Zpomalení compu, vysoké vytížení procáku

Zpráva

lukla · #16 Příspěvek od **lukla** » 01 dub 2010 14:46

oba jsem odinstaloval spybota tez, je to divne....v ccleaneru nejsou jako nainstalovane a na disku v Program filez take ne v logu ale jsou..

#17 Příspěvek od **Caroprd111** » 01 dub 2010 14:49

Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe

Spusťte program, poté klikněte na Run Scan
Po dokončení, sem vložte logy OTL.Txt a Extras.txt

lukla · #18 Příspěvek od **lukla** » 01 dub 2010 14:59

OTL logfile created on: 1.4.2010 15:50:50 - Run 1
OTL by OldTimer - Version 3.1.37.3 Folder = C:\Documents and Settings\Catr\Dokumenty\Downloads
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1 014,00 Mb Total Physical Memory | 577,00 Mb Available Physical Memory | 57,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 84,00% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 111,79 Gb Total Space | 73,93 Gb Free Space | 66,13% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: ANDROMEDA
Current User Name: Catr
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010.04.01 15:50:33 | 000,555,520 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Catr\Dokumenty\Downloads\OTL (2).exe
PRC - [2010.03.22 19:51:30 | 000,530,928 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Catr\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
PRC - [2009.02.19 14:46:26 | 000,341,264 | ---- | M] (Fujitsu Technology Solutions) -- C:\Program Files\Fujitsu\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe
PRC - [2008.08.28 19:56:34 | 000,770,048 | ---- | M] () -- C:\Program Files\Hotkey Utility\tray.exe
PRC - [2008.08.26 15:10:16 | 001,675,264 | ---- | M] () -- C:\Program Files\Power Manager\PM.exe
PRC - [2008.08.08 07:04:10 | 001,091,768 | ---- | M] (C. Ghisler & Co.) -- C:\totalcmd\TOTALCMD.EXE
PRC - [2008.05.26 22:19:14 | 000,123,904 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Desktop Search\WindowsSearch.exe
PRC - [2008.04.14 14:00:00 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2005.08.18 10:55:00 | 000,099,328 | ---- | M] () -- C:\Program Files\OpenVPN\bin\openvpn-gui.exe

========== Modules (SafeList) ==========

MOD - [2010.04.01 15:50:33 | 000,555,520 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Catr\Dokumenty\Downloads\OTL (2).exe

========== Win32 Services (SafeList) ==========

SRV - [2009.10.20 20:19:48 | 000,117,264 | ---- | M] (CACE Technologies, Inc.) [On_Demand | Stopped] -- C:\Program Files\WinPcap\rpcapd.exe -- (rpcapd) Remote Packet Capture Protocol v.0 (experimental)
SRV - [2009.02.19 14:46:26 | 000,341,264 | ---- | M] (Fujitsu Technology Solutions) [Auto | Running] -- C:\Program Files\Fujitsu\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe -- (TestHandler)
SRV - [2006.10.01 14:37:42 | 000,016,384 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\OpenVPN\bin\openvpnserv.exe -- (OpenVPNService)

========== Driver Services (SafeList) ==========

DRV - [2010.01.07 16:07:14 | 000,038,224 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2009.10.20 20:19:44 | 000,050,704 | ---- | M] (CACE Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\npf.sys -- (NPF)
DRV - [2008.07.16 18:52:00 | 004,747,776 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2008.06.27 16:40:18 | 001,315,776 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\athw.sys -- (AR5416)
DRV - [2008.05.07 19:31:16 | 000,106,368 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2008.04.14 14:00:00 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2008.03.27 15:56:46 | 000,153,600 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTS5121.sys -- (RSUSBSTOR)
DRV - [2008.02.15 13:12:06 | 005,854,752 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\igxpmp32.sys -- (ialm)
DRV - [2007.08.24 10:22:36 | 000,213,632 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SynTP.sys -- (SynTP)
DRV - [2007.01.05 02:15:08 | 000,009,336 | ---- | M] (http://www.internals.com) [Kernel | System | Running] -- C:\WINDOWS\system32\WinIo.sys -- (WINIO)
DRV - [2006.10.01 14:37:02 | 000,026,624 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tap0801.sys -- (tap0801)
DRV - [2005.07.25 10:04:08 | 000,048,640 | ---- | M] (Prolific Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ser2pl.sys -- (Ser2pl)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.google.com/"
FF - prefs.js..extensions.enabledItems: {123b2220-59cb-11db-b0de-0800200c9a66}:0.15.3
FF - prefs.js..extensions.enabledItems: {64e8cc5b-20db-4212-8320-178fc5ae71f7}:1.1
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.03.26 14:48:19 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.03.26 14:48:17 | 000,000,000 | ---D | M]

