza\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nckgahadagoaajjgafhacjanaoiihapd [2013-10-17]
CHR Extension: (Pen\u011B\u017Eenka Google) - C:\Documents and Settings\Honza\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-21]
CHR Extension: (Gmail) - C:\Documents and Settings\Honza\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-09-21]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-01-12]

========================== Services (Whitelisted) =================

R2 Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [18656 2011-02-02] ()
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-01-12] (AVAST Software)
R2 CVPND; C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe [1528616 2010-09-27] (Cisco Systems, Inc.)
R3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [1044816 2013-11-11] (Flexera Software, Inc.)
R2 hasplms; C:\WINDOWS\system32\hasplms.exe [4466120 2013-01-11] (SafeNet Inc.)
R2 lmadmin; C:\Program Files\Common Files\Scia\LicenceServer\FlexnetServer\lmadmin.exe [6587728 2011-08-05] (Flexera Software, Inc.)

==================== Drivers (Whitelisted) ====================

R2 AegisP; C:\Windows\System32\DRIVERS\AegisP.sys [21361 2013-12-16] (Cisco Systems, Inc.)
R2 aksfridge; C:\WINDOWS\system32\drivers\aksfridge.sys [376200 2013-02-19] (SafeNet Inc.)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [67824 2014-01-12] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [54832 2014-01-12] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [49944 2014-01-12] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [775952 2014-01-12] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [410528 2014-01-12] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57672 2014-01-12] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [180248 2014-01-12] ()
S3 CVirtA; C:\Windows\System32\DRIVERS\CVirtA.sys [5275 2007-01-18] (Cisco Systems, Inc.)
R2 CVPNDRVA; C:\WINDOWS\system32\Drivers\CVPNDRVA.sys [308859 2010-09-27] (Cisco Systems, Inc.)
R3 DNE; C:\Windows\System32\DRIVERS\dne2000.sys [131984 2008-11-16] (Deterministic Networks, Inc.)
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.)
R2 hardlock; C:\WINDOWS\system32\drivers\hardlock.sys [608136 2013-03-07] (SafeNet Inc.)
S3 HdAudAddService; C:\Windows\System32\drivers\HdAudio.sys [145920 2005-01-07] (Windows (R) Server 2003 DDK provider)
R3 RTL8023xp; C:\Windows\System32\DRIVERS\Rtlnicxp.sys [74496 2005-03-04] (Realtek Semiconductor Corporation )
S3 RtlWlanu; C:\Windows\System32\DRIVERS\rtwlanu.sys [1343760 2012-11-07] (Realtek Semiconductor Corporation )
S3 Secdrv; C:\Windows\System32\DRIVERS\secdrv.sys [27440 2004-08-18] ()
R3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [26624 2011-04-26] (The OpenVPN Project)
S3 vsdatant; C:\WINDOWS\system32\vsdatant.sys [394952 2007-11-14] (Zone Labs, LLC)
R3 w29n51; C:\Windows\System32\DRIVERS\w29n51.sys [3298432 2005-09-12] (Intel® Corporation)
S3 olfqtuec; No ImagePath
U1 WS2IFSL;

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-18 11:50 - 2014-01-18 11:50 - 00013297 _____ C:\Documents and Settings\Honza\Plocha\FRST.txt
2014-01-18 11:49 - 2014-01-18 11:49 - 00000000 ____D C:\Documents and Settings\Honza\Data aplikací\Mozilla
2014-01-18 11:43 - 2014-01-18 11:43 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Honza\Plocha\FRSTLauncher.exe
2014-01-18 11:32 - 2014-01-18 11:32 - 00000000 ____D C:\FRST
2014-01-18 11:28 - 2014-01-18 11:28 - 01220608 _____ (Farbar) C:\Documents and Settings\Honza\Plocha\FRST.exe
2014-01-18 11:03 - 2014-01-18 11:03 - 00000110 ____H C:\Documents and Settings\Honza\Plocha\DSC_1429.JPG.uid-zps
2014-01-17 16:50 - 2014-01-17 16:50 - 00000000 ____D C:\Documents and Settings\Honza\Data aplikací\SkypePM
2014-01-15 16:38 - 2014-01-15 16:38 - 00000815 _____ C:\Documents and Settings\All Users\Plocha\TeamViewer 9.lnk
2014-01-15 16:38 - 2014-01-15 16:38 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\TeamViewer 8
2014-01-13 14:39 - 2014-01-13 14:39 - 00000000 ____D C:\Documents and Settings\Honza\Data aplikací\Google
2014-01-13 14:36 - 2014-01-13 14:36 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Earth
2014-01-13 12:45 - 2014-01-14 15:25 - 00021956 _____ C:\WINDOWS\setupapi.log
2014-01-13 12:44 - 2014-01-14 08:06 - 00000000 ____D C:\Program Files\n2n Gui
2014-01-13 12:44 - 2014-01-13 12:44 - 00000663 _____ C:\Documents and Settings\All Users\Plocha\n2n Gui.lnk
2014-01-13 12:44 - 2014-01-13 12:44 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\n2n Gui
2014-01-13 12:44 - 2011-04-26 11:21 - 00026624 _____ (The OpenVPN Project) C:\WINDOWS\system32\Drivers\tap0901.sys
2014-01-12 18:02 - 2014-01-12 18:02 - 00000000 ____D C:\Documents and Settings\Honza\Data aplikací\AVAST Software
2014-01-12 18:01 - 2014-01-12 18:01 - 00001733 _____ C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
2014-01-12 18:01 - 2014-01-12 18:01 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Avast
2014-01-12 18:00 - 2014-01-17 16:49 - 00000362 ____H C:\WINDOWS\Tasks\avast! Emergency Update.job
2014-01-12 18:00 - 2014-01-12 18:00 - 00775952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2014-01-12 18:00 - 2014-01-12 18:00 - 00410528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2014-01-12 18:00 - 2014-01-12 18:00 - 00270240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2014-01-12 18:00 - 2014-01-12 18:00 - 00180248 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys
2014-01-12 18:00 - 2014-01-12 18:00 - 00067824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2014-01-12 18:00 - 2014-01-12 18:00 - 00057672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2014-01-12 18:00 - 2014-01-12 18:00 - 00054832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2014-01-12 18:00 - 2014-01-12 18:00 - 00049944 _____ C:\WINDOWS\system32\Drivers\aswRvrt.sys
2014-01-12 18:00 - 2014-01-12 18:00 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2014-01-12 17:55 - 2014-01-12 17:55 - 00000000 ____D C:\Program Files\AVAST Software
2014-01-12 17:54 - 2014-01-12 17:54 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2014-01-09 14:37 - 2014-01-09 14:37 - 00045158 _____ C:\Documents and Settings\Honza\Dokumenty\cc_20140109_143703.reg
2014-01-09 14:37 - 2014-01-09 14:37 - 00001590 _____ C:\Documents and Settings\Honza\Dokumenty\cc_20140109_143718.reg
2014-01-09 14:33 - 2014-01-09 14:33 - 00000682 _____ C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
2014-01-09 14:33 - 2014-01-09 14:33 - 00000000 ____D C:\Program Files\CCleaner
2014-01-09 14:33 - 2014-01-09 14:33 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\CCleaner
2014-01-09 13:10 - 2014-01-13 14:33 - 00001527 _____ C:\WINDOWS\swiproject.INI
2014-01-09 11:45 - 2014-01-13 14:26 - 00000000 ____D C:\Documents and Settings\Honza\Plocha\BAKALAŠKA PRÁCE
2014-01-08 18:50 - 2014-01-08 19:01 - 00000000 ____D C:\Documents and Settings\Honza\Dokumenty\ZPS15
2014-01-08 18:50 - 2014-01-08 19:00 - 00001704 _____ C:\Documents and Settings\All Users\Plocha\Zoner Photo Studio 15.lnk
2014-01-08 18:50 - 2014-01-08 19:00 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Zoner Photo Studio 15
2014-01-08 18:50 - 2014-01-08 18:51 - 00000000 ____D C:\Documents and Settings\Honza\Local Settings\Data aplikací\Zoner
2014-01-08 18:50 - 2014-01-08 18:50 - 00000000 ____D C:\Documents and Settings\Honza\Data aplikací\Zoner
2014-01-08 18:50 - 2014-01-08 18:50 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Zoner
2014-01-08 18:49 - 2014-01-08 18:49 - 00000000 ____D C:\Program Files\Zoner
2014-01-08 18:48 - 2013-12-17 12:54 - 69853617 _____ C:\Documents and Settings\Honza\Plocha\Setup.gcd
2014-01-08 18:48 - 2013-12-17 12:54 - 03294328 _____ (giveawayoftheday.com) C:\Documents and Settings\Honza\Plocha\Setup.exe
2014-01-08 18:48 - 2013-11-15 15:15 - 00000781 _____ C:\Documents and Settings\Honza\Plocha\readme.txt
2014-01-04 18:36 - 2012-03-26 14:24 - 01840770 _____ C:\Documents and Settings\Honza\Plocha\340AXJ5D0.bin
2014-01-04 18:06 - 2013-01-10 22:08 - 930073072 _____ C:\Documents and Settings\Honza\Plocha\film 1920.wmv
2014-01-04 16:42 - 2014-01-16 20:44 - 00000000 ____D C:\Program Files\CS Poker
2014-01-04 16:42 - 2014-01-04 16:42 - 00004096 _____ C:\WINDOWS\d3dx.dat
2014-01-04 16:42 - 2014-01-04 16:42 - 00001371 _____ C:\Documents and Settings\Honza\Plocha\CS Poker.lnk
2013-12-19 21:28 - 2013-12-19 21:28 - 00000694 _____ C:\Documents and Settings\Honza\Plocha\Zástupce - YuriScreenResolution.exe.lnk
2013-12-19 21:22 - 2008-01-15 09:45 - 67826994 _____ C:\Documents and Settings\Honza\Plocha\Portable_CS1.6.exe
2013-12-19 21:19 - 2013-12-19 20:37 - 00000000 ____D C:\Documents and Settings\Honza\Plocha\C&C - Red Alert 2
2013-12-19 21:07 - 2009-03-18 17:35 - 00026176 ____H (LogMeIn, Inc.) C:\WINDOWS\system32\hamachi.sys
2013-12-19 21:05 - 2014-01-13 12:48 - 00000000 ____D C:\Documents and Settings\LocalService\Local Settings\Data aplikací\LogMeIn Hamachi
2013-12-19 21:05 - 2014-01-13 12:48 - 00000000 ____D C:\Documents and Settings\Honza\Local Settings\Data aplikací\LogMeIn Hamachi
2013-12-19 21:05 - 2013-12-19 21:05 - 00000000 ____D C:\Documents and Settings\Honza\Local Settings\Data aplikací\LogMeIn
2013-12-19 21:05 - 2013-12-19 21:05 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\LogMeIn
2013-12-19 20:40 - 2013-12-19 20:40 - 00000760 _____ C:\Documents and Settings\Honza\Plocha\Zástupce - UnrealTournament.exe.lnk
2013-12-19 20:39 - 2013-12-19 20:40 - 00000000 ____D C:\Documents and Settings\Honza\Plocha\UnrealTournament
2013-12-19 20:34 - 2013-12-19 20:34 - 00000000 ____D C:\Documents and Settings\Honza\Plocha\Quake-3-arena--p.o.r.t.a.b.l.e
2013-12-19 20:33 - 2013-12-19 20:33 - 00000694 _____ C:\Documents and Settings\Honza\Plocha\Zástupce (2) - YuriScreenResolution.exe.lnk

