spousta havěti, zanedbaný notebook

[Dav]

Logfile of random's system information tool 1.10 (written by random/random)
Run by xxx at 2016-02-05 17:14:38
Systém Microsoft Windows XP Professional Service Pack 2
System drive C: has 17 GB (23%) free of 76 GB
Total RAM: 2039 MB (62% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:15:04, on 5.2.2016
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\Alwil Software\Avast5\avastUI.exe
C:\Program Files\Hewlett-Packard\IAM\bin\asghost.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\OETRN.EXE
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\ifxspmgt.exe
C:\WINDOWS\system32\ifxtcs.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\IfxPsdSv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Hewlett-Packard\Embedded Security Software\PSDrt.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\xxx\Plocha\RSIT.exe
C:\Program Files\trend micro\xxx.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.yahoo.com/search/ie.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - (no file)
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\WINDOWS\WebIE.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Credential Manager for HP ProtectTools - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\WINDOWS\WebIE.dll
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe /tray
O4 - HKLM\..\Run: [IFXSPMGT] C:\WINDOWS\system32\ifxspmgt.exe /NotifyLogon
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [DivXMediaServer] C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [avast] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [OEXPRESS] C:\WINDOWS\OETRN.EXE
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil9f.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil9f.exe (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\WINDOWS\WebIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\WebIE.dll
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 6756704093
O20 - AppInit_DLLs:
O20 - Winlogon Notify: crypt - Invalid registry found
O20 - Winlogon Notify: DeviceNP - DeviceNP.dll (file missing)
O20 - Winlogon Notify: OneCard - C:\Program Files\Hewlett-Packard\IAM\Bin\ASWLNPkg.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Ltd - C:\WINDOWS\system32\flcdlock.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Drive Encryption Service (HpFkCryptService) - SafeBoot International - C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Security Platform Management Service (IFXSpMgtSrv) - Infineon Technologies AG - C:\WINDOWS\system32\ifxspmgt.exe
O23 - Service: Trusted Platform Core Service (IFXTCS) - Infineon Technologies AG - C:\WINDOWS\system32\ifxtcs.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: Personal Secure Drive service (PersonalSecureDriveService) - Infineon Technologies AG - C:\WINDOWS\system32\IfxPsdSv.exe
O23 - Service: SWIHPWMI - Unknown owner - C:\Program Files\HPQ\Shared\Sierra Wireless\Win32\Unicode\SWIHPWMI.exe (file missing)

--
End of file - 9357 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\avast! Emergency Update.job - C:\Program Files\Alwil Software\Avast5\AvastEmUpdate.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\xxx\Data aplikací\Mozilla\Firefox\Profiles\cuifnnug.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.google.com/"
prefs.js - "extensions.enabledItems" - "{3112ca9c-de6d-4884-a869-9855de68056c}:7.1.20110512W, {EF522540-89F5-46b9-B6FE-1829E2B572C6}:5.0.8, {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.9.12, illimitux@illimitux.net:3.2, {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}:6.0.16, jqs@sun.com:1.0, cs@dictionaries.addons.mozilla.org:1.0.2, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.24"

"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
"wrc@avast.com"=C:\Program Files\Alwil Software\Avast5\WebRep\FF
"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.7.700.224 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0]
"Description"=DivX® Player Plugin for VOD Content
"Path"=C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.7]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npdeploytk.dll
npDivxPlayerPlugin.dll
NPOFF12.DLL
nppdf32.dll
nsIDivxPlayerPlugin.xpt
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Documents and Settings\xxx\Data aplikací\Mozilla\Firefox\Profiles\cuifnnug.default\extensions\
cs@dictionaries.addons.mozilla.org
illimitux@illimitux.net
staged
{3112ca9c-de6d-4884-a869-9855de68056c}
{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
{EF522540-89F5-46b9-B6FE-1829E2B572C6}

C:\Documents and Settings\xxx\Data aplikací\Mozilla\Firefox\Profiles\cuifnnug.default\searchplugins\
mapycz.xml
vyhledvn-vide-ve-slub-youtube.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\WINDOWS\WebIE.dll [2008-09-03 491520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2013-02-07 194912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-10-23 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF21F1DB-80C6-11D3-9483-B03D0EC10000}]
Credential Manager for HP ProtectTools - C:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll [2006-11-21 71192]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-10-23 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\WINDOWS\WebIE.dll [2008-09-03 491520]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2007-01-05 872448]
"SoundMAX"=C:\Program Files\Analog Devices\SoundMAX\Smax4.exe [2006-07-13 729088]
"IFXSPMGT"=C:\WINDOWS\system32\ifxspmgt.exe [2007-02-15 677408]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2006-01-12 155648]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2007-05-11 138008]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2007-05-11 162584]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2007-05-11 138008]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-10-23 149280]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"DivXMediaServer"=C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [2013-01-30 450560]
"DivXUpdate"=C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2013-02-13 1263952]
"avast"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2014-01-22 4858968]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-17 15360]
"OEXPRESS"=C:\WINDOWS\OETRN.EXE [2008-09-03 26624]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2006-10-09 139264]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CognizanceTS]
C:\PROGRA~1\HEWLET~1\IAM\Bin\ASTSVCC.dll [2003-12-22 17920]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PTHOSTTR]
C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE [2007-01-09 145184]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QlbCtrl]
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2007-11-06 177456]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WatchDog]
C:\Program Files\InterVideo\DVD Check\DVDCheck.exe [2006-09-05 184320]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2007-02-06 561213]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^DVD Check.lnk]
C:\PROGRA~1\INTERV~1\DVDCHE~1\DVDCheck.exe [2006-09-05 184320]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\DeviceNP]
C:\WINDOWS\system32\DeviceNP.dll [2007-04-30 49152]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2007-05-02 204800]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\OneCard]
C:\Program Files\Hewlett-Packard\IAM\Bin\ASWLNPkg.dll [2007-02-07 74240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=SbHpNp
scecli
ASWLNPkg

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll, digeste.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\ICQ6\ICQ.exe"="C:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6"
"C:\Documents and Settings\xxx\Plocha\CSko\hl.exe"="C:\Documents and Settings\xxx\Plocha\CSko\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\GameSpy Arcade\Aphex.exe"="C:\Program Files\GameSpy Arcade\Aphex.exe:*:Enabled:GameSpy Arcade"
"C:\Program Files\Valve\hl.exe"="C:\Program Files\Valve\hl.exe:*:Enabled:hl"
"C:\Program Files\CSko\hl.exe"="C:\Program Files\CSko\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\ICQ6.5\ICQ.exe"="C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"C:\Documents and Settings\xxx\Plocha\StaĹľenĂ© soubory\utorrent.exe"="C:\Documents and Settings\xxx\Plocha\StaĹľenĂ© soubory\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\EA GAMES\The Battle for Middle-earth (tm)\game.dat"="C:\Program Files\EA GAMES\The Battle for Middle-earth (tm)\game.dat:*:Enabled:The Battle for Middle-earth (tm)"
"C:\Program Files\YourFileDownloader\Downloader.exe"="C:\Program Files\YourFileDownloader\Downloader.exe:*:Enabled:YourFile Downloader"
"C:\Program Files\YourFileDownloader\YourFile.exe"="C:\Program Files\YourFileDownloader\YourFile.exe:*:Enabled:YourFile Downloader"
"C:\Program Files\Google\Chrome\Application\chrome.exe"="C:\Program Files\Google\Chrome\Application\chrome.exe:*:Enabled:Google Chrome"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll

======List of files/folders created in the last 1 month======

2016-02-05 17:14:39 ----D---- C:\Program Files\trend micro
2016-02-05 17:14:38 ----D---- C:\rsit
2016-02-05 09:54:06 ----D---- C:\AdwCleaner
2016-02-03 19:49:29 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2016-02-01 18:34:46 ----D---- C:\WINDOWS\CSC

======List of files/folders modified in the last 1 month======

2016-02-05 17:14:40 ----D---- C:\Program Files\Mozilla Firefox
2016-02-05 17:14:39 ----RD---- C:\Program Files
2016-02-05 17:14:39 ----D---- C:\WINDOWS\Prefetch
2016-02-05 17:11:36 ----D---- C:\WINDOWS\Temp
2016-02-05 17:08:06 ----A---- C:\WINDOWS\SchedLgU.Txt
2016-02-05 10:05:51 ----SD---- C:\WINDOWS\Tasks
2016-02-05 10:05:32 ----D---- C:\Documents and Settings\All Users\Data aplikací\ICQ
2016-02-05 00:42:47 ----D---- C:\WINDOWS
2016-02-04 22:29:38 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2016-02-04 22:29:36 ----D---- C:\WINDOWS\system32
2016-02-04 22:29:32 ----D---- C:\Program Files\Common Files\PC Tools
2016-02-04 17:20:38 ----D---- C:\WINDOWS\Minidump
2016-02-04 11:16:42 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-02-04 11:12:41 ----SHD---- C:\Config.Msi
2016-02-03 22:56:09 ----SHD---- C:\WINDOWS\Installer
2016-02-03 19:48:26 ----D---- C:\WINDOWS\system32\drivers
2016-02-03 14:44:50 ----D---- C:\WINDOWS\system32\config
2016-02-03 14:42:42 ----D---- C:\WINDOWS\system32\wbem
2016-02-03 14:42:13 ----D---- C:\WINDOWS\Registration
2016-02-03 13:54:03 ----D---- C:\Program Files\DivX_Browser_Bar
2016-02-03 13:52:33 ----D---- C:\Program Files\Common Files\DivX Shared
2016-02-03 13:52:31 ----D---- C:\Documents and Settings\All Users\Data aplikací\DivX
2016-02-03 13:52:28 ----D---- C:\Program Files\DivX
2016-02-03 13:48:11 ----D---- C:\Documents and Settings\xxx\Data aplikací\ICQM
2016-02-03 13:40:14 ----SHD---- C:\RECYCLER
2016-02-03 13:30:26 ----D---- C:\Documents and Settings
2016-02-01 18:32:02 ----A---- C:\WINDOWS\DUMP7a9e.tmp