[2009.07.29 13:31:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Catr\Data aplikací\Mozilla\Extensions
[2010.04.01 11:31:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Catr\Data aplikací\Mozilla\Firefox\Profiles\b308c3fb.default\extensions
[2009.08.03 14:30:04 | 000,000,000 | ---D | M] (Screengrab) -- C:\Documents and Settings\Catr\Data aplikací\Mozilla\Firefox\Profiles\b308c3fb.default\extensions\{02450954-cdd9-410f-b1da-db804e18c671}
[2010.03.18 13:26:19 | 000,000,000 | ---D | M] (Nagios Checker) -- C:\Documents and Settings\Catr\Data aplikací\Mozilla\Firefox\Profiles\b308c3fb.default\extensions\{123b2220-59cb-11db-b0de-0800200c9a66}
[2010.03.19 10:48:51 | 000,000,000 | ---D | M] (FaceMod Dislike Button) -- C:\Documents and Settings\Catr\Data aplikací\Mozilla\Firefox\Profiles\b308c3fb.default\extensions\{64e8cc5b-20db-4212-8320-178fc5ae71f7}
[2009.08.08 18:33:07 | 000,000,000 | ---D | M] (QuickPageZoom) -- C:\Documents and Settings\Catr\Data aplikací\Mozilla\Firefox\Profiles\b308c3fb.default\extensions\{8FFE139B-90A7-4460-A972-9D2738997F6D}
[2009.08.08 18:33:05 | 000,000,000 | ---D | M] (ImTranslator) -- C:\Documents and Settings\Catr\Data aplikací\Mozilla\Firefox\Profiles\b308c3fb.default\extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}
[2009.11.20 15:45:28 | 000,000,000 | ---D | M] (Torbutton) -- C:\Documents and Settings\Catr\Data aplikací\Mozilla\Firefox\Profiles\b308c3fb.default\extensions\{e0204bd5-9d31-402b-a99d-a6aa8ffebdca}
[2010.04.01 15:10:10 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010.03.16 20:17:17 | 000,000,638 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2010.03.16 20:17:17 | 000,001,687 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\mall-cz.xml
[2010.03.16 20:17:17 | 000,001,367 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010.03.16 20:17:17 | 000,000,654 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2010.03.16 20:17:17 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: ([2008.04.14 14:00:00 | 000,000,737 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Podpora odkazu pro Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - No CLSID value found.
O4 - HKLM..\Run: [BluetoothAuthenticationAgent] C:\WINDOWS\System32\bthprops.cpl (Microsoft Corporation)
O4 - HKLM..\Run: [FIC HotKey] C:\Program Files\Hotkey Utility\tray.exe ()
O4 - HKLM..\Run: [openvpn-gui] C:\Program Files\OpenVPN\bin\openvpn-gui.exe ()
O4 - HKLM..\Run: [PowerManager] C:\Program Files\Power Manager\PM.exe ()
O4 - HKLM..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [UCam_Menu] c:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O16 - DPF: {44990301-3C9D-426D-81DF-AAB636FA4345} https://www-secure.symantec.com/techsup ... gctlsr.cab (Symantec Script Runner Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_18)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O24 - Desktop Components:0 (Aktuální domovská stránka) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Catr\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Catr\Local Settings\Data aplikací\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010.04.01 15:39:46 | 000,000,000 | ---D | C] -- C:\rsit
[2010.04.01 15:37:29 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Catr\Recent
[2010.04.01 14:37:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2010.04.01 12:44:39 | 000,000,000 | ---D | C] -- C:\Program Files\VITSOFT
[2010.04.01 12:25:03 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2010.04.01 12:18:19 | 000,000,000 | ---D | C] -- C:\Program Files\Total Uninstall 5
[2010.04.01 12:08:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Martau
[2010.04.01 11:03:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Catr\Local Settings\Data aplikací\Symantec
[2010.04.01 10:27:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Catr\Plocha\ODS
[2010.03.30 08:25:16 | 002,191,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe
[2010.03.30 08:24:45 | 002,147,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2010.03.30 08:24:27 | 002,025,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2010.03.30 08:23:44 | 000,455,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2010.03.30 08:00:12 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2010.03.29 20:34:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Catr\Data aplikací\Malwarebytes
[2010.03.29 20:34:16 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010.03.29 20:34:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
[2010.03.29 20:34:07 | 000,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010.03.29 20:34:06 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010.03.29 20:11:43 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2010.03.29 18:52:51 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2010.03.29 16:32:22 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msyuv.dll
[2010.03.29 14:22:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\NtmsData
[2010.03.28 01:10:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Catr\Local Settings\Data aplikací\Cooliris
[2010.03.20 12:29:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Apple
[2010.03.19 15:44:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Catr\Data aplikací\Wireshark
[2010.03.19 13:19:02 | 000,000,000 | ---D | C] -- C:\Program Files\WinPcap
[2010.03.19 13:15:50 | 000,000,000 | ---D | C] -- C:\Program Files\Wireshark
[2009.09.11 08:33:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Downloaded Installations
[2009.07.24 15:06:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Adobe