==================== One Month Modified Files and Folders =======

2014-01-18 11:50 - 2014-01-18 11:50 - 00013297 _____ C:\Documents and Settings\Honza\Plocha\FRST.txt
2014-01-18 11:50 - 2013-09-21 13:31 - 00000000 ___HD C:\Documents and Settings\Honza\Local Settings\Data aplikací
2014-01-18 11:50 - 2013-09-21 13:31 - 00000000 ____D C:\Documents and Settings\Honza\Plocha
2014-01-18 11:49 - 2014-01-18 11:49 - 00000000 ____D C:\Documents and Settings\Honza\Data aplikací\Mozilla
2014-01-18 11:49 - 2013-10-18 10:35 - 00001026 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1177238915-2145269213-1801674531-1004UA.job
2014-01-18 11:49 - 2013-09-21 13:31 - 00000000 __RHD C:\Documents and Settings\Honza\Data aplikací
2014-01-18 11:43 - 2014-01-18 11:43 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Honza\Plocha\FRSTLauncher.exe
2014-01-18 11:32 - 2014-01-18 11:32 - 00000000 ____D C:\FRST
2014-01-18 11:28 - 2014-01-18 11:28 - 01220608 _____ (Farbar) C:\Documents and Settings\Honza\Plocha\FRST.exe
2014-01-18 11:06 - 2013-09-21 07:49 - 00000938 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-18 11:05 - 2013-09-05 15:28 - 00000480 _____ C:\WINDOWS\wiadebug.log
2014-01-18 11:03 - 2014-01-18 11:03 - 00000110 ____H C:\Documents and Settings\Honza\Plocha\DSC_1429.JPG.uid-zps
2014-01-17 17:32 - 2013-09-21 13:30 - 00032526 _____ C:\WINDOWS\SchedLgU.Txt
2014-01-17 17:31 - 2013-09-21 13:31 - 00000178 ___SH C:\Documents and Settings\Honza\ntuser.ini
2014-01-17 16:56 - 2013-09-21 13:34 - 00552841 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-17 16:50 - 2014-01-17 16:50 - 00000000 ____D C:\Documents and Settings\Honza\Data aplikací\SkypePM
2014-01-17 16:50 - 2013-09-05 15:28 - 00000049 _____ C:\WINDOWS\wiaservc.log
2014-01-17 16:49 - 2014-01-12 18:00 - 00000362 ____H C:\WINDOWS\Tasks\avast! Emergency Update.job
2014-01-17 16:49 - 2013-09-21 13:30 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-17 16:49 - 2013-09-21 07:49 - 00000934 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-16 20:44 - 2014-01-04 16:42 - 00000000 ____D C:\Program Files\CS Poker
2014-01-16 17:57 - 2004-08-18 13:00 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl
2014-01-16 08:47 - 2013-10-18 10:35 - 00000974 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1177238915-2145269213-1801674531-1004Core.job
2014-01-15 20:09 - 2013-09-21 13:31 - 00000000 ____D C:\Documents and Settings\Honza
2014-01-15 17:41 - 2013-09-05 15:24 - 00348992 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2014-01-15 16:38 - 2014-01-15 16:38 - 00000815 _____ C:\Documents and Settings\All Users\Plocha\TeamViewer 9.lnk
2014-01-15 16:38 - 2014-01-15 16:38 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\TeamViewer 8
2014-01-15 16:38 - 2013-10-27 14:45 - 00000000 ____D C:\Program Files\TeamViewer
2014-01-15 16:38 - 2013-09-05 15:25 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2014-01-15 16:38 - 2013-09-05 15:25 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2014-01-15 14:19 - 2013-09-22 14:12 - 00000000 ____D C:\Documents and Settings\Honza\Data aplikací\vlc
2014-01-14 15:25 - 2014-01-13 12:45 - 00021956 _____ C:\WINDOWS\setupapi.log
2014-01-14 08:06 - 2014-01-13 12:44 - 00000000 ____D C:\Program Files\n2n Gui
2014-01-13 16:46 - 2013-09-05 15:25 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
2014-01-13 14:39 - 2014-01-13 14:39 - 00000000 ____D C:\Documents and Settings\Honza\Data aplikací\Google
2014-01-13 14:39 - 2013-09-21 07:49 - 00000000 ____D C:\Documents and Settings\Honza\Local Settings\Data aplikací\Google
2014-01-13 14:36 - 2014-01-13 14:36 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Earth
2014-01-13 14:36 - 2013-09-21 07:49 - 00000000 ____D C:\Program Files\Google
2014-01-13 14:33 - 2014-01-09 13:10 - 00001527 _____ C:\WINDOWS\swiproject.INI
2014-01-13 14:26 - 2014-01-09 11:45 - 00000000 ____D C:\Documents and Settings\Honza\Plocha\BAKALAŠKA PRÁCE
2014-01-13 12:48 - 2013-12-19 21:05 - 00000000 ____D C:\Documents and Settings\LocalService\Local Settings\Data aplikací\LogMeIn Hamachi
2014-01-13 12:48 - 2013-12-19 21:05 - 00000000 ____D C:\Documents and Settings\Honza\Local Settings\Data aplikací\LogMeIn Hamachi
2014-01-13 12:44 - 2014-01-13 12:44 - 00000663 _____ C:\Documents and Settings\All Users\Plocha\n2n Gui.lnk
2014-01-13 12:44 - 2014-01-13 12:44 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\n2n Gui
2014-01-12 18:02 - 2014-01-12 18:02 - 00000000 ____D C:\Documents and Settings\Honza\Data aplikací\AVAST Software
2014-01-12 18:01 - 2014-01-12 18:01 - 00001733 _____ C:\Documents and Settings\All Users\Plocha\avast! Free Antivirus.lnk
2014-01-12 18:01 - 2014-01-12 18:01 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Avast
2014-01-12 18:00 - 2014-01-12 18:00 - 00775952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2014-01-12 18:00 - 2014-01-12 18:00 - 00410528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2014-01-12 18:00 - 2014-01-12 18:00 - 00270240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2014-01-12 18:00 - 2014-01-12 18:00 - 00180248 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys
2014-01-12 18:00 - 2014-01-12 18:00 - 00067824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2014-01-12 18:00 - 2014-01-12 18:00 - 00057672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2014-01-12 18:00 - 2014-01-12 18:00 - 00054832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2014-01-12 18:00 - 2014-01-12 18:00 - 00049944 _____ C:\WINDOWS\system32\Drivers\aswRvrt.sys
2014-01-12 18:00 - 2014-01-12 18:00 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2014-01-12 17:55 - 2014-01-12 17:55 - 00000000 ____D C:\Program Files\AVAST Software
2014-01-12 17:54 - 2014-01-12 17:54 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2014-01-12 17:54 - 2013-09-05 15:24 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2014-01-09 14:37 - 2014-01-09 14:37 - 00045158 _____ C:\Documents and Settings\Honza\Dokumenty\cc_20140109_143703.reg
2014-01-09 14:37 - 2014-01-09 14:37 - 00001590 _____ C:\Documents and Settings\Honza\Dokumenty\cc_20140109_143718.reg
2014-01-09 14:37 - 2013-09-21 13:31 - 00000000 ___RD C:\Documents and Settings\Honza\Dokumenty
2014-01-09 14:35 - 2013-11-03 20:58 - 00000000 ___SD C:\Documents and Settings\Honza\UserData
2014-01-09 14:34 - 2013-10-14 15:44 - 00000000 ____D C:\Program Files\Steam
2014-01-09 14:33 - 2014-01-09 14:33 - 00000682 _____ C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
2014-01-09 14:33 - 2014-01-09 14:33 - 00000000 ____D C:\Program Files\CCleaner
2014-01-09 14:33 - 2014-01-09 14:33 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\CCleaner
2014-01-08 19:01 - 2014-01-08 18:50 - 00000000 ____D C:\Documents and Settings\Honza\Dokumenty\ZPS15
2014-01-08 19:00 - 2014-01-08 18:50 - 00001704 _____ C:\Documents and Settings\All Users\Plocha\Zoner Photo Studio 15.lnk
2014-01-08 19:00 - 2014-01-08 18:50 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Zoner Photo Studio 15
2014-01-08 18:51 - 2014-01-08 18:50 - 00000000 ____D C:\Documents and Settings\Honza\Local Settings\Data aplikací\Zoner
2014-01-08 18:50 - 2014-01-08 18:50 - 00000000 ____D C:\Documents and Settings\Honza\Data aplikací\Zoner
2014-01-08 18:50 - 2014-01-08 18:50 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Zoner
2014-01-08 18:49 - 2014-01-08 18:49 - 00000000 ____D C:\Program Files\Zoner
2014-01-04 18:06 - 2013-09-21 07:46 - 00015872 _____ C:\Documents and Settings\Honza\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-01-04 16:42 - 2014-01-04 16:42 - 00004096 _____ C:\WINDOWS\d3dx.dat
2014-01-04 16:42 - 2014-01-04 16:42 - 00001371 _____ C:\Documents and Settings\Honza\Plocha\CS Poker.lnk
2013-12-19 21:28 - 2013-12-19 21:28 - 00000694 _____ C:\Documents and Settings\Honza\Plocha\Zástupce - YuriScreenResolution.exe.lnk
2013-12-19 21:13 - 2013-12-15 22:07 - 00010600 _____ C:\drwtsn32.log
2013-12-19 21:05 - 2013-12-19 21:05 - 00000000 ____D C:\Documents and Settings\Honza\Local Settings\Data aplikací\LogMeIn
2013-12-19 21:05 - 2013-12-19 21:05 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\LogMeIn
2013-12-19 21:05 - 2013-09-21 13:30 - 00000000 ___HD C:\Documents and Settings\LocalService\Local Settings\Data aplikací
2013-12-19 20:40 - 2013-12-19 20:40 - 00000760 _____ C:\Documents and Settings\Honza\Plocha\Zástupce - UnrealTournament.exe.lnk
2013-12-19 20:40 - 2013-12-19 20:39 - 00000000 ____D C:\Documents and Settings\Honza\Plocha\UnrealTournament
2013-12-19 20:37 - 2013-12-19 21:19 - 00000000 ____D C:\Documents and Settings\Honza\Plocha\C&C - Red Alert 2
2013-12-19 20:34 - 2013-12-19 20:34 - 00000000 ____D C:\Documents and Settings\Honza\Plocha\Quake-3-arena--p.o.r.t.a.b.l.e
2013-12-19 20:33 - 2013-12-19 20:33 - 00000694 _____ C:\Documents and Settings\Honza\Plocha\Zástupce (2) - YuriScreenResolution.exe.lnk

