Zdravím,
Prosím o kontrolu logu. Zničeho nic se strašně zpomalil počítač. V prohlížeči vyskakují nějaké nechtěnné stránky.
LOG:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Lob at 2014-08-07 14:49:09
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 4 GB (26%) free of 16 GB
Total RAM: 3070 MB (77% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:49:18, on 7.8.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Lingea Shared\luc.exe
C:\WINDOWS\system32\nethtsrv.exe
C:\WINDOWS\system32\netupdsrv.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\HD-V1.9\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-10.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Lob\Dokumenty\Downloads\RSIT.exe
C:\Program Files\trend micro\Lob.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll
O2 - BHO: CrossriderApp0060548 - {11111111-1111-1111-1111-110611051148} - C:\Program Files\HD-V1.9\HD-V1.9-bho.dll
O2 - BHO: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~1\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL
O3 - Toolbar: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [GBB36X Configure] C:\WINDOWS\system32\JMRaidTool.exe boot
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Lingea Update Center.lnk = C:\Program Files\Common Files\Lingea Shared\luc.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Advanced SystemCare Service 7 (AdvancedSystemCareService7) - IObit - C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe
O23 - Service: Dragon Age: Origins - Content Updater (DAUpdaterSvc) - BioWare - D:\hry\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) - globalUpdate - C:\Program Files\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: globalUpdate Update Service (globalUpdatem) (globalUpdatem) - globalUpdate - C:\Program Files\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Network HTTP Support Service (NetHttpService) - Unknown owner - C:\WINDOWS\system32\nethtsrv.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Network Support Service Updater (ServiceUpdater) - Unknown owner - C:\WINDOWS\system32\netupdsrv.exe
O23 - Service: Sony Ericsson PCCompanion - Avanquest Software - C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe
--
End of file - 5864 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-1.job - C:\Program Files\HD-V1.9\HD-V1.9-codedownloader.exe /wctdmcm /INRZpZ=task /vMUHVTT='HD-V1.9'
/PPaxQAJ=60548 /lbDgIs='001859' /mkeksm='0' /LkvzpvV='0' /TJhKabv=AC961FDEA3574D47AB4A8011BB19DFA8IE /KJLVpgRQK=349f6662e57e56fc3ef25753567f2260
/kqhYNBGA=1_34_07_01 /cMGCQvA=1.34.7.1 /HuPzCNl=1406067208 /JNqvk=http://stats.infodatacloud.com /cJTjo=http://errors.infodatacloud.com
/KcfqCdY=http://js.infodatacloud.com /zqCwG=ff /agmcq='HD-V1.9' /CxkcGSgZ=http://js.clientdemocloud.com /narrgKQh /hjtAnGCZR='{"asw":[0, 4, 0]}'
/WbSDW='http://update.infodatacloud.com/ie_code ... pdate.json' /INRZpZ='task' /PhQBUVeQ=''
C:\WINDOWS\tasks\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-10.job - C:\Program Files\HD-V1.9\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-10.exe /vMUHVTT='HD-V1.9'
/PPaxQAJ=60548 /lbDgIs='001859' /mkeksm='0' /LkvzpvV='0' /TJhKabv=AC961FDEA3574D47AB4A8011BB19DFA8IE /KJLVpgRQK=349f6662e57e56fc3ef25753567f2260
/kqhYNBGA=1_34_07_01 /HuPzCNl=1406067208 /JNqvk=http://stats.infodatacloud.com /cJTjo=http://errors.infodatacloud.com /tJxyO='HD-V1.9' /gxHLJeS=1000
/Khmjsabq=93-0,102-0,104-0,178-288,179-288,180-288,223-288 /QrmGrtMqY=http://logs.infodatacloud.com /INRZpZ='task' /PhQBUVeQ=''
C:\WINDOWS\tasks\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-11.job - C:\Program Files\HD-V1.9\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-11.exe
/UyUVonODa=EErX2gcKdGMpPqKRIlTID1qH1tXXLjiMj5Ec+XdZa+RczUDx6jeXY2VkKBRnyYPHyP9XI9rBsy827uRpopn02mxPqjZKmbc+0L1kd21X2EuGpbQE8aWN8VM52VWwJm50pFi7k4rAJ5U0JjlunU
BQpna0tfz2sr0rHjWXPnDOEC2rw9neh/5AZYJ3JvlS9wKkl+N1KJARx1S/88Md92+FGm2VLszp2kBl26zGpd4C50WLIVdRICy04Pdngxy7xc19Zfd7ceMf+if35vyHgjnqPkKIU4F+d/HBbhJRkxNIAXa3nCX
sCYpoXTwdq1T3cHBFSPCQWJQAY3u1+0R6/dul8SmQA6ZNhbSF4RnVUmvYT9gUGm0EX4K7yV1X2+cvUUOVz9Sil4tRtmHQ3GkKTfdXdVzraWimYYTr8Y7gTpCpUBs0Z9nlfDNG+BUODRradsjgspjKBsMRfIuk
4UpN8Xp6tLEUkFv41d/jb/eiaZXW4TIpw28z24PvfqE+JbPTgtC+BmyhmdsBTjU6nnN9BVmKX9CKUOkQMNZ20+rk/r99XKBfKZgal+8WThykPZ7gDh/gqed9/dxh1CVkTPzaOi78p38IFKmYU1IRUwpgpC1NC
mSodxi5ftWMGb02kvubV2qfy22ONYLAuFkQoVbvoEY+Or2SdxehLgfrHCF0EmYEiDbAckwaDhNF6mQPIxN4yVC5ckFNs9gN0sTI6lH6WhghPgMH8I6GbRXslZKeOO/95XJmzIDsFrby2JyuN5mDotnMfdLSpe
gS3cTY3jeGwG3yW+3vJKkkiFRdNl2LLKlhUx0NhgeWHfXv6KVWF3wNtmYAjH9LBEZLIOedZQQ2aSYT7qWYVqVqavYZveB11uMKSkFnksMDsIqMs8p6yLHKZIC5+IBJ+h+jqd+4K3aIOEMMKOy1QszIoCu+KcM
tFDXJM3DNJqXM9OTfjenABJUTCudlRZptjHSINGhlskjTnNEoYtkHp/LH9IiHXBHUyFe6CThesMoeCWwBFJMEdfTMCoueAmhAAnFHT+Y+INTlxlJGtzqNPa24rlDbNu0OHxz5nf0Ou40jjbJ9Wswl+/JEv5tW
OM1OLXKR3zg/JQ9YyuFzi2h1BsPnNJ6FJCXuUB+cyOrX+ghHfT1IohyKMOTAfH6yrFNeYWv50V94pzqTJTI0vvg0U3NiX94gd68Gk83V/4mJHbnlYMmypmYSFz2eDzXTqYjUE3+MkkeitEprgRXM6a4dNVY0N
sc6LuCzKuOjmApo4b3oNZMznISd/4QwGg1SRu6jMCmVBmqEzm1Sncd3uPmrepRw15VQiupGc1BQCXxtit6BXUmjfX5hup2W7B90lNvBvb7vqLwyv4cRuoN8NWOv1XxV1Xy1qxaQYwh1vKNhyU1/Hz5bSkPw3v
366fVufHow+nM3u+ziV+FJTjOdr8voh6JwMyKdPjdHmtUpKJL+/A0+M10OwXBINshokSsgzdeQVwb8yOu9oj3CZ+1Fe1xvXXfnylb2zL6MOYpzrlnYTymzmHThQ9bEfKiNnpTL
C:\WINDOWS\tasks\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-2.job - C:\Program Files\HD-V1.9\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-2.exe /YwWvhAcB
/vMUHVTT='HD-V1.9' /PPaxQAJ=60548 /lbDgIs='001859' /mkeksm='0' /LkvzpvV='0' /TJhKabv=AC961FDEA3574D47AB4A8011BB19DFA8IE
/KJLVpgRQK=349f6662e57e56fc3ef25753567f2260 /kqhYNBGA=1_34_07_01 /HuPzCNl=1406067208 /JNqvk=http://stats.infodatacloud.com
/cJTjo=http://errors.infodatacloud.com /zyRtRsaCB=11111111-1111-1111-1111-110611051148 /zqCwG=ff /Hfiqloix /narrgKQh
/WbSDW='http://update.infodatacloud.com/ie_enab ... pdate.json' /INRZpZ='task' /PhQBUVeQ=''
C:\WINDOWS\tasks\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-3.job - C:\Program Files\HD-V1.9\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-3.exe
/UyUVonODa=VAdM1yeR39eD7IAGY8/pdDBE3wmujyYaLlIhFkntcZKH6YpWcU967qWUkOkzurwKSlUAjL5wuwwmTQV9cQYsa+sjhVb6dcG26mxuVvo3lvVFfHr8FM19AW0EoS3+dU2JjtZhtz5ILcBg/3z241
P/Lxt8REgpLxbTeJK3jyt3eXGpHFvjZ8DbWs198P7Zyd8Yp94KoDnLAh83KO3WaAD8F9lnbYRg35uUO1U/CBknQzq8pLYHHoM0GWt7r4ogsaxLqW3uSxJm8m9Ihq49IGGnt9t6CMPFpvO/+qK/d1Ym8Ym2nFU
axeaVI0cNfZ0dPa2ys13/qenhwUfWrGX4rjpAKYaQWY/QIR4haJY7nwac5KotlkN/pJQeiJikgzQQevssgEk+JFGS3OYnKiJSJq8jg46zkSOBa2K0rzKspUFkzmUHOq/T5EhKtJAkXMZu2nz5OhYDKzeweBk1
pC+jKA2ImjdQ9YgQScCSAjfnN/Na8uhtb1xVOZ+aDbJT905yR2QLuTB1IfutP8SfRTkNIU4dl88BIF4iuQ9L3sKJ8Ea3wx2P07wVzodZTUfduUX2OzTdfvqJbDVXDKs0Gh3JvSR4JeKYAduNLJU6hPeZX7zTK
Laf5TSUZ0GIiDLaeWWE5UlvFqpS+q+2lbwhiJzqlGgXAwmsqIz2s7J6c04AWFbP2mRth/GOqdfV6t0U6ATw2lyHAWNoVbC6GG2Fg7SPjZAL5PHXcsZ8Fr50aWNOEHXn+hZisQJoOPg1wNymEprY4OgbXYlT9P
IlQ3XVmc+FMy+pH5MtmB5VTqBKotCmVPfk27ol+RwWB78o1EFKTtJt+OnS9QJZGODS7e/bvMHz5H1MtoDAQgaJj4ckzseGoiS2RbCB+yLUesnWPPIkv99RDQwHE2lGBl6aZQ1K4hXxUJyTI6r3WdAK5qrYWDh
b4LEheig3VPqbKwoZnjh62JRj/Cd7foxXhhKR7AJQ8yy404XIV8YRv5ArLCPByUWuaju/EMhG99a2z7uI+5wWLAzjLlQSQfH2maGU27FfuxaUm31uTuEMp1+V0QVA+IRLi/itWJ33aqO05SPbkHWa902WIJEP
Ik6NWJQ32CzCnPkJA48vAtQw9S5DklRLI2N4DzoOHAdxM/hNOdDLq/V2mZKayFi6rUWoZi7tcRvRgHmKPNbrqjKiYbLjr8mes1tkfVVvJVxQUA0g4FSrYrWWxatReAicCfDOCNvgtZq0OZsSoYv3K6wrEIZNd
jSmo02IS1Cjkgik+24PO5nNoKluo3IeDjaCNOzn3NDlFhD8+PMtMPa2agCvMw3UW1v/Wr7tG2/3rkCwiuZp1j7hioG/WT1xsuXpBvqK/jUdWkOR/ursYCxn1w==
C:\WINDOWS\tasks\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-4.job - C:\Program Files\HD-V1.9\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-4.exe /DAnsD /vMUHVTT='HD-V1.9'
/xcYFSh='C:\Program Files\HD-V1.9\ca9f61e7-52b6-468d-8e67-8d2712eae4a9.xpi' /PPaxQAJ=60548 /lbDgIs='001859' /mkeksm='0' /LkvzpvV='0'
/TJhKabv=AC961FDEA3574D47AB4A8011BB19DFA8IE /KJLVpgRQK=349f6662e57e56fc3ef25753567f2260 /kqhYNBGA=1_34_07_01 /cMGCQvA=1.34.7.1 /HuPzCNl=1406067208
/JNqvk=http://stats.infodatacloud.com /cJTjo=http://errors.infodatacloud.com /YVWtt=300
/HhCkPpIQR=d55cd0d7-9f24-4660-95b3-188599e8e4f8@6b2faf04-e86f-4bcf-a878-632814acf518.com /hrUOtTUay=0.95
/pcvGEASqh=ad55cd0d79f24466095b3188599e8e4f86b2faf04e86f4bcfa878632814acf518com60548 /CvZQfrLv=https://w9u6a2p6.ssl.hwcdn.net/plugin/f ... /60548.rdf
/tJxyO='HD-V1.9' /TWQaAl='Lights out for YouTube' /dPcamqIOa='InfoHD-V1.8' /zqCwG=ff /hjtAnGCZR='{"asw":[0, 4, 0]}' /narrgKQh /qAWas /ifFjF
/WbSDW='http://update.infodatacloud.com/ff_agen ... pdate.json' /INRZpZ='task' /PhQBUVeQ=''
C:\WINDOWS\tasks\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-5.job - C:\Program Files\HD-V1.9\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-5.exe /mRtSki /vMUHVTT='HD-V1.9'
/PPaxQAJ=60548 /lbDgIs='001859' /mkeksm='0' /LkvzpvV='0' /TJhKabv=AC961FDEA3574D47AB4A8011BB19DFA8IE /KJLVpgRQK=349f6662e57e56fc3ef25753567f2260
/kqhYNBGA=1_34_07_01 /HuPzCNl=1406067208 /JNqvk=http://stats.infodatacloud.com /cJTjo=http://errors.infodatacloud.com /xBDhTPmfR=http://ipgeoapi.com/
/DfGnzcfk=http://update.infodatacloud.com /mUbPo=2 /QrmGrtMqY=http://logs.infodatacloud.com
/WbSDW='http://update.infodatacloud.com/updater ... pdate.json' /INRZpZ='task' /PhQBUVeQ=''
C:\WINDOWS\tasks\globalUpdateUpdateTaskMachineCore.job - C:\Program Files\globalUpdate\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\globalUpdateUpdateTaskMachineUA.job - C:\Program Files\globalUpdate\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe -c
C:\WINDOWS\tasks\Registry Optimizer_DEFAULT.job - C:\Program Files\WinZip Registry Optimizer\Winzipro.exe -default
C:\WINDOWS\tasks\Registry Optimizer_UPDATES.job - C:\Program Files\WinZip Registry Optimizer\Winzipro.exe -updatecheck
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\Lob\Data aplikací\Mozilla\Firefox\Profiles\iw6vpqob.default-1406236489484
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 14.0.0.145 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10]
"Description"=globalUpdate Update
"Path"=C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4]
"Description"=globalUpdate Update
"Path"=C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll
C:\Documents and Settings\Lob\Data aplikací\Mozilla\Firefox\Profiles\iw6vpqob.default-1406236489484\extensions\
ascsurfingprotection@iobit.com
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll [2014-08-04 752960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611051148}]
HD-V1.9 - C:\Program Files\HD-V1.9\HD-V1.9-bho.dll [2014-07-23 537448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}]
Advanced SystemCare Browser Protection - C:\PROGRA~1\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL [2014-02-20 669504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{10921475-03CE-4E04-90CE-E2E7EF20C814} - ExplorerWnd Helper - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll [2014-08-04 752960]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2006-07-21 16261632]
"SkyTel"=C:\WINDOWS\SkyTel.EXE [2006-05-16 2879488]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"GBB36X Configure"=C:\WINDOWS\system32\JMRaidTool.exe [2006-07-12 356352]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2011-03-23 111208]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2011-03-23 13881448]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Companion]
C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe [2010-04-19 405712]
C:\Documents and Settings\Lob\Nabídka Start\Programy\Po spuštění
Lingea Update Center.lnk - C:\Program Files\Common Files\Lingea Shared\luc.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"D:\hry\Steam\Steam.exe"="D:\hry\Steam\Steam.exe:*:Enabled:Steam"
"D:\hry\Dragon Age\bin_ship\daorigins.exe"="D:\hry\Dragon Age\bin_ship\daorigins.exe:*:Enabled:Dragon Age: Origins"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\WINDOWS\system32\regsvr32.exe"="C:\WINDOWS\system32\regsvr32.exe:*:Enabled:Microsoft(C) Register Server"