[2008.09.26 03:53:52 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Data aplikací\Microsoft
[2008.09.26 03:53:52 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Data aplikací\Microsoft
[2008.09.26 03:53:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Data aplikací\Microsoft
[2008.09.26 03:53:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Microsoft
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010.04.01 15:42:17 | 000,002,163 | ---- | M] () -- C:\WINDOWS\wincmd.ini
[2010.04.01 15:31:26 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.04.01 15:30:58 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.04.01 15:30:30 | 000,266,208 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010.04.01 15:30:26 | 1063,702,528 | -HS- | M] () -- C:\hiberfil.sys
[2010.04.01 15:29:04 | 000,000,012 | ---- | M] () -- C:\WINDOWS\bthservsdp.dat
[2010.04.01 15:29:02 | 003,145,728 | -H-- | M] () -- C:\Documents and Settings\Catr\NTUSER.DAT
[2010.04.01 15:29:02 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Catr\ntuser.ini
[2010.04.01 12:39:27 | 000,022,528 | ---- | M] () -- C:\Documents and Settings\Catr\Dokumenty\prescasy brezen10Buchta-k zalozeni.xls
[2010.04.01 10:34:39 | 000,044,916 | ---- | M] () -- C:\Documents and Settings\Catr\Plocha\kalousek_jpg_500x500_q95.jpg
[2010.03.29 19:52:13 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.03.29 19:03:48 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010.03.29 18:53:25 | 000,000,281 | RHS- | M] () -- C:\boot.ini
[2010.03.29 13:00:48 | 000,335,614 | ---- | M] () -- C:\WINDOWS\System32\perfh005.dat
[2010.03.29 13:00:48 | 000,316,184 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010.03.29 13:00:48 | 000,041,842 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010.03.29 13:00:47 | 000,056,594 | ---- | M] () -- C:\WINDOWS\System32\perfc005.dat
[2010.03.29 13:00:30 | 000,757,682 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010.03.26 14:48:32 | 000,001,606 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Mozilla Firefox.lnk
[2010.03.25 14:53:40 | 000,002,254 | ---- | M] () -- C:\Documents and Settings\Catr\Plocha\Google Chrome.lnk
[2010.03.23 15:19:36 | 000,031,091 | ---- | M] () -- C:\Documents and Settings\Catr\Plocha\464px-Mafia_family_structure_tree.jpg
[2010.03.22 16:13:12 | 000,323,394 | ---- | M] () -- C:\Documents and Settings\Catr\Plocha\224158_detail.jpg
[2010.03.21 13:01:28 | 000,043,775 | ---- | M] () -- C:\Documents and Settings\Catr\Plocha\23835_106004339428317_100000562537860_143364_7439974_n.jpg
[2010.03.20 13:10:00 | 000,001,608 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\QuickTime Player.lnk
[2010.03.20 12:57:18 | 000,001,854 | ---- | M] () -- C:\Documents and Settings\All Users\Plocha\Safari.lnk
[2010.03.20 12:29:08 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2010.03.15 15:10:58 | 000,002,808 | ---- | M] () -- C:\Documents and Settings\Catr\Plocha\kmotr1.jpg
[2010.03.09 17:13:51 | 000,008,192 | ---- | M] () -- C:\Documents and Settings\Catr\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010.04.01 12:39:26 | 000,022,528 | ---- | C] () -- C:\Documents and Settings\Catr\Dokumenty\prescasy brezen10Buchta-k zalozeni.xls
[2010.04.01 10:34:38 | 000,044,916 | ---- | C] () -- C:\Documents and Settings\Catr\Plocha\kalousek_jpg_500x500_q95.jpg
[2010.03.29 18:53:24 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2010.03.29 18:53:10 | 000,261,312 | ---- | C] () -- C:\cmldr
[2010.03.23 15:19:33 | 000,031,091 | ---- | C] () -- C:\Documents and Settings\Catr\Plocha\464px-Mafia_family_structure_tree.jpg
[2010.03.22 16:13:03 | 000,323,394 | ---- | C] () -- C:\Documents and Settings\Catr\Plocha\224158_detail.jpg
[2010.03.21 13:01:19 | 000,043,775 | ---- | C] () -- C:\Documents and Settings\Catr\Plocha\23835_106004339428317_100000562537860_143364_7439974_n.jpg
[2010.03.20 13:09:53 | 000,001,608 | ---- | C] () -- C:\Documents and Settings\All Users\Plocha\QuickTime Player.lnk
[2010.03.15 15:10:54 | 000,002,808 | ---- | C] () -- C:\Documents and Settings\Catr\Plocha\kmotr1.jpg
[2010.02.13 13:21:27 | 000,178,176 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010.02.13 13:21:26 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2010.02.13 13:21:21 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010.02.13 13:21:21 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010.02.13 13:21:16 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010.02.13 13:21:16 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2009.11.13 10:38:32 | 000,008,192 | ---- | C] () -- C:\Documents and Settings\Catr\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.10.20 20:19:30 | 000,053,299 | ---- | C] () -- C:\WINDOWS\System32\pthreadVC.dll
[2009.07.29 13:54:04 | 000,002,163 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2008.09.26 03:57:09 | 005,386,240 | ---- | C] () -- C:\WINDOWS\System32\rts5121icon.dll
[2008.09.26 03:57:07 | 000,000,828 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2008.09.26 03:56:54 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4926.dll
[2008.09.26 03:56:53 | 000,021,464 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini
[2008.09.26 03:56:52 | 000,015,552 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini
[2008.09.26 03:56:52 | 000,014,910 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini
[2008.09.26 03:56:52 | 000,003,568 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2008.09.26 03:54:36 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2008.04.25 14:23:38 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\EvOnlDiag.dll
< End of report >