==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe
[2004-08-18 13:00] - [2004-08-18 13:00] - 1032704 ____A (Microsoft Corporation) 53114d57ab73a406ac7f602227781a99

C:\Windows\System32\winlogon.exe
[2004-08-18 13:00] - [2004-08-18 13:00] - 0502272 ____A (Microsoft Corporation) 221c29ae1b4cc61d11d8b27de78b2307

C:\Windows\System32\svchost.exe
[2004-08-18 13:00] - [2004-08-18 13:00] - 0014336 ____A (Microsoft Corporation) dfba2915b0bf58abb288cd4c9318cb3f

C:\Windows\System32\services.exe
[2004-08-18 13:00] - [2004-08-18 13:00] - 0108544 ____A (Microsoft Corporation) 6e401e61f952fbbf708afbecefafae81

C:\Windows\System32\User32.dll
[2004-08-18 13:00] - [2005-03-02 19:18] - 0577024 ____A (Microsoft Corporation) 9267bc598e271bc3fa69f36cf1c8bd36

C:\Windows\System32\userinit.exe
[2004-08-18 13:00] - [2004-08-18 13:00] - 0024576 ____A (Microsoft Corporation) 836f7960362ff95c5d49e40b891f2cfc

C:\Windows\System32\rpcss.dll
[2005-07-26 05:42] - [2005-07-26 05:42] - 0397824 ____A (Microsoft Corporation) dbde980506b54ae928d151d12419b425

ATTENTION ======> If the system is having audio adware rpcss.dll is patched. Google the MD5, if the MD5 is unique the file is infected.
C:\Windows\System32\Drivers\volsnap.sys
[2004-08-18 13:00] - [2004-08-18 13:00] - 0052480 ____A (Microsoft Corporation) cd8cce067f7e9cbd762c00bdddecaa34




===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1177238915-2145269213-1801674531-1004Core.job => C:\Documents and Settings\Honza\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1177238915-2145269213-1801674531-1004UA.job => C:\Documents and Settings\Honza\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: avast! Antivirus (Disabled - Up to date) {7591DB91-41F0-48A3-B128-1A293FD8233D}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Documents and Settings\Honza\Plocha" je 7805 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"D:\\install\\SkypePortable\\App\\Skype\\Phone\\Skype.exe"="D:\\install\\SkypePortable\\App\\Skype\\Phone\\Skype.exe:*:Enabled:Skype "
"C:\\Program Files\\Google\\Google Talk\\googletalk.exe"="C:\\Program Files\\Google\\Google Talk\\googletalk.exe:*:Enabled:Google Talk"
"C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\\Program Files\\Steam\\Steam.exe"="C:\\Program Files\\Steam\\Steam.exe:*:Enabled:Steam"
"C:\\Program Files\\Steam\\SteamApps\\common\\Half-Life\\hl.exe"="C:\\Program Files\\Steam\\SteamApps\\common\\Half-Life\\hl.exe:*:Enabled:Counter-Strike"
"C:\\Documents and Settings\\Honza\\Local Settings\\Data aplikac\\Google\\Google Talk Plugin\\googletalkplugin.exe"="C:\\Documents and Settings\\Honza\\Local Settings\\Data aplikac\\Google\\Google Talk Plugin\\googletalkplugin.exe:*:Enabled:Google Talk Plugin"
"C:\\WINDOWS\\system32\\hasplms.exe"="C:\\WINDOWS\\system32\\hasplms.exe:*:Enabled:Sentinel License Manager"
"C:\\Program Files\\REALTEK\\USB Wireless LAN Utility\\RtWLan.exe"="C:\\Program Files\\REALTEK\\USB Wireless LAN Utility\\RtWLan.exe:*:Enabled:RtWlan"
"C:\\Program Files\\REALTEK\\USB Wireless LAN Utility\\RTLDHCP.exe"="C:\\Program Files\\REALTEK\\USB Wireless LAN Utility\\RTLDHCP.exe:*:Enabled:RTLDHCP"
"C:\\WINDOWS\\system32\\dplaysvr.exe"="C:\\WINDOWS\\system32\\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper"
"C:\\Program Files\\Codemasters\\Colin McRae Rally 2\\CMR2.exe"="C:\\Program Files\\Codemasters\\Colin McRae Rally 2\\CMR2.exe:*:Enabled:Colin McRae Rally 2"
"C:\\Documents and Settings\\Honza\\Plocha\\red-alert2-portable\\red-alert2-portable\\GAME.EXE"="C:\\Documents and Settings\\Honza\\Plocha\\red-alert2-portable\\red-alert2-portable\\GAME.EXE:*:Enabled:Main executable for Red Alert 2"
"C:\\Documents and Settings\\Honza\\Plocha\\C&C - Red Alert 2\\Game.exe"="C:\\Documents and Settings\\Honza\\Plocha\\C&C - Red Alert 2\\Game.exe:*:Enabled:Main executable for Red Alert 2"
"C:\\Program Files\\Steam\\SteamApps\\common\\Team Fortress 2\\hl2.exe"="C:\\Program Files\\Steam\\SteamApps\\common\\Team Fortress 2\\hl2.exe:*:Enabled:Team Fortress 2"
"C:\\Documents and Settings\\Honza\\Local Settings\\Temp\\RarSFX0\\hl.exe"="C:\\Documents and Settings\\Honza\\Local Settings\\Temp\\RarSFX0\\hl.exe:*:Enabled:Half-Life Launcher"
"C:\\Documents and Settings\\Honza\\Local Settings\\Temp\\RarSFX0\\quake3.exe"="C:\\Documents and Settings\\Honza\\Local Settings\\Temp\\RarSFX0\\quake3.exe:*:Enabled:quake3"
"C:\\Documents and Settings\\Honza\\Plocha\\UnrealTournament\\System\\UnrealTournament.exe"="C:\\Documents and Settings\\Honza\\Plocha\\UnrealTournament\\System\\UnrealTournament.exe:*:Enabled:UnrealTournament"
"C:\\Program Files\\TeamViewer\\Version9\\TeamViewer.exe"="C:\\Program Files\\TeamViewer\\Version9\\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\\Program Files\\TeamViewer\\Version9\\TeamViewer_Service.exe"="C:\\Program Files\\TeamViewer\\Version9\\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1542:TCP"="1542:TCP:*:Enabled:Realtek WPS TCP Prot"
"1542:UDP"="1542:UDP:*:Enabled:Realtek WPS UDP Prot"
"53:UDP"="53:UDP:*:Enabled:Realtek AP UDP Prot"
"1900:UDP"="1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008"


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000


==================== End Of Log ==============================

[Roli]

Zdravím, pokud FRST blbne klidně použij RSIT.


Doinstaluj Service Pack 3


Smaž nepotřebné soubory

pomocí CCleaneru

návod :

Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš

Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)

čištění registru je třeba několikrát zopakovat !

Nástroje - tady lze odinstalovat programy, upravit co se spustí po Startu systému a obnovit systém


Stáhni a ulož na plochu AdwCleaner,

ukonči všechny programy včetně prohlížeče a dvojklikem spusť,

objeví se okno kde vlevo nahoře klikni na Scan.

Po té proběhne sken a po jeho skončení klikni na Report a to co na Tebe vypadne mi sem zkopíruj.


Ovladače od grafiky jsou aktuální ?

[northendcz]

Doinstaluj Service Pack 3
Ovladače od grafiky jsou aktuální ?

Nainstalován SP3
odebrán IE
ovladače stáhnuty poslední dostupné (Leden 2007) instalovány
CCleaner čistič a registry projíždím "celkem pravidelně"

Report:
# AdwCleaner v3.017 - Report created 19/01/2014 at 10:07:30
# Updated 12/01/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Honza - QWERTZ
# Running from : C:\Documents and Settings\Honza\Plocha\adwcleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v6.0.2900.5512


-\\ Google Chrome v32.0.1700.76

[ File : C:\Documents and Settings\Honza\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]

Found : homepage

*************************

AdwCleaner[R0].txt - [682 octets] - [19/01/2014 10:07:30]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [741 octets] ##########

[Roli]

Nainstalován SP3
odebrán IE
ovladače stáhnuty poslední dostupné (Leden 2007) instalovány
CCleaner čistič a registry projíždím "celkem pravidelně"

Ještě se pro jistotu mrknem hlouběji a pak testnem hardware.


Stáhni a ulož na plochu ComboFix,

spusť aplikaci jako Administrátor a povol instalaci Konzole pro zotavení - Recovery Console.

Poté se zobrazí okno s licenčními podmínkami které potvrdíš kliknutím na ANO,

pak ještě jednou klik na ANO a už to jede.

Celá akce trvá okolo 10 minut ale může i déle, během skenu se nepokoušej spouštět nic jiného.

Při skenovaní může být PC i restartováno nelekat se.

Upozornění: po dobu skenu vypni rezidentní štít Antiviru a AntiSpy programu,

protože Combofix se pokouší napadené soubory smazat a tyto programy mu můžou bránit.

Po dokončení skenu nebo následném restartu aplikace vytvoří log, uložený na C:/Combofix.txt

(při opakovaném použití jsou logy číslovány Combofix2.txt atd.), jeho obsah zkopíruj sem.