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-01-22 49376]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-01-22 175176]
R0 hpdskflt;HP Disk Filter Driver; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2006-07-23 17920]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2004-09-27 61056]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2008-11-06 43528]
R0 SafeBoot;SafeBoot; C:\WINDOWS\system32\drivers\SafeBoot.sys [2007-04-26 100095]
R0 SbAlg;SbAlg; C:\WINDOWS\system32\drivers\SbAlg.sys [2006-10-09 44720]
R0 SbFsLock;SbFsLock; C:\WINDOWS\system32\drivers\SbFsLock.sys [2007-03-29 13696]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2009-02-15 717296]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2014-01-22 49760]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2016-02-03 770784]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-01-22 369584]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2014-01-22 56080]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-17 39936]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-17 14848]
R1 PersonalSecureDrive;PersonalSecureDrive; C:\WINDOWS\System32\drivers\psd.sys [2007-01-23 39080]
R1 RsvLock;RsvLock; C:\WINDOWS\system32\drivers\RsvLock.sys [2007-04-26 5808]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2004-08-04 8832]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2014-01-22 29816]
R2 aswMonFlt;aswMonFlt; \??\C:\WINDOWS\system32\drivers\aswMonFlt.sys []
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2006-06-19 12672]
R2 rimmptsk;rimmptsk; C:\WINDOWS\system32\DRIVERS\rimmptsk.sys [2007-02-24 39936]
R3 Accelerometer;Accelerometer; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2006-07-23 22016]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2007-03-01 289792]
R3 AEAudio;AE Audio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2006-08-07 93952]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2004-08-17 60800]
R3 ATSWPDRV;(****DEBUG****) AuthenTec TruePrint USB Driver (SwipeSensor); C:\WINDOWS\system32\DRIVERS\ATSwpDrv.sys [2007-04-10 140808]
R3 btaudio;Bluetooth Audio Device; C:\WINDOWS\system32\drivers\btaudio.sys [2007-02-14 530861]
R3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS\system32\DRIVERS\btport.sys [2007-02-14 30459]
R3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2007-02-14 868298]
R3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2007-02-14 149123]
R3 btwhid;btwhid; C:\WINDOWS\system32\DRIVERS\btwhid.sys [2007-02-14 47907]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2007-02-14 67960]
R3 e1express;Intel(R) PRO/1000 PCI Express Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e1e5132.sys [2007-03-08 250776]
R3 HBtnKey;HBtnKey; C:\WINDOWS\system32\DRIVERS\cpqbttn.sys [2006-06-28 9472]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 HSF_DPV;HSF_DPV; C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys [2006-12-07 988800]
R3 HSFHWAZL;HSFHWAZL; C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys [2006-12-07 209536]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2007-05-02 5706784]
R3 IFXTPM;IFXTPM; C:\WINDOWS\system32\DRIVERS\IFXTPM.SYS [2007-01-23 36608]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 NETw4x32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows XP 32 Bit; C:\WINDOWS\system32\DRIVERS\NETw4x32.sys [2007-03-01 2203520]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2004-08-17 61824]
R3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2004-08-03 67584]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2006-04-19 20608]
R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2006-12-07 730112]
S2 DgiVecp;Team MFP Comm Driver; C:\WINDOWS\System32\Drivers\DgiVecp.sys [2003-07-29 40448]
S3 61883;61883 Unit Device; C:\WINDOWS\system32\DRIVERS\61883.sys [2004-08-03 48128]
S3 aj7kzxxt;aj7kzxxt; C:\WINDOWS\system32\drivers\aj7kzxxt.sys []
S3 Avc;AVC Device; C:\WINDOWS\system32\DRIVERS\avc.sys [2004-08-03 38912]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
S3 DAMDrv;DAMDrv; C:\WINDOWS\system32\DRIVERS\DAMDrv.sys [2007-04-23 30008]
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600]
S3 HP24X;HP PC Card Smart Card Reader; C:\WINDOWS\system32\DRIVERS\HP24X.sys [2006-10-19 33024]
S3 MSDV;Microsoft DV Camera and VCR; C:\WINDOWS\system32\DRIVERS\msdv.sys [2004-08-03 51328]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ASBroker;Logon Session Broker; C:\WINDOWS\System32\svchost.exe [2004-08-17 14336]
R2 ASChannel;Local Communication Channel; C:\WINDOWS\System32\svchost.exe [2004-08-17 14336]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2014-01-22 46808]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2007-02-06 266295]
R2 HpFkCryptService;Drive Encryption Service; C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2007-04-27 221184]
R2 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2007-12-05 144688]
R2 IFXSpMgtSrv;Security Platform Management Service; C:\WINDOWS\system32\ifxspmgt.exe [2007-02-15 677408]
R2 IFXTCS;Trusted Platform Core Service; C:\WINDOWS\system32\ifxtcs.exe [2007-01-23 849440]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-10-23 153376]
R2 PersonalSecureDriveService;Personal Secure Drive service; C:\WINDOWS\system32\IfxPsdSv.exe [2007-02-15 140832]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-17 14336]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2016-02-03 154440]
S2 SWIHPWMI;SWIHPWMI; C:\Program Files\HPQ\Shared\Sierra Wireless\Win32\Unicode\SWIHPWMI.exe []
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; C:\WINDOWS\system32\flcdlock.exe [2007-04-30 172131]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2016-02-03 154440]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-10-01 118680]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2006-10-09 724992]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]

-----------------EOF-----------------

[Rudy]

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

Váš systém je nezabezpečený, chybí SP3.

[Dav]

známý mi to přinesl, dva roky ležel plný havěti po načtení mu spadl, pustil jsem v nouzovým obnovu systému a pustil avast, update win ještě provedu

zde log

# AdwCleaner v5.032 - Logfile created 05/02/2016 at 19:14:07
# Updated 31/01/2016 by Xplode
# Database : 2016-02-02.1 [Server]
# Operating system : Microsoft Windows XP Service Pack 2 (x86)
# Username : xxx - XXX-3F7D9FA0C43
# Running from : C:\Documents and Settings\xxx\Plocha\adwcleaner_5.032.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****


***** [ Files ] *****


***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****


***** [ Web browsers ] *****


*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleane

[Rudy]

Toto je OK. Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\DUMP7a9e.tmp

:reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-
"KernelFaultCheck"=-

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.

[Dav]

Logfile of random's system information tool 1.10 (written by random/random)
Run by xxx at 2016-02-05 20:20:01
Systém Microsoft Windows XP Professional Service Pack 2
System drive C: has 19 GB (25%) free of 76 GB
Total RAM: 2039 MB (77% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:20:22, on 5.2.2016
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\Alwil Software\Avast5\avastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\OETRN.EXE
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\WINDOWS\system32\ifxspmgt.exe
C:\WINDOWS\system32\ifxtcs.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\IfxPsdSv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Hewlett-Packard\Embedded Security Software\PSDrt.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\xxx\Plocha\RSIT.exe
C:\Program Files\trend micro\xxx.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.yahoo.com/search/ie.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - (no file)
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\WINDOWS\WebIE.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Credential Manager for HP ProtectTools - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\WINDOWS\WebIE.dll
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe /tray
O4 - HKLM\..\Run: [IFXSPMGT] C:\WINDOWS\system32\ifxspmgt.exe /NotifyLogon
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [DivXMediaServer] C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [avast] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [OEXPRESS] C:\WINDOWS\OETRN.EXE
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil9f.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil9f.exe (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\WINDOWS\WebIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\WebIE.dll
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 6756704093
O20 - AppInit_DLLs:
O20 - Winlogon Notify: crypt - Invalid registry found
O20 - Winlogon Notify: DeviceNP - DeviceNP.dll (file missing)
O20 - Winlogon Notify: OneCard - C:\Program Files\Hewlett-Packard\IAM\Bin\ASWLNPkg.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Ltd - C:\WINDOWS\system32\flcdlock.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Drive Encryption Service (HpFkCryptService) - SafeBoot International - C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Security Platform Management Service (IFXSpMgtSrv) - Infineon Technologies AG - C:\WINDOWS\system32\ifxspmgt.exe
O23 - Service: Trusted Platform Core Service (IFXTCS) - Infineon Technologies AG - C:\WINDOWS\system32\ifxtcs.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: Personal Secure Drive service (PersonalSecureDriveService) - Infineon Technologies AG - C:\WINDOWS\system32\IfxPsdSv.exe
O23 - Service: SWIHPWMI - Unknown owner - C:\Program Files\HPQ\Shared\Sierra Wireless\Win32\Unicode\SWIHPWMI.exe (file missing)

--
End of file - 9104 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\avast! Emergency Update.job - C:\Program Files\Alwil Software\Avast5\AvastEmUpdate.exe

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\xxx\Data aplikací\Mozilla\Firefox\Profiles\cuifnnug.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.google.com/"
prefs.js - "extensions.enabledItems" - "{3112ca9c-de6d-4884-a869-9855de68056c}:7.1.20110512W, {EF522540-89F5-46b9-B6FE-1829E2B572C6}:5.0.8, {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.9.12, illimitux@illimitux.net:3.2, {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}:6.0.16, jqs@sun.com:1.0, cs@dictionaries.addons.mozilla.org:1.0.2, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.24"