OTL Extras logfile created on: 1.4.2010 15:50:50 - Run 1
OTL by OldTimer - Version 3.1.37.3 Folder = C:\Documents and Settings\Catr\Dokumenty\Downloads
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1 014,00 Mb Total Physical Memory | 577,00 Mb Available Physical Memory | 57,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 84,00% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 111,79 Gb Total Space | 73,93 Gb Free Space | 66,13% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: ANDROMEDA
Current User Name: Catr
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" = C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation)
"C:\Program Files\Opera\opera.exe" = C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00BA866C-F2A2-4BB9-A308-3DFA695B6F7C}" = Java DB 10.5.3.0
"{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216016F0}" = Java(TM) 6 Update 16
"{26A24AE4-039D-4CA4-87B4-2F83216018FF}" = Java(TM) 6 Update 18
"{32A3A4F4-B792-11D6-A78A-00B0D0160180}" = Java(TM) SE Development Kit 6 Update 18
"{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3FA365DF-2D68-45ED-8F83-8C8A33E65143}" = Apple Application Support
"{58BAA8D0-404E-4585-9FD3-ED1BB72AC2EE}" = Adobe Flash Player 9 ActiveX
"{690BE098-6D0D-493D-B079-BD7E8F81A141}" = Opera 10.10
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{8B7917E0-AF55-4E8A-9473-017F0AA03AC8}" = QuickTime
"{90120000-0010-0405-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Czech) 12
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_PROHYBRIDR_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_PROHYBRIDR_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_PROHYBRIDR_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_PROHYBRIDR_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_PROHYBRIDR_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_PROHYBRIDR_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_PROHYBRIDR_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_PROHYBRIDR_{A0516415-ED61-419A-981D-93596DA74165}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_PROHYBRIDR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_PROHYBRIDR_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_PROHYBRIDR_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{91120000-0031-0000-0000-0000000FF1CE}" = Microsoft Office Professional Hybrid 2007
"{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{9DA4493A-480C-4554-A02C-4B542D33A1D9}" = ManageEngine NetFlow Analyzer 7.5
"{A67BB21E-D419-45BB-AB86-7D87D14BBCE2}" = Safari
"{AC76BA86-7AD7-1029-7B44-A81200000003}" = Adobe Reader 8 - Czech
"{E1B2DF7C-A176-4A1D-9D32-3CEC5037A524}" = Apple Application Support
"{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}" = PL-2303 USB-to-Serial
"{EF59DB7F-7426-426E-B862-7031F83ED304}" = SystemDiagnostics
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"CCleaner" = CCleaner
"GOM Player" = GOM Player
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"HijackThis" = HijackThis 2.0.2
"Hotkey Utility_is1" = Hotkey Utility
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"KLiteCodecPack_is1" = K-Lite Codec Pack 5.7.0 (Full)
"Lizard Safeguard - PDF Viewer_is1" = Lizard Safeguard - PDF Viewer 2.5.118
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Mozilla Firefox (3.6.2)" = Mozilla Firefox (3.6.2)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"OpenVPN" = OpenVPN 2.0.9-gui-1.0.3
"Picasa 3" = Picasa 3
"PolarClock3" = PolarClock3 Screen Saver
"Power Manager_is1" = Power Manager 1.0.2
"PROHYBRIDR" = 2007 Microsoft Office system
"Psi" = Psi (remove only)
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"Total Uninstall 5_is1" = Total Uninstall 5.5.0
"Totalcmd" = Total Commander (Remove or Repair)
"Winamp" = Winamp
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"WinPcapInst" = WinPcap 4.1.1
"Wireshark" = Wireshark 1.2.3
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 4.2.2010 4:25:01 | Computer Name = ANDROMEDA | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 4.2.2010 4:26:08 | Computer Name = ANDROMEDA | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 4.2.2010 10:37:32 | Computer Name = ANDROMEDA | Source = Google Update | ID = 20
Description =