"C:\Program Files\Google\Chrome\Application\chrome.exe"="C:\Program Files\Google\Chrome\Application\chrome.exe:*:Enabled:Google Chrome"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"D:\hry\Dragon Age\bin_ship\daorigins.exe"="D:\hry\Dragon Age\bin_ship\daorigins.exe:*:Enabled:Dragon Age: Origins"
"D:\hry\Dragon Age\DAOriginsLauncher.exe"="D:\hry\Dragon Age\DAOriginsLauncher.exe:*:Enabled:Dragon Age: Origins Launcher"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"msacm.ac3filter"=ac3filter.acm
"VIDC.FMVC"=fmcodec.dll
======List of files/folders created in the last 1 month======
2014-08-07 14:49:10 ----D---- C:\Program Files\trend micro
2014-08-07 14:49:09 ----D---- C:\rsit
2014-08-07 14:07:48 ----A---- C:\awh22.tmp
2014-08-06 18:08:32 ----A---- C:\awh21.tmp
2014-08-06 15:17:46 ----A---- C:\awh20.tmp
2014-08-05 20:06:33 ----A---- C:\awh1E.tmp
2014-08-05 14:09:28 ----A---- C:\awh1D.tmp
2014-08-04 21:06:08 ----A---- C:\awh1C.tmp
2014-08-04 20:57:11 ----A---- C:\WINDOWS\system32\RegistryDefragBootTime.exe
2014-08-04 20:52:01 ----D---- C:\Documents and Settings\All Users\Data aplikací\ProductData
2014-08-04 20:51:49 ----D---- C:\Documents and Settings\All Users\Data aplikací\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2014-08-04 20:39:54 ----A---- C:\awh1B.tmp
2014-08-04 19:23:21 ----A---- C:\awh19.tmp
2014-08-04 18:36:47 ----A---- C:\awh18.tmp
2014-08-04 18:00:07 ----A---- C:\awh1A.tmp
2014-08-04 14:34:47 ----A---- C:\awh15.tmp
2014-08-04 06:59:41 ----A---- C:\awh14.tmp
2014-08-03 19:42:48 ----A---- C:\awhB.tmp
2014-08-03 17:30:39 ----A---- C:\awh8.tmp
2014-08-01 16:28:42 ----A---- C:\awh13.tmp
2014-08-01 14:50:47 ----A---- C:\awh7.tmp
2014-07-31 16:58:11 ----A---- C:\awh12.tmp
2014-07-31 16:13:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$
2014-07-31 16:13:50 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2014-07-31 16:06:07 ----A---- C:\awh11.tmp
2014-07-31 15:45:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2868626$
2014-07-31 15:43:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2922229$
2014-07-31 15:42:59 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2014-07-31 15:42:56 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2014-07-31 15:42:51 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2014-07-31 15:41:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2467659$
2014-07-31 15:41:36 ----D---- C:\WINDOWS\ie8updates
2014-07-31 15:41:19 ----D---- C:\WINDOWS\WBEM
2014-07-31 15:40:32 ----HDC---- C:\WINDOWS\ie8
2014-07-31 15:37:02 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2014-07-31 15:34:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2014-07-31 15:34:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2712808$
2014-07-31 15:34:35 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2014-07-31 15:33:27 ----HDC---- C:\WINDOWS\$NtUninstallKB2479943$
2014-07-31 15:33:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2659262$
2014-07-31 15:33:20 ----HDC---- C:\WINDOWS\$NtUninstallKB2564958$
2014-07-31 15:33:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2916036$
2014-07-31 15:33:14 ----HDC---- C:\WINDOWS\$NtUninstallKB2478971$
2014-07-31 15:30:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2544893-v2$
2014-07-31 15:30:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2834886$
2014-07-31 15:30:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2536276-v2$
2014-07-31 15:30:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2585542$
2014-07-31 15:30:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2631813$
2014-07-31 15:30:14 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2014-07-31 15:30:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2691442$
2014-07-31 15:28:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2900986$
2014-07-31 15:28:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$
2014-07-31 15:26:32 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$
2014-07-31 15:26:29 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2014-07-31 15:26:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2847311$
2014-07-31 15:21:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2014-07-31 15:21:31 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2014-07-31 15:21:27 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2014-07-31 15:21:24 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2014-07-31 15:21:20 ----HDC---- C:\WINDOWS\$NtUninstallKB2443105$
2014-07-31 15:21:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2655992$
2014-07-31 15:19:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2802968$
2014-07-31 15:19:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2014-07-31 15:19:05 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2014-07-31 15:19:01 ----HDC---- C:\WINDOWS\$NtUninstallKB2481109$
2014-07-31 15:18:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2898715$
2014-07-31 15:18:54 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2014-07-31 15:18:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2485663$
2014-07-31 15:18:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2598479$
2014-07-31 15:18:44 ----HDC---- C:\WINDOWS\$NtUninstallKB2929961$
2014-07-31 15:18:41 ----HDC---- C:\WINDOWS\$NtUninstallKB2686509$
2014-07-31 15:18:29 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2014-07-31 15:18:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2862335$
2014-07-31 15:18:20 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2014-07-31 15:17:29 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2014-07-31 15:17:20 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2014-07-31 15:17:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2909212$
2014-07-31 15:17:14 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2014-07-31 15:17:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2507938$
2014-07-31 15:17:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$
2014-07-31 15:17:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2780091$
2014-07-31 15:17:02 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2014-07-31 15:14:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2510581$
2014-07-31 15:11:55 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2014-07-31 15:11:49 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2014-07-31 15:11:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2904266$
2014-07-31 15:11:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2347290$
2014-07-31 15:11:37 ----HDC---- C:\WINDOWS\$NtUninstallKB2876217$
2014-07-31 15:11:34 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2014-07-31 15:11:29 ----HDC---- C:\WINDOWS\$NtUninstallKB2483185$
2014-07-31 15:08:10 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2014-07-31 15:08:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2930275$
2014-07-31 15:07:59 ----HDC---- C:\WINDOWS\$NtUninstallKB2864063$
2014-07-31 15:07:56 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2014-07-31 15:07:53 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2014-07-31 15:07:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2719985$
2014-07-31 15:07:45 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2014-07-31 15:07:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2936068$
2014-07-31 15:07:36 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2014-07-31 15:07:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2862152$
2014-07-31 15:07:29 ----HDC---- C:\WINDOWS\$NtUninstallKB2592799$
2014-07-31 15:07:26 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2014-07-31 15:03:37 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2014-07-31 15:03:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2770660$
2014-07-31 15:03:15 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2014-07-31 15:02:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2535512$
2014-07-31 15:02:53 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2014-07-31 15:02:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2964358$
2014-07-31 15:02:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2850869$
2014-07-31 15:02:41 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2014-07-31 15:02:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2876331$
2014-07-31 15:02:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2859537$
2014-07-31 15:02:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2807986$
2014-07-31 15:02:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2570947$
2014-07-31 14:57:22 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2014-07-31 14:57:19 ----HDC---- C:\WINDOWS\$NtUninstallKB2868038$
2014-07-31 14:57:09 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2014-07-31 14:57:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2820917$
2014-07-31 14:54:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2603381$
2014-07-31 14:54:40 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2014-07-31 14:54:36 ----HDC---- C:\WINDOWS\$NtUninstallKB2893294$
2014-07-31 14:54:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2757638$
2014-07-31 14:54:28 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2014-07-31 14:54:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2419632$
2014-07-31 14:54:18 ----HDC---- C:\WINDOWS\$NtUninstallKB929399$
2014-07-31 14:53:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2508429$
2014-07-31 14:52:16 ----D---- C:\WINDOWS\system32\MRT
2014-07-31 14:52:14 ----A---- C:\WINDOWS\system32\MRT.exe
2014-07-31 14:52:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2653956$
2014-07-31 14:52:03 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2014-07-31 14:51:59 ----HDC---- C:\WINDOWS\$NtUninstallKB2749655$
2014-07-31 14:51:50 ----HDC---- C:\WINDOWS\$NtUninstallKB971029$
2014-07-31 14:51:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2506212$
2014-07-31 14:51:40 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2014-07-31 14:51:37 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2014-07-31 14:51:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2892075$
2014-07-31 14:51:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2698365$
2014-07-31 14:51:19 ----HDC---- C:\WINDOWS\$NtUninstallKB2619339$
2014-07-31 14:51:15 ----HDC---- C:\WINDOWS\$NtUninstallKB2705219-v2$
2014-07-31 14:46:01 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2014-07-31 14:45:54 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2014-07-31 14:45:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2727528$
2014-07-31 14:45:43 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2014-07-31 14:45:39 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2014-07-31 14:45:34 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$
2014-07-31 14:45:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2934207$
2014-07-31 14:45:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2723135-v2$
2014-07-31 14:45:21 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2014-07-31 14:45:17 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2014-07-31 14:42:27 ----HDC---- C:\WINDOWS\$NtUninstallKB2862330$
2014-07-31 14:42:09 ----HDC---- C:\WINDOWS\$NtUninstallKB2813345$
2014-07-31 14:42:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2509553$
2014-07-31 14:41:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2676562$
2014-07-31 14:33:00 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$
2014-07-31 14:30:32 ----A---- C:\awh1D0.tmp
2014-07-31 14:29:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2478960$
2014-07-31 14:29:31 ----HDC---- C:\WINDOWS\$NtUninstallKB2393802$
2014-07-31 14:29:25 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2014-07-31 14:29:21 ----HDC---- C:\WINDOWS\$NtUninstallKB2620712$
2014-07-31 14:29:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2566454$
2014-07-31 14:29:13 ----HDC---- C:\WINDOWS\$NtUninstallKB2661637$
2014-07-31 14:28:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2914368$