"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
"wrc@avast.com"=C:\Program Files\Alwil Software\Avast5\WebRep\FF
"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.7.700.224 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0]
"Description"=DivX® Player Plugin for VOD Content
"Path"=C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.7]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npdeploytk.dll
npDivxPlayerPlugin.dll
NPOFF12.DLL
nppdf32.dll
nsIDivxPlayerPlugin.xpt
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Documents and Settings\xxx\Data aplikací\Mozilla\Firefox\Profiles\cuifnnug.default\extensions\
cs@dictionaries.addons.mozilla.org
illimitux@illimitux.net
staged
{3112ca9c-de6d-4884-a869-9855de68056c}
{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
{EF522540-89F5-46b9-B6FE-1829E2B572C6}

C:\Documents and Settings\xxx\Data aplikací\Mozilla\Firefox\Profiles\cuifnnug.default\searchplugins\
mapycz.xml
vyhledvn-vide-ve-slub-youtube.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\WINDOWS\WebIE.dll [2008-09-03 491520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2013-02-07 194912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-10-23 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF21F1DB-80C6-11D3-9483-B03D0EC10000}]
Credential Manager for HP ProtectTools - C:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll [2006-11-21 71192]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-10-23 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\WINDOWS\WebIE.dll [2008-09-03 491520]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2007-01-05 872448]
"SoundMAX"=C:\Program Files\Analog Devices\SoundMAX\Smax4.exe [2006-07-13 729088]
"IFXSPMGT"=C:\WINDOWS\system32\ifxspmgt.exe [2007-02-15 677408]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2006-01-12 155648]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2007-05-11 138008]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2007-05-11 162584]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2007-05-11 138008]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"DivXMediaServer"=C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [2013-01-30 450560]
"DivXUpdate"=C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2013-02-13 1263952]
"avast"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2014-01-22 4858968]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-17 15360]
"OEXPRESS"=C:\WINDOWS\OETRN.EXE [2008-09-03 26624]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2006-10-09 139264]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CognizanceTS]
C:\PROGRA~1\HEWLET~1\IAM\Bin\ASTSVCC.dll [2003-12-22 17920]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PTHOSTTR]
C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE [2007-01-09 145184]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QlbCtrl]
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2007-11-06 177456]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WatchDog]
C:\Program Files\InterVideo\DVD Check\DVDCheck.exe [2006-09-05 184320]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2007-02-06 561213]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^DVD Check.lnk]
C:\PROGRA~1\INTERV~1\DVDCHE~1\DVDCheck.exe [2006-09-05 184320]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\DeviceNP]
C:\WINDOWS\system32\DeviceNP.dll [2007-04-30 49152]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2007-05-02 204800]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\OneCard]
C:\Program Files\Hewlett-Packard\IAM\Bin\ASWLNPkg.dll [2007-02-07 74240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=SbHpNp
scecli
ASWLNPkg

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll, digeste.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\ICQ6\ICQ.exe"="C:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6"
"C:\Documents and Settings\xxx\Plocha\CSko\hl.exe"="C:\Documents and Settings\xxx\Plocha\CSko\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\GameSpy Arcade\Aphex.exe"="C:\Program Files\GameSpy Arcade\Aphex.exe:*:Enabled:GameSpy Arcade"
"C:\Program Files\Valve\hl.exe"="C:\Program Files\Valve\hl.exe:*:Enabled:hl"
"C:\Program Files\CSko\hl.exe"="C:\Program Files\CSko\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\ICQ6.5\ICQ.exe"="C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"C:\Documents and Settings\xxx\Plocha\StaĹľenĂ© soubory\utorrent.exe"="C:\Documents and Settings\xxx\Plocha\StaĹľenĂ© soubory\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\EA GAMES\The Battle for Middle-earth (tm)\game.dat"="C:\Program Files\EA GAMES\The Battle for Middle-earth (tm)\game.dat:*:Enabled:The Battle for Middle-earth (tm)"
"C:\Program Files\YourFileDownloader\Downloader.exe"="C:\Program Files\YourFileDownloader\Downloader.exe:*:Enabled:YourFile Downloader"
"C:\Program Files\YourFileDownloader\YourFile.exe"="C:\Program Files\YourFileDownloader\YourFile.exe:*:Enabled:YourFile Downloader"
"C:\Program Files\Google\Chrome\Application\chrome.exe"="C:\Program Files\Google\Chrome\Application\chrome.exe:*:Enabled:Google Chrome"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll

======List of files/folders created in the last 1 month======

2016-02-05 20:11:55 ----D---- C:\_OTM
2016-02-05 17:14:39 ----D---- C:\Program Files\trend micro
2016-02-05 17:14:38 ----D---- C:\rsit
2016-02-05 09:54:06 ----D---- C:\AdwCleaner
2016-02-03 19:49:29 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2016-02-01 18:34:46 ----D---- C:\WINDOWS\CSC

======List of files/folders modified in the last 1 month======

2016-02-05 20:16:22 ----D---- C:\WINDOWS\Temp
2016-02-05 20:13:47 ----A---- C:\WINDOWS\SchedLgU.Txt
2016-02-05 20:12:20 ----D---- C:\WINDOWS\system32
2016-02-05 20:12:20 ----D---- C:\WINDOWS
2016-02-05 20:11:56 ----SD---- C:\WINDOWS\Tasks
2016-02-05 20:10:45 ----D---- C:\WINDOWS\Prefetch
2016-02-05 19:18:33 ----D---- C:\Program Files\Mozilla Firefox
2016-02-05 17:14:39 ----RD---- C:\Program Files
2016-02-05 10:05:32 ----D---- C:\Documents and Settings\All Users\Data aplikací\ICQ
2016-02-04 22:29:38 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2016-02-04 22:29:32 ----D---- C:\Program Files\Common Files\PC Tools
2016-02-04 17:20:38 ----D---- C:\WINDOWS\Minidump
2016-02-04 11:16:42 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-02-04 11:12:41 ----SHD---- C:\Config.Msi
2016-02-03 22:56:09 ----SHD---- C:\WINDOWS\Installer
2016-02-03 19:48:26 ----D---- C:\WINDOWS\system32\drivers
2016-02-03 14:44:50 ----D---- C:\WINDOWS\system32\config
2016-02-03 14:42:42 ----D---- C:\WINDOWS\system32\wbem
2016-02-03 14:42:13 ----D---- C:\WINDOWS\Registration
2016-02-03 13:54:03 ----D---- C:\Program Files\DivX_Browser_Bar
2016-02-03 13:52:33 ----D---- C:\Program Files\Common Files\DivX Shared
2016-02-03 13:52:31 ----D---- C:\Documents and Settings\All Users\Data aplikací\DivX
2016-02-03 13:52:28 ----D---- C:\Program Files\DivX
2016-02-03 13:48:11 ----D---- C:\Documents and Settings\xxx\Data aplikací\ICQM
2016-02-03 13:40:14 ----SHD---- C:\RECYCLER
2016-02-03 13:30:26 ----D---- C:\Documents and Settings

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-01-22 49376]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-01-22 175176]
R0 hpdskflt;HP Disk Filter Driver; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2006-07-23 17920]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2004-09-27 61056]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2008-11-06 43528]
R0 SafeBoot;SafeBoot; C:\WINDOWS\system32\drivers\SafeBoot.sys [2007-04-26 100095]
R0 SbAlg;SbAlg; C:\WINDOWS\system32\drivers\SbAlg.sys [2006-10-09 44720]
R0 SbFsLock;SbFsLock; C:\WINDOWS\system32\drivers\SbFsLock.sys [2007-03-29 13696]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2009-02-15 717296]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2014-01-22 49760]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2016-02-03 770784]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-01-22 369584]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2014-01-22 56080]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-17 39936]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-17 14848]
R1 PersonalSecureDrive;PersonalSecureDrive; C:\WINDOWS\System32\drivers\psd.sys [2007-01-23 39080]
R1 RsvLock;RsvLock; C:\WINDOWS\system32\drivers\RsvLock.sys [2007-04-26 5808]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2004-08-04 8832]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2014-01-22 29816]
R2 aswMonFlt;aswMonFlt; \??\C:\WINDOWS\system32\drivers\aswMonFlt.sys []
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2006-06-19 12672]
R2 rimmptsk;rimmptsk; C:\WINDOWS\system32\DRIVERS\rimmptsk.sys [2007-02-24 39936]
R3 Accelerometer;Accelerometer; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2006-07-23 22016]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2007-03-01 289792]
R3 AEAudio;AE Audio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2006-08-07 93952]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2004-08-17 60800]
R3 ATSWPDRV;(****DEBUG****) AuthenTec TruePrint USB Driver (SwipeSensor); C:\WINDOWS\system32\DRIVERS\ATSwpDrv.sys [2007-04-10 140808]
R3 btaudio;Bluetooth Audio Device; C:\WINDOWS\system32\drivers\btaudio.sys [2007-02-14 530861]
R3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS\system32\DRIVERS\btport.sys [2007-02-14 30459]
R3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2007-02-14 868298]
R3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2007-02-14 149123]
R3 btwhid;btwhid; C:\WINDOWS\system32\DRIVERS\btwhid.sys [2007-02-14 47907]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2007-02-14 67960]
R3 e1express;Intel(R) PRO/1000 PCI Express Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e1e5132.sys [2007-03-08 250776]
R3 HBtnKey;HBtnKey; C:\WINDOWS\system32\DRIVERS\cpqbttn.sys [2006-06-28 9472]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 HSF_DPV;HSF_DPV; C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys [2006-12-07 988800]
R3 HSFHWAZL;HSFHWAZL; C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys [2006-12-07 209536]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2007-05-02 5706784]
R3 IFXTPM;IFXTPM; C:\WINDOWS\system32\DRIVERS\IFXTPM.SYS [2007-01-23 36608]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 NETw4x32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows XP 32 Bit; C:\WINDOWS\system32\DRIVERS\NETw4x32.sys [2007-03-01 2203520]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2004-08-17 61824]
R3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2004-08-03 67584]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2006-04-19 20608]
R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2006-12-07 730112]
S2 DgiVecp;Team MFP Comm Driver; C:\WINDOWS\System32\Drivers\DgiVecp.sys [2003-07-29 40448]
S3 61883;61883 Unit Device; C:\WINDOWS\system32\DRIVERS\61883.sys [2004-08-03 48128]
S3 a8mnx45j;a8mnx45j; C:\WINDOWS\system32\drivers\a8mnx45j.sys []
S3 Avc;AVC Device; C:\WINDOWS\system32\DRIVERS\avc.sys [2004-08-03 38912]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
S3 DAMDrv;DAMDrv; C:\WINDOWS\system32\DRIVERS\DAMDrv.sys [2007-04-23 30008]
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600]
S3 HP24X;HP PC Card Smart Card Reader; C:\WINDOWS\system32\DRIVERS\HP24X.sys [2006-10-19 33024]
S3 MSDV;Microsoft DV Camera and VCR; C:\WINDOWS\system32\DRIVERS\msdv.sys [2004-08-03 51328]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ASBroker;Logon Session Broker; C:\WINDOWS\System32\svchost.exe [2004-08-17 14336]
R2 ASChannel;Local Communication Channel; C:\WINDOWS\System32\svchost.exe [2004-08-17 14336]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2014-01-22 46808]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2007-02-06 266295]
R2 HpFkCryptService;Drive Encryption Service; C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2007-04-27 221184]
R2 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2007-12-05 144688]
R2 IFXSpMgtSrv;Security Platform Management Service; C:\WINDOWS\system32\ifxspmgt.exe [2007-02-15 677408]
R2 IFXTCS;Trusted Platform Core Service; C:\WINDOWS\system32\ifxtcs.exe [2007-01-23 849440]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-10-23 153376]
R2 PersonalSecureDriveService;Personal Secure Drive service; C:\WINDOWS\system32\IfxPsdSv.exe [2007-02-15 140832]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-17 14336]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2016-02-03 154440]
S2 SWIHPWMI;SWIHPWMI; C:\Program Files\HPQ\Shared\Sierra Wireless\Win32\Unicode\SWIHPWMI.exe []
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; C:\WINDOWS\system32\flcdlock.exe [2007-04-30 172131]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2016-02-03 154440]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-10-01 118680]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2006-10-09 724992]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]