Error - 5.2.2010 2:54:07 | Computer Name = ANDROMEDA | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 5.2.2010 2:55:04 | Computer Name = ANDROMEDA | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 5.2.2010 12:16:48 | Computer Name = ANDROMEDA | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 5.2.2010 12:18:59 | Computer Name = ANDROMEDA | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 6.2.2010 9:49:23 | Computer Name = ANDROMEDA | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 6.2.2010 9:50:52 | Computer Name = ANDROMEDA | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

Error - 10.2.2010 14:47:49 | Computer Name = ANDROMEDA | Source = PerfNet | ID = 2004
Description = Nelze otevřít službu serveru. Data o výkonu serveru nejsou k dispozici.
Vrácený chybový kód je v datech DWORD 0.

[ System Events ]
Error - 29.3.2010 14:01:19 | Computer Name = ANDROMEDA | Source = Service Control Manager | ID = 7000
Description = Služba Windows Search neuspěla při spuštění v důsledku následující
chyby: %%1053

Error - 29.3.2010 14:07:22 | Computer Name = ANDROMEDA | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1053 při pokusu o spuštění služby WSearch
s argumenty za účelem spuštění serveru: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Error - 29.3.2010 14:07:54 | Computer Name = ANDROMEDA | Source = Service Control Manager | ID = 7009
Description = Vypršel časový limit (30000 milisekund) čekání na připojení služby
Windows Search.

Error - 29.3.2010 14:07:54 | Computer Name = ANDROMEDA | Source = Service Control Manager | ID = 7000
Description = Služba Windows Search neuspěla při spuštění v důsledku následující
chyby: %%1053

Error - 30.3.2010 4:24:12 | Computer Name = ANDROMEDA | Source = Dhcp | ID = 1002
Description = Zapůjčení adresy IP 192.168.0.119 pro síťovou kartu s adresou 00140B627C12
byla serverem DHCP 192.168.1.1 odmítnuta. (Server DHCP odeslal zprávu DHCPNACK).

Error - 30.3.2010 5:12:35 | Computer Name = ANDROMEDA | Source = Dhcp | ID = 1002
Description = Zapůjčení adresy IP 192.168.1.3 pro síťovou kartu s adresou 00225F41BE19
byla serverem DHCP 0.0.0.0 odmítnuta. (Server DHCP odeslal zprávu DHCPNACK).

Error - 31.3.2010 3:17:36 | Computer Name = ANDROMEDA | Source = Windows Update Agent | ID = 20
Description = Instalace se nezdařila: Instalace následující aktualizace se nezdařila
z důvodu chyby (0x80070643): Aplikace Internet Explorer 8 pro systém Windows XP.

Error - 31.3.2010 12:01:50 | Computer Name = ANDROMEDA | Source = DCOM | ID = 10005
Description = Služba DCOM zjistila chybu %1053 při pokusu o spuštění služby WSearch
s argumenty za účelem spuštění serveru: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Error - 31.3.2010 12:01:52 | Computer Name = ANDROMEDA | Source = Service Control Manager | ID = 7009
Description = Vypršel časový limit (30000 milisekund) čekání na připojení služby
Windows Search.