2014-07-31 14:28:54 ----HDC---- C:\WINDOWS\$NtUninstallKB2584146$
2014-07-31 14:26:56 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2014-07-31 14:26:51 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2014-07-30 18:41:05 ----A---- C:\awhE.tmp
2014-07-30 15:11:00 ----D---- C:\Documents and Settings\All Users\Data aplikací\BioWare
2014-07-30 14:38:48 ----A---- C:\awh9.tmp
2014-07-30 14:32:22 ----A---- C:\awhD.tmp
2014-07-29 21:25:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2423089$
2014-07-29 20:50:58 ----D---- C:\WINDOWS\1C4551A64743409391E41477CD655043.TMP
2014-07-29 20:50:49 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2014-07-29 20:23:44 ----D---- C:\Program Files\Common Files\BioWare
2014-07-29 20:05:20 ----A---- C:\awh6.tmp
2014-07-29 14:35:29 ----N---- C:\WINDOWS\system32\browserchoice.exe
2014-07-29 14:32:30 ----N---- C:\WINDOWS\system32\xp_eos.exe
2014-07-29 14:27:53 ----N---- C:\WINDOWS\system32\iacenc.dll
2014-07-29 14:27:13 ----A---- C:\awh144.tmp
2014-07-29 14:25:27 ----D---- C:\WINDOWS\system32\PreInstall
2014-07-29 14:25:25 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2014-07-28 17:36:30 ----A---- C:\awh1F.tmp
2014-07-28 14:25:51 ----A---- C:\awhC.tmp
2014-07-27 18:29:08 ----A---- C:\awh63.tmp
2014-07-27 18:26:27 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2014-07-27 12:13:35 ----D---- C:\Program Files\DAODB
2014-07-27 11:45:35 ----A---- C:\awh5.tmp
2014-07-27 10:51:13 ----A---- C:\awh10.tmp
2014-07-27 10:46:09 ----D---- C:\WINDOWS\Prefetch
2014-07-27 10:41:34 ----N---- C:\WINDOWS\system32\ati3d1ag.dll
2014-07-27 10:41:34 ----N---- C:\WINDOWS\system32\ati2dvag.dll
2014-07-27 10:41:34 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2014-07-27 10:41:34 ----N---- C:\WINDOWS\system32\ati2cqag.dll
2014-07-27 10:41:34 ----N---- C:\WINDOWS\system32\aaclient.dll
2014-07-27 10:41:33 ----N---- C:\WINDOWS\system32\eapsvc.dll
2014-07-27 10:41:33 ----N---- C:\WINDOWS\system32\eapqec.dll
2014-07-27 10:41:33 ----N---- C:\WINDOWS\system32\eappprxy.dll
2014-07-27 10:41:33 ----N---- C:\WINDOWS\system32\eapphost.dll
2014-07-27 10:41:33 ----N---- C:\WINDOWS\system32\eappgnui.dll
2014-07-27 10:41:33 ----N---- C:\WINDOWS\system32\eappcfg.dll
2014-07-27 10:41:33 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2014-07-27 10:41:33 ----N---- C:\WINDOWS\system32\eapolqec.dll
2014-07-27 10:41:33 ----N---- C:\WINDOWS\system32\dot3ui.dll
2014-07-27 10:41:33 ----N---- C:\WINDOWS\system32\dot3svc.dll
2014-07-27 10:41:33 ----N---- C:\WINDOWS\system32\dot3msm.dll
2014-07-27 10:41:33 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2014-07-27 10:41:33 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2014-07-27 10:41:33 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2014-07-27 10:41:33 ----N---- C:\WINDOWS\system32\dot3api.dll
2014-07-27 10:41:33 ----N---- C:\WINDOWS\system32\dimsroam.dll
2014-07-27 10:41:33 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2014-07-27 10:41:33 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2014-07-27 10:41:33 ----N---- C:\WINDOWS\system32\credssp.dll
2014-07-27 10:41:33 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2014-07-27 10:41:33 ----N---- C:\WINDOWS\system32\azroles.dll
2014-07-27 10:41:33 ----N---- C:\WINDOWS\system32\ativvaxx.dll
2014-07-27 10:41:33 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2014-07-27 10:41:33 ----N---- C:\WINDOWS\system32\ati3duag.dll
2014-07-27 10:41:32 ----N---- C:\WINDOWS\system32\kbdpash.dll
2014-07-27 10:41:32 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2014-07-27 10:41:32 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2014-07-27 10:41:32 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2014-07-27 10:41:32 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2014-07-27 10:41:31 ----N---- C:\WINDOWS\system32\onex.dll
2014-07-27 10:41:31 ----N---- C:\WINDOWS\system32\napstat.exe
2014-07-27 10:41:31 ----N---- C:\WINDOWS\system32\napmontr.dll
2014-07-27 10:41:31 ----N---- C:\WINDOWS\system32\napipsec.dll
2014-07-27 10:41:31 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2014-07-27 10:41:31 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2014-07-27 10:41:31 ----N---- C:\WINDOWS\system32\mssha.dll
2014-07-27 10:41:31 ----N---- C:\WINDOWS\system32\mmcperf.exe
2014-07-27 10:41:31 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2014-07-27 10:41:31 ----N---- C:\WINDOWS\system32\mmcex.dll
2014-07-27 10:41:31 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2014-07-27 10:41:31 ----N---- C:\WINDOWS\system32\mdmxsdk.dll
2014-07-27 10:41:31 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2014-07-27 10:41:31 ----N---- C:\WINDOWS\system32\kmsvc.dll
2014-07-27 10:41:30 ----N---- C:\WINDOWS\system32\tspkg.dll
2014-07-27 10:41:30 ----N---- C:\WINDOWS\system32\tsgqec.dll
2014-07-27 10:41:30 ----N---- C:\WINDOWS\system32\slserv.exe
2014-07-27 10:41:30 ----N---- C:\WINDOWS\system32\slrundll.exe
2014-07-27 10:41:30 ----N---- C:\WINDOWS\system32\slgen.dll
2014-07-27 10:41:30 ----N---- C:\WINDOWS\system32\slextspk.dll
2014-07-27 10:41:30 ----N---- C:\WINDOWS\system32\slcoinst.dll
2014-07-27 10:41:30 ----N---- C:\WINDOWS\system32\setupn.exe
2014-07-27 10:41:30 ----N---- C:\WINDOWS\system32\s3gnb.dll
2014-07-27 10:41:30 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2014-07-27 10:41:30 ----N---- C:\WINDOWS\system32\rasqec.dll
2014-07-27 10:41:30 ----N---- C:\WINDOWS\system32\qutil.dll
2014-07-27 10:41:30 ----N---- C:\WINDOWS\system32\qcliprov.dll
2014-07-27 10:41:30 ----N---- C:\WINDOWS\system32\qagentrt.dll
2014-07-27 10:41:30 ----N---- C:\WINDOWS\system32\qagent.dll
2014-07-27 10:41:29 ----N---- C:\WINDOWS\system32\wlanapi.dll
2014-07-27 10:41:29 ----N---- C:\WINDOWS\system32\verclsid.exe
2014-07-27 10:41:29 ----N---- C:\WINDOWS\system32\tzchange.exe
2014-07-27 10:41:28 ----N---- C:\WINDOWS\slrundll.exe
2014-07-27 10:41:28 ----A---- C:\WINDOWS\system32\xmllite.dll
2014-07-27 10:41:27 ----D---- C:\WINDOWS\system32\cs
2014-07-27 10:41:27 ----D---- C:\WINDOWS\system32\bits
2014-07-27 10:41:27 ----D---- C:\WINDOWS\l2schemas
2014-07-27 10:40:31 ----D---- C:\WINDOWS\ServicePackFiles
2014-07-27 10:39:20 ----D---- C:\WINDOWS\network diagnostic
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\ch7xxnt5.dll
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\bthusb.sys
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\bthprint.sys
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\bthport.sys
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\bthpan.sys
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\bthmodem.sys
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\bthenum.sys
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\atv10nt5.dll
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\atv06nt5.dll
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\atv04nt5.dll
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\atv02nt5.dll
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\atv01nt5.dll
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\atinxsxx.sys
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\atinxbxx.sys
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\atintuxx.sys
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\atinttxx.sys
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\atinsnxx.sys
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\atinrvxx.sys
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\atinraxx.sys
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\atinpdxx.sys
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\atinmdxx.sys
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\atinbtxx.sys
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\ati2mtag.sys
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\ati2mtaa.sys
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\ati1xsxx.sys
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\ati1xbxx.sys
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\ati1tuxx.sys
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\ati1ttxx.sys
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\ati1snxx.sys
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\ati1rvxx.sys
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\ati1raxx.sys
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\ati1pdxx.sys
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\ati1mdxx.sys
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\ati1btxx.sys
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\amdagp.sys
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\alim1541.sys
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\agpcpq.sys
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\agp440.sys
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\adv11nt5.dll
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\adv09nt5.dll
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\adv08nt5.dll
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\adv07nt5.dll
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\adv05nt5.dll
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\adv02nt5.dll
2014-07-27 10:39:19 ----N---- C:\WINDOWS\system32\drivers\adv01nt5.dll
2014-07-27 10:39:18 ----N---- C:\WINDOWS\system32\drivers\sffp_mmc.sys
2014-07-27 10:39:18 ----N---- C:\WINDOWS\system32\drivers\s3gnbm.sys
2014-07-27 10:39:18 ----N---- C:\WINDOWS\system32\drivers\rndismpx.sys
2014-07-27 10:39:18 ----N---- C:\WINDOWS\system32\drivers\rfcomm.sys
2014-07-27 10:39:18 ----N---- C:\WINDOWS\system32\drivers\recagent.sys
2014-07-27 10:39:18 ----N---- C:\WINDOWS\system32\drivers\ntmtlfax.sys
2014-07-27 10:39:18 ----N---- C:\WINDOWS\system32\drivers\mutohpen.sys
2014-07-27 10:39:18 ----N---- C:\WINDOWS\system32\drivers\mtxparhm.sys
2014-07-27 10:39:18 ----N---- C:\WINDOWS\system32\drivers\mtlstrm.sys
2014-07-27 10:39:18 ----N---- C:\WINDOWS\system32\drivers\mtlmnt5.sys
2014-07-27 10:39:18 ----N---- C:\WINDOWS\system32\drivers\mdmxsdk.sys
2014-07-27 10:39:18 ----N---- C:\WINDOWS\system32\drivers\hsfdpsp2.sys
2014-07-27 10:39:18 ----N---- C:\WINDOWS\system32\drivers\hsfcxts2.sys
2014-07-27 10:39:18 ----N---- C:\WINDOWS\system32\drivers\hsfbs2s2.sys
2014-07-27 10:39:18 ----N---- C:\WINDOWS\system32\drivers\hidir.sys
2014-07-27 10:39:18 ----N---- C:\WINDOWS\system32\drivers\hidbth.sys
2014-07-27 10:39:18 ----N---- C:\WINDOWS\system32\drivers\gagp30kx.sys
2014-07-27 10:39:17 ----N---- C:\WINDOWS\system32\drivers\watv10nt.sys
2014-07-27 10:39:17 ----N---- C:\WINDOWS\system32\drivers\watv06nt.sys
2014-07-27 10:39:17 ----N---- C:\WINDOWS\system32\drivers\wadv11nt.sys
2014-07-27 10:39:17 ----N---- C:\WINDOWS\system32\drivers\wadv09nt.sys
2014-07-27 10:39:17 ----N---- C:\WINDOWS\system32\drivers\wadv08nt.sys
2014-07-27 10:39:17 ----N---- C:\WINDOWS\system32\drivers\wadv07nt.sys
2014-07-27 10:39:17 ----N---- C:\WINDOWS\system32\drivers\wacompen.sys
2014-07-27 10:39:17 ----N---- C:\WINDOWS\system32\drivers\viaagp.sys
2014-07-27 10:39:17 ----N---- C:\WINDOWS\system32\drivers\vchnt5.dll
2014-07-27 10:39:17 ----N---- C:\WINDOWS\system32\drivers\usbvideo.sys
2014-07-27 10:39:17 ----N---- C:\WINDOWS\system32\drivers\usb8023x.sys
2014-07-27 10:39:17 ----N---- C:\WINDOWS\system32\drivers\uagp35.sys
2014-07-27 10:39:17 ----N---- C:\WINDOWS\system32\drivers\smbali.sys
2014-07-27 10:39:17 ----N---- C:\WINDOWS\system32\drivers\slwdmsup.sys
2014-07-27 10:39:17 ----N---- C:\WINDOWS\system32\drivers\slnthal.sys
2014-07-27 10:39:17 ----N---- C:\WINDOWS\system32\drivers\slntamr.sys
2014-07-27 10:39:17 ----N---- C:\WINDOWS\system32\drivers\slnt7554.sys
2014-07-27 10:39:17 ----N---- C:\WINDOWS\system32\drivers\sisagp.sys
2014-07-27 10:39:17 ----N---- C:\WINDOWS\system32\drivers\siint5.dll
2014-07-27 10:37:19 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2014-07-27 10:37:18 ----D---- C:\WINDOWS\EHome
2014-07-27 10:36:32 ----A---- C:\awh53.tmp