[northendcz]

ComboFix 14-01-16.03 - Honza 19.01.2014 18:24:12.1.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.1014.243 [GMT 1:00]
Spuštěný z: c:\documents and settings\Honza\Plocha\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Honza\Local Settings\Data aplikací\MSGBOX.EXE
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-12-19 do 2014-01-19 )))))))))))))))))))))))))))))))
.
.
2014-01-19 12:24 . 2014-01-19 15:44 -------- d-----w- c:\windows\LastGood
2014-01-19 09:07 . 2014-01-19 09:10 -------- d-----w- C:\AdwCleaner
2014-01-19 09:00 . 2007-01-13 08:49 176128 ----a-w- c:\windows\system32\igfxres.dll
2014-01-19 08:31 . 2008-04-14 07:52 28672 ------w- c:\windows\system32\vidcap.ax
2014-01-19 08:31 . 2008-04-14 07:52 28672 ------w- c:\windows\system32\verclsid.exe
2014-01-19 08:31 . 2008-04-14 07:52 53248 ------w- c:\windows\system32\tsgqec.dll
2014-01-19 08:31 . 2008-04-14 07:52 50688 ------w- c:\windows\system32\tspkg.dll
2014-01-19 08:31 . 2008-04-14 07:52 69120 ------w- c:\windows\system32\wlanapi.dll
2014-01-19 08:31 . 2008-04-14 07:52 32866 ------w- c:\windows\slrundll.exe
2014-01-19 08:31 . 2014-01-19 08:31 -------- d-----w- c:\windows\l2schemas
2014-01-19 08:31 . 2014-01-19 08:31 -------- d-----w- c:\windows\system32\cs
2014-01-19 08:31 . 2014-01-19 08:31 -------- d-----w- c:\windows\system32\bits
2014-01-19 08:25 . 2014-01-19 08:32 -------- d-----w- c:\windows\ServicePackFiles
2014-01-19 08:25 . 2008-04-14 07:52 294912 ------w- c:\program files\Windows Media Player\dlimport.exe
2014-01-19 08:25 . 2008-04-14 07:52 294912 -c----w- c:\windows\system32\dllcache\dlimport.exe
2014-01-19 08:19 . 2006-12-28 23:31 19569 ----a-w- c:\windows\002894_.tmp
2014-01-19 08:15 . 2014-01-19 08:15 -------- d-----w- c:\windows\EHome
2014-01-18 10:32 . 2014-01-18 10:32 -------- d-----w- C:\FRST
2014-01-13 11:44 . 2011-04-26 10:21 26624 ----a-w- c:\windows\system32\drivers\tap0901.sys
2014-01-13 11:44 . 2014-01-14 07:06 -------- d-----w- c:\program files\n2n Gui
2014-01-12 17:02 . 2014-01-12 17:02 -------- d-----w- c:\documents and settings\Honza\Data aplikací\AVAST Software
2014-01-12 17:00 . 2014-01-12 17:00 57672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2014-01-12 17:00 . 2014-01-12 17:00 180248 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2014-01-12 17:00 . 2014-01-12 17:00 775952 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2014-01-12 17:00 . 2014-01-12 17:00 49944 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2014-01-12 17:00 . 2014-01-12 17:00 410528 ----a-w- c:\windows\system32\drivers\aswSP.sys
2014-01-12 17:00 . 2014-01-12 17:00 67824 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2014-01-12 17:00 . 2014-01-12 17:00 54832 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2014-01-12 17:00 . 2014-01-12 17:00 270240 ----a-w- c:\windows\system32\aswBoot.exe
2014-01-12 17:00 . 2014-01-12 17:00 43152 ----a-w- c:\windows\avastSS.scr
2014-01-12 16:55 . 2014-01-12 16:55 -------- d-----w- c:\program files\AVAST Software
2014-01-12 16:54 . 2014-01-12 16:54 -------- d-----w- c:\documents and settings\All Users\Data aplikací\AVAST Software
2014-01-09 13:33 . 2014-01-09 13:33 -------- d-----w- c:\program files\CCleaner
2014-01-08 17:50 . 2014-01-08 17:50 -------- d-----w- c:\documents and settings\Honza\Data aplikací\Zoner
2014-01-08 17:50 . 2014-01-08 17:50 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Zoner
2014-01-08 17:50 . 2014-01-08 17:51 -------- d-----w- c:\documents and settings\Honza\Local Settings\Data aplikací\Zoner
2014-01-08 17:49 . 2014-01-08 17:49 -------- d-----w- c:\program files\Zoner
2014-01-04 15:42 . 2014-01-18 11:09 -------- d-----w- c:\program files\CS Poker
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-12-16 15:47 . 2013-12-16 15:47 21361 ----a-w- c:\windows\system32\drivers\AegisP.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-01-12 17:00 259464 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Zástupce stránky vlastností sběrnice High Definition Audio"="HDAShCut.exe" [2005-01-07 61952]
"SynTPLpr"="c:\program files\Synaptics\SynTP\SynTPLpr.exe" [2004-10-05 98394]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2004-10-05 688218]
"SafeQClient"="c:\program files\SafeQ\SafeQ_cli.exe" [2013-09-18 493056]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-01-12 3764024]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2007-01-13 131072]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2007-01-13 163840]
"Persistence"="c:\windows\system32\igfxpers.exe" [2007-01-13 135168]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\Honza\Nabídka Start\Programy\Po spuštění\
Zástupce - SkypePortable.lnk - d:\install\SkypePortable\SkypePortable.exe [2012-12-22 121168]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
X-Mouse Button Control.lnk - c:\program files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe /notportable [2012-6-23 865792]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate]
2013-06-07 15:51 774680 ----a-w- c:\program files\Zoner\Photo Studio 15\Program32\ZPSTray.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"d:\\install\\SkypePortable\\App\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Google\\Google Talk\\googletalk.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\Steam\\Steam.exe"=
"c:\\Program Files\\Steam\\SteamApps\\common\\Half-Life\\hl.exe"=
"c:\\Documents and Settings\\Honza\\Local Settings\\Data aplikací\\Google\\Google Talk Plugin\\googletalkplugin.exe"=
"c:\\WINDOWS\\system32\\hasplms.exe"=
"c:\\WINDOWS\\system32\\dplaysvr.exe"=
"c:\\Program Files\\Codemasters\\Colin McRae Rally 2\\CMR2.exe"=
"c:\\Documents and Settings\\Honza\\Plocha\\red-alert2-portable\\red-alert2-portable\\GAME.EXE"=
"c:\\Documents and Settings\\Honza\\Plocha\\C&C - Red Alert 2\\Game.exe"=
"c:\\Program Files\\Steam\\SteamApps\\common\\Team Fortress 2\\hl2.exe"=
"c:\\Documents and Settings\\Honza\\Plocha\\UnrealTournament\\System\\UnrealTournament.exe"=
"c:\\Program Files\\TeamViewer\\Version9\\TeamViewer.exe"=
"c:\\Program Files\\TeamViewer\\Version9\\TeamViewer_Service.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"1542:TCP"= 1542:TCP:Realtek WPS TCP Prot
"1542:UDP"= 1542:UDP:Realtek WPS UDP Prot
"53:UDP"= 53:UDP:Realtek AP UDP Prot
.
R0 aswRvrt;avast! Revert;c:\windows\system32\drivers\aswRvrt.sys [12.1.2014 18:00 49944]
R0 aswVmm;avast! VM Monitor;c:\windows\system32\drivers\aswVmm.sys [12.1.2014 18:00 180248]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [12.1.2014 18:00 775952]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [12.1.2014 18:00 410528]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [12.1.2014 18:00 67824]
R2 Autodesk Content Service;Autodesk Content Service;c:\program files\Autodesk\Content Service\Connect.Service.ContentService.exe [2.2.2011 13:08 18656]
R2 hasplms;Sentinel Local License Manager;c:\windows\system32\hasplms.exe -run --> c:\windows\system32\hasplms.exe -run [?]
R2 lmadmin;lmadmin;c:\program files\Common Files\Scia\LicenceServer\FlexnetServer\lmadmin.exe [5.8.2011 18:11 6587728]
R2 TeamViewer9;TeamViewer 9;c:\program files\TeamViewer\Version9\TeamViewer_Service.exe [15.1.2014 16:38 5341536]
S3 olfqtuec;olfqtuec; [x]
S3 RtlWlanu;Realtek Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\rtwlanu.sys --> c:\windows\system32\DRIVERS\rtwlanu.sys [?]
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-01-15 15:21 1211672 ----a-w- c:\program files\Google\Chrome\Application\32.0.1700.76\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-01-19 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2014-01-12 17:00]
.
2014-01-19 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-09-21 06:49]
.
2014-01-19 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-09-21 06:49]
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.0.0.138
.
.
------- Asociace souborů -------
.
.scr=AutoCADScriptFile
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2014-01-19 18:34
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
Celkový čas: 2014-01-19 18:36:57
ComboFix-quarantined-files.txt 2014-01-19 17:36
.
Před spuštěním: Volných bajtů: 16 672 194 560
Po spuštění: Volných bajtů: 16 729 894 912
.
WindowsXP-KB310994-SP2-Home-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
.
- - End Of File - - 76B5861DD36481F97ECED79071504FEA
413FC2A0C716421B3158746D63736515

[Roli]

Přes Start >> Spustit zkopíruj do okna:

ComboFix /Uninstall

a stiskni Enter

To odinstaluje ComboFix a smaže s ním související soubory a složky.


Použij T-Cleaner, který smaže případné zbytky po aplikacích které jsme použili.

Jen před jeho stažením a při použití stopni antivir, protože ho muže detekovat jako vir ale není tomu tak.