Error - 31.3.2010 12:01:52 | Computer Name = ANDROMEDA | Source = Service Control Manager | ID = 7000
Description = Služba Windows Search neuspěla při spuštění v důsledku následující
chyby: %%1053

< End of report >

#19 Příspěvek od **Caroprd111** » 01 dub 2010 15:32

Poprosím o nový log z RSIT.

lukla · #20 Příspěvek od **lukla** » 01 dub 2010 15:40

Logfile of random's system information tool 1.06 (written by random/random)
Run by Catr at 2010-04-01 16:39:44
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 76 GB (66%) free of 114 GB
Total RAM: 1014 MB (49% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:39:59, on 1.4.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fujitsu\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\hkcmd.exe
C:\Documents and Settings\Catr\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Hotkey Utility\tray.exe
C:\Program Files\Power Manager\PM.exe
C:\Program Files\OpenVPN\bin\openvpn-gui.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Documents and Settings\Catr\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Documents and Settings\Catr\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Catr\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Catr\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Catr\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Catr\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Documents and Settings\Catr\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\totalcmd\TOTALCMD.EXE
C:\Documents and Settings\Catr\Dokumenty\Downloads\OTL (2).exe
C:\Documents and Settings\Catr\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Catr\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Catr\Dokumenty\Downloads\RSIT.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Documents and Settings\Catr\Dokumenty\Downloads\Catr.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - (no file)
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe
O4 - HKLM\..\Run: [UCam_Menu] "c:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "c:\Program Files\CyberLink\YouCam" update "Software\CyberLink\YouCam\1.0"
O4 - HKLM\..\Run: [FIC HotKey] C:\Program Files\Hotkey Utility\tray.exe
O4 - HKLM\..\Run: [PowerManager] C:\Program Files\Power Manager\PM.exe
O4 - HKLM\..\Run: [openvpn-gui] C:\Program Files\OpenVPN\bin\openvpn-gui.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Catr\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [fsc-reg] c:\fsc-reg\fscreg.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {44990301-3C9D-426D-81DF-AAB636FA4345} (Symantec Script Runner Class) - https://www-secure.symantec.com/techsup ... gctlsr.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{0D79B4D6-2520-48B2-8728-A55BD5762D59}: NameServer = 91.197.119.97,77.87.232.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{0D79B4D6-2520-48B2-8728-A55BD5762D59}: NameServer = 91.197.119.97,77.87.232.1
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: OpenVPN Service (OpenVPNService) - Unknown owner - C:\Program Files\OpenVPN\bin\openvpnserv.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: Fujitsu Diagnostic Testhandler (TestHandler) - Fujitsu Technology Solutions - C:\Program Files\Fujitsu\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe

--
End of file - 7025 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - c:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-02-15 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-02-15 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent []
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-07-16 16806400]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2008-02-28 141848]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2008-02-28 166424]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2008-02-28 137752]
"SynTPStart"=C:\Program Files\Synaptics\SynTP\SynTPStart.exe [2007-08-24 102400]
"UCam_Menu"=c:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [2007-09-13 222504]
"FIC HotKey"=C:\Program Files\Hotkey Utility\tray.exe [2008-08-28 770048]
"PowerManager"=C:\Program Files\Power Manager\PM.exe [2008-08-26 1675264]
"openvpn-gui"=C:\Program Files\OpenVPN\bin\openvpn-gui.exe [2005-08-18 99328]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2010-02-15 417792]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Documents and Settings\Catr\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2009-10-19 133104]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
c:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Documents and Settings\Catr\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2009-10-19 133104]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Windows Search.lnk - C:\Program Files\Windows Desktop Search\WindowsSearch.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2008-02-15 208896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\WINDOWS\Network Diagnostic\xpnetdiag.exe"="C:\WINDOWS\Network Diagnostic\xpnetdiag.exe:*:Disabled:@xpsp3res.dll,-20000"
"C:\WINDOWS\system32\sessmgr.exe"="C:\WINDOWS\system32\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======List of files/folders created in the last 1 months======