2014-07-26 23:11:03 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-07-26 23:08:13 ----A---- C:\awhF.tmp
2014-07-26 23:00:07 ----D---- C:\Program Files\Mozilla Firefox
2014-07-26 22:56:19 ----D---- C:\WINDOWS\Minidump
2014-07-26 22:53:01 ----SHD---- C:\Config.Msi
2014-07-26 22:51:41 ----D---- C:\Program Files\Microsoft SQL Server
2014-07-26 21:22:40 ----D---- C:\Program Files\Mozilla Firefox(2)
2014-07-26 19:24:20 ----D---- C:\Program Files\ESET
2014-07-26 19:24:20 ----D---- C:\Documents and Settings\All Users\Data aplikací\ESET
2014-07-26 17:55:23 ----D---- C:\Documents and Settings\Lob\Data aplikací\Apple Computer
2014-07-26 17:55:12 ----D---- C:\Documents and Settings\All Users\Data aplikací\IObit
2014-07-26 17:54:56 ----D---- C:\Program Files\IObit
2014-07-26 17:54:28 ----D---- C:\Documents and Settings\Lob\Data aplikací\IObit
2014-07-26 17:05:14 ----A---- C:\awh3.tmp
2014-07-26 14:30:35 ----A---- C:\awh2B.tmp
2014-07-25 22:50:02 ----A---- C:\awh4.tmp
2014-07-25 11:48:24 ----A---- C:\awhA.tmp
2014-07-24 22:57:02 ----A---- C:\awh17.tmp
2014-07-24 06:50:06 ----A---- C:\awh16.tmp
2014-07-23 00:18:24 ----A---- C:\awh13A.tmp
2014-07-23 00:13:37 ----D---- C:\Program Files\Google
2014-07-23 00:13:33 ----D---- C:\Program Files\globalUpdate
2014-07-23 00:13:32 ----D---- C:\Program Files\HD-V1.9
2014-07-23 00:13:22 ----D---- C:\Program Files\Common Files\Config
2014-07-23 00:13:16 ----D---- C:\Documents and Settings\Lob\Data aplikací\7860
2014-07-21 09:18:56 ----A---- C:\WINDOWS\system32\drivers\nethfdrv.sys
2014-07-21 09:18:50 ----A---- C:\WINDOWS\system32\netupdsrv.exe
2014-07-21 09:18:40 ----A---- C:\WINDOWS\system32\installd.exe
2014-07-21 09:18:28 ----A---- C:\WINDOWS\system32\nethtsrv.exe
2014-07-21 09:18:18 ----A---- C:\WINDOWS\system32\hfnapi.dll
2014-07-21 09:18:10 ----A---- C:\WINDOWS\system32\hfpapi.dll
2014-07-12 21:29:49 ----D---- C:\UpdateChromeLinksLogs
2014-07-12 21:29:42 ----A---- C:\WINDOWS\system32\msvcr71.dll
2014-07-12 21:29:42 ----A---- C:\WINDOWS\system32\mfc71.dll
2014-07-12 21:29:42 ----A---- C:\WINDOWS\system32\gdiplus.dll
2014-07-12 21:29:20 ----D---- C:\Documents and Settings\Lob\Data aplikací\Nico Mak Computing
2014-07-12 21:29:16 ----A---- C:\WINDOWS\system32\roboot.exe
2014-07-12 21:29:00 ----A---- C:\WINDOWS\system32\certsentry.dll
2014-07-12 21:28:46 ----D---- C:\Program Files\Comodo
2014-07-12 21:28:09 ----D---- C:\Program Files\DsNET Corp
2014-07-12 13:59:57 ----D---- C:\Program Files\Adobe
2014-07-12 13:52:26 ----D---- C:\WINDOWS\SxsCaPendDel
2014-07-12 13:43:31 ----D---- C:\Documents and Settings\Lob\Data aplikací\PDM
2014-07-12 13:42:44 ----D---- C:\Program Files\Palm
======List of files/folders modified in the last 1 month======
2014-08-07 14:49:10 ----RD---- C:\Program Files
2014-08-07 14:08:47 ----D---- C:\WINDOWS\Temp
2014-08-06 21:28:14 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-08-06 18:13:54 ----SD---- C:\WINDOWS\Tasks
2014-08-06 18:13:45 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-08-06 18:03:32 ----D---- C:\WINDOWS
2014-08-06 18:02:47 ----D---- C:\WINDOWS\system32\config
2014-08-04 20:57:11 ----D---- C:\WINDOWS\system32
2014-08-04 20:36:52 ----D---- C:\WINDOWS\Debug
2014-08-01 15:33:26 ----HD---- C:\WINDOWS\inf
2014-08-01 15:33:25 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-08-01 15:33:09 ----HD---- C:\WINDOWS\$hf_mig$
2014-08-01 15:33:08 ----D---- C:\WINDOWS\system32\CatRoot2
2014-07-31 16:54:22 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-07-31 16:13:56 ----D---- C:\WINDOWS\system32\CatRoot
2014-07-31 16:13:51 ----D---- C:\WINDOWS\system32\drivers
2014-07-31 16:00:56 ----D---- C:\WINDOWS\system32\wbem
2014-07-31 16:00:56 ----D---- C:\WINDOWS\system32\cs-CZ
2014-07-31 16:00:56 ----D---- C:\WINDOWS\Help
2014-07-31 16:00:56 ----D---- C:\WINDOWS\AppPatch
2014-07-31 16:00:56 ----D---- C:\Program Files\Internet Explorer
2014-07-31 15:52:57 ----RSD---- C:\WINDOWS\assembly
2014-07-31 15:48:27 ----D---- C:\WINDOWS\Microsoft.NET
2014-07-31 15:45:00 ----SHD---- C:\WINDOWS\Installer
2014-07-31 15:44:51 ----D---- C:\WINDOWS\WinSxS
2014-07-31 15:41:14 ----D---- C:\WINDOWS\Media
2014-07-31 15:37:03 ----D---- C:\Program Files\Messenger
2014-07-31 15:06:41 ----D---- C:\WINDOWS\system32\Restore
2014-07-31 14:46:03 ----D---- C:\Program Files\Outlook Express
2014-07-31 14:45:36 ----D---- C:\Program Files\Movie Maker
2014-07-31 14:39:18 ----D---- C:\WINDOWS\system32\XPSViewer
2014-07-29 20:50:49 ----D---- C:\Program Files\Common Files
2014-07-27 18:27:57 ----D---- C:\WINDOWS\SoftwareDistribution
2014-07-27 10:52:32 ----D---- C:\WINDOWS\Registration
2014-07-27 10:45:36 ----D---- C:\WINDOWS\system32\Setup
2014-07-27 10:45:34 ----RSD---- C:\WINDOWS\Fonts
2014-07-27 10:44:41 ----D---- C:\WINDOWS\security
2014-07-27 10:41:39 ----D---- C:\Program Files\Windows Media Player
2014-07-27 10:41:34 ----D---- C:\WINDOWS\ime
2014-07-27 10:41:28 ----D---- C:\WINDOWS\system32\usmt
2014-07-27 10:41:27 ----D---- C:\WINDOWS\PeerNet
2014-07-27 10:40:28 ----D---- C:\WINDOWS\system32\npp
2014-07-27 10:40:27 ----D---- C:\WINDOWS\msagent
2014-07-27 10:40:26 ----D---- C:\WINDOWS\srchasst
2014-07-27 10:40:25 ----D---- C:\WINDOWS\system32\Com
2014-07-27 10:40:25 ----D---- C:\Program Files\NetMeeting
2014-07-27 10:40:23 ----D---- C:\Program Files\Windows NT
2014-07-27 10:40:21 ----D---- C:\Program Files\Common Files\System
2014-07-27 10:40:10 ----D---- C:\WINDOWS\system32\oobe
2014-07-27 10:40:10 ----D---- C:\WINDOWS\system
2014-07-26 22:53:05 ----D---- C:\Program Files\Common Files\Microsoft Shared
2014-07-26 19:25:39 ----SD---- C:\Documents and Settings\Lob\Data aplikací\Microsoft
2014-07-12 13:53:08 ----D---- C:\WINDOWS\system32\en-US
2014-07-12 13:42:44 ----HD---- C:\Program Files\InstallShield Installation Information
2014-07-12 13:42:40 ----D---- C:\Program Files\Common Files\InstallShield
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 JGOGO;JMicron Hot-Plug Driver; C:\WINDOWS\system32\DRIVERS\JGOGO.sys [2006-02-07 6912]
R0 JRAID;JRAID; C:\WINDOWS\system32\DRIVERS\jraid.sys [2006-07-20 41728]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI Texas Instruments; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 nethfdrv;nethfdrv; \??\C:\WINDOWS\system32\drivers\nethfdrv.sys []
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2006-07-24 4353024]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-03-02 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2011-03-28 9933952]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda32.sys [2011-03-03 119272]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2006-07-12 248192]
S3 s1039bus;Sony Ericsson Device 1039 driver (WDM); C:\WINDOWS\system32\DRIVERS\s1039bus.sys [2010-03-15 98672]
S3 s1039mdfl;Sony Ericsson Device 1039 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s1039mdfl.sys [2010-03-15 14960]
S3 s1039mdm;Sony Ericsson Device 1039 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s1039mdm.sys [2010-03-15 124016]
S3 s1039mgmt;Sony Ericsson Device 1039 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s1039mgmt.sys [2010-03-15 117872]
S3 s1039nd5;Sony Ericsson Device 1039 USB Ethernet Emulation (NDIS); C:\WINDOWS\system32\DRIVERS\s1039nd5.sys [2010-03-15 25456]
S3 s1039obex;Sony Ericsson Device 1039 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s1039obex.sys [2010-03-15 113904]
S3 s1039unic;Sony Ericsson Device 1039 USB Ethernet Emulation (WDM); C:\WINDOWS\system32\DRIVERS\s1039unic.sys [2010-03-15 123504]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdvancedSystemCareService7;Advanced SystemCare Service 7; C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe [2014-01-14 881952]
R2 NetHttpService;Network HTTP Support Service; C:\WINDOWS\system32\nethtsrv.exe [2014-07-21 179200]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2011-03-23 155752]
R2 ServiceUpdater;Network Support Service Updater; C:\WINDOWS\system32\netupdsrv.exe [2014-07-21 159744]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-11-24 87904]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18
130384]
S2 globalUpdate;globalUpdate Update Service (globalUpdate); C:\Program Files\globalUpdate\Update\GoogleUpdate.exe [2014-07-23 68608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-07-27 116648]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2013-12-03 2151200]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25
69632]
S3 DAUpdaterSvc;Dragon Age: Origins - Content Updater; D:\hry\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [2009-12-15 25832]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29
46104]
S3 globalUpdatem;globalUpdate Update Service (globalUpdatem); C:\Program Files\globalUpdate\Update\GoogleUpdate.exe [2014-07-23 68608]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-07-27 116648]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Služba Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-07-17 119408]
S3 Sony Ericsson PCCompanion;Sony Ericsson PCCompanion; C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe [2010-06-08 153808]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
[2013-07-20 754856]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Help - zpomalený počítač, občas se vyskytují chyby
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Help - zpomalený počítač, občas se vyskytují chyby
ahoj
odstran tuto hrozu Advanced SystemCare Service 7 - ak uz nie je neskoro
+
citat:
TFC http://oldtimer.geekstogo.com/TFC.exe
• Stahnete a spustte
• Kliknete na Start a potvrdte OK
• Program uklidi a restartuje pc
• Po pouziti utilitu smazte
odstran tuto hrozu Advanced SystemCare Service 7 - ak uz nie je neskoro
+
citat:
TFC http://oldtimer.geekstogo.com/TFC.exe
• Stahnete a spustte
• Kliknete na Start a potvrdte OK
• Program uklidi a restartuje pc
• Po pouziti utilitu smazte
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Help - zpomalený počítač, občas se vyskytují chyby
Zdravím
počítač se zrychlil. Ale ty vyskakovací stránky se po nějaké době zase vrací.
počítač se zrychlil. Ale ty vyskakovací stránky se po nějaké době zase vrací.
Re: Help - zpomalený počítač, občas se vyskytují chyby
to nevadi, my iba zaciname 
prescanuj PC s MBAM verzia 1.75
prescanuj PC s MBAM verzia 1.75
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Help - zpomalený počítač, občas se vyskytují chyby
Skenoval jsem.
Takhle to dopadlo.
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Verze: v2013.04.04.07
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Lob :: BAF-5B46C41B258 [administrátor]
8.8.2014 7:04:50
mbam-log-2014-08-08 (07-04-50).txt
Typ: Kompletní kontrola (C:\|D:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 355446
Uplynulý čas: 2 hodin, 53 minut, 29 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 16
D:\programy\portable\Network\WirelessKeyView 1.15\WirelessKeyView.exe (PUP.WirelessKeyView) -> Nebyla provedena žádná instrukce.
D:\programy\portable\Startup items\StartupRun v1.22\strun.exe (PUP.StartUpManager) -> Nebyla provedena žádná instrukce.
D:\programy\portable\System\RockXP3.exe (PUP.OficeKey) -> Nebyla provedena žádná instrukce.
D:\programy\portable\System\ProduKey 1.32\ProduKey.exe (PUP.PSWTool.ProductKey) -> Nebyla provedena žádná instrukce.
D:\System Volume Information\_restore{E3FC1FA4-4729-4B29-9ABE-CFE7D2EC95B7}\RP1\A0000793.exe (PUP.RiskWareTool.CK) -> Nebyla provedena žádná instrukce.
D:\System Volume Information\_restore{E3FC1FA4-4729-4B29-9ABE-CFE7D2EC95B7}\RP1\A0000797.exe (PUP.RiskWareTool.CK) -> Nebyla provedena žádná instrukce.
D:\programy\portable\Audio\Format Factory-cd do mp3\Stubs\8917aab9780f41a35e91cb972c86fce58227ca\Splash Screen.exe (Trojan.Backdoor) -> Přesun do karantény a smazání se zdařilo.
D:\programy\portable\Audio\Format Factory-cd do mp3\Stubs\97d521fdf0976c3a091254a70327fd23c348880\regsvr32.exe (Trojan.Backdoor) -> Přesun do karantény a smazání se zdařilo.
