Pc vypadá OK, nejsem si však jistý

[kentus CZE]

Zdravím a přeji pěkný večer... Dostal jsem od kamaráda, který si pořídil nový stroj starší PC, který zpočátku běžel zcela bezchybně, ale po několika měsících se začaly objevovat problémy...Pomalý start Windows, dlouhé načítání před programů... občasné záseky... Víceméně vše jsem myslím odstranil, povypánal zbytečné programy po spuštění a podobně... dá se říct, že jsem se snažil jet podle rad tady na foru... vypadá v pořádku, ale zdá se mi že občas (např. při prohlížení netu či videí na netu) se občas (dá se řící periodicky ale ne zcela pravidelně ne přímo zasekne,(zvuk běží) jen se zasekne obraz na pár vteřin a neraguje prohlížeč, případně přestane odpovídat... to vše na nejvýše deset, patnáct vteřin... někdy méně... Ovladače, kodeky a podobně (v podstatě vše potřebné k přehrávačům a podobně je v pořádku (cca před týdnem dvěma vše fungovalo jak má... (Vím, že není rozdělený disk, a vše je na systémovém, ale než se dostanu k novému, chtěl bych systém vyčistit a nový používat klasicky pro vše ostatní kromě systému, a do formátování se mi zase nechce...přece jen vypadá zdánlivě v pořádku) přikládám log a předem děkuji...




Logfile of random's system information tool 1.08 (written by random/random)
Run by a at 2010-11-28 18:33:42
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 26 GB (34%) free of 76 GB
Total RAM: 1535 MB (65% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:34:18, on 28.11.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
C:\WINDOWS\system32\atiptaxx.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\a\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\QIP 2010\qip.exe
C:\Program Files\Java\jre6\bin\jucheck.exe
C:\WINDOWS\system32\svchost.exe
C:\Documents and Settings\a\Plocha\Nová složka (3)\RSIT.exe
C:\Program Files\trend micro\a.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [AtiPTA] atiptaxx.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\a\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html
O9 - Extra button: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files\ICQ7.0\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files\ICQ7.0\ICQ.exe
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 7511914859
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 7512023875
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\Skype4COM.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe

--
End of file - 7336 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
C:\WINDOWS\tasks\AWC Update.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1cb709b46de4b2a.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-839522115-1708537768-2147040963-1003Core1cb722d6348c7c0.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-10-26 297648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll [2010-10-26 843832]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-03-02 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-03-02 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-10-26 297648]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2004-11-15 77824]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2010-03-02 149280]
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2010-06-28 2837864]
"AtiPTA"=C:\WINDOWS\system32\atiptaxx.exe [2005-06-28 344064]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Google Update"=C:\Documents and Settings\a\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2010-04-29 136176]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2006-05-03 61440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SynchronousMachineGroupPolicy"=0
"SynchronousUserGroupPolicy"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoSMBalloonTip"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoStrCmpLogical"=1
"NoResolveSearch"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ICQ7.0\ICQ.exe"="C:\Program Files\ICQ7.0\ICQ.exe:*:Enabled:ICQ7"
"C:\Program Files\ICQ7.0\aolload.exe"="C:\Program Files\ICQ7.0\aolload.exe:*:Enabled:aolload.exe"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Microsoft Games\Halo\halo.exe"="C:\Program Files\Microsoft Games\Halo\halo.exe:*:Enabled:Halo"
"C:\Program Files\QIP 2010\qip.exe"="C:\Program Files\QIP 2010\qip.exe:*:Enabled:QIP 2010"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\radim\lfs game\y\LFS.exe"="C:\radim\lfs game\y\LFS.exe:*:Enabled:LFS"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ICQ7.0\ICQ.exe"="C:\Program Files\ICQ7.0\ICQ.exe:*:Enabled:ICQ7"
"C:\Program Files\ICQ7.0\aolload.exe"="C:\Program Files\ICQ7.0\aolload.exe:*:Enabled:aolload.exe"