2010-04-01 15:39:46 ----D---- C:\rsit
2010-04-01 14:37:37 ----D---- C:\WINDOWS\pss
2010-04-01 12:44:39 ----D---- C:\Program Files\VITSOFT
2010-04-01 12:25:03 ----SHD---- C:\Config.Msi
2010-04-01 12:18:19 ----D---- C:\Program Files\Total Uninstall 5
2010-04-01 12:08:44 ----D---- C:\Documents and Settings\All Users\Data aplikací\Martau
2010-03-31 09:22:28 ----HDC---- C:\WINDOWS\$NtUninstallKB978262$
2010-03-31 09:21:38 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2010-03-31 09:21:04 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2010-03-31 09:20:41 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2010-03-31 09:20:17 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$
2010-03-31 09:19:51 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2010-03-31 09:19:21 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-03-31 09:18:51 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2010-03-31 09:18:22 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2010-03-31 09:17:48 ----HDC---- C:\WINDOWS\$NtUninstallKB968816_WM9$
2010-03-31 09:08:24 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2010-03-31 09:07:52 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2010-03-31 09:06:43 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2010-03-31 09:04:03 ----HDC---- C:\WINDOWS\$NtUninstallKB977165-v2$
2010-03-31 09:03:02 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2010-03-31 09:02:35 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2010-03-31 09:02:00 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2010-03-31 09:01:14 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2010-03-31 09:00:47 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2010-03-31 08:58:30 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2010-03-31 08:57:22 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2010-03-31 08:56:47 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2010-03-31 08:56:00 ----HDC---- C:\WINDOWS\$NtUninstallKB975561$
2010-03-31 08:55:23 ----HDC---- C:\WINDOWS\$NtUninstallKB978251$
2010-03-31 08:54:53 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2010-03-31 08:54:22 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2010-03-31 08:53:34 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2010-03-31 08:52:55 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2010-03-31 08:52:17 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2010-03-31 08:51:35 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2010-03-31 08:50:43 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2010-03-31 08:50:02 ----HDC---- C:\WINDOWS\$NtUninstallKB963093$
2010-03-31 08:48:15 ----HDC---- C:\WINDOWS\$NtUninstallKB973354$
2010-03-31 08:47:35 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2010-03-31 08:32:17 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2010-03-31 08:30:11 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2010-03-31 08:29:26 ----HDC---- C:\WINDOWS\$NtUninstallKB929399$
2010-03-31 08:28:39 ----HDC---- C:\WINDOWS\$NtUninstallKB939683$
2010-03-31 08:26:17 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2010-03-31 08:25:51 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2010-03-31 08:25:09 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2010-03-31 08:24:34 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2010-03-31 08:23:10 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2010-03-31 08:22:39 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2010-03-31 08:22:09 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2010-03-31 08:21:33 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2010-03-31 08:21:08 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2010-03-31 08:20:27 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2010-03-31 08:19:50 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2010-03-31 08:19:18 ----HDC---- C:\WINDOWS\$NtUninstallKB979306$
2010-03-31 08:18:40 ----HDC---- C:\WINDOWS\$NtUninstallKB954154_WM11$
2010-03-31 08:18:00 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2010-03-31 08:17:31 ----HDC---- C:\WINDOWS\$NtUninstallKB971961$
2010-03-31 08:17:02 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2010-03-31 08:16:05 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2010-03-31 08:12:23 ----HDC---- C:\WINDOWS\$NtUninstallKB969947$
2010-03-30 08:00:12 ----D---- C:\WINDOWS\system32\PreInstall
2010-03-30 08:00:08 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2010-03-29 20:34:45 ----D---- C:\Documents and Settings\Catr\Data aplikací\Malwarebytes
2010-03-29 20:34:08 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2010-03-29 20:34:06 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-03-29 20:11:43 ----SHD---- C:\RECYCLER
2010-03-29 18:53:24 ----A---- C:\Boot.bak
2010-03-29 18:52:51 ----RASHD---- C:\cmdcons
2010-03-29 14:22:03 ----D---- C:\WINDOWS\system32\NtmsData
2010-03-19 15:44:13 ----D---- C:\Documents and Settings\Catr\Data aplikací\Wireshark
2010-03-19 13:19:02 ----D---- C:\Program Files\WinPcap
2010-03-19 13:15:50 ----D---- C:\Program Files\Wireshark