D:\programy\portable\Download manager\Free Download Manager 2.5\dbghelp.dll (Malware.Packer.Gen) -> Přesun do karantény a smazání se zdařilo.
D:\programy\portable\Download manager\Free Download Manager 2.5\msvcp60.dll (Malware.Packer.Gen) -> Přesun do karantény a smazání se zdařilo.
D:\programy\portable\FTP\Xlight FTP Server 2.86\remote_admin.exe (Packer.ModifiedUPX) -> Přesun do karantény a smazání se zdařilo.
D:\programy\portable\Passwords\Asterisk Logger v1.02\astlog.exe (HackTool.Asterisk) -> Přesun do karantény a smazání se zdařilo.
D:\programy\portable\System\Windows XP Product Key Modifier\XPPID.exe (RiskWare.Tool.CK) -> Přesun do karantény a smazání se zdařilo.
D:\programy\portable\Tests and benchmarks\MemTest 3.4\memtest.exe (Backdoor.Agent.Gen) -> Přesun do karantény a smazání se zdařilo.
D:\programy\portable\Web authoring\Dev-PHP 2.3.0.309\Other\psftp.exe (Trojan.Downloader) -> Přesun do karantény a smazání se zdařilo.
D:\System Volume Information\_restore{AA795CA5-4E02-470A-AE9F-8AFB3B34B290}\RP14\A0000662.exe (Adware.Vomba) -> Přesun do karantény a smazání se zdařilo.
(konec)
Takhle to dopadlo.
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Verze: v2013.04.04.07
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Lob :: BAF-5B46C41B258 [administrátor]
8.8.2014 7:04:50
mbam-log-2014-08-08 (07-04-50).txt
Typ: Kompletní kontrola (C:\|D:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 355446
Uplynulý čas: 2 hodin, 53 minut, 29 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 16
D:\programy\portable\Network\WirelessKeyView 1.15\WirelessKeyView.exe (PUP.WirelessKeyView) -> Nebyla provedena žádná instrukce.
D:\programy\portable\Startup items\StartupRun v1.22\strun.exe (PUP.StartUpManager) -> Nebyla provedena žádná instrukce.
D:\programy\portable\System\RockXP3.exe (PUP.OficeKey) -> Nebyla provedena žádná instrukce.
D:\programy\portable\System\ProduKey 1.32\ProduKey.exe (PUP.PSWTool.ProductKey) -> Nebyla provedena žádná instrukce.
D:\System Volume Information\_restore{E3FC1FA4-4729-4B29-9ABE-CFE7D2EC95B7}\RP1\A0000793.exe (PUP.RiskWareTool.CK) -> Nebyla provedena žádná instrukce.
D:\System Volume Information\_restore{E3FC1FA4-4729-4B29-9ABE-CFE7D2EC95B7}\RP1\A0000797.exe (PUP.RiskWareTool.CK) -> Nebyla provedena žádná instrukce.
D:\programy\portable\Audio\Format Factory-cd do mp3\Stubs\8917aab9780f41a35e91cb972c86fce58227ca\Splash Screen.exe (Trojan.Backdoor) -> Přesun do karantény a smazání se zdařilo.
D:\programy\portable\Audio\Format Factory-cd do mp3\Stubs\97d521fdf0976c3a091254a70327fd23c348880\regsvr32.exe (Trojan.Backdoor) -> Přesun do karantény a smazání se zdařilo.
D:\programy\portable\Download manager\Free Download Manager 2.5\dbghelp.dll (Malware.Packer.Gen) -> Přesun do karantény a smazání se zdařilo.
D:\programy\portable\Download manager\Free Download Manager 2.5\msvcp60.dll (Malware.Packer.Gen) -> Přesun do karantény a smazání se zdařilo.
D:\programy\portable\FTP\Xlight FTP Server 2.86\remote_admin.exe (Packer.ModifiedUPX) -> Přesun do karantény a smazání se zdařilo.
D:\programy\portable\Passwords\Asterisk Logger v1.02\astlog.exe (HackTool.Asterisk) -> Přesun do karantény a smazání se zdařilo.
D:\programy\portable\System\Windows XP Product Key Modifier\XPPID.exe (RiskWare.Tool.CK) -> Přesun do karantény a smazání se zdařilo.
D:\programy\portable\Tests and benchmarks\MemTest 3.4\memtest.exe (Backdoor.Agent.Gen) -> Přesun do karantény a smazání se zdařilo.
D:\programy\portable\Web authoring\Dev-PHP 2.3.0.309\Other\psftp.exe (Trojan.Downloader) -> Přesun do karantény a smazání se zdařilo.
D:\System Volume Information\_restore{AA795CA5-4E02-470A-AE9F-8AFB3B34B290}\RP14\A0000662.exe (Adware.Vomba) -> Přesun do karantény a smazání se zdařilo.
(konec)
Re: Help - zpomalený počítač, občas se vyskytují chyby
dost hrozne - ale kedze pouzivas SW aky pouzivas ani sa nedivim 
restart - zopakuj kontrolu a ak nieco najde nechaj zmazat + napis, ci su este problemy
restart - zopakuj kontrolu a ak nieco najde nechaj zmazat + napis, ci su este problemy
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Help - zpomalený počítač, občas se vyskytují chyby
Čau
PC se zrychlilo, i načítání stránek. Ale přehrávání na youtube a streamu se seká. Předtím to nedělalo.
Ty vyskakovací stránky se po nějaké době zase vyskytují.
PC se zrychlilo, i načítání stránek. Ale přehrávání na youtube a streamu se seká. Předtím to nedělalo.
Ty vyskakovací stránky se po nějaké době zase vyskytují.
Re: Help - zpomalený počítač, občas se vyskytují chyby
stiahni a uloz na plochu ComboFix
potom spust pod uctom s administratorskym opravnenim
stiskni klavesu 1 pre pokracovanie a potvrd klavesou Enter:
akcia trva cca. 5-10 minut, niekedy i dlhsie -, Pocas scanu nespustaj ziadne ine aplikacie
Nie je dovod na paniku ak stroj bude restartovany
upozornenie: ak pouzivas antispyware s rezidentnim stitem, ten pred scanom vypni.
po restarte aplikacie vytvori log, ulozeny na C:/Combofix.txt (jeho obsah vloz sem
potom spust pod uctom s administratorskym opravnenim
stiskni klavesu 1 pre pokracovanie a potvrd klavesou Enter:
akcia trva cca. 5-10 minut, niekedy i dlhsie -, Pocas scanu nespustaj ziadne ine aplikacie
Nie je dovod na paniku ak stroj bude restartovany
upozornenie: ak pouzivas antispyware s rezidentnim stitem, ten pred scanom vypni.
po restarte aplikacie vytvori log, ulozeny na C:/Combofix.txt (jeho obsah vloz sem
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Help - zpomalený počítač, občas se vyskytují chyby
Zde je ten log
ComboFix 14-08-06.02 - Lob 10.08.2014 14:45:06.1.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.3070.2559 [GMT 2:00]
Spuštěný z: c:\documents and settings\Lob\Plocha\ComboFix.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\TZLog.log
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_GLOBALUPDATE
-------\Legacy_NETHFDRV
-------\Legacy_NETHTTPSERVICE
-------\Legacy_SERVICEUPDATER
-------\Service_globalUpdate
-------\Service_nethfdrv
-------\Service_NetHttpService
-------\Service_ServiceUpdater
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-07-10 do 2014-08-10 )))))))))))))))))))))))))))))))
.
.
2014-08-10 12:36 . 2014-08-10 12:36 -------- d-----w- c:\documents and settings\Lob\Local Settings\Data aplikací\Sun
2014-08-09 19:23 . 2014-08-09 19:23 -------- d-----w- c:\documents and settings\Lob\Data aplikací\jP
2014-08-09 18:37 . 2014-08-09 18:37 -------- d-----w- c:\program files\Common Files\Java
2014-08-09 18:37 . 2014-08-09 18:36 145408 ----a-w- c:\windows\system32\javacpl.cpl
2014-08-09 18:36 . 2014-08-09 18:36 96680 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2014-08-09 18:35 . 2014-08-09 18:35 -------- d-----w- c:\program files\Java
2014-08-07 19:15 . 2013-04-04 12:50 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-08-07 19:12 . 2014-08-07 19:12 -------- d-----w- c:\documents and settings\Lob\Data aplikací\Malwarebytes
2014-08-07 19:12 . 2014-08-07 19:15 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2014-08-07 19:09 . 2014-08-07 19:12 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2014-08-07 12:49 . 2014-08-07 12:49 -------- d-----w- c:\program files\trend micro
2014-08-07 12:49 . 2014-08-07 12:49 -------- d-----w- C:\rsit
2014-08-04 18:57 . 2014-02-17 11:41 23872 ----a-w- c:\windows\system32\RegistryDefragBootTime.exe
2014-08-04 18:52 . 2014-08-04 18:52 -------- d-----w- c:\documents and settings\Lob\AppData
2014-08-04 18:52 . 2014-08-04 18:52 -------- d-----w- c:\documents and settings\All Users\Data aplikací\ProductData
2014-08-04 18:51 . 2014-08-04 18:51 -------- d-----w- c:\documents and settings\All Users\Data aplikací\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2014-07-31 14:01 . 2014-07-31 14:01 -------- d-sh--w- c:\documents and settings\Lob\IETldCache
2014-07-31 13:41 . 2014-03-06 17:58 522240 -c----w- c:\windows\system32\dllcache\jsdbgui.dll
2014-07-31 13:41 . 2011-08-16 10:45 6144 -c----w- c:\windows\system32\dllcache\iecompat.dll
2014-07-31 13:41 . 2014-03-06 17:58 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2014-07-31 13:41 . 2014-03-06 17:58 630272 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2014-07-31 13:41 . 2014-03-06 17:58 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2014-07-31 13:41 . 2014-03-06 17:58 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2014-07-31 13:41 . 2014-03-06 17:58 2006016 -c----w- c:\windows\system32\dllcache\iertutil.dll
2014-07-31 13:41 . 2014-03-06 17:58 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2014-07-31 13:41 . 2014-03-06 17:58 11113472 -c----w- c:\windows\system32\dllcache\ieframe.dll
2014-07-31 13:40 . 2014-07-31 13:41 -------- dc-h--w- c:\windows\ie8
2014-07-31 12:52 . 2014-07-31 12:53 -------- d-----w- c:\windows\system32\MRT
2014-07-31 12:31 . 2014-07-31 12:31 -------- d-----w- c:\documents and settings\Default User\Local Settings\Data aplikací\COMODO
2014-07-30 13:11 . 2014-07-30 17:10 -------- d-----w- c:\documents and settings\All Users\Data aplikací\BioWare
2014-07-29 18:50 . 2014-07-29 18:50 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2014-07-29 18:23 . 2014-07-30 17:06 -------- d-----w- c:\program files\Common Files\BioWare
2014-07-29 12:49 . 2008-06-14 17:35 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2014-07-29 12:47 . 2010-09-18 06:53 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2014-07-29 12:46 . 2011-07-15 13:29 456320 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2014-07-29 12:45 . 2010-08-23 16:12 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2014-07-29 12:45 . 2009-11-21 16:03 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll
2014-07-29 12:43 . 2010-06-14 14:31 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe
2014-07-29 12:42 . 2013-07-03 02:12 25088 -c----w- c:\windows\system32\dllcache\hidparse.sys
2014-07-29 12:42 . 2013-07-03 01:59 14976 -c----w- c:\windows\system32\dllcache\usbscan.sys
2014-07-29 12:42 . 2010-08-27 08:03 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2014-07-29 12:42 . 2009-10-15 16:32 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll
2014-07-29 12:41 . 2009-03-06 14:23 284160 -c----w- c:\windows\system32\dllcache\pdh.dll
2014-07-29 12:41 . 2009-02-09 11:25 111104 -c----w- c:\windows\system32\dllcache\services.exe
2014-07-29 12:41 . 2009-02-09 10:56 401408 -c----w- c:\windows\system32\dllcache\rpcss.dll
2014-07-29 12:41 . 2009-02-06 10:10 227840 -c----w- c:\windows\system32\dllcache\wmiprvse.exe
2014-07-29 12:41 . 2009-02-09 10:56 684032 -c----w- c:\windows\system32\dllcache\advapi32.dll
2014-07-29 12:41 . 2009-02-09 10:56 473600 -c----w- c:\windows\system32\dllcache\fastprox.dll
2014-07-29 12:41 . 2009-02-09 10:56 453120 -c----w- c:\windows\system32\dllcache\wmiprvsd.dll
2014-07-29 12:41 . 2009-06-21 21:48 153088 -c----w- c:\windows\system32\dllcache\triedit.dll
2014-07-29 12:38 . 2014-04-30 08:12 6022144 -c----w- c:\windows\system32\dllcache\mshtml.dll
2014-07-29 12:38 . 2008-05-08 14:02 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys
2014-07-29 12:38 . 2013-02-12 00:32 12928 -c----w- c:\windows\system32\dllcache\usb8023x.sys
2014-07-29 12:38 . 2013-02-12 00:32 12928 -c----w- c:\windows\system32\dllcache\usb8023.sys
2014-07-29 12:38 . 2011-04-21 13:37 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2014-07-29 12:38 . 2013-07-17 00:58 60160 -c----w- c:\windows\system32\dllcache\usbaudio.sys
2014-07-29 12:38 . 2013-07-17 00:58 123008 -c----w- c:\windows\system32\dllcache\usbvideo.sys