======List of files/folders created in the last 1 months======

2010-11-28 18:33:43 ----D---- C:\Program Files\trend micro
2010-11-28 18:33:42 ----D---- C:\rsit
2010-11-28 18:13:56 ----D---- C:\WINDOWS\LastGood
2010-11-28 18:13:52 ----D---- C:\Program Files\Secunia
2010-11-28 17:14:26 ----D---- C:\Program Files\VS Revo Group
2010-11-28 17:12:36 ----SHD---- C:\Config.Msi
2010-11-28 17:05:19 ----D---- C:\WINDOWS\system32\appmgmt
2010-11-28 17:02:10 ----A---- C:\WINDOWS\imsins.BAK
2010-11-27 21:36:21 ----A---- C:\WINDOWS\system32\lsdelete.exe
2010-11-27 19:58:28 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-11-27 19:58:28 ----A---- C:\WINDOWS\system32\drivers\Lbd.sys
2010-11-27 19:58:00 ----HDC---- C:\Documents and Settings\All Users\Data aplikací\{83C91755-2546-441D-AC40-9A6B4B860800}
2010-11-27 19:57:46 ----D---- C:\Program Files\Lavasoft
2010-11-27 19:19:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\Lavasoft
2010-11-25 21:04:41 ----D---- C:\Documents and Settings\a\Data aplikací\Malwarebytes
2010-11-25 21:04:23 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2010-11-25 21:04:22 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-11-25 21:04:22 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2010-11-25 21:04:22 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2010-11-25 19:22:44 ----D---- C:\WINDOWS\pss
2010-11-25 19:17:19 ----HD---- C:\WINDOWS\system32\GroupPolicy
2010-11-25 19:03:41 ----D---- C:\Documents and Settings\All Users\Data aplikací\IObit
2010-11-25 18:18:03 ----D---- C:\Program Files\IObit
2010-11-25 18:18:03 ----D---- C:\Documents and Settings\a\Data aplikací\IObit
2010-11-25 17:51:40 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-11-25 17:47:36 ----D---- C:\Documents and Settings\a\Data aplikací\TuneUp Software
2010-11-25 17:45:09 ----SHD---- C:\Documents and Settings\All Users\Data aplikací\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
2010-11-25 15:36:35 ----D---- C:\WINDOWS\Speeditup Free
2010-11-25 15:36:27 ----A---- C:\WINDOWS\Speeditup Free Setup Log.txt
2010-11-24 23:22:03 ----D---- C:\Program Files\CCleaner
2010-11-23 21:47:00 ----HD---- C:\WINDOWS\msdownld.tmp
2010-11-23 21:40:05 ----D---- C:\Documents and Settings\a\Data aplikací\Nero
2010-11-23 21:37:40 ----D---- C:\Program Files\Nero
2010-11-23 21:37:22 ----D---- C:\Documents and Settings\All Users\Data aplikací\Nero
2010-11-23 21:37:21 ----D---- C:\Program Files\Common Files\Nero
2010-11-23 21:17:37 ----D---- C:\Program Files\ConduitEngine
2010-11-23 21:17:33 ----D---- C:\Program Files\BitTorrentBar
2010-11-22 23:16:39 ----D---- C:\Program Files\Windows Installer Clean Up
2010-11-22 23:16:26 ----D---- C:\Program Files\MSECACHE
2010-11-22 20:19:17 ----D---- C:\Documents and Settings\a\Data aplikací\Microsoft Game Studios
2010-11-20 00:45:14 ----D---- C:\Program Files\Speeditup Free
2010-11-17 21:11:20 ----D---- C:\Program Files\Microsoft Silverlight
2010-11-06 14:56:14 ----N---- C:\WINDOWS\system32\spmsg.dll
2010-11-06 11:52:18 ----D---- C:\Documents and Settings\a\Data aplikací\dvdcss
2010-11-05 09:30:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2010-11-05 09:30:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2279986$
2010-11-05 09:30:27 ----HDC---- C:\WINDOWS\$NtUninstallKB982214$
2010-11-05 09:30:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$
2010-11-05 09:29:54 ----HDC---- C:\WINDOWS\$NtUninstallKB2259922$
2010-11-05 09:29:31 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2010-11-05 09:29:14 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$
2010-11-05 09:29:00 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$
2010-11-05 09:28:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2010-11-05 09:28:36 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2010-11-05 09:26:51 ----HDC---- C:\WINDOWS\$NtUninstallKB2347290$
2010-11-05 09:26:27 ----HDC---- C:\WINDOWS\$NtUninstallKB981852$
2010-11-05 09:26:00 ----HDC---- C:\WINDOWS\$NtUninstallKB2079403$
2010-11-05 09:24:33 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2010-11-05 09:24:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2121546$
2010-11-05 09:10:12 ----HDC---- C:\WINDOWS\$NtUninstallKB980436$
2010-11-05 09:10:03 ----HDC---- C:\WINDOWS\$NtUninstallKB981322$
2010-11-05 09:00:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2286198$
2010-11-05 08:57:05 ----HDC---- C:\WINDOWS\$NtUninstallKB981957$
2010-11-05 08:53:52 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$
2010-11-05 08:47:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2141007$
2010-11-05 08:45:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2158563$
2010-11-05 08:44:38 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$
2010-11-05 08:42:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2360937$