======List of files/folders modified in the last 1 months======

2010-04-01 15:50:50 ----AD---- C:\WINDOWS\Prefetch
2010-04-01 15:42:17 ----A---- C:\WINDOWS\wincmd.ini
2010-04-01 15:37:30 ----AD---- C:\WINDOWS
2010-04-01 15:32:03 ----AD---- C:\WINDOWS\Temp
2010-04-01 15:29:18 ----N---- C:\WINDOWS\SchedLgU.Txt
2010-04-01 15:07:00 ----RAD---- C:\Program Files
2010-04-01 15:06:53 ----D---- C:\Documents and Settings\All Users\Data aplikací\Norton
2010-04-01 15:06:42 ----SHD---- C:\System Volume Information
2010-04-01 15:06:42 ----AD---- C:\Program Files\Common Files
2010-04-01 15:02:59 ----AD---- C:\WINDOWS\system32\drivers
2010-04-01 15:01:24 ----AD---- C:\WINDOWS\system32
2010-04-01 15:01:21 ----AHD---- C:\WINDOWS\inf
2010-04-01 15:00:57 ----ADC---- C:\WINDOWS\system32\DRVSTORE
2010-04-01 14:56:48 ----ASD---- C:\WINDOWS\Downloaded Program Files
2010-04-01 14:53:21 ----AD---- C:\WINDOWS\system32\CatRoot2
2010-04-01 12:25:22 ----SHD---- C:\WINDOWS\Installer
2010-04-01 12:07:25 ----AD---- C:\WINDOWS\system32\Restore
2010-04-01 07:59:08 ----AHD---- C:\WINDOWS\$hf_mig$
2010-04-01 07:49:17 ----AD---- C:\WINDOWS\Debug
2010-03-31 17:54:30 ----AD---- C:\WINDOWS\AppPatch
2010-03-31 17:54:29 ----AD---- C:\WINDOWS\system32\wbem
2010-03-31 17:54:29 ----AD---- C:\Program Files\Windows Desktop Search
2010-03-31 09:21:54 ----RASHD---- C:\WINDOWS\system32\dllcache
2010-03-31 09:19:56 ----AD---- C:\WINDOWS\WinSxS
2010-03-31 09:07:21 ----AD---- C:\WINDOWS\ie7updates
2010-03-31 08:56:11 ----AD---- C:\Program Files\Movie Maker
2010-03-31 08:48:20 ----AD---- C:\Program Files\Outlook Express
2010-03-29 20:05:20 ----ASD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2010-03-29 19:06:16 ----ASD---- C:\WINDOWS\Tasks
2010-03-29 19:03:48 ----A---- C:\WINDOWS\system.ini
2010-03-29 18:53:25 ----RASH---- C:\boot.ini
2010-03-29 18:45:53 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2010-03-29 14:22:01 ----AD---- C:\WINDOWS\repair
2010-03-29 14:21:18 ----AD---- C:\WINDOWS\Registration
2010-03-29 13:00:30 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-03-27 22:51:56 ----AD---- C:\Program Files\Common Files\Microsoft Shared
2010-03-26 14:48:28 ----D---- C:\Program Files\Mozilla Firefox
2010-03-21 20:29:41 ----D---- C:\PRACE
2010-03-20 13:11:11 ----D---- C:\Program Files\QuickTime
2010-03-20 12:57:44 ----D---- C:\Program Files\Safari
2010-03-07 20:35:38 ----D---- C:\musica
2010-03-05 14:13:56 ----D---- C:\Filmz

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 WINIO;WINIO; \??\C:\WINDOWS\system32\WinIo.sys []
R3 AR5416;Atheros AR5008 Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\athw.sys [2008-06-27 1315776]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-14 17024]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-14 101120]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-14 18944]
R3 CmBatt;Microsoft AC Adapter Driver; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-14 13952]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2008-02-15 5854752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-07-16 4747776]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-14 59136]
R3 RSUSBSTOR;RTS5121.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RTS5121.sys [2008-03-27 153600]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2008-05-07 106368]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2007-08-24 213632]
R3 tap0801;TAP-Win32 Adapter V8; C:\WINDOWS\system32\DRIVERS\tap0801.sys [2006-10-01 26624]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-14 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-14 121984]
S3 BTHPORT;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272128]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys []
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 NPF;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2009-10-20 50704]
S3 Ser2pl;Prolific2 Serial port driver; C:\WINDOWS\system32\DRIVERS\ser2pl.sys [2005-07-25 48640]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 sr;Ovladač filtru Obnovy systému; C:\WINDOWS\system32\DRIVERS\sr.sys [2008-04-14 73344]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-02-15 153376]
R2 TestHandler;Fujitsu Diagnostic Testhandler; C:\Program Files\Fujitsu\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe [2009-02-19 341264]
R3 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
S2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 268288]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-11-20 136120]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 OpenVPNService;OpenVPN Service; C:\Program Files\OpenVPN\bin\openvpnserv.exe [2006-10-01 16384]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files\WinPcap\rpcapd.exe [2009-10-20 117264]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]

-----------------EOF-----------------

#21 Příspěvek od **Caroprd111** » 01 dub 2010 15:48

Znovu spusťte OTL a klikněte na "CleanUp", poté potvrďte požadavek na restart PC.

Obrázek

Doporučuji aktualizovat Adobe Reader http://www.stahuj.centrum.cz/podnikani_ ... batreader/

Obrázek

V logu nevidím antivir a firewall, doinstalujte

http://www.viry.cz/forum/viewtopic.php?f=29&t=6152 + http://www.viry.cz/forum/viewtopic.php?f=41&t=6523

VIRY.CZ

Zpomalení compu, vysoké vytížení procáku

Re: Zpomalení compu, vysoké vytížení procáku

Re: Zpomalení compu, vysoké vytížení procáku

Re: Zpomalení compu, vysoké vytížení procáku

Re: Zpomalení compu, vysoké vytížení procáku

Re: Zpomalení compu, vysoké vytížení procáku

Re: Zpomalení compu, vysoké vytížení procáku