2014-07-29 12:36 . 2008-05-01 14:37 331776 -c----w- c:\windows\system32\dllcache\msadce.dll
2014-07-29 12:35 . 2010-02-12 10:03 293376 ------w- c:\windows\system32\browserchoice.exe
2014-07-29 12:32 . 2010-06-18 13:36 3558912 -c----w- c:\windows\system32\dllcache\moviemk.exe
2014-07-29 12:32 . 2014-02-26 23:28 13312 -c----w- c:\windows\system32\dllcache\xp_eos.exe
2014-07-29 12:32 . 2014-02-26 23:28 13312 ------w- c:\windows\system32\xp_eos.exe
2014-07-29 12:32 . 2012-07-04 14:05 139784 -c----w- c:\windows\system32\dllcache\rdpwd.sys
2014-07-29 12:31 . 2013-08-09 00:55 144128 -c----w- c:\windows\system32\dllcache\usbport.sys
2014-07-29 12:31 . 2013-08-09 00:55 32384 -c----w- c:\windows\system32\dllcache\usbccgp.sys
2014-07-29 12:31 . 2013-08-09 00:55 5376 -c----w- c:\windows\system32\dllcache\usbd.sys
2014-07-29 12:31 . 2009-03-18 11:02 30336 -c----w- c:\windows\system32\dllcache\usbehci.sys
2014-07-29 12:28 . 2010-12-09 15:15 713216 -c----w- c:\windows\system32\dllcache\ntdll.dll
2014-07-29 12:28 . 2013-07-04 07:34 2195712 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe
2014-07-29 12:28 . 2013-07-04 07:34 2151936 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2014-07-29 12:28 . 2013-07-04 07:33 2030592 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2014-07-29 12:28 . 2013-07-04 07:34 2072320 -c----w- c:\windows\system32\dllcache\ntkrnlpa.exe
2014-07-29 12:28 . 2010-07-16 11:58 219136 -c----w- c:\windows\system32\dllcache\wordpad.exe
2014-07-29 12:27 . 2011-10-28 05:32 33280 -c----w- c:\windows\system32\dllcache\csrsrv.dll
2014-07-29 12:27 . 2011-07-08 14:02 10496 -c----w- c:\windows\system32\dllcache\ndistapi.sys
2014-07-29 12:27 . 2012-01-11 19:07 3072 -c----w- c:\windows\system32\dllcache\iacenc.dll
2014-07-29 12:27 . 2012-01-11 19:07 3072 ------w- c:\windows\system32\iacenc.dll
2014-07-29 12:27 . 2013-11-27 20:21 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2014-07-29 12:26 . 2010-10-11 14:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2014-07-28 15:33 . 2012-05-28 18:16 536576 -c----w- c:\windows\system32\dllcache\msado15.dll
2014-07-27 10:13 . 2014-07-27 10:13 -------- d-----w- c:\program files\DAODB
2014-07-27 08:52 . 2014-07-27 08:52 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\COMODO
2014-07-27 08:40 . 2014-07-27 08:40 -------- d-----w- c:\windows\ServicePackFiles
2014-07-27 08:40 . 2008-04-14 06:52 294912 ------w- c:\program files\Windows Media Player\dlimport.exe
2014-07-27 08:40 . 2008-04-14 06:52 294912 -c----w- c:\windows\system32\dllcache\dlimport.exe
2014-07-27 08:37 . 2014-07-27 08:37 -------- d-----w- c:\windows\EHome
2014-07-26 21:11 . 2014-07-26 21:11 -------- d-----w- c:\program files\Mozilla Maintenance Service
2014-07-26 21:01 . 2014-07-26 21:01 -------- d-----w- c:\windows\system32\wbem\Repository
2014-07-26 20:51 . 2014-07-27 08:53 -------- d-----w- c:\program files\Microsoft SQL Server
2014-07-22 22:13 . 2014-07-22 22:13 -------- d-----w- c:\program files\Common Files\Config
2014-07-22 22:13 . 2014-07-22 22:13 -------- d-----w- c:\documents and settings\Lob\Data aplikací\7860
2014-07-21 07:18 . 2014-07-21 07:18 49152 ----a-w- c:\windows\system32\drivers\nethfdrv.sys
2014-07-21 07:18 . 2014-07-21 07:18 159744 ----a-w- c:\windows\system32\netupdsrv.exe
2014-07-21 07:18 . 2014-07-21 07:18 108544 ----a-w- c:\windows\system32\installd.exe
2014-07-21 07:18 . 2014-07-21 07:18 179200 ----a-w- c:\windows\system32\nethtsrv.exe
2014-07-21 07:18 . 2014-07-21 07:18 108544 ----a-w- c:\windows\system32\hfnapi.dll
2014-07-21 07:18 . 2014-07-21 07:18 247296 ----a-w- c:\windows\system32\hfpapi.dll
2014-07-12 19:31 . 2014-07-12 19:31 -------- d-----w- c:\documents and settings\Lob\aTubeCatcher
2014-07-12 19:29 . 2014-07-12 19:29 -------- d-----w- C:\UpdateChromeLinksLogs
2014-07-12 19:29 . 2014-07-12 19:29 348160 ----a-w- c:\windows\system32\msvcr71.dll
2014-07-12 19:29 . 2014-07-12 19:29 1700352 ----a-w- c:\windows\system32\gdiplus.dll
2014-07-12 19:29 . 2014-07-12 19:29 1060864 ----a-w- c:\windows\system32\mfc71.dll
2014-07-12 19:29 . 2014-07-13 18:13 -------- d-----w- c:\documents and settings\Lob\Data aplikací\Nico Mak Computing
2014-07-12 19:29 . 2014-04-29 11:20 17584 ----a-w- c:\windows\system32\roboot.exe
2014-07-12 19:29 . 2014-07-12 19:29 -------- d-----w- c:\documents and settings\Lob\Local Settings\Data aplikací\COMODO
2014-07-12 19:29 . 2014-07-12 19:29 48392 ----a-w- c:\windows\system32\certsentry.dll
2014-07-12 19:28 . 2014-07-12 19:28 -------- d-----w- c:\program files\Comodo
2014-07-12 19:28 . 2014-07-12 19:28 -------- d-----w- c:\program files\DsNET Corp
2014-07-12 12:00 . 2014-07-12 12:00 -------- d-----w- c:\documents and settings\Lob\Local Settings\Data aplikací\Adobe_Systems_Incorporate
2014-07-12 11:52 . 2014-07-12 11:56 -------- d-----w- c:\windows\SxsCaPendDel
2014-07-12 11:43 . 2014-07-12 11:43 -------- d-----w- c:\documents and settings\Lob\Data aplikací\PDM
2014-07-12 11:42 . 2014-07-12 11:42 -------- d-----w- c:\program files\Palm
2014-07-12 11:42 . 2001-09-05 03:18 77824 ----a-w- c:\program files\Common Files\InstallShield\engine\6\Intel 32\ctor.dll
2014-07-12 11:42 . 2001-09-05 03:18 225280 ----a-w- c:\program files\Common Files\InstallShield\IScript\IScript.dll
2014-07-12 11:42 . 2001-09-05 03:14 176128 ----a-w- c:\program files\Common Files\InstallShield\engine\6\Intel 32\iuser.dll
2014-07-12 11:42 . 2001-09-05 03:13 32768 ----a-w- c:\program files\Common Files\InstallShield\engine\6\Intel 32\objectps.dll
2014-07-12 11:42 . 2000-01-04 04:39 212992 ----a-w- c:\program files\Common Files\InstallShield\engine\6\Intel 32\ILog.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-08-06 16:13 . 2014-06-09 05:31 699056 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-08-06 16:13 . 2014-06-09 05:31 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
2014-08-04 18:52 752960 ----a-w- c:\program files\IObit\IObit Uninstaller\UninstallExplorer32.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{10921475-03CE-4E04-90CE-E2E7EF20C814}"= "c:\program files\IObit\IObit Uninstaller\UninstallExplorer32.dll" [2014-08-04 752960]
.
[HKEY_CLASSES_ROOT\clsid\{10921475-03ce-4e04-90ce-e2e7ef20c814}]
[HKEY_CLASSES_ROOT\UninstallExplorer32.ExplorerBtn]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2006-07-21 16261632]
"SkyTel"="SkyTel.EXE" [2006-05-16 2879488]
"GBB36X Configure"="c:\windows\system32\JMRaidTool.exe" [2006-07-12 356352]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2011-03-23 111208]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2011-03-23 13881448]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2014-07-25 256896]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\Lob\Nabídka Start\Programy\Po spuštění\
Lingea Update Center.lnk - c:\program files\Common Files\Lingea Shared\luc.exe [2014-6-7 1692952]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Companion]
2010-04-19 11:12 405712 ----a-w- c:\program files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"d:\\hry\\Steam\\Steam.exe"=
"d:\\hry\\Dragon Age\\bin_ship\\daorigins.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\WINDOWS\\system32\\regsvr32.exe"=
"c:\\Program Files\\Google\\Chrome\\Application\\chrome.exe"=
.
S2 LiveUpdateSvc;LiveUpdate;c:\program files\IObit\LiveUpdate\LiveUpdate.exe [4.8.2014 20:51 2151200]
S3 DAUpdaterSvc;Dragon Age: Origins - Content Updater;d:\hry\Dragon Age\bin_ship\daupdatersvc.service.exe [30.7.2014 18:48 25832]
S3 globalUpdatem;globalUpdate Update Service (globalUpdatem);c:\program files\globalUpdate\Update\GoogleUpdate.exe [23.7.2014 0:13 68608]
S3 s1039bus;Sony Ericsson Device 1039 driver (WDM);c:\windows\system32\drivers\s1039bus.sys [22.6.2014 19:44 98672]
S3 s1039mdfl;Sony Ericsson Device 1039 USB WMC Modem Filter;c:\windows\system32\drivers\s1039mdfl.sys [22.6.2014 19:44 14960]
S3 s1039mdm;Sony Ericsson Device 1039 USB WMC Modem Driver;c:\windows\system32\drivers\s1039mdm.sys [22.6.2014 19:44 124016]
S3 s1039mgmt;Sony Ericsson Device 1039 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s1039mgmt.sys [22.6.2014 19:44 117872]
S3 s1039nd5;Sony Ericsson Device 1039 USB Ethernet Emulation (NDIS);c:\windows\system32\drivers\s1039nd5.sys [22.6.2014 19:44 25456]
S3 s1039obex;Sony Ericsson Device 1039 USB WMC OBEX Interface;c:\windows\system32\drivers\s1039obex.sys [22.6.2014 19:44 113904]
S3 s1039unic;Sony Ericsson Device 1039 USB Ethernet Emulation (WDM);c:\windows\system32\drivers\s1039unic.sys [22.6.2014 19:44 123504]
S3 Sony Ericsson PCCompanion;Sony Ericsson PCCompanion;c:\program files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe [22.6.2014 19:44 153808]
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-07-27 12:15 1104200 ----a-w- c:\program files\Google\Chrome\Application\36.0.1985.125\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-08-10 c:\windows\Tasks\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-1.job
- c:\program files\HD-V1.9\HD-V1.9-codedownloader.exe [2014-07-22 22:13]
.
2014-08-10 c:\windows\Tasks\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-10.job
- c:\program files\HD-V1.9\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-10.exe [2014-07-22 22:13]
.
2014-08-10 c:\windows\Tasks\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-11.job
- c:\program files\HD-V1.9\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-11.exe [2014-07-22 22:13]
.
2014-08-10 c:\windows\Tasks\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-2.job
- c:\program files\HD-V1.9\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-2.exe [2014-07-22 22:13]
.
2014-08-10 c:\windows\Tasks\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-3.job
- c:\program files\HD-V1.9\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-3.exe [2014-07-22 22:13]
.
2014-08-10 c:\windows\Tasks\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-4.job
- c:\program files\HD-V1.9\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-4.exe [2014-07-22 22:13]
.
2014-08-10 c:\windows\Tasks\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-5.job
- c:\program files\HD-V1.9\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-5.exe [2014-07-22 22:13]
.
2014-08-10 c:\windows\Tasks\globalUpdateUpdateTaskMachineCore.job
- c:\program files\globalUpdate\Update\GoogleUpdate.exe [2014-07-22 22:13]
.
2014-08-09 c:\windows\Tasks\globalUpdateUpdateTaskMachineUA.job
- c:\program files\globalUpdate\Update\GoogleUpdate.exe [2014-07-22 22:13]
.
2014-08-10 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2014-07-27 12:14]
.
2014-08-10 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2014-07-27 12:14]
.
2014-08-08 c:\windows\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
- c:\windows\system32\xp_eos.exe [2014-07-29 23:28]
.
2014-08-10 c:\windows\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
- c:\windows\system32\xp_eos.exe [2014-07-29 23:28]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.cz/
TCP: DhcpNameServer = 8.8.8.8 194.213.32.237
FF - ProfilePath - c:\documents and settings\Lob\Data aplikací\Mozilla\Firefox\Profiles\iw6vpqob.default-1406236489484\
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2014-08-10 14:52
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'explorer.exe'(2388)
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvsvc32.exe
c:\program files\Java\jre7\bin\jqs.exe
c:\program files\Microsoft SQL Server\90\Shared\sqlwriter.exe
c:\windows\system32\wscntfy.exe
c:\windows\RTHDCPL.EXE
c:\windows\system32\RUNDLL32.EXE
.