-----------------EOF-----------------

[Rudy]

Dvouklikem na soubor C:\Program Files\trend micro\xxx.exe spusťte HijackThis. Klikněte na "Do a system scan only" a v otevřeném okně vlevo ve čtverečcích zaškrtněte:

R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - (no file)
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O20 - AppInit_DLLs:
O20 - Winlogon Notify: crypt - Invalid registry found
O20 - Winlogon Notify: DeviceNP - DeviceNP.dll (file missing)

Klikněte na >FixChecked<. Pak znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.

[Dav]

po dokončení instrukcí jsem ještě doplnil sp3 a aktualizace
ještě tam spadl nějaký soubor do truhly po spuštění testu po restartu

poprosím ještě o překontrolování logu

Logfile of random's system information tool 1.10 (written by random/random)
Run by xxx at 2016-02-11 16:08:21
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 10 GB (14%) free of 76 GB
Total RAM: 2039 MB (59% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:08:47, on 11.2.2016
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Hewlett-Packard\IAM\bin\asghost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\ifxspmgt.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\WINDOWS\system32\ifxtcs.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\IfxPsdSv.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\OETRN.EXE
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Hewlett-Packard\Embedded Security Software\PSDrt.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\xxx\Plocha\RSIT.exe
C:\Program Files\trend micro\xxx.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=s ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Credential Manager for HP ProtectTools - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe /tray
O4 - HKLM\..\Run: [IFXSPMGT] C:\WINDOWS\system32\ifxspmgt.exe /NotifyLogon
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [OEXPRESS] C:\WINDOWS\OETRN.EXE
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKUS\S-1-5-18\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil9f.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil9f.exe (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 6756704093
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 4835394281
O20 - Winlogon Notify: OneCard - C:\Program Files\Hewlett-Packard\IAM\Bin\ASWLNPkg.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Ltd - C:\WINDOWS\system32\flcdlock.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Drive Encryption Service (HpFkCryptService) - SafeBoot International - C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Security Platform Management Service (IFXSpMgtSrv) - Infineon Technologies AG - C:\WINDOWS\system32\ifxspmgt.exe
O23 - Service: Trusted Platform Core Service (IFXTCS) - Infineon Technologies AG - C:\WINDOWS\system32\ifxtcs.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: Personal Secure Drive service (PersonalSecureDriveService) - Infineon Technologies AG - C:\WINDOWS\system32\IfxPsdSv.exe
O23 - Service: SWIHPWMI - Unknown owner - C:\Program Files\HPQ\Shared\Sierra Wireless\Win32\Unicode\SWIHPWMI.exe (file missing)

--
End of file - 8598 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\avast! Emergency Update.job - C:\Program Files\Alwil Software\Avast5\AvastEmUpdate.exe
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe -c
C:\WINDOWS\tasks\SafeZone scheduled Autoupdate 1455112683.job - C:\Program Files\AVAST Software\SZBrowser\launcher.exe --scheduledautoupdate $(Arg0)
C:\WINDOWS\tasks\WGASetup.job - C:\WINDOWS\system32\KB905474\wgasetup.exe /autoauto

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\xxx\Data aplikací\Mozilla\Firefox\Profiles\cuifnnug.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.google.com/"
prefs.js - "extensions.enabledItems" - "{3112ca9c-de6d-4884-a869-9855de68056c}:7.1.20110512W, {EF522540-89F5-46b9-B6FE-1829E2B572C6}:5.0.8, {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.9.12, illimitux@illimitux.net:3.2, {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}:6.0.16, jqs@sun.com:1.0, cs@dictionaries.addons.mozilla.org:1.0.2, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.24"

"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
"wrc@avast.com"=C:\Program Files\Alwil Software\Avast5\WebRep\FF
"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
"sp@avast.com"=C:\Program Files\Alwil Software\Avast5\SafePrice\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_20_0_0_267.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0]
"Description"=DivX® Player Plugin for VOD Content
"Path"=C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.7]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npdeploytk.dll
npDivxPlayerPlugin.dll
NPOFF12.DLL
nppdf32.dll
nsIDivxPlayerPlugin.xpt
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Documents and Settings\xxx\Data aplikací\Mozilla\Firefox\Profiles\cuifnnug.default\extensions\
cs@dictionaries.addons.mozilla.org
illimitux@illimitux.net
staged
{3112ca9c-de6d-4884-a869-9855de68056c}
{EF522540-89F5-46b9-B6FE-1829E2B572C6}

C:\Documents and Settings\xxx\Data aplikací\Mozilla\Firefox\Profiles\cuifnnug.default\searchplugins\
mapycz.xml
vyhledvn-vide-ve-slub-youtube.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2013-02-07 194912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-10-23 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF21F1DB-80C6-11D3-9483-B03D0EC10000}]
Credential Manager for HP ProtectTools - C:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll [2006-11-21 71192]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-10-23 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2007-01-05 872448]
"SoundMAX"=C:\Program Files\Analog Devices\SoundMAX\Smax4.exe [2006-07-13 729088]
"IFXSPMGT"=C:\WINDOWS\system32\ifxspmgt.exe [2007-02-15 677408]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2007-05-11 138008]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2007-05-11 162584]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2007-05-11 138008]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
"AvastUI.exe"=C:\Program Files\Alwil Software\Avast5\AvastUI.exe [2016-02-10 7139768]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"OEXPRESS"=C:\WINDOWS\OETRN.EXE [2008-09-03 26624]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2006-10-09 139264]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CognizanceTS]
C:\PROGRA~1\HEWLET~1\IAM\Bin\ASTSVCC.dll [2003-12-22 17920]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXMediaServer]
C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [2013-01-30 450560]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2013-02-13 1263952]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2006-01-12 155648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PTHOSTTR]
C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE [2007-01-09 145184]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QlbCtrl]
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2007-11-06 177456]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WatchDog]
C:\Program Files\InterVideo\DVD Check\DVDCheck.exe [2006-09-05 184320]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2007-02-06 561213]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^DVD Check.lnk]
C:\PROGRA~1\INTERV~1\DVDCHE~1\DVDCheck.exe [2006-09-05 184320]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2007-05-02 204800]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\OneCard]
C:\Program Files\Hewlett-Packard\IAM\Bin\ASWLNPkg.dll [2007-02-07 74240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=SbHpNp
scecli
ASWLNPkg

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll, digeste.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\ICQ6\ICQ.exe"="C:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6"
"C:\Documents and Settings\xxx\Plocha\CSko\hl.exe"="C:\Documents and Settings\xxx\Plocha\CSko\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\GameSpy Arcade\Aphex.exe"="C:\Program Files\GameSpy Arcade\Aphex.exe:*:Enabled:GameSpy Arcade"
"C:\Program Files\Valve\hl.exe"="C:\Program Files\Valve\hl.exe:*:Enabled:hl"
"C:\Program Files\CSko\hl.exe"="C:\Program Files\CSko\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Documents and Settings\xxx\Plocha\StaĹľenĂ© soubory\utorrent.exe"="C:\Documents and Settings\xxx\Plocha\StaĹľenĂ© soubory\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\EA GAMES\The Battle for Middle-earth (tm)\game.dat"="C:\Program Files\EA GAMES\The Battle for Middle-earth (tm)\game.dat:*:Enabled:The Battle for Middle-earth (tm)"
"C:\Program Files\YourFileDownloader\Downloader.exe"="C:\Program Files\YourFileDownloader\Downloader.exe:*:Enabled:YourFile Downloader"
"C:\Program Files\YourFileDownloader\YourFile.exe"="C:\Program Files\YourFileDownloader\YourFile.exe:*:Enabled:YourFile Downloader"
"C:\Program Files\Google\Chrome\Application\chrome.exe"="C:\Program Files\Google\Chrome\Application\chrome.exe:*:Enabled:Google Chrome"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox (C:\Program Files\Mozilla Firefox)"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll

======List of files/folders created in the last 1 month======

2016-02-11 16:08:21 ----D---- C:\rsit
2016-02-11 02:52:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2868626$
2016-02-11 02:52:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2922229$
2016-02-11 02:51:34 ----D---- C:\WINDOWS\ie8updates
2016-02-11 02:51:10 ----N---- C:\WINDOWS\system32\occache.dll
2016-02-11 02:51:09 ----N---- C:\WINDOWS\system32\iedkcs32.dll
2016-02-11 02:50:44 ----D---- C:\WINDOWS\WBEM
2016-02-11 02:48:56 ----HDC---- C:\WINDOWS\ie8
2016-02-11 02:30:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2016-02-11 02:29:51 ----HDC---- C:\WINDOWS\$NtUninstallKB2712808$
2016-02-11 02:29:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2479943$
2016-02-11 02:29:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2659262$
2016-02-11 02:29:21 ----HDC---- C:\WINDOWS\$NtUninstallKB2564958$
2016-02-11 02:29:14 ----HDC---- C:\WINDOWS\$NtUninstallKB2916036$
2016-02-11 02:29:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2934207$
2016-02-11 02:28:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2478971$
2016-02-11 02:28:48 ----HDC---- C:\WINDOWS\$NtUninstallKB2544893-v2$
2016-02-11 02:28:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2834886$
2016-02-11 02:28:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$
2016-02-11 02:28:13 ----HDC---- C:\WINDOWS\$NtUninstallKB2536276-v2$
2016-02-11 02:28:01 ----HDC---- C:\WINDOWS\$NtUninstallKB2585542$
2016-02-11 02:27:51 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2016-02-11 02:27:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2631813$
2016-02-11 02:27:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2016-02-11 02:27:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2691442$
2016-02-11 02:26:59 ----HDC---- C:\WINDOWS\$NtUninstallKB2900986$
2016-02-11 02:26:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$
2016-02-11 02:26:35 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$
2016-02-11 02:26:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2847311$
2016-02-11 02:26:02 ----D---- C:\WINDOWS\system32\KB905474
2016-02-11 02:16:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2016-02-11 02:16:24 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2016-02-11 02:16:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2443105$
2016-02-11 02:16:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2655992$
2016-02-11 02:15:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2802968$
2016-02-11 02:15:31 ----HDC---- C:\WINDOWS\$NtUninstallKB2481109$
2016-02-11 02:15:21 ----HDC---- C:\WINDOWS\$NtUninstallKB2898715$
2016-02-11 02:15:13 ----HDC---- C:\WINDOWS\$NtUninstallKB2485663$
2016-02-11 02:15:01 ----HDC---- C:\WINDOWS\$NtUninstallKB2598479$
2016-02-11 02:14:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2929961$
2016-02-11 02:14:44 ----HDC---- C:\WINDOWS\$NtUninstallKB2686509$
2016-02-11 02:13:21 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2016-02-11 02:13:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2862335$
2016-02-11 02:12:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2909212$
2016-02-11 02:12:49 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2016-02-11 02:12:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2507938$
2016-02-11 02:12:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$
2016-02-11 02:12:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2780091$
2016-02-11 02:11:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2510581$
2016-02-11 02:11:14 ----HDC---- C:\WINDOWS\$NtUninstallKB2904266$
2016-02-11 02:11:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2347290$
2016-02-11 02:02:58 ----D---- C:\WINDOWS\system32\MRT
2016-02-11 02:02:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2876217$
2016-02-11 02:01:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2483185$
2016-02-11 02:00:52 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2016-02-11 02:00:41 ----HDC---- C:\WINDOWS\$NtUninstallKB2930275$
2016-02-11 02:00:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2864063$
2016-02-11 02:00:21 ----HDC---- C:\WINDOWS\$NtUninstallKB2719985$
2016-02-11 01:59:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2862152$
2016-02-11 01:59:14 ----HDC---- C:\WINDOWS\$NtUninstallKB2592799$
2016-02-11 01:59:01 ----HDC---- C:\WINDOWS\$NtUninstallKB2770660$
2016-02-11 01:58:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2535512$
2016-02-11 01:57:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2850869$
2016-02-11 01:57:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2876331$
2016-02-11 01:56:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2859537$
2016-02-11 01:56:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2807986$
2016-02-11 01:56:15 ----HDC---- C:\WINDOWS\$NtUninstallKB2570947$
2016-02-11 01:55:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2868038$
2016-02-11 01:55:36 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2016-02-11 01:55:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2820917$
2016-02-11 01:55:15 ----HDC---- C:\WINDOWS\$NtUninstallKB2603381$
2016-02-11 01:54:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2893294$
2016-02-11 01:53:59 ----HDC---- C:\WINDOWS\$NtUninstallKB2757638$
2016-02-11 01:53:41 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2016-02-11 01:53:27 ----HDC---- C:\WINDOWS\$NtUninstallKB2419632$
2016-02-11 01:53:19 ----HDC---- C:\WINDOWS\$NtUninstallKB2508429$
2016-02-11 01:53:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2653956$
2016-02-11 01:52:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2749655$
2016-02-11 01:52:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2879017$
2016-02-11 01:52:16 ----HDC---- C:\WINDOWS\$NtUninstallKB971029$
2016-02-11 01:52:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2506212$
2016-02-11 01:51:55 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2016-02-11 01:51:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2892075$
2016-02-11 01:51:29 ----HDC---- C:\WINDOWS\$NtUninstallKB2698365$
2016-02-11 01:50:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2619339$
2016-02-11 01:50:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2705219-v2$
2016-02-11 01:49:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2727528$
2016-02-11 01:49:14 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$
2016-02-11 01:49:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2723135-v2$
2016-02-11 01:47:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2862330$
2016-02-11 01:46:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2813345$
2016-02-11 01:45:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2509553$
2016-02-11 01:44:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2676562$
2016-02-11 01:44:39 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$
2016-02-11 01:44:31 ----HDC---- C:\WINDOWS\$NtUninstallKB2478960$
2016-02-11 01:44:14 ----HDC---- C:\WINDOWS\$NtUninstallKB2393802$
2016-02-11 01:43:19 ----HDC---- C:\WINDOWS\$NtUninstallKB2620712$
2016-02-11 01:43:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2566454$
2016-02-11 01:43:01 ----HDC---- C:\WINDOWS\$NtUninstallKB2661637$
2016-02-11 01:42:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2914368$
2016-02-11 01:42:48 ----HDC---- C:\WINDOWS\$NtUninstallKB2584146$
2016-02-11 01:42:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2423089$
2016-02-11 00:02:56 ----N---- C:\WINDOWS\system32\xp_eos.exe
2016-02-10 23:45:12 ----N---- C:\WINDOWS\system32\iacenc.dll
2016-02-10 23:25:46 ----A---- C:\WINDOWS\system32\mucltui.dll
2016-02-10 19:43:25 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$
2016-02-10 19:43:14 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2016-02-10 19:43:04 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2016-02-10 19:42:53 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2016-02-10 19:42:44 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2016-02-10 19:42:35 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2016-02-10 19:42:25 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2016-02-10 19:42:15 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$
2016-02-10 19:41:58 ----HDC---- C:\WINDOWS\$NtUninstallKB979683$