Stáhni a spusť OTMoveIt

do levého okna aplikace pod Paste Instructions for Items to be Moved zkopíruj tento text:

Kód: Vybrat vše

:processes
explorer.exe       

:files 
C:\*.tmp
C:\WINDOWS\System32\*.tmp
C:\WINDOWS\*.tmp
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

:services
olfqtuec

:commands
[purity]
[emptytemp]
[start explorer]

klikni na MoveIt! a v pravém zeleném okně aplikace se Ti objeví info o provedene akci, obsah okna zkopíruj sem,

pokud aplikace bude požadovat restart, klikni na YES

v tom případě sem chci zkopírovat obsah logu uloženého na C:\_OTMoveIt\MovedFiles\

[northendcz]

All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
========== FILES ==========
C:\fsc.tmp\driver\wlan\1004925_intel_9_0_3_9\Source folder moved successfully.
C:\fsc.tmp\driver\wlan\1004925_intel_9_0_3_9 folder moved successfully.
C:\fsc.tmp\driver\wlan folder moved successfully.
C:\fsc.tmp\driver\touchpad\1004900_synaptics_7_12_2_0\US folder moved successfully.
C:\fsc.tmp\driver\touchpad\1004900_synaptics_7_12_2_0\TH folder moved successfully.
C:\fsc.tmp\driver\touchpad\1004900_synaptics_7_12_2_0\TC folder moved successfully.
C:\fsc.tmp\driver\touchpad\1004900_synaptics_7_12_2_0\Source folder moved successfully.
C:\fsc.tmp\driver\touchpad\1004900_synaptics_7_12_2_0\SE folder moved successfully.
C:\fsc.tmp\driver\touchpad\1004900_synaptics_7_12_2_0\SC folder moved successfully.
C:\fsc.tmp\driver\touchpad\1004900_synaptics_7_12_2_0\NO folder moved successfully.
C:\fsc.tmp\driver\touchpad\1004900_synaptics_7_12_2_0\NL folder moved successfully.
C:\fsc.tmp\driver\touchpad\1004900_synaptics_7_12_2_0\LS folder moved successfully.
C:\fsc.tmp\driver\touchpad\1004900_synaptics_7_12_2_0\KR folder moved successfully.
C:\fsc.tmp\driver\touchpad\1004900_synaptics_7_12_2_0\JP folder moved successfully.
C:\fsc.tmp\driver\touchpad\1004900_synaptics_7_12_2_0\IT folder moved successfully.
C:\fsc.tmp\driver\touchpad\1004900_synaptics_7_12_2_0\GR folder moved successfully.
C:\fsc.tmp\driver\touchpad\1004900_synaptics_7_12_2_0\FR folder moved successfully.
C:\fsc.tmp\driver\touchpad\1004900_synaptics_7_12_2_0\FI folder moved successfully.
C:\fsc.tmp\driver\touchpad\1004900_synaptics_7_12_2_0\DK folder moved successfully.
C:\fsc.tmp\driver\touchpad\1004900_synaptics_7_12_2_0\BP folder moved successfully.
C:\fsc.tmp\driver\touchpad\1004900_synaptics_7_12_2_0 folder moved successfully.
C:\fsc.tmp\driver\touchpad folder moved successfully.
C:\fsc.tmp\driver\pcmcia\1003092_texas_instruments_1_0_3_3\Windows\tiinst folder moved successfully.
C:\fsc.tmp\driver\pcmcia\1003092_texas_instruments_1_0_3_3\Windows folder moved successfully.
C:\fsc.tmp\driver\pcmcia\1003092_texas_instruments_1_0_3_3\Source folder moved successfully.
C:\fsc.tmp\driver\pcmcia\1003092_texas_instruments_1_0_3_3 folder moved successfully.
C:\fsc.tmp\driver\pcmcia folder moved successfully.
C:\fsc.tmp\driver\modem\1003090_castlenet_6_10_2_0\WME_DF folder moved successfully.
C:\fsc.tmp\driver\modem\1003090_castlenet_6_10_2_0\W98_DF folder moved successfully.
C:\fsc.tmp\driver\modem\1003090_castlenet_6_10_2_0\W2KXP_DF folder moved successfully.
C:\fsc.tmp\driver\modem\1003090_castlenet_6_10_2_0\Source folder moved successfully.
C:\fsc.tmp\driver\modem\1003090_castlenet_6_10_2_0 folder moved successfully.
C:\fsc.tmp\driver\modem folder moved successfully.
C:\fsc.tmp\driver\lan\1003093_realtek_5_621_304_2005\WinXP folder moved successfully.
C:\fsc.tmp\driver\lan\1003093_realtek_5_621_304_2005\WinX64 folder moved successfully.
C:\fsc.tmp\driver\lan\1003093_realtek_5_621_304_2005\WinMe folder moved successfully.
C:\fsc.tmp\driver\lan\1003093_realtek_5_621_304_2005\Win98SE folder moved successfully.
C:\fsc.tmp\driver\lan\1003093_realtek_5_621_304_2005\Win98 folder moved successfully.
C:\fsc.tmp\driver\lan\1003093_realtek_5_621_304_2005\Win2000 folder moved successfully.
C:\fsc.tmp\driver\lan\1003093_realtek_5_621_304_2005\Source folder moved successfully.
C:\fsc.tmp\driver\lan\1003093_realtek_5_621_304_2005 folder moved successfully.
C:\fsc.tmp\driver\lan folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291\Win2000\nms folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291\Win2000 folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291\Source folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291\Lang\trk folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291\Lang\tha folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291\Lang\sve folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291\Lang\rus folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291\Lang\ptg folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291\Lang\ptb folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291\Lang\plk folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291\Lang\nor folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291\Lang\nld folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291\Lang\kor folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291\Lang\jpn folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291\Lang\ita folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291\Lang\hun folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291\Lang\heb folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291\Lang\frc folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291\Lang\fra folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291\Lang\fin folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291\Lang\esp folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291\Lang\enu folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291\Lang\eng folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291\Lang\ell folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291\Lang\deu folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291\Lang\dan folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291\Lang\csy folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291\Lang\cht folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291\Lang\chs folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291\Lang\arb folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291\Lang\ara folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291\Lang folder moved successfully.
C:\fsc.tmp\driver\graphic\1002999_intel_6_14_10_4291 folder moved successfully.
C:\fsc.tmp\driver\graphic folder moved successfully.
C:\fsc.tmp\driver\chipset\1001886_intel_6_2_1_1001\XP folder moved successfully.
C:\fsc.tmp\driver\chipset\1001886_intel_6_2_1_1001\WINME folder moved successfully.
C:\fsc.tmp\driver\chipset\1001886_intel_6_2_1_1001\WIN98SE folder moved successfully.
C:\fsc.tmp\driver\chipset\1001886_intel_6_2_1_1001\WIN2003 folder moved successfully.
C:\fsc.tmp\driver\chipset\1001886_intel_6_2_1_1001\WIN2000 folder moved successfully.
C:\fsc.tmp\driver\chipset\1001886_intel_6_2_1_1001\Source folder moved successfully.
C:\fsc.tmp\driver\chipset\1001886_intel_6_2_1_1001 folder moved successfully.
C:\fsc.tmp\driver\chipset folder moved successfully.
C:\fsc.tmp\driver\audio\1003257_analog_devices_5_10_1_4061\Sys folder moved successfully.
C:\fsc.tmp\driver\audio\1003257_analog_devices_5_10_1_4061\Source folder moved successfully.
C:\fsc.tmp\driver\audio\1003257_analog_devices_5_10_1_4061\SMAXWDM\W2K_XP folder moved successfully.
C:\fsc.tmp\driver\audio\1003257_analog_devices_5_10_1_4061\SMAXWDM folder moved successfully.
C:\fsc.tmp\driver\audio\1003257_analog_devices_5_10_1_4061 folder moved successfully.
C:\fsc.tmp\driver\audio folder moved successfully.
C:\fsc.tmp\driver folder moved successfully.
C:\fsc.tmp folder moved successfully.
C:\WINDOWS\System32\CONFIG.TMP moved successfully.
C:\WINDOWS\002894_.tmp moved successfully.
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job moved successfully.
========== SERVICES/DRIVERS ==========
Service olfqtuec stopped successfully!
Service olfqtuec deleted successfully!
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Honza
->Temp folder emptied: 29696 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Google Chrome cache emptied: 108759323 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32902 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 104,00 mb


OTM by OldTimer - Version 3.1.21.0 log created on 01192014_102301

Files moved on Reboot...
File move failed. C:\WINDOWS\temp\hlktmp scheduled to be moved on reboot.

Registry entries deleted on Reboot...


P.S.: Vyznáte se v aktualizacích XP ? mám nastaveno aby se automaticky nestahovaly a neinstalovali a ve frontě k instalaci jich mám 152

[Roli]

P.S.: Vyznáte se v aktualizacích XP ? mám nastaveno aby se automaticky nestahovaly a neinstalovali a ve frontě k instalaci jich mám 152

No instaloval jsi Service Pack 3 a to k tomu patří, nech je raději nainstalovat.

Koukám, že Ti smazal staré instalačky ovladačů hardware, doufám že to nevadí

Znovu spusť OTMoveIt a nahoře v aplikaci klini na CleanUP!

tímto po sobě uklidí.


Pak dej vědět jaký je stav PC.

[northendcz]

Koukám, že Ti smazal staré instalačky ovladačů hardware, doufám že to nevadí
Pak dej vědět jaký je stav PC.

stránky v chromu nabíhají asi rychleji, youtube žádná sláva ale asi to lepší nebude.
jdu nainstalovat ty aktualizace.
na ploše zbylo T-Cleaner.exe a LM.bat - ty stačí smazat Shift+Del?

[Roli]

na ploše zbylo T-Cleaner.exe a LM.bat - ty stačí smazat Shift+Del?

Pak mi sem dej ještě aktuální log.txt z Rsit.

[northendcz]

Logfile of random's system information tool 1.06 (written by random/random)
Run by Honza at 2014-01-22 09:48:04
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 17 GB (28%) free of 60 GB
Total RAM: 1014 MB (9% free)