**************************************************************************
.
Celkový čas: 2014-08-10 14:55:37 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-08-10 12:55
.
Před spuštěním: 2 786 549 760
Po spuštění: 2 675 216 384
.
WindowsXP-KB310994-SP2-Home-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
.
- - End Of File - - 6AFCB5D042F65D13580EA421A3412487
413FC2A0C716421B3158746D63736515
ComboFix 14-08-06.02 - Lob 10.08.2014 14:45:06.1.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.3070.2559 [GMT 2:00]
Spuštěný z: c:\documents and settings\Lob\Plocha\ComboFix.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\TZLog.log
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_GLOBALUPDATE
-------\Legacy_NETHFDRV
-------\Legacy_NETHTTPSERVICE
-------\Legacy_SERVICEUPDATER
-------\Service_globalUpdate
-------\Service_nethfdrv
-------\Service_NetHttpService
-------\Service_ServiceUpdater
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-07-10 do 2014-08-10 )))))))))))))))))))))))))))))))
.
.
2014-08-10 12:36 . 2014-08-10 12:36 -------- d-----w- c:\documents and settings\Lob\Local Settings\Data aplikací\Sun
2014-08-09 19:23 . 2014-08-09 19:23 -------- d-----w- c:\documents and settings\Lob\Data aplikací\jP
2014-08-09 18:37 . 2014-08-09 18:37 -------- d-----w- c:\program files\Common Files\Java
2014-08-09 18:37 . 2014-08-09 18:36 145408 ----a-w- c:\windows\system32\javacpl.cpl
2014-08-09 18:36 . 2014-08-09 18:36 96680 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2014-08-09 18:35 . 2014-08-09 18:35 -------- d-----w- c:\program files\Java
2014-08-07 19:15 . 2013-04-04 12:50 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-08-07 19:12 . 2014-08-07 19:12 -------- d-----w- c:\documents and settings\Lob\Data aplikací\Malwarebytes
2014-08-07 19:12 . 2014-08-07 19:15 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2014-08-07 19:09 . 2014-08-07 19:12 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2014-08-07 12:49 . 2014-08-07 12:49 -------- d-----w- c:\program files\trend micro
2014-08-07 12:49 . 2014-08-07 12:49 -------- d-----w- C:\rsit
2014-08-04 18:57 . 2014-02-17 11:41 23872 ----a-w- c:\windows\system32\RegistryDefragBootTime.exe
2014-08-04 18:52 . 2014-08-04 18:52 -------- d-----w- c:\documents and settings\Lob\AppData
2014-08-04 18:52 . 2014-08-04 18:52 -------- d-----w- c:\documents and settings\All Users\Data aplikací\ProductData
2014-08-04 18:51 . 2014-08-04 18:51 -------- d-----w- c:\documents and settings\All Users\Data aplikací\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2014-07-31 14:01 . 2014-07-31 14:01 -------- d-sh--w- c:\documents and settings\Lob\IETldCache
2014-07-31 13:41 . 2014-03-06 17:58 522240 -c----w- c:\windows\system32\dllcache\jsdbgui.dll
2014-07-31 13:41 . 2011-08-16 10:45 6144 -c----w- c:\windows\system32\dllcache\iecompat.dll
2014-07-31 13:41 . 2014-03-06 17:58 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2014-07-31 13:41 . 2014-03-06 17:58 630272 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2014-07-31 13:41 . 2014-03-06 17:58 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2014-07-31 13:41 . 2014-03-06 17:58 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2014-07-31 13:41 . 2014-03-06 17:58 2006016 -c----w- c:\windows\system32\dllcache\iertutil.dll
2014-07-31 13:41 . 2014-03-06 17:58 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2014-07-31 13:41 . 2014-03-06 17:58 11113472 -c----w- c:\windows\system32\dllcache\ieframe.dll
2014-07-31 13:40 . 2014-07-31 13:41 -------- dc-h--w- c:\windows\ie8
2014-07-31 12:52 . 2014-07-31 12:53 -------- d-----w- c:\windows\system32\MRT
2014-07-31 12:31 . 2014-07-31 12:31 -------- d-----w- c:\documents and settings\Default User\Local Settings\Data aplikací\COMODO
2014-07-30 13:11 . 2014-07-30 17:10 -------- d-----w- c:\documents and settings\All Users\Data aplikací\BioWare
2014-07-29 18:50 . 2014-07-29 18:50 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2014-07-29 18:23 . 2014-07-30 17:06 -------- d-----w- c:\program files\Common Files\BioWare
2014-07-29 12:49 . 2008-06-14 17:35 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2014-07-29 12:47 . 2010-09-18 06:53 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2014-07-29 12:46 . 2011-07-15 13:29 456320 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2014-07-29 12:45 . 2010-08-23 16:12 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2014-07-29 12:45 . 2009-11-21 16:03 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll
2014-07-29 12:43 . 2010-06-14 14:31 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe
2014-07-29 12:42 . 2013-07-03 02:12 25088 -c----w- c:\windows\system32\dllcache\hidparse.sys
2014-07-29 12:42 . 2013-07-03 01:59 14976 -c----w- c:\windows\system32\dllcache\usbscan.sys
2014-07-29 12:42 . 2010-08-27 08:03 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2014-07-29 12:42 . 2009-10-15 16:32 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll
2014-07-29 12:41 . 2009-03-06 14:23 284160 -c----w- c:\windows\system32\dllcache\pdh.dll
2014-07-29 12:41 . 2009-02-09 11:25 111104 -c----w- c:\windows\system32\dllcache\services.exe
2014-07-29 12:41 . 2009-02-09 10:56 401408 -c----w- c:\windows\system32\dllcache\rpcss.dll
2014-07-29 12:41 . 2009-02-06 10:10 227840 -c----w- c:\windows\system32\dllcache\wmiprvse.exe
2014-07-29 12:41 . 2009-02-09 10:56 684032 -c----w- c:\windows\system32\dllcache\advapi32.dll
2014-07-29 12:41 . 2009-02-09 10:56 473600 -c----w- c:\windows\system32\dllcache\fastprox.dll
2014-07-29 12:41 . 2009-02-09 10:56 453120 -c----w- c:\windows\system32\dllcache\wmiprvsd.dll
2014-07-29 12:41 . 2009-06-21 21:48 153088 -c----w- c:\windows\system32\dllcache\triedit.dll
2014-07-29 12:38 . 2014-04-30 08:12 6022144 -c----w- c:\windows\system32\dllcache\mshtml.dll
2014-07-29 12:38 . 2008-05-08 14:02 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys
2014-07-29 12:38 . 2013-02-12 00:32 12928 -c----w- c:\windows\system32\dllcache\usb8023x.sys
2014-07-29 12:38 . 2013-02-12 00:32 12928 -c----w- c:\windows\system32\dllcache\usb8023.sys
2014-07-29 12:38 . 2011-04-21 13:37 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2014-07-29 12:38 . 2013-07-17 00:58 60160 -c----w- c:\windows\system32\dllcache\usbaudio.sys
2014-07-29 12:38 . 2013-07-17 00:58 123008 -c----w- c:\windows\system32\dllcache\usbvideo.sys
2014-07-29 12:36 . 2008-05-01 14:37 331776 -c----w- c:\windows\system32\dllcache\msadce.dll
2014-07-29 12:35 . 2010-02-12 10:03 293376 ------w- c:\windows\system32\browserchoice.exe
2014-07-29 12:32 . 2010-06-18 13:36 3558912 -c----w- c:\windows\system32\dllcache\moviemk.exe
2014-07-29 12:32 . 2014-02-26 23:28 13312 -c----w- c:\windows\system32\dllcache\xp_eos.exe
2014-07-29 12:32 . 2014-02-26 23:28 13312 ------w- c:\windows\system32\xp_eos.exe
2014-07-29 12:32 . 2012-07-04 14:05 139784 -c----w- c:\windows\system32\dllcache\rdpwd.sys
2014-07-29 12:31 . 2013-08-09 00:55 144128 -c----w- c:\windows\system32\dllcache\usbport.sys
2014-07-29 12:31 . 2013-08-09 00:55 32384 -c----w- c:\windows\system32\dllcache\usbccgp.sys
2014-07-29 12:31 . 2013-08-09 00:55 5376 -c----w- c:\windows\system32\dllcache\usbd.sys
2014-07-29 12:31 . 2009-03-18 11:02 30336 -c----w- c:\windows\system32\dllcache\usbehci.sys
2014-07-29 12:28 . 2010-12-09 15:15 713216 -c----w- c:\windows\system32\dllcache\ntdll.dll
2014-07-29 12:28 . 2013-07-04 07:34 2195712 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe
2014-07-29 12:28 . 2013-07-04 07:34 2151936 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2014-07-29 12:28 . 2013-07-04 07:33 2030592 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2014-07-29 12:28 . 2013-07-04 07:34 2072320 -c----w- c:\windows\system32\dllcache\ntkrnlpa.exe
2014-07-29 12:28 . 2010-07-16 11:58 219136 -c----w- c:\windows\system32\dllcache\wordpad.exe
2014-07-29 12:27 . 2011-10-28 05:32 33280 -c----w- c:\windows\system32\dllcache\csrsrv.dll
2014-07-29 12:27 . 2011-07-08 14:02 10496 -c----w- c:\windows\system32\dllcache\ndistapi.sys
2014-07-29 12:27 . 2012-01-11 19:07 3072 -c----w- c:\windows\system32\dllcache\iacenc.dll
2014-07-29 12:27 . 2012-01-11 19:07 3072 ------w- c:\windows\system32\iacenc.dll
2014-07-29 12:27 . 2013-11-27 20:21 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2014-07-29 12:26 . 2010-10-11 14:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2014-07-28 15:33 . 2012-05-28 18:16 536576 -c----w- c:\windows\system32\dllcache\msado15.dll
2014-07-27 10:13 . 2014-07-27 10:13 -------- d-----w- c:\program files\DAODB
2014-07-27 08:52 . 2014-07-27 08:52 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\COMODO
2014-07-27 08:40 . 2014-07-27 08:40 -------- d-----w- c:\windows\ServicePackFiles
2014-07-27 08:40 . 2008-04-14 06:52 294912 ------w- c:\program files\Windows Media Player\dlimport.exe
2014-07-27 08:40 . 2008-04-14 06:52 294912 -c----w- c:\windows\system32\dllcache\dlimport.exe
2014-07-27 08:37 . 2014-07-27 08:37 -------- d-----w- c:\windows\EHome
2014-07-26 21:11 . 2014-07-26 21:11 -------- d-----w- c:\program files\Mozilla Maintenance Service
2014-07-26 21:01 . 2014-07-26 21:01 -------- d-----w- c:\windows\system32\wbem\Repository
2014-07-26 20:51 . 2014-07-27 08:53 -------- d-----w- c:\program files\Microsoft SQL Server
2014-07-22 22:13 . 2014-07-22 22:13 -------- d-----w- c:\program files\Common Files\Config
2014-07-22 22:13 . 2014-07-22 22:13 -------- d-----w- c:\documents and settings\Lob\Data aplikací\7860
2014-07-21 07:18 . 2014-07-21 07:18 49152 ----a-w- c:\windows\system32\drivers\nethfdrv.sys
2014-07-21 07:18 . 2014-07-21 07:18 159744 ----a-w- c:\windows\system32\netupdsrv.exe
2014-07-21 07:18 . 2014-07-21 07:18 108544 ----a-w- c:\windows\system32\installd.exe
2014-07-21 07:18 . 2014-07-21 07:18 179200 ----a-w- c:\windows\system32\nethtsrv.exe
2014-07-21 07:18 . 2014-07-21 07:18 108544 ----a-w- c:\windows\system32\hfnapi.dll
2014-07-21 07:18 . 2014-07-21 07:18 247296 ----a-w- c:\windows\system32\hfpapi.dll
2014-07-12 19:31 . 2014-07-12 19:31 -------- d-----w- c:\documents and settings\Lob\aTubeCatcher
2014-07-12 19:29 . 2014-07-12 19:29 -------- d-----w- C:\UpdateChromeLinksLogs
2014-07-12 19:29 . 2014-07-12 19:29 348160 ----a-w- c:\windows\system32\msvcr71.dll
2014-07-12 19:29 . 2014-07-12 19:29 1700352 ----a-w- c:\windows\system32\gdiplus.dll
2014-07-12 19:29 . 2014-07-12 19:29 1060864 ----a-w- c:\windows\system32\mfc71.dll
2014-07-12 19:29 . 2014-07-13 18:13 -------- d-----w- c:\documents and settings\Lob\Data aplikací\Nico Mak Computing
2014-07-12 19:29 . 2014-04-29 11:20 17584 ----a-w- c:\windows\system32\roboot.exe
2014-07-12 19:29 . 2014-07-12 19:29 -------- d-----w- c:\documents and settings\Lob\Local Settings\Data aplikací\COMODO
2014-07-12 19:29 . 2014-07-12 19:29 48392 ----a-w- c:\windows\system32\certsentry.dll
2014-07-12 19:28 . 2014-07-12 19:28 -------- d-----w- c:\program files\Comodo
2014-07-12 19:28 . 2014-07-12 19:28 -------- d-----w- c:\program files\DsNET Corp
2014-07-12 12:00 . 2014-07-12 12:00 -------- d-----w- c:\documents and settings\Lob\Local Settings\Data aplikací\Adobe_Systems_Incorporate
2014-07-12 11:52 . 2014-07-12 11:56 -------- d-----w- c:\windows\SxsCaPendDel
2014-07-12 11:43 . 2014-07-12 11:43 -------- d-----w- c:\documents and settings\Lob\Data aplikací\PDM
2014-07-12 11:42 . 2014-07-12 11:42 -------- d-----w- c:\program files\Palm
2014-07-12 11:42 . 2001-09-05 03:18 77824 ----a-w- c:\program files\Common Files\InstallShield\engine\6\Intel 32\ctor.dll
2014-07-12 11:42 . 2001-09-05 03:18 225280 ----a-w- c:\program files\Common Files\InstallShield\IScript\IScript.dll
2014-07-12 11:42 . 2001-09-05 03:14 176128 ----a-w- c:\program files\Common Files\InstallShield\engine\6\Intel 32\iuser.dll
2014-07-12 11:42 . 2001-09-05 03:13 32768 ----a-w- c:\program files\Common Files\InstallShield\engine\6\Intel 32\objectps.dll
2014-07-12 11:42 . 2000-01-04 04:39 212992 ----a-w- c:\program files\Common Files\InstallShield\engine\6\Intel 32\ILog.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-08-06 16:13 . 2014-06-09 05:31 699056 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-08-06 16:13 . 2014-06-09 05:31 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
2014-08-04 18:52 752960 ----a-w- c:\program files\IObit\IObit Uninstaller\UninstallExplorer32.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{10921475-03CE-4E04-90CE-E2E7EF20C814}"= "c:\program files\IObit\IObit Uninstaller\UninstallExplorer32.dll" [2014-08-04 752960]
.