2016-02-10 19:41:47 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2016-02-10 19:41:38 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$
2016-02-10 19:41:27 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$
2016-02-10 19:41:09 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2016-02-10 19:40:58 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2016-02-10 19:40:48 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2016-02-10 19:40:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2016-02-10 19:40:28 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2016-02-10 19:40:18 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2016-02-10 19:39:08 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2016-02-10 19:38:58 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2016-02-10 19:38:49 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2016-02-10 19:38:40 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2016-02-10 19:38:30 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2016-02-10 19:38:21 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2016-02-10 19:38:15 ----D---- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2016-02-10 19:37:52 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2016-02-10 19:36:33 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2016-02-10 19:36:24 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2016-02-10 19:36:12 ----HDC---- C:\WINDOWS\$NtUninstallKB975561$
2016-02-10 19:36:04 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2016-02-10 19:35:55 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2016-02-10 19:35:40 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2016-02-10 19:35:30 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2016-02-10 19:35:22 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2016-02-10 19:35:05 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2016-02-10 19:34:00 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2016-02-10 19:33:17 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2016-02-10 19:33:04 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2016-02-10 19:32:54 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2016-02-10 19:32:45 ----HDC---- C:\WINDOWS\$NtUninstallKB981793$
2016-02-10 19:32:36 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2016-02-10 19:32:26 ----HDC---- C:\WINDOWS\$NtUninstallKB979559$
2016-02-10 19:32:17 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2016-02-10 19:32:07 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2016-02-10 19:31:53 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2016-02-10 19:31:44 ----HDC---- C:\WINDOWS\$NtUninstallKB929399$
2016-02-10 19:31:04 ----HDC---- C:\WINDOWS\$NtUninstallKB939683$
2016-02-10 19:30:13 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2016-02-10 19:29:49 ----HDC---- C:\WINDOWS\$NtUninstallKB959772_WM11$
2016-02-10 19:19:05 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2016-02-10 19:18:46 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2016-02-10 19:18:30 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2016-02-10 19:18:22 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2016-02-10 19:18:14 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2016-02-10 19:18:07 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2016-02-10 19:17:59 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2016-02-10 19:17:51 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2016-02-10 19:17:43 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2016-02-10 19:17:35 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2016-02-10 19:16:53 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2016-02-10 19:16:45 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2016-02-10 19:16:37 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2016-02-10 19:15:19 ----HDC---- C:\WINDOWS\$NtUninstallKB954154_WM11$
2016-02-10 19:15:06 ----HDC---- C:\WINDOWS\$NtUninstallKB936782_WMP11$
2016-02-10 19:13:58 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2016-02-10 19:13:50 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2016-02-10 19:13:44 ----A---- C:\WINDOWS\imsins.BAK
2016-02-10 19:13:36 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2016-02-10 14:56:24 ----D---- C:\Documents and Settings\xxx\Data aplikací\AVAST Software
2016-02-10 14:50:28 ----N---- C:\WINDOWS\system32\spmsgXP_2k3.dll
2016-02-10 14:49:34 ----HDC---- C:\WINDOWS\$NtUninstallWdf01009$
2016-02-10 14:48:08 ----A---- C:\WINDOWS\system32\drivers\aswStmXP.sys
2016-02-10 14:48:04 ----A---- C:\WINDOWS\system32\drivers\aswHwid.sys
2016-02-10 14:48:01 ----A---- C:\WINDOWS\system32\drivers\aswKbd.sys
2016-02-10 14:47:18 ----A---- C:\WINDOWS\system32\aswBoot.exe
2016-02-10 14:46:11 ----A---- C:\WINDOWS\avastSS.scr
2016-02-10 14:45:58 ----D---- C:\Program Files\AVAST Software
2016-02-10 14:12:16 ----A---- C:\WINDOWS\system32\wmpns.dll
2016-02-10 14:09:36 ----D---- C:\WINDOWS\Prefetch
2016-02-10 13:55:47 ----A---- C:\WINDOWS\system32\msxml6r.dll
2016-02-10 13:55:44 ----N---- C:\WINDOWS\system32\drivers\irbus.sys
2016-02-10 13:55:44 ----N---- C:\WINDOWS\system32\comsdupd.exe
2016-02-10 13:55:43 ----N---- C:\WINDOWS\system32\smtpapi.dll
2016-02-10 13:55:43 ----N---- C:\WINDOWS\system32\rwnh.dll
2016-02-10 13:55:39 ----N---- C:\WINDOWS\system32\ati3d1ag.dll
2016-02-10 13:55:39 ----N---- C:\WINDOWS\system32\ati2dvag.dll
2016-02-10 13:55:39 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2016-02-10 13:55:39 ----N---- C:\WINDOWS\system32\ati2cqag.dll
2016-02-10 13:55:39 ----N---- C:\WINDOWS\system32\aaclient.dll
2016-02-10 13:55:38 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2016-02-10 13:55:38 ----N---- C:\WINDOWS\system32\azroles.dll
2016-02-10 13:55:38 ----N---- C:\WINDOWS\system32\ativvaxx.dll
2016-02-10 13:55:38 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2016-02-10 13:55:38 ----N---- C:\WINDOWS\system32\ati3duag.dll
2016-02-10 13:55:37 ----N---- C:\WINDOWS\system32\credssp.dll
2016-02-10 13:55:36 ----N---- C:\WINDOWS\system32\dot3svc.dll
2016-02-10 13:55:36 ----N---- C:\WINDOWS\system32\dot3msm.dll
2016-02-10 13:55:36 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2016-02-10 13:55:36 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2016-02-10 13:55:36 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2016-02-10 13:55:36 ----N---- C:\WINDOWS\system32\dot3api.dll
2016-02-10 13:55:36 ----N---- C:\WINDOWS\system32\dimsroam.dll
2016-02-10 13:55:36 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2016-02-10 13:55:36 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2016-02-10 13:55:35 ----N---- C:\WINDOWS\system32\eapsvc.dll
2016-02-10 13:55:35 ----N---- C:\WINDOWS\system32\eapqec.dll
2016-02-10 13:55:35 ----N---- C:\WINDOWS\system32\eappprxy.dll
2016-02-10 13:55:35 ----N---- C:\WINDOWS\system32\eapphost.dll
2016-02-10 13:55:35 ----N---- C:\WINDOWS\system32\eappgnui.dll
2016-02-10 13:55:35 ----N---- C:\WINDOWS\system32\eappcfg.dll
2016-02-10 13:55:35 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2016-02-10 13:55:35 ----N---- C:\WINDOWS\system32\eapolqec.dll
2016-02-10 13:55:35 ----N---- C:\WINDOWS\system32\dot3ui.dll
2016-02-10 13:55:33 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2016-02-10 13:55:30 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2016-02-10 13:55:30 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2016-02-10 13:55:29 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2016-02-10 13:55:29 ----N---- C:\WINDOWS\system32\kmsvc.dll
2016-02-10 13:55:29 ----N---- C:\WINDOWS\system32\kbdpash.dll
2016-02-10 13:55:29 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2016-02-10 13:55:28 ----N---- C:\WINDOWS\system32\mmcperf.exe
2016-02-10 13:55:28 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2016-02-10 13:55:28 ----N---- C:\WINDOWS\system32\mmcex.dll
2016-02-10 13:55:28 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2016-02-10 13:55:27 ----N---- C:\WINDOWS\system32\napmontr.dll
2016-02-10 13:55:27 ----N---- C:\WINDOWS\system32\napipsec.dll
2016-02-10 13:55:27 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2016-02-10 13:55:27 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2016-02-10 13:55:27 ----N---- C:\WINDOWS\system32\mssha.dll
2016-02-10 13:55:26 ----N---- C:\WINDOWS\system32\onex.dll