HijackThis download failed

======Scheduled tasks folder======

C:\WINDOWS\tasks\avast! Emergency Update.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-26 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll [2005-11-10 184423]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Zástupce stránky vlastností sběrnice High Definition Audio"=C:\WINDOWS\system32\HDAShCut.exe [2005-01-07 61952]
"SynTPLpr"=C:\Program Files\Synaptics\SynTP\SynTPLpr.exe [2004-10-05 98394]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2004-10-05 688218]
"SafeQClient"=C:\Program Files\SafeQ\SafeQ_cli.exe [2013-09-18 493056]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-26 31016]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-01-12 3764024]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2007-01-13 131072]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2007-01-13 163840]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2007-01-13 135168]
"googletalk"=C:\Program Files\Google\Google Talk\googletalk.exe [2007-01-01 3739648]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"20131224"=C:\Program Files\AVAST Software\Avast\setup\emupdate\e311ac30-4a3c-4ca1-859a-e844d9486300.exe [2014-01-22 181136]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate]
C:\PROGRAM FILES\ZONER\PHOTO STUDIO 15\Program32\ZPSTRAY.EXE [2013-06-07 774680]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Honza^Nabídka Start^Programy^Po spuštění^Zástupce - SkypePortable.lnk]
D:\install\SKYPEP~1\SKYPEP~1.EXE [2012-12-22 121168]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
X-Mouse Button Control.lnk - C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2007-01-13 204800]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-26 2210608]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"D:\install\SkypePortable\App\Skype\Phone\Skype.exe"="D:\install\SkypePortable\App\Skype\Phone\Skype.exe:*:Enabled:Skype "
"C:\Program Files\Google\Google Talk\googletalk.exe"="C:\Program Files\Google\Google Talk\googletalk.exe:*:Enabled:Google Talk"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Steam\Steam.exe"="C:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"C:\Program Files\Steam\SteamApps\common\Half-Life\hl.exe"="C:\Program Files\Steam\SteamApps\common\Half-Life\hl.exe:*:Enabled:Counter-Strike"
"C:\Documents and Settings\Honza\Local Settings\Data aplikací\Google\Google Talk Plugin\googletalkplugin.exe"="C:\Documents and Settings\Honza\Local Settings\Data aplikací\Google\Google Talk Plugin\googletalkplugin.exe:*:Enabled:Google Talk Plugin"
"C:\WINDOWS\system32\hasplms.exe"="C:\WINDOWS\system32\hasplms.exe:*:Enabled:Sentinel License Manager"
"C:\WINDOWS\system32\dplaysvr.exe"="C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper"
"C:\Program Files\Codemasters\Colin McRae Rally 2\CMR2.exe"="C:\Program Files\Codemasters\Colin McRae Rally 2\CMR2.exe:*:Enabled:Colin McRae Rally 2"
"C:\Documents and Settings\Honza\Plocha\red-alert2-portable\red-alert2-portable\GAME.EXE"="C:\Documents and Settings\Honza\Plocha\red-alert2-portable\red-alert2-portable\GAME.EXE:*:Enabled:Main executable for Red Alert 2"
"C:\Documents and Settings\Honza\Plocha\C&C - Red Alert 2\Game.exe"="C:\Documents and Settings\Honza\Plocha\C&C - Red Alert 2\Game.exe:*:Enabled:Main executable for Red Alert 2"
"C:\Program Files\Steam\SteamApps\common\Team Fortress 2\hl2.exe"="C:\Program Files\Steam\SteamApps\common\Team Fortress 2\hl2.exe:*:Enabled:Team Fortress 2"
"C:\Documents and Settings\Honza\Plocha\UnrealTournament\System\UnrealTournament.exe"="C:\Documents and Settings\Honza\Plocha\UnrealTournament\System\UnrealTournament.exe:*:Enabled:UnrealTournament"
"C:\Program Files\TeamViewer\Version9\TeamViewer.exe"="C:\Program Files\TeamViewer\Version9\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe"="C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======File associations======

.scr - open - C:\WINDOWS\system32\notepad.exe "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 months======