[HKEY_CLASSES_ROOT\clsid\{10921475-03ce-4e04-90ce-e2e7ef20c814}]
[HKEY_CLASSES_ROOT\UninstallExplorer32.ExplorerBtn]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2006-07-21 16261632]
"SkyTel"="SkyTel.EXE" [2006-05-16 2879488]
"GBB36X Configure"="c:\windows\system32\JMRaidTool.exe" [2006-07-12 356352]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2011-03-23 111208]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2011-03-23 13881448]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2014-07-25 256896]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\Lob\Nabídka Start\Programy\Po spuštění\
Lingea Update Center.lnk - c:\program files\Common Files\Lingea Shared\luc.exe [2014-6-7 1692952]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Companion]
2010-04-19 11:12 405712 ----a-w- c:\program files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"d:\\hry\\Steam\\Steam.exe"=
"d:\\hry\\Dragon Age\\bin_ship\\daorigins.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\WINDOWS\\system32\\regsvr32.exe"=
"c:\\Program Files\\Google\\Chrome\\Application\\chrome.exe"=
.
S2 LiveUpdateSvc;LiveUpdate;c:\program files\IObit\LiveUpdate\LiveUpdate.exe [4.8.2014 20:51 2151200]
S3 DAUpdaterSvc;Dragon Age: Origins - Content Updater;d:\hry\Dragon Age\bin_ship\daupdatersvc.service.exe [30.7.2014 18:48 25832]
S3 globalUpdatem;globalUpdate Update Service (globalUpdatem);c:\program files\globalUpdate\Update\GoogleUpdate.exe [23.7.2014 0:13 68608]
S3 s1039bus;Sony Ericsson Device 1039 driver (WDM);c:\windows\system32\drivers\s1039bus.sys [22.6.2014 19:44 98672]
S3 s1039mdfl;Sony Ericsson Device 1039 USB WMC Modem Filter;c:\windows\system32\drivers\s1039mdfl.sys [22.6.2014 19:44 14960]
S3 s1039mdm;Sony Ericsson Device 1039 USB WMC Modem Driver;c:\windows\system32\drivers\s1039mdm.sys [22.6.2014 19:44 124016]
S3 s1039mgmt;Sony Ericsson Device 1039 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s1039mgmt.sys [22.6.2014 19:44 117872]
S3 s1039nd5;Sony Ericsson Device 1039 USB Ethernet Emulation (NDIS);c:\windows\system32\drivers\s1039nd5.sys [22.6.2014 19:44 25456]
S3 s1039obex;Sony Ericsson Device 1039 USB WMC OBEX Interface;c:\windows\system32\drivers\s1039obex.sys [22.6.2014 19:44 113904]
S3 s1039unic;Sony Ericsson Device 1039 USB Ethernet Emulation (WDM);c:\windows\system32\drivers\s1039unic.sys [22.6.2014 19:44 123504]
S3 Sony Ericsson PCCompanion;Sony Ericsson PCCompanion;c:\program files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe [22.6.2014 19:44 153808]
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-07-27 12:15 1104200 ----a-w- c:\program files\Google\Chrome\Application\36.0.1985.125\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-08-10 c:\windows\Tasks\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-1.job
- c:\program files\HD-V1.9\HD-V1.9-codedownloader.exe [2014-07-22 22:13]
.
2014-08-10 c:\windows\Tasks\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-10.job
- c:\program files\HD-V1.9\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-10.exe [2014-07-22 22:13]
.
2014-08-10 c:\windows\Tasks\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-11.job
- c:\program files\HD-V1.9\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-11.exe [2014-07-22 22:13]
.
2014-08-10 c:\windows\Tasks\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-2.job
- c:\program files\HD-V1.9\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-2.exe [2014-07-22 22:13]
.
2014-08-10 c:\windows\Tasks\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-3.job
- c:\program files\HD-V1.9\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-3.exe [2014-07-22 22:13]
.
2014-08-10 c:\windows\Tasks\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-4.job
- c:\program files\HD-V1.9\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-4.exe [2014-07-22 22:13]
.
2014-08-10 c:\windows\Tasks\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-5.job
- c:\program files\HD-V1.9\ca9f61e7-52b6-468d-8e67-8d2712eae4a9-5.exe [2014-07-22 22:13]
.
2014-08-10 c:\windows\Tasks\globalUpdateUpdateTaskMachineCore.job
- c:\program files\globalUpdate\Update\GoogleUpdate.exe [2014-07-22 22:13]
.
2014-08-09 c:\windows\Tasks\globalUpdateUpdateTaskMachineUA.job
- c:\program files\globalUpdate\Update\GoogleUpdate.exe [2014-07-22 22:13]
.
2014-08-10 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2014-07-27 12:14]
.
2014-08-10 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2014-07-27 12:14]
.
2014-08-08 c:\windows\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
- c:\windows\system32\xp_eos.exe [2014-07-29 23:28]
.
2014-08-10 c:\windows\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
- c:\windows\system32\xp_eos.exe [2014-07-29 23:28]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.cz/
TCP: DhcpNameServer = 8.8.8.8 194.213.32.237
FF - ProfilePath - c:\documents and settings\Lob\Data aplikací\Mozilla\Firefox\Profiles\iw6vpqob.default-1406236489484\
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2014-08-10 14:52
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'explorer.exe'(2388)
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvsvc32.exe
c:\program files\Java\jre7\bin\jqs.exe
c:\program files\Microsoft SQL Server\90\Shared\sqlwriter.exe
c:\windows\system32\wscntfy.exe
c:\windows\RTHDCPL.EXE
c:\windows\system32\RUNDLL32.EXE
.
**************************************************************************
.
Celkový čas: 2014-08-10 14:55:37 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-08-10 12:55
.
Před spuštěním: 2 786 549 760
Po spuštění: 2 675 216 384
.
WindowsXP-KB310994-SP2-Home-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
.
- - End Of File - - 6AFCB5D042F65D13580EA421A3412487
413FC2A0C716421B3158746D63736515
Re: Help - zpomalený počítač, občas se vyskytují chyby
zmaz obsah adresara c:\windows\Tasks a napis, ci je to lepsie
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Help - zpomalený počítač, občas se vyskytují chyby
Ahoj
Je to lepší, ale počítač je pořád zpomalený. Hlavně jsou zpomalené prohlížeče firefox i chrome.
Je to lepší, ale počítač je pořád zpomalený. Hlavně jsou zpomalené prohlížeče firefox i chrome.
Re: Help - zpomalený počítač, občas se vyskytují chyby
prescanuj PC s RK http://forum.viry.cz/viewtopic.php?f=24&t=120452
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Help - zpomalený počítač, občas se vyskytují chyby
Něco to našlo, ale pořád nic moc.
Re: Help - zpomalený počítač, občas se vyskytují chyby
pouzi zoek - navod kolegu http://forum.viry.cz/viewtopic.php?f=19 ... k#p1340560
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Help - zpomalený počítač, občas se vyskytují chyby
Zoek.exe v5.0.0.0 Updated 19-08-2014
Tool run by Lob on Łt 19.08.2014 at 15:21:31,09.
Microsoft Windows XP Home Edition 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Documents and Settings\Lob\Plocha\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
19.8.2014 15:27:45 Zoek.exe System Restore Point Created Succesfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
127.0.0.1 localhost
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-1757981266-1801674531-682003330-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10921475-03CE-4E04-90CE-E2E7EF20C814} deleted successfully
HKEY_USERS\S-1-5-21-1757981266-1801674531-682003330-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10921475-03CE-4E04-90CE-E2E7EF20C814} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_USERS\S-1-5-21-1757981266-1801674531-682003330-1004\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\{10921475-03CE-4E04-90CE-E2E7EF20C814} deleted successfully
==== Deleting Services ======================
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\globalUpdatem deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\globalUpdatem deleted successfully
==== Deleting Files \ Folders ======================
C:\DOCUME~1\ALLUSE~1\DATAAP~1\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D} deleted
C:\Program Files\HD-V1.9 deleted
C:\Program Files\ComPlus Applications deleted
C:\Program Files\Common Files\Config\uninstinethnfd.exe deleted
C:\Program Files\globalUpdate deleted
C:\Program Files\Common Files\Config deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\ProductData deleted
C:\WINDOWS\System32\drivers\nethfdrv.sys deleted
C:\WINDOWS\system32\roboot.exe deleted
C:\WINDOWS\system32\netupdsrv.exe deleted
C:\WINDOWS\system32\nethtsrv.exe deleted
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{20a82645-c095-46ed-80e3-08825760534b}"="C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension" [31.07.2014 15:08]
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.cz/"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] not found
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.cz/"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"
==== Reset Google Chrome ======================
Nothing found to reset
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\HD-V1.9 deleted successfully
==== Empty IE Cache ======================
C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\Lob\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
No Chrome User Data found
==== Empty All Flash Cache ======================
No Flash Cache Found
==== Empty All Java Cache ======================
No Java Cache Found
==== C:\zoek_backup content ======================
C:\zoek_backup (files=34 folders=13 12051340 bytes)
==== Empty Temp Folders ======================
C:\WINDOWS\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\WINDOWS\Temp successfully emptied
C:\DOCUME~1\Lob\LOCALS~1\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\RECYCLER successfully emptied
==== Deleting Files / Folders ======================
"C:\Documents and Settings\Lob\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not deleted
==== EOF on Łt 19.08.2014 at 15:39:37,37 ======================
Tool run by Lob on Łt 19.08.2014 at 15:21:31,09.
Microsoft Windows XP Home Edition 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Documents and Settings\Lob\Plocha\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
19.8.2014 15:27:45 Zoek.exe System Restore Point Created Succesfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
127.0.0.1 localhost
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-1757981266-1801674531-682003330-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10921475-03CE-4E04-90CE-E2E7EF20C814} deleted successfully
HKEY_USERS\S-1-5-21-1757981266-1801674531-682003330-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10921475-03CE-4E04-90CE-E2E7EF20C814} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_USERS\S-1-5-21-1757981266-1801674531-682003330-1004\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\{10921475-03CE-4E04-90CE-E2E7EF20C814} deleted successfully
==== Deleting Services ======================
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\globalUpdatem deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\globalUpdatem deleted successfully
==== Deleting Files \ Folders ======================
C:\DOCUME~1\ALLUSE~1\DATAAP~1\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D} deleted
C:\Program Files\HD-V1.9 deleted
C:\Program Files\ComPlus Applications deleted
C:\Program Files\Common Files\Config\uninstinethnfd.exe deleted
C:\Program Files\globalUpdate deleted
C:\Program Files\Common Files\Config deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\ProductData deleted
C:\WINDOWS\System32\drivers\nethfdrv.sys deleted
C:\WINDOWS\system32\roboot.exe deleted
C:\WINDOWS\system32\netupdsrv.exe deleted
C:\WINDOWS\system32\nethtsrv.exe deleted
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{20a82645-c095-46ed-80e3-08825760534b}"="C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension" [31.07.2014 15:08]
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.cz/"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] not found
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.cz/"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"
==== Reset Google Chrome ======================
Nothing found to reset
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\HD-V1.9 deleted successfully
==== Empty IE Cache ======================
C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\Lob\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
No Chrome User Data found
==== Empty All Flash Cache ======================
No Flash Cache Found
==== Empty All Java Cache ======================
No Java Cache Found
==== C:\zoek_backup content ======================
C:\zoek_backup (files=34 folders=13 12051340 bytes)
==== Empty Temp Folders ======================
C:\WINDOWS\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\WINDOWS\Temp successfully emptied
C:\DOCUME~1\Lob\LOCALS~1\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\RECYCLER successfully emptied
==== Deleting Files / Folders ======================
"C:\Documents and Settings\Lob\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not deleted
==== EOF on Łt 19.08.2014 at 15:39:37,37 ======================
Přispějete na provoz fóra?