======List of files/folders modified in the last 1 months======

2010-11-28 18:33:50 ----D---- C:\WINDOWS\Prefetch
2010-11-28 18:33:43 ----RD---- C:\Program Files
2010-11-28 18:14:02 ----D---- C:\WINDOWS\system32\drivers
2010-11-28 18:14:01 ----HD---- C:\WINDOWS\inf
2010-11-28 18:13:56 ----D---- C:\WINDOWS
2010-11-28 18:13:53 ----D---- C:\WINDOWS\system32\CatRoot2
2010-11-28 17:58:02 ----D---- C:\radim
2010-11-28 17:42:44 ----D---- C:\WINDOWS\Temp
2010-11-28 17:13:00 ----SHD---- C:\WINDOWS\Installer
2010-11-28 17:06:57 ----RD---- C:\Program Files\Skype
2010-11-28 17:06:57 ----D---- C:\WINDOWS\Debug
2010-11-28 17:06:38 ----A---- C:\WINDOWS\system32\MRT.exe
2010-11-28 17:05:48 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-11-28 17:05:48 ----D---- C:\WINDOWS\system32
2010-11-28 17:05:45 ----HDC---- C:\WINDOWS\$NtUninstallKB929399$
2010-11-28 17:05:17 ----SD---- C:\WINDOWS\Tasks
2010-11-28 17:05:04 ----HDC---- C:\WINDOWS\$NtUninstallKB939683$
2010-11-28 17:01:53 ----HDC---- C:\WINDOWS\$NtUninstallKB954154_WM11$
2010-11-27 19:43:12 ----D---- C:\Program Files\Common Files
2010-11-27 10:47:18 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2010-11-25 21:24:11 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2010-11-25 18:59:03 ----D---- C:\WINDOWS\system32\config
2010-11-25 18:37:18 ----D---- C:\WINDOWS\system32\CatRoot
2010-11-25 15:36:16 ----D---- C:\Documents and Settings\a\Data aplikací\Uniblue
2010-11-23 21:49:12 ----D---- C:\WINDOWS\system32\wbem
2010-11-23 21:49:10 ----D---- C:\WINDOWS\Registration
2010-11-23 21:47:28 ----D---- C:\WINDOWS\system32\DirectX
2010-11-23 21:46:56 ----D---- C:\Program Files\Spybot - Search & Destroy
2010-11-23 21:46:22 ----D---- C:\Program Files\Microsoft Games
2010-11-23 21:45:43 ----D---- C:\WINDOWS\system32\Restore
2010-11-23 21:36:12 ----D---- C:\WINDOWS\WinSxS
2010-11-23 20:47:36 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2010-11-23 19:36:38 ----D---- C:\Program Files\QIP 2010
2010-11-23 17:59:47 ----D---- C:\WINDOWS\system32\drivers\etc
2010-11-22 23:43:50 ----D---- C:\Documents and Settings\a\Data aplikací\Skype
2010-11-22 23:32:17 ----D---- C:\Documents and Settings\a\Data aplikací\skypePM
2010-11-22 23:16:40 ----SD---- C:\Documents and Settings\a\Data aplikací\Microsoft
2010-11-06 14:55:59 ----D---- C:\Program Files\Windows Media Player
2010-11-06 14:55:43 ----D---- C:\WINDOWS\Help
2010-11-06 10:25:43 ----D---- C:\Documents and Settings\a\Data aplikací\vlc
2010-11-05 11:36:29 ----D---- C:\WINDOWS\Microsoft.NET
2010-11-05 11:36:23 ----RSD---- C:\WINDOWS\assembly
2010-11-05 09:32:27 ----A---- C:\WINDOWS\win.ini
2010-11-05 09:30:50 ----HD---- C:\WINDOWS\$hf_mig$
2010-11-05 09:23:41 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-11-05 09:17:35 ----D---- C:\Program Files\Internet Explorer
2010-11-05 09:17:08 ----D---- C:\WINDOWS\ie8updates
2010-11-05 08:53:55 ----D---- C:\Program Files\Movie Maker