2014-01-22 09:48:05 ----D---- C:\Program Files\trend micro
2014-01-22 09:48:04 ----D---- C:\rsit
2014-01-21 18:48:54 ----D---- C:\Documents and Settings\Honza\Data aplikací\Macromedia
2014-01-21 15:20:54 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$
2014-01-21 15:20:42 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2014-01-21 15:18:58 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2014-01-21 15:01:06 ----A---- C:\WINDOWS\imsins.BAK
2014-01-20 23:38:47 ----D---- C:\WINDOWS\system32\XPSViewer
2014-01-20 23:37:59 ----D---- C:\Program Files\Reference Assemblies
2014-01-20 23:33:50 ----N---- C:\WINDOWS\system32\prntvpt.dll
2014-01-20 23:33:47 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2014-01-20 23:33:44 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2014-01-20 23:02:48 ----HDC---- C:\WINDOWS\$NtUninstallKB2868626$
2014-01-20 22:56:34 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2014-01-20 22:56:24 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2014-01-20 22:56:14 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2014-01-20 22:53:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2467659$
2014-01-20 22:52:34 ----D---- C:\WINDOWS\ie8updates
2014-01-20 22:51:37 ----D---- C:\WINDOWS\WBEM
2014-01-20 22:50:22 ----HDC---- C:\WINDOWS\ie8
2014-01-20 22:40:50 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2014-01-20 22:34:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2014-01-20 22:34:31 ----HDC---- C:\WINDOWS\$NtUninstallKB2712808$
2014-01-20 22:34:22 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2014-01-20 22:33:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2479943$
2014-01-20 22:33:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2659262$
2014-01-20 22:32:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2564958$
2014-01-20 22:31:27 ----HDC---- C:\WINDOWS\$NtUninstallKB2478971$
2014-01-20 22:24:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2758857$
2014-01-20 22:23:59 ----HDC---- C:\WINDOWS\$NtUninstallKB2544893-v2$
2014-01-20 22:23:48 ----HDC---- C:\WINDOWS\$NtUninstallKB2834886$
2014-01-20 22:23:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2536276-v2$
2014-01-20 22:23:27 ----HDC---- C:\WINDOWS\$NtUninstallKB2585542$
2014-01-20 22:23:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2631813$
2014-01-20 22:23:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2014-01-20 22:22:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2691442$
2014-01-20 22:16:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2900986$
2014-01-20 22:16:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$
2014-01-20 22:06:21 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$
2014-01-20 22:06:14 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2014-01-20 22:06:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2847311$
2014-01-20 21:50:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2014-01-20 21:50:46 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2014-01-20 21:50:34 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2014-01-20 21:50:19 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2014-01-20 21:50:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2443105$
2014-01-20 21:49:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2655992$
2014-01-20 21:44:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2802968$
2014-01-20 21:43:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2014-01-20 21:43:44 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2014-01-20 21:43:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2481109$
2014-01-20 21:43:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2898715$
2014-01-20 21:43:16 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2014-01-20 21:43:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2485663$
2014-01-20 21:42:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2598479$
2014-01-20 21:42:41 ----HDC---- C:\WINDOWS\$NtUninstallKB2898785$
2014-01-20 21:42:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2686509$
2014-01-20 21:42:23 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2014-01-20 21:42:15 ----HDC---- C:\WINDOWS\$NtUninstallKB2862335$
2014-01-20 21:42:02 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2014-01-20 21:40:06 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2014-01-20 21:39:58 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2014-01-20 21:39:51 ----HDC---- C:\WINDOWS\$NtUninstallKB2507938$
2014-01-20 21:39:41 ----HDC---- C:\WINDOWS\$NtUninstallKB2780091$
2014-01-20 21:39:30 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2014-01-20 21:37:36 ----D---- C:\WINDOWS\pss
2014-01-20 21:35:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2845187$
2014-01-20 21:35:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2510581$
2014-01-20 21:35:15 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2014-01-20 21:35:01 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2014-01-20 21:34:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2904266$
2014-01-20 21:34:37 ----HDC---- C:\WINDOWS\$NtUninstallKB2347290$
2014-01-20 21:34:27 ----HDC---- C:\WINDOWS\$NtUninstallKB2876217$
2014-01-20 21:34:18 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2014-01-20 21:34:01 ----HDC---- C:\WINDOWS\$NtUninstallKB2483185$
2014-01-20 21:23:03 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2014-01-20 21:17:21 ----HDC---- C:\WINDOWS\$NtUninstallKB2864063$
2014-01-20 21:17:11 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2014-01-20 21:17:02 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2014-01-20 21:16:51 ----HDC---- C:\WINDOWS\$NtUninstallKB2719985$
2014-01-20 21:16:37 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2014-01-20 21:16:26 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2014-01-20 21:16:15 ----HDC---- C:\WINDOWS\$NtUninstallKB2862152$
2014-01-20 21:16:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2592799$
2014-01-20 21:15:54 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2014-01-20 21:15:39 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2014-01-20 21:15:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2770660$
2014-01-20 21:15:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2535512$
2014-01-20 21:15:06 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2014-01-20 21:14:52 ----HDC---- C:\WINDOWS\$NtUninstallKB2850869$
2014-01-20 21:09:51 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2014-01-20 21:09:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2876331$
2014-01-20 21:09:31 ----HDC---- C:\WINDOWS\$NtUninstallKB2859537$
2014-01-20 21:09:19 ----HDC---- C:\WINDOWS\$NtUninstallKB2807986$
2014-01-20 21:09:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2570947$
2014-01-20 20:58:58 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2014-01-20 20:58:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2868038$
2014-01-20 20:58:32 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2014-01-20 20:58:27 ----HDC---- C:\WINDOWS\$NtUninstallKB2820917$
2014-01-20 20:58:19 ----HDC---- C:\WINDOWS\$NtUninstallKB2603381$
2014-01-20 20:58:07 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2014-01-20 20:57:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2893294$
2014-01-20 20:57:41 ----HDC---- C:\WINDOWS\$NtUninstallKB2757638$
2014-01-20 20:57:24 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2014-01-20 20:57:14 ----HDC---- C:\WINDOWS\$NtUninstallKB2419632$
2014-01-20 20:57:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2508429$
2014-01-20 20:56:52 ----HDC---- C:\WINDOWS\$NtUninstallKB2653956$
2014-01-20 20:56:40 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2014-01-20 20:56:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2749655$
2014-01-20 20:56:14 ----HDC---- C:\WINDOWS\$NtUninstallKB971029$
2014-01-20 20:56:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2506212$
2014-01-20 20:55:54 ----HDC---- C:\WINDOWS\$NtUninstallKB2803821-v2_WM9$
2014-01-20 20:55:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2893984$
2014-01-20 20:55:41 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2014-01-20 20:55:33 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2014-01-20 20:55:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2892075$
2014-01-20 20:55:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2698365$
2014-01-20 20:54:59 ----HDC---- C:\WINDOWS\$NtUninstallKB2619339$
2014-01-20 20:54:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2705219-v2$
2014-01-20 20:54:40 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2014-01-20 20:54:30 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2014-01-20 20:54:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2727528$
2014-01-20 20:54:14 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2014-01-20 20:54:06 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2014-01-20 20:53:55 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$
2014-01-20 20:53:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2723135-v2$
2014-01-20 20:53:34 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2014-01-20 20:53:25 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2014-01-20 20:53:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2862330$
2014-01-20 20:53:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2813345$
2014-01-20 20:52:48 ----HDC---- C:\WINDOWS\$NtUninstallKB2509553$
2014-01-20 20:52:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2676562$
2014-01-20 20:47:10 ----D---- C:\Program Files\MSXML 4.0
2014-01-20 20:34:00 ----D---- C:\WINDOWS\system32\MRT
2014-01-20 20:33:25 ----A---- C:\WINDOWS\system32\MRT.exe
2014-01-20 20:32:56 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$
2014-01-20 20:19:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2478960$
2014-01-20 20:19:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2393802$
2014-01-20 20:18:57 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2014-01-20 20:18:37 ----HDC---- C:\WINDOWS\$NtUninstallKB2620712$
2014-01-20 20:18:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2566454$
2014-01-20 20:17:19 ----HDC---- C:\WINDOWS\$NtUninstallKB2661637$
2014-01-20 20:16:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2914368$
2014-01-20 20:15:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2584146$
2014-01-20 20:03:16 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2014-01-20 20:02:58 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2014-01-20 20:02:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2423089$
2014-01-20 18:25:48 ----N---- C:\WINDOWS\system32\browserchoice.exe
2014-01-20 18:10:58 ----N---- C:\WINDOWS\system32\iacenc.dll
2014-01-19 18:22:06 ----A---- C:\Boot.bak
2014-01-19 18:21:56 ----RASHD---- C:\cmdcons
2014-01-19 16:45:04 ----D---- C:\WINDOWS\system32\PreInstall
2014-01-19 16:45:02 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2014-01-19 13:24:46 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2014-01-19 10:23:17 ----SHD---- C:\RECYCLER
2014-01-19 10:00:45 ----A---- C:\WINDOWS\system32\igfxres.dll
2014-01-19 09:32:17 ----N---- C:\WINDOWS\system32\ati3d1ag.dll
2014-01-19 09:32:17 ----N---- C:\WINDOWS\system32\ati2dvag.dll
2014-01-19 09:32:17 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2014-01-19 09:32:17 ----N---- C:\WINDOWS\system32\ati2cqag.dll
2014-01-19 09:32:17 ----N---- C:\WINDOWS\system32\aaclient.dll
2014-01-19 09:32:16 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2014-01-19 09:32:16 ----N---- C:\WINDOWS\system32\azroles.dll
2014-01-19 09:32:16 ----N---- C:\WINDOWS\system32\ativvaxx.dll
2014-01-19 09:32:16 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2014-01-19 09:32:16 ----N---- C:\WINDOWS\system32\ati3duag.dll
2014-01-19 09:32:15 ----N---- C:\WINDOWS\system32\credssp.dll
2014-01-19 09:32:14 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2014-01-19 09:32:14 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2014-01-19 09:32:14 ----N---- C:\WINDOWS\system32\dot3api.dll
2014-01-19 09:32:14 ----N---- C:\WINDOWS\system32\dimsroam.dll
2014-01-19 09:32:14 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2014-01-19 09:32:14 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2014-01-19 09:32:13 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2014-01-19 09:32:13 ----N---- C:\WINDOWS\system32\eapolqec.dll
2014-01-19 09:32:13 ----N---- C:\WINDOWS\system32\dot3ui.dll
2014-01-19 09:32:13 ----N---- C:\WINDOWS\system32\dot3svc.dll
2014-01-19 09:32:13 ----N---- C:\WINDOWS\system32\dot3msm.dll
2014-01-19 09:32:13 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2014-01-19 09:32:12 ----N---- C:\WINDOWS\system32\eapsvc.dll
2014-01-19 09:32:12 ----N---- C:\WINDOWS\system32\eapqec.dll
2014-01-19 09:32:12 ----N---- C:\WINDOWS\system32\eappprxy.dll
2014-01-19 09:32:12 ----N---- C:\WINDOWS\system32\eapphost.dll
2014-01-19 09:32:12 ----N---- C:\WINDOWS\system32\eappgnui.dll
2014-01-19 09:32:12 ----N---- C:\WINDOWS\system32\eappcfg.dll
2014-01-19 09:32:10 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2014-01-19 09:32:08 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2014-01-19 09:32:08 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2014-01-19 09:32:07 ----N---- C:\WINDOWS\system32\kbdpash.dll
2014-01-19 09:32:07 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2014-01-19 09:32:06 ----N---- C:\WINDOWS\system32\mmcex.dll
2014-01-19 09:32:06 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2014-01-19 09:32:06 ----N---- C:\WINDOWS\system32\mdmxsdk.dll
2014-01-19 09:32:06 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2014-01-19 09:32:06 ----N---- C:\WINDOWS\system32\kmsvc.dll
2014-01-19 09:32:05 ----N---- C:\WINDOWS\system32\mmcperf.exe
2014-01-19 09:32:05 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2014-01-19 09:32:04 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2014-01-19 09:32:04 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2014-01-19 09:32:04 ----N---- C:\WINDOWS\system32\mssha.dll
2014-01-19 09:32:03 ----N---- C:\WINDOWS\system32\nv4_disp.dll
2014-01-19 09:32:03 ----N---- C:\WINDOWS\system32\napstat.exe
2014-01-19 09:32:03 ----N---- C:\WINDOWS\system32\napmontr.dll
2014-01-19 09:32:03 ----N---- C:\WINDOWS\system32\napipsec.dll
2014-01-19 09:32:02 ----N---- C:\WINDOWS\system32\onex.dll
2014-01-19 09:32:01 ----N---- C:\WINDOWS\system32\s3gnb.dll
2014-01-19 09:32:01 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2014-01-19 09:32:01 ----N---- C:\WINDOWS\system32\rasqec.dll
2014-01-19 09:32:01 ----N---- C:\WINDOWS\system32\qutil.dll
2014-01-19 09:32:01 ----N---- C:\WINDOWS\system32\qcliprov.dll
2014-01-19 09:32:01 ----N---- C:\WINDOWS\system32\qagentrt.dll
2014-01-19 09:32:01 ----N---- C:\WINDOWS\system32\qagent.dll
2014-01-19 09:32:00 ----N---- C:\WINDOWS\system32\slserv.exe
2014-01-19 09:32:00 ----N---- C:\WINDOWS\system32\slrundll.exe
2014-01-19 09:32:00 ----N---- C:\WINDOWS\system32\slgen.dll
2014-01-19 09:32:00 ----N---- C:\WINDOWS\system32\slextspk.dll
2014-01-19 09:32:00 ----N---- C:\WINDOWS\system32\slcoinst.dll
2014-01-19 09:32:00 ----N---- C:\WINDOWS\system32\setupn.exe
2014-01-19 09:31:58 ----N---- C:\WINDOWS\system32\verclsid.exe
2014-01-19 09:31:58 ----N---- C:\WINDOWS\system32\tzchange.exe
2014-01-19 09:31:58 ----N---- C:\WINDOWS\system32\tspkg.dll
2014-01-19 09:31:58 ----N---- C:\WINDOWS\system32\tsgqec.dll
2014-01-19 09:31:54 ----N---- C:\WINDOWS\system32\wlanapi.dll
2014-01-19 09:31:51 ----A---- C:\WINDOWS\system32\xmllite.dll
2014-01-19 09:31:50 ----N---- C:\WINDOWS\slrundll.exe
2014-01-19 09:31:47 ----D---- C:\WINDOWS\l2schemas
2014-01-19 09:31:46 ----D---- C:\WINDOWS\system32\cs
2014-01-19 09:31:46 ----D---- C:\WINDOWS\system32\bits
2014-01-19 09:25:58 ----D---- C:\WINDOWS\ServicePackFiles
2014-01-19 09:21:31 ----D---- C:\WINDOWS\network diagnostic
2014-01-19 09:15:38 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2014-01-19 09:15:30 ----D---- C:\WINDOWS\EHome
2014-01-19 09:02:43 ----A---- C:\WINDOWS\system32\igxprd32.dll
2014-01-19 09:02:43 ----A---- C:\WINDOWS\system32\igfxpers.exe
2014-01-19 09:02:42 ----A---- C:\WINDOWS\system32\igxpgd32.dll
2014-01-19 09:02:42 ----A---- C:\WINDOWS\system32\igxpdv32.dll
2014-01-19 09:02:42 ----A---- C:\WINDOWS\system32\igldev32.dll
2014-01-19 09:02:41 ----A---- C:\WINDOWS\system32\igxpdx32.dll
2014-01-19 09:02:41 ----A---- C:\WINDOWS\system32\iglicd32.dll
2014-01-19 09:02:41 ----A---- C:\WINDOWS\system32\igfxsrvc.exe
2014-01-19 09:02:41 ----A---- C:\WINDOWS\system32\igfxCoIn_v4764.dll
2014-01-19 09:02:37 ----DC---- C:\WINDOWS\system32\DRVSTORE
2014-01-19 09:02:36 ----D---- C:\WINDOWS\system32\Lang
2014-01-19 09:02:36 ----A---- C:\WINDOWS\system32\igxpun.exe
2014-01-19 09:02:36 ----A---- C:\WINDOWS\system32\difxapi.dll
2014-01-19 08:23:53 ----D---- C:\WINDOWS\Prefetch
2014-01-18 11:49:24 ----D---- C:\Documents and Settings\Honza\Data aplikací\Mozilla
2014-01-13 14:39:00 ----D---- C:\Documents and Settings\Honza\Data aplikací\Google
2014-01-13 12:44:51 ----D---- C:\Program Files\n2n Gui
2014-01-12 18:02:00 ----D---- C:\Documents and Settings\Honza\Data aplikací\AVAST Software
2014-01-12 18:00:26 ----A---- C:\WINDOWS\system32\aswBoot.exe
2014-01-12 17:55:16 ----D---- C:\Program Files\AVAST Software
2014-01-12 17:54:23 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2014-01-09 14:33:06 ----D---- C:\Program Files\CCleaner
2014-01-09 13:10:02 ----A---- C:\WINDOWS\swiproject.INI
2014-01-08 18:50:46 ----D---- C:\Documents and Settings\Honza\Data aplikací\Zoner
2014-01-08 18:50:43 ----D---- C:\Documents and Settings\All Users\Data aplikací\Zoner
2014-01-08 18:49:29 ----D---- C:\Program Files\Zoner
2014-01-04 16:42:16 ----D---- C:\Program Files\CS Poker