2016-02-10 13:55:26 ----N---- C:\WINDOWS\system32\nv4_disp.dll
2016-02-10 13:55:26 ----N---- C:\WINDOWS\system32\napstat.exe
2016-02-10 13:55:25 ----N---- C:\WINDOWS\system32\qagent.dll
2016-02-10 13:55:25 ----N---- C:\WINDOWS\system32\photometadatahandler.dll
2016-02-10 13:55:24 ----N---- C:\WINDOWS\system32\s3gnb.dll
2016-02-10 13:55:24 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2016-02-10 13:55:24 ----N---- C:\WINDOWS\system32\rasqec.dll
2016-02-10 13:55:24 ----N---- C:\WINDOWS\system32\qutil.dll
2016-02-10 13:55:24 ----N---- C:\WINDOWS\system32\qcliprov.dll
2016-02-10 13:55:24 ----N---- C:\WINDOWS\system32\qagentrt.dll
2016-02-10 13:55:23 ----N---- C:\WINDOWS\system32\slserv.exe
2016-02-10 13:55:23 ----N---- C:\WINDOWS\system32\slrundll.exe
2016-02-10 13:55:23 ----N---- C:\WINDOWS\system32\slgen.dll
2016-02-10 13:55:23 ----N---- C:\WINDOWS\system32\slextspk.dll
2016-02-10 13:55:23 ----N---- C:\WINDOWS\system32\slcoinst.dll
2016-02-10 13:55:23 ----N---- C:\WINDOWS\system32\setupn.exe
2016-02-10 13:55:21 ----N---- C:\WINDOWS\system32\xpsp3res.dll
2016-02-10 13:55:21 ----N---- C:\WINDOWS\system32\verclsid.exe
2016-02-10 13:55:21 ----N---- C:\WINDOWS\system32\tzchange.exe
2016-02-10 13:55:21 ----N---- C:\WINDOWS\system32\tspkg.dll
2016-02-10 13:55:21 ----N---- C:\WINDOWS\system32\tsgqec.dll
2016-02-10 13:55:19 ----N---- C:\WINDOWS\system32\wmphoto.dll
2016-02-10 13:55:19 ----N---- C:\WINDOWS\system32\wlanapi.dll
2016-02-10 13:55:19 ----N---- C:\WINDOWS\system32\windowscodecsext.dll
2016-02-10 13:55:19 ----N---- C:\WINDOWS\system32\windowscodecs.dll
2016-02-10 13:55:18 ----A---- C:\WINDOWS\system32\xmllite.dll
2016-02-10 13:55:17 ----N---- C:\WINDOWS\slrundll.exe
2016-02-10 13:55:17 ----D---- C:\WINDOWS\system32\cs-cz
2016-02-10 13:55:15 ----D---- C:\WINDOWS\system32\cs
2016-02-10 13:55:15 ----D---- C:\WINDOWS\l2schemas
2016-02-10 13:55:14 ----D---- C:\WINDOWS\system32\bits
2016-02-10 13:50:38 ----D---- C:\WINDOWS\ServicePackFiles
2016-02-10 13:46:02 ----N---- C:\WINDOWS\system32\drivers\adv07nt5.dll
2016-02-10 13:46:02 ----N---- C:\WINDOWS\system32\drivers\adv05nt5.dll
2016-02-10 13:46:02 ----N---- C:\WINDOWS\system32\drivers\adv02nt5.dll
2016-02-10 13:46:02 ----N---- C:\WINDOWS\system32\drivers\adv01nt5.dll
2016-02-10 13:46:02 ----D---- C:\WINDOWS\network diagnostic
2016-02-10 13:46:01 ----N---- C:\WINDOWS\system32\drivers\ati1btxx.sys
2016-02-10 13:46:01 ----N---- C:\WINDOWS\system32\drivers\amdagp.sys
2016-02-10 13:46:01 ----N---- C:\WINDOWS\system32\drivers\alim1541.sys
2016-02-10 13:46:01 ----N---- C:\WINDOWS\system32\drivers\agpcpq.sys
2016-02-10 13:46:01 ----N---- C:\WINDOWS\system32\drivers\agp440.sys
2016-02-10 13:46:01 ----N---- C:\WINDOWS\system32\drivers\adv11nt5.dll
2016-02-10 13:46:01 ----N---- C:\WINDOWS\system32\drivers\adv09nt5.dll
2016-02-10 13:46:01 ----N---- C:\WINDOWS\system32\drivers\adv08nt5.dll
2016-02-10 13:46:00 ----N---- C:\WINDOWS\system32\drivers\ati2mtaa.sys
2016-02-10 13:46:00 ----N---- C:\WINDOWS\system32\drivers\ati1xsxx.sys
2016-02-10 13:46:00 ----N---- C:\WINDOWS\system32\drivers\ati1xbxx.sys
2016-02-10 13:46:00 ----N---- C:\WINDOWS\system32\drivers\ati1tuxx.sys
2016-02-10 13:46:00 ----N---- C:\WINDOWS\system32\drivers\ati1ttxx.sys
2016-02-10 13:46:00 ----N---- C:\WINDOWS\system32\drivers\ati1snxx.sys
2016-02-10 13:46:00 ----N---- C:\WINDOWS\system32\drivers\ati1rvxx.sys
2016-02-10 13:46:00 ----N---- C:\WINDOWS\system32\drivers\ati1raxx.sys
2016-02-10 13:46:00 ----N---- C:\WINDOWS\system32\drivers\ati1pdxx.sys
2016-02-10 13:46:00 ----N---- C:\WINDOWS\system32\drivers\ati1mdxx.sys
2016-02-10 13:45:59 ----N---- C:\WINDOWS\system32\drivers\atinttxx.sys
2016-02-10 13:45:59 ----N---- C:\WINDOWS\system32\drivers\atinsnxx.sys
2016-02-10 13:45:59 ----N---- C:\WINDOWS\system32\drivers\atinrvxx.sys
2016-02-10 13:45:59 ----N---- C:\WINDOWS\system32\drivers\atinraxx.sys
2016-02-10 13:45:59 ----N---- C:\WINDOWS\system32\drivers\atinpdxx.sys
2016-02-10 13:45:59 ----N---- C:\WINDOWS\system32\drivers\atinmdxx.sys
2016-02-10 13:45:59 ----N---- C:\WINDOWS\system32\drivers\atinbtxx.sys
2016-02-10 13:45:59 ----N---- C:\WINDOWS\system32\drivers\ati2mtag.sys
2016-02-10 13:45:58 ----N---- C:\WINDOWS\system32\drivers\atv10nt5.dll
2016-02-10 13:45:58 ----N---- C:\WINDOWS\system32\drivers\atv06nt5.dll
2016-02-10 13:45:58 ----N---- C:\WINDOWS\system32\drivers\atv04nt5.dll
2016-02-10 13:45:58 ----N---- C:\WINDOWS\system32\drivers\atv02nt5.dll
2016-02-10 13:45:58 ----N---- C:\WINDOWS\system32\drivers\atv01nt5.dll
2016-02-10 13:45:58 ----N---- C:\WINDOWS\system32\drivers\atinxsxx.sys
2016-02-10 13:45:58 ----N---- C:\WINDOWS\system32\drivers\atinxbxx.sys
2016-02-10 13:45:58 ----N---- C:\WINDOWS\system32\drivers\atintuxx.sys
2016-02-10 13:45:57 ----N---- C:\WINDOWS\system32\drivers\ch7xxnt5.dll
2016-02-10 13:45:57 ----N---- C:\WINDOWS\system32\drivers\bthusb.sys
2016-02-10 13:45:57 ----N---- C:\WINDOWS\system32\drivers\bthprint.sys
2016-02-10 13:45:57 ----N---- C:\WINDOWS\system32\drivers\bthport.sys
2016-02-10 13:45:57 ----N---- C:\WINDOWS\system32\drivers\bthpan.sys
2016-02-10 13:45:57 ----N---- C:\WINDOWS\system32\drivers\bthmodem.sys
2016-02-10 13:45:57 ----N---- C:\WINDOWS\system32\drivers\bthenum.sys
2016-02-10 13:45:56 ----N---- C:\WINDOWS\system32\drivers\hsfdpsp2.sys
2016-02-10 13:45:56 ----N---- C:\WINDOWS\system32\drivers\hsfcxts2.sys
2016-02-10 13:45:56 ----N---- C:\WINDOWS\system32\drivers\hsfbs2s2.sys
2016-02-10 13:45:56 ----N---- C:\WINDOWS\system32\drivers\hidir.sys
2016-02-10 13:45:56 ----N---- C:\WINDOWS\system32\drivers\hidbth.sys
2016-02-10 13:45:56 ----N---- C:\WINDOWS\system32\drivers\gagp30kx.sys
2016-02-10 13:45:54 ----N---- C:\WINDOWS\system32\drivers\mtlmnt5.sys
2016-02-10 13:45:53 ----N---- C:\WINDOWS\system32\drivers\mutohpen.sys
2016-02-10 13:45:53 ----N---- C:\WINDOWS\system32\drivers\mtxparhm.sys
2016-02-10 13:45:53 ----N---- C:\WINDOWS\system32\drivers\mtlstrm.sys
2016-02-10 13:45:52 ----N---- C:\WINDOWS\system32\drivers\rfcomm.sys
2016-02-10 13:45:52 ----N---- C:\WINDOWS\system32\drivers\recagent.sys
2016-02-10 13:45:52 ----N---- C:\WINDOWS\system32\drivers\nv4_mini.sys
2016-02-10 13:45:52 ----N---- C:\WINDOWS\system32\drivers\ntmtlfax.sys
2016-02-10 13:45:51 ----N---- C:\WINDOWS\system32\drivers\sffp_mmc.sys
2016-02-10 13:45:51 ----N---- C:\WINDOWS\system32\drivers\s3gnbm.sys
2016-02-10 13:45:51 ----N---- C:\WINDOWS\system32\drivers\rndismpx.sys
2016-02-10 13:45:50 ----N---- C:\WINDOWS\system32\drivers\uagp35.sys
2016-02-10 13:45:50 ----N---- C:\WINDOWS\system32\drivers\smbali.sys
2016-02-10 13:45:50 ----N---- C:\WINDOWS\system32\drivers\slwdmsup.sys
2016-02-10 13:45:50 ----N---- C:\WINDOWS\system32\drivers\slnthal.sys
2016-02-10 13:45:50 ----N---- C:\WINDOWS\system32\drivers\slntamr.sys
2016-02-10 13:45:50 ----N---- C:\WINDOWS\system32\drivers\slnt7554.sys
2016-02-10 13:45:50 ----N---- C:\WINDOWS\system32\drivers\sisagp.sys
2016-02-10 13:45:50 ----N---- C:\WINDOWS\system32\drivers\siint5.dll
2016-02-10 13:45:49 ----N---- C:\WINDOWS\system32\drivers\wacompen.sys
2016-02-10 13:45:49 ----N---- C:\WINDOWS\system32\drivers\viaagp.sys
2016-02-10 13:45:49 ----N---- C:\WINDOWS\system32\drivers\vchnt5.dll
2016-02-10 13:45:49 ----N---- C:\WINDOWS\system32\drivers\usbvideo.sys
2016-02-10 13:45:49 ----N---- C:\WINDOWS\system32\drivers\usb8023x.sys
2016-02-10 13:45:48 ----N---- C:\WINDOWS\system32\drivers\watv10nt.sys
2016-02-10 13:45:48 ----N---- C:\WINDOWS\system32\drivers\watv06nt.sys
2016-02-10 13:45:48 ----N---- C:\WINDOWS\system32\drivers\wadv11nt.sys
2016-02-10 13:45:48 ----N---- C:\WINDOWS\system32\drivers\wadv09nt.sys
2016-02-10 13:45:48 ----N---- C:\WINDOWS\system32\drivers\wadv08nt.sys
2016-02-10 13:45:48 ----N---- C:\WINDOWS\system32\drivers\wadv07nt.sys
2016-02-10 13:43:18 ----A---- C:\WINDOWS\002768_.tmp
2016-02-10 13:38:30 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2016-02-07 11:11:44 ----A---- C:\WINDOWS\system32\MRT.exe
2016-02-07 11:11:18 ----HDC---- C:\WINDOWS\$NtUninstallKB932823-v3$
2016-02-05 20:27:18 ----D---- C:\Program Files\Mozilla Firefox
2016-02-05 17:14:39 ----D---- C:\Program Files\trend micro
2016-02-05 09:54:06 ----D---- C:\AdwCleaner
2016-02-03 19:49:29 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2016-02-01 18:34:46 ----D---- C:\WINDOWS\CSC