======List of files/folders modified in the last 1 months======

2014-01-22 09:53:58 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-01-22 09:53:55 ----D---- C:\WINDOWS\system32\CatRoot2
2014-01-22 09:48:05 ----RD---- C:\Program Files
2014-01-22 09:35:22 ----HD---- C:\WINDOWS\inf
2014-01-22 09:34:54 ----D---- C:\WINDOWS\Temp
2014-01-21 16:03:04 ----RSD---- C:\WINDOWS\assembly
2014-01-21 16:03:04 ----D---- C:\WINDOWS\Microsoft.NET
2014-01-21 15:29:54 ----SHD---- C:\WINDOWS\Installer
2014-01-21 15:28:40 ----D---- C:\WINDOWS\WinSxS
2014-01-21 15:21:00 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-01-21 15:20:44 ----D---- C:\WINDOWS\system32\drivers
2014-01-21 15:20:39 ----D---- C:\WINDOWS\system32\CatRoot
2014-01-21 15:00:50 ----HD---- C:\WINDOWS\$hf_mig$
2014-01-21 14:26:39 ----D---- C:\WINDOWS\system32
2014-01-21 14:26:39 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-01-21 14:24:53 ----D---- C:\WINDOWS
2014-01-20 23:38:37 ----D---- C:\Program Files\MSBuild
2014-01-20 23:38:26 ----RSD---- C:\WINDOWS\Fonts
2014-01-20 23:36:18 ----D---- C:\WINDOWS\system32\spool
2014-01-20 22:51:47 ----D---- C:\WINDOWS\system32\config
2014-01-20 22:51:29 ----D---- C:\WINDOWS\Media
2014-01-20 22:40:52 ----D---- C:\Program Files\Messenger
2014-01-20 21:39:15 ----D---- C:\WINDOWS\Debug
2014-01-20 21:35:12 ----D---- C:\WINDOWS\system32\cs-CZ
2014-01-20 21:35:11 ----D---- C:\WINDOWS\system32\wbem
2014-01-20 21:35:11 ----D---- C:\WINDOWS\Help
2014-01-20 21:35:11 ----D---- C:\WINDOWS\AppPatch
2014-01-20 21:35:11 ----D---- C:\Program Files\Internet Explorer
2014-01-20 20:54:43 ----D---- C:\Program Files\Outlook Express
2014-01-20 20:53:58 ----D---- C:\Program Files\Movie Maker
2014-01-19 18:34:16 ----A---- C:\WINDOWS\system.ini
2014-01-19 18:29:13 ----D---- C:\Program Files\Common Files
2014-01-19 18:22:06 ----RASH---- C:\boot.ini
2014-01-19 13:25:00 ----D---- C:\WINDOWS\SoftwareDistribution
2014-01-19 10:23:10 ----SD---- C:\WINDOWS\Tasks
2014-01-19 10:21:55 ----D---- C:\WINDOWS\Internet Logs
2014-01-19 10:18:07 ----SHD---- C:\System Volume Information
2014-01-19 09:56:01 ----D---- C:\WINDOWS\security
2014-01-19 09:32:48 ----D---- C:\Program Files\Windows Media Player
2014-01-19 09:32:23 ----D---- C:\WINDOWS\ime
2014-01-19 09:31:49 ----D---- C:\WINDOWS\system32\usmt
2014-01-19 09:31:46 ----D---- C:\WINDOWS\PeerNet
2014-01-19 09:25:45 ----D---- C:\WINDOWS\system32\Restore
2014-01-19 09:25:45 ----D---- C:\WINDOWS\system32\npp
2014-01-19 09:25:42 ----D---- C:\WINDOWS\msagent
2014-01-19 09:25:39 ----D---- C:\WINDOWS\srchasst
2014-01-19 09:25:37 ----D---- C:\Program Files\NetMeeting
2014-01-19 09:25:34 ----D---- C:\WINDOWS\system32\Com
2014-01-19 09:25:28 ----D---- C:\Program Files\Windows NT
2014-01-19 09:25:22 ----D---- C:\Program Files\Common Files\System
2014-01-19 09:24:40 ----D---- C:\WINDOWS\system32\oobe
2014-01-19 09:24:37 ----D---- C:\WINDOWS\system
2014-01-19 09:18:55 ----D---- C:\WINDOWS\system32\ReinstallBackups
2014-01-19 09:02:29 ----D---- C:\Intel
2014-01-19 08:23:11 ----D---- C:\WINDOWS\system32\Setup
2014-01-18 10:55:07 ----HD---- C:\Program Files\InstallShield Installation Information
2014-01-15 16:38:31 ----D---- C:\Program Files\TeamViewer
2014-01-15 14:19:34 ----D---- C:\Documents and Settings\Honza\Data aplikací\vlc
2014-01-13 14:36:32 ----D---- C:\Program Files\Google
2014-01-09 14:34:38 ----D---- C:\WINDOWS\Logs
2014-01-09 14:34:38 ----D---- C:\Program Files\Steam
2014-01-06 16:04:13 ----D---- C:\Temp

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 aswRdr;aswRdr; \??\C:\WINDOWS\system32\drivers\aswRdr.sys []
R1 aswSnx;aswSnx; \??\C:\WINDOWS\system32\drivers\aswSnx.sys []
R1 aswSP;aswSP; \??\C:\WINDOWS\system32\drivers\aswSP.sys []
R1 aswTdi;aswTdi; \??\C:\WINDOWS\system32\drivers\aswTdi.sys []
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-18 12032]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.7.5.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2013-12-16 21361]
R2 aksfridge;aksfridge; \??\C:\WINDOWS\system32\drivers\aksfridge.sys []
R2 aswMonFlt;aswMonFlt; \??\C:\WINDOWS\system32\drivers\aswMonFlt.sys []
R2 CVPNDRVA;Cisco Systems Inc. IPSec Driver; \??\C:\WINDOWS\system32\Drivers\CVPNDRVA.sys []
R2 hardlock;hardlock; \??\C:\WINDOWS\system32\drivers\hardlock.sys []
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2005-04-25 135168]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 CmBatt;Microsoft AC Adapter Driver; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-14 13952]
R3 DNE;Deterministic Network Enhancer Miniport; C:\WINDOWS\system32\DRIVERS\dne2000.sys [2008-11-16 131984]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2007-01-13 5672032]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 RTL8023xp;Realtek 10/100/1000 NIC Family all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtlnicxp.sys [2005-03-04 74496]
R3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-14 79232]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2004-10-05 185824]
R3 tap0901;TAP-Win32 Adapter V9; C:\WINDOWS\system32\DRIVERS\tap0901.sys [2011-04-26 26624]
R3 tifm21;tifm21; C:\WINDOWS\system32\drivers\tifm21.sys [2005-04-05 160768]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2009-03-18 30336]
R3 usbhub;Ovladač standardního rozbočovače USB; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 w29n51;Intel(R) PRO/Wireless 2200BG Network Connection Driver for Windows XP; C:\WINDOWS\system32\DRIVERS\w29n51.sys [2005-09-12 3298432]
S3 CVirtA;Cisco Systems VPN Adapter; C:\WINDOWS\system32\DRIVERS\CVirtA.sys [2007-01-18 5275]
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
S3 HdAudAddService;Ovladač funkcí Microsoft UAA pro služby sběrnice High Definition Audio; C:\WINDOWS\system32\drivers\HdAudio.sys [2005-01-07 145920]
S3 RtlWlanu;Realtek Wireless LAN 802.11n USB 2.0 Network Adapter; C:\WINDOWS\system32\DRIVERS\rtwlanu.sys []
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 vsdatant;vsdatant; \??\C:\WINDOWS\system32\vsdatant.sys []
S4 sr;Ovladač filtru Obnovy systému; C:\WINDOWS\system32\DRIVERS\sr.sys [2008-04-14 73344]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Autodesk Content Service;Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [2011-02-02 18656]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-01-12 50344]
R2 CVPND;Cisco Systems, Inc. VPN Service; C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe [2010-09-27 1528616]
R2 hasplms;Sentinel Local License Manager; C:\WINDOWS\system32\hasplms.exe [2013-01-11 4466120]
R2 lmadmin;lmadmin; C:\Program Files\Common Files\Scia\LicenceServer\FlexnetServer\lmadmin.exe [2011-08-05 6587728]
R2 TeamViewer9;TeamViewer 9; C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe [2013-12-17 5341536]
R3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-11-11 1044816]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-09-21 116648]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-09-21 116648]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-26 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2012-11-19 489256]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

[Roli]

stránky v chromu nabíhají asi rychleji, youtube žádná sláva ale asi to lepší nebude.

V jiném prohlížeči to blbne také ?


Stáhni a spusť HJT

v okně které se ti otevře klikni na Do a system scan and save a logfile.

Proběhne sken a log který na Tebe vypadne mi sem nakopíruj.

[northendcz]

V jiném prohlížeči to blbne také ?

Řeknu to asi blbě ale tak to prostě je.. v jiném prohlížeči to neblbne protože žádný jiný nemám. ani FF ani Opera ani IE není nainstalovaný

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:38:50, on 25.1.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
C:\WINDOWS\system32\hasplms.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Common Files\Scia\LicenceServer\FlexnetServer\lmadmin.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
C:\Program Files\Common Files\Scia\LicenceServer\FlexnetServer\scia\scia.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\SafeQ\SafeQ_cli.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Google\Google Talk\googletalk.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRAM FILES\ZONER\PHOTO STUDIO 15\Program32\ZPSTRAY.EXE
C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\TeamViewer\Version9\TeamViewer.exe
C:\Program Files\TeamViewer\Version9\tv_w32.exe
C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\trend micro\HiJackThis\HiJackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O4 - HKLM\..\Run: [Zástupce stránky vlastností sběrnice High Definition Audio] HDAShCut.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SafeQClient] C:\Program Files\SafeQ\SafeQ_cli.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [googletalk] C:\Program Files\Google\Google Talk\googletalk.exe /autostart
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] C:\PROGRAM FILES\ZONER\PHOTO STUDIO 15\Program32\ZPSTRAY.EXE
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: X-Mouse Button Control.lnk = C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Autodesk Content Service - Unknown owner - C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
O23 - Service: FLEXnet Licensing Service - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Sentinel Local License Manager (hasplms) - SafeNet Inc. - C:\WINDOWS\system32\hasplms.exe
O23 - Service: lmadmin - Flexera Software, Inc. - C:\Program Files\Common Files\Scia\LicenceServer\FlexnetServer\lmadmin.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe

--
End of file - 7555 bytes

[Roli]

Řeknu to asi blbě ale tak to prostě je.. v jiném prohlížeči to neblbne protože žádný jiný nemám. ani FF ani Opera ani IE není nainstalovaný

Zkus Firefox, protože Chrome poslední dobou nic moc a pak dej vědět.


Tohle fixni v HJT :

O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [googletalk] C:\Program Files\Google\Google Talk\googletalk.exe /autostart
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] C:\PROGRAM FILES\ZONER\PHOTO STUDIO 15\Program32\ZPSTRAY.EXE
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

Fix znamená že spustíš HJT jako admin

v okně které se ti otevře klikneš na Do a system scan only

v dalším okně najdeš řádky které jsem ti vypsal,

vedle nich je čtvereček do kterého uděláš zatržítko,

pak klikneš na Fix checked které je vlevo dole,

program se ti zeptá zda opravdu ANO s tím samozřejmě souhlasíš a je hotovo.


Přes Start >> Spustit >> napiš - services.msc >> OK. Najdi službu :

Služba Google Update (gupdate)

Služba Google Update (gupdatem)

dvojklikem se otevře karta kde nejprve službu zastav tlačítkem Zastavit u položky Typ spouštění vyber Zakázáno a klik na OK.