======List of files/folders modified in the last 1 month======

2016-02-11 15:48:27 ----D---- C:\WINDOWS\Temp
2016-02-11 08:48:20 ----A---- C:\WINDOWS\SchedLgU.Txt
2016-02-11 08:40:56 ----SD---- C:\WINDOWS\Tasks
2016-02-11 08:40:47 ----D---- C:\WINDOWS
2016-02-11 08:40:42 ----RSHDC---- C:\WINDOWS\system32\dllcache
2016-02-11 08:40:21 ----D---- C:\WINDOWS\system32
2016-02-11 08:40:17 ----D---- C:\WINDOWS\system32\CatRoot2
2016-02-11 08:39:10 ----HD---- C:\WINDOWS\inf
2016-02-11 08:39:10 ----D---- C:\Program Files\Internet Explorer
2016-02-11 08:39:09 ----D---- C:\WINDOWS\Help
2016-02-11 02:52:49 ----SHD---- C:\WINDOWS\Installer
2016-02-11 02:52:08 ----HD---- C:\WINDOWS\$hf_mig$
2016-02-11 02:50:50 ----D---- C:\WINDOWS\system32\config
2016-02-11 02:50:29 ----D---- C:\WINDOWS\Media
2016-02-11 02:31:01 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2016-02-11 02:29:34 ----D---- C:\WINDOWS\WinSxS
2016-02-11 02:28:16 ----D---- C:\WINDOWS\system32\drivers
2016-02-11 02:02:56 ----D---- C:\WINDOWS\Debug
2016-02-11 02:01:01 ----D---- C:\Program Files\Microsoft Office
2016-02-11 01:49:17 ----D---- C:\Program Files\Movie Maker
2016-02-11 01:42:36 ----D---- C:\Program Files\Outlook Express
2016-02-10 20:04:17 ----D---- C:\WINDOWS\system32\wbem
2016-02-10 20:04:17 ----D---- C:\WINDOWS\AppPatch
2016-02-10 19:42:46 ----D---- C:\Program Files\Messenger
2016-02-10 19:38:15 ----RD---- C:\Program Files
2016-02-10 19:26:51 ----RSD---- C:\WINDOWS\Fonts
2016-02-10 19:25:34 ----D---- C:\Program Files\Common Files\Microsoft Shared
2016-02-10 19:25:24 ----D---- C:\Program Files\Microsoft Works
2016-02-10 16:30:28 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2016-02-10 14:08:47 ----D---- C:\WINDOWS\system32\Setup
2016-02-10 14:06:46 ----D---- C:\WINDOWS\security
2016-02-10 14:01:20 ----D---- C:\WINDOWS\system32\CatRoot
2016-02-10 13:55:46 ----D---- C:\WINDOWS\ehome
2016-02-10 13:55:43 ----D---- C:\WINDOWS\system32\inetsrv
2016-02-10 13:55:42 ----D---- C:\WINDOWS\ime
2016-02-10 13:55:16 ----D---- C:\WINDOWS\system32\usmt
2016-02-10 13:55:14 ----D---- C:\WINDOWS\PeerNet
2016-02-10 13:50:11 ----D---- C:\WINDOWS\system32\Restore
2016-02-10 13:50:11 ----D---- C:\WINDOWS\system32\npp
2016-02-10 13:50:07 ----D---- C:\WINDOWS\msagent
2016-02-10 13:50:04 ----D---- C:\WINDOWS\srchasst
2016-02-10 13:50:03 ----D---- C:\Program Files\NetMeeting
2016-02-10 13:49:58 ----D---- C:\WINDOWS\system32\Com
2016-02-10 13:49:54 ----D---- C:\Program Files\Windows NT
2016-02-10 13:49:54 ----D---- C:\Program Files\Windows Media Player
2016-02-10 13:49:48 ----D---- C:\Program Files\Common Files\System
2016-02-10 13:49:12 ----D---- C:\WINDOWS\system32\oobe
2016-02-10 13:49:08 ----D---- C:\WINDOWS\system
2016-02-10 13:43:12 ----D---- C:\WINDOWS\system32\ReinstallBackups
2016-02-07 10:17:00 ----SD---- C:\WINDOWS\Downloaded Program Files
2016-02-07 09:56:45 ----D---- C:\WINDOWS\SoftwareDistribution
2016-02-07 09:54:56 ----D---- C:\Program Files\PokerStars
2016-02-07 09:51:27 ----D---- C:\Program Files\Governor of Poker
2016-02-05 21:36:14 ----D---- C:\Program Files\Mozilla Maintenance Service
2016-02-05 10:05:32 ----D---- C:\Documents and Settings\All Users\Data aplikací\ICQ
2016-02-04 22:29:38 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2016-02-04 22:29:32 ----D---- C:\Program Files\Common Files\PC Tools
2016-02-04 17:20:38 ----D---- C:\WINDOWS\Minidump
2016-02-04 11:16:42 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-02-03 14:42:13 ----D---- C:\WINDOWS\Registration
2016-02-03 13:54:03 ----D---- C:\Program Files\DivX_Browser_Bar
2016-02-03 13:52:33 ----D---- C:\Program Files\Common Files\DivX Shared
2016-02-03 13:52:31 ----D---- C:\Documents and Settings\All Users\Data aplikací\DivX
2016-02-03 13:52:28 ----D---- C:\Program Files\DivX
2016-02-03 13:48:11 ----D---- C:\Documents and Settings\xxx\Data aplikací\ICQM
2016-02-03 13:40:14 ----SHD---- C:\RECYCLER
2016-02-03 13:30:26 ----D---- C:\Documents and Settings

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2016-02-10 58776]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2016-02-10 221240]
R0 hpdskflt;HP Disk Filter Driver; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2006-07-23 17920]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2008-11-06 43528]
R0 SafeBoot;SafeBoot; C:\WINDOWS\system32\drivers\SafeBoot.sys [2007-04-26 100095]
R0 SbAlg;SbAlg; C:\WINDOWS\system32\drivers\SbAlg.sys [2006-10-09 44720]
R0 SbFsLock;SbFsLock; C:\WINDOWS\system32\drivers\SbFsLock.sys [2007-03-29 13696]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2009-02-15 717296]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2016-02-10 35096]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2016-02-10 64272]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2016-02-10 812720]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2016-02-10 447848]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 PersonalSecureDrive;PersonalSecureDrive; C:\WINDOWS\System32\drivers\psd.sys [2007-01-23 39080]
R1 RsvLock;RsvLock; C:\WINDOWS\system32\drivers\RsvLock.sys [2007-04-26 5808]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2016-02-10 32792]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2016-02-10 91168]
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2006-06-19 12672]
R2 rimmptsk;rimmptsk; C:\WINDOWS\system32\DRIVERS\rimmptsk.sys [2007-02-24 39936]
R3 Accelerometer;Accelerometer; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2006-07-23 22016]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2007-03-01 289792]
R3 AEAudio;AE Audio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2006-08-07 93952]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 aswStmXP;Avast StreamFilter Driver; C:\WINDOWS\system32\drivers\aswStmXP.sys [2016-02-10 171608]
R3 ATSWPDRV;(****DEBUG****) AuthenTec TruePrint USB Driver (SwipeSensor); C:\WINDOWS\system32\DRIVERS\ATSwpDrv.sys [2007-04-10 140808]
R3 btaudio;Bluetooth Audio Device; C:\WINDOWS\system32\drivers\btaudio.sys [2007-02-14 530861]
R3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS\system32\DRIVERS\btport.sys [2007-02-14 30459]
R3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2007-02-14 868298]
R3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2007-02-14 149123]
R3 btwhid;btwhid; C:\WINDOWS\system32\DRIVERS\btwhid.sys [2007-02-14 47907]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2007-02-14 67960]
R3 e1express;Intel(R) PRO/1000 PCI Express Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e1e5132.sys [2007-03-08 250776]
R3 HBtnKey;HBtnKey; C:\WINDOWS\system32\DRIVERS\cpqbttn.sys [2006-06-28 9472]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HSF_DPV;HSF_DPV; C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys [2006-12-07 988800]
R3 HSFHWAZL;HSFHWAZL; C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys [2006-12-07 209536]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2007-05-02 5706784]
R3 IFXTPM;IFXTPM; C:\WINDOWS\system32\DRIVERS\IFXTPM.SYS [2007-01-23 36608]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 NETw4x32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows XP 32 Bit; C:\WINDOWS\system32\DRIVERS\NETw4x32.sys [2007-03-01 2203520]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-14 79232]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2006-12-07 730112]
S2 DgiVecp;Team MFP Comm Driver; C:\WINDOWS\System32\Drivers\DgiVecp.sys [2003-07-29 40448]
S3 61883;61883 Unit Device; C:\WINDOWS\system32\DRIVERS\61883.sys [2008-04-14 48128]
S3 a99wguo2;a99wguo2; C:\WINDOWS\system32\drivers\a99wguo2.sys []
S3 aswTdi;aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [2016-02-10 67088]
S3 Avc;AVC Device; C:\WINDOWS\system32\DRIVERS\avc.sys [2008-04-14 38912]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 DAMDrv;DAMDrv; C:\WINDOWS\system32\DRIVERS\DAMDrv.sys [2007-04-23 30008]
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 HP24X;HP PC Card Smart Card Reader; C:\WINDOWS\system32\DRIVERS\HP24X.sys [2006-10-19 33024]
S3 MSDV;Microsoft DV Camera and VCR; C:\WINDOWS\system32\DRIVERS\msdv.sys [2008-04-14 51200]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ASBroker;Logon Session Broker; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 ASChannel;Local Communication Channel; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2016-02-10 237096]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2007-02-06 266295]
R2 HpFkCryptService;Drive Encryption Service; C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2007-04-27 221184]
R2 IFXSpMgtSrv;Security Platform Management Service; C:\WINDOWS\system32\ifxspmgt.exe [2007-02-15 677408]
R2 IFXTCS;Trusted Platform Core Service; C:\WINDOWS\system32\ifxtcs.exe [2007-01-23 849440]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-10-23 153376]
R2 PersonalSecureDriveService;Personal Secure Drive service; C:\WINDOWS\system32\IfxPsdSv.exe [2007-02-15 140832]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2016-02-03 154440]
S2 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2007-12-05 144688]
S2 SWIHPWMI;SWIHPWMI; C:\Program Files\HPQ\Shared\Sierra Wireless\Win32\Unicode\SWIHPWMI.exe []
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-02-10 269504]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; C:\WINDOWS\system32\flcdlock.exe [2007-04-30 172131]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2016-02-03 154440]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2016-02-05 147624]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2006-10-09 724992]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]

-----------------EOF-----------------

[Rudy]

Dvouklikem na soubor C:\Program Files\trend micro\xxx.exe spusťte HijackThis. Klikněte na "Do a system scan only" a v otevřeném okně vlevo ve čtverečcích zaškrtněte:

O3 - Toolbar: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe (file missing)
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)

Klikněte na >FixChecked<. Pak znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.

[Dav]

Pokud je to všechno, moc děkuji za pomoc.

[Rudy]

Není-li jiný problém, je to vše. Nemáte zač!