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 agp440;Filtr Intel sběrnice AGP; C:\WINDOWS\system32\DRIVERS\agp440.sys [2008-04-14 42368]
R0 Lbd;Lbd; C:\WINDOWS\system32\DRIVERS\Lbd.sys [2009-01-18 64160]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI VIA; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-05-15 691696]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2010-06-28 28880]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2010-06-28 165456]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2010-06-28 46672]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2010-06-28 17744]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2010-06-28 100176]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-11-17 2297664]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2010-06-28 23376]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2006-05-03 1540608]
R3 FilterService;UVC Filter Service; C:\WINDOWS\system32\DRIVERS\lvuvcflt.sys [2005-12-06 14080]
R3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2010-05-25 25280]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 Lvckap;Logitech Kernel Audio Processing Filter Driver; \??\C:\WINDOWS\system32\drivers\Lvckap.sys []
R3 lvmvdrv;Logitech Machine Vision Engine Loader; \??\C:\WINDOWS\system32\drivers\lvmvdrv.sys []
R3 lvpopflt;Logitech POP Suppression Filter; C:\WINDOWS\system32\DRIVERS\lvpopflt.sys [2005-12-06 2010240]
R3 LVPrcMon;Logitech LVPrcMon Driver; \??\C:\WINDOWS\system32\drivers\LVPrcMon.sys []
R3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\lvusbsta.sys [2005-12-06 39424]
R3 LVUVC;Logitech QuickCam Pro 5000(UVC); C:\WINDOWS\system32\DRIVERS\lvuvc.sys [2005-12-06 1103488]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
R3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; C:\WINDOWS\system32\drivers\WmBEnum.sys [2007-09-13 19352]
R3 WmFilter;Logitech Gaming HID Filter Driver; C:\WINDOWS\system32\drivers\WmFilter.sys [2007-09-13 29976]
R3 WmHidLo;Logitech Gaming USB Filter Driver; C:\WINDOWS\system32\drivers\WmHidLo.sys [2007-09-13 29208]
R3 WmXlCore;Logitech Translation Layer Driver; C:\WINDOWS\system32\drivers\WmXlCore.sys [2007-09-13 51608]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S3 agjvxjc1;agjvxjc1; C:\WINDOWS\system32\drivers\agjvxjc1.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 PSI;PSI; C:\WINDOWS\system32\DRIVERS\psi_mf.sys [2008-06-16 7808]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WmVirHid;Logitech Virtual Hid Device Driver; C:\WINDOWS\system32\drivers\WmVirHid.sys [2007-09-13 14744]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2006-05-03 413696]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-03-02 153376]
R2 LVPrcSrv;Logitech Process Monitor; c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe [2005-12-09 81920]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2006-05-03 520192]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-04-29 135664]
S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2009-01-18 921936]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-04-26 182768]
S3 idsvc;Služba Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

[cernohous13]

Zdravím,

nevidím tam nic škodlivého, jen bych ti zkusil doporučit nějaké čištění.

Máš tam REVO uninstaller - pokud má v nabídce:
- AWC (by IObit) - provádí nekontrolovatelné akce
- Spybot - Search & Destroy
- Ad-Aware (by Lavasoft)
odinstaluj, Avast to zvládne za ně + občasná kontrola MBAM
(jinak ty zbytky odpálíme scriptem)

Smaž všechny naplánované úlohy ve složce C:\WINDOWS\tasks\

nový RSIT + výsledek pokusů o odinstalaci

[kentus CZE]

Logfile of random's system information tool 1.08 (written by random/random)
Run by a at 2010-11-28 21:53:06
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 26 GB (34%) free of 76 GB
Total RAM: 1535 MB (67% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:53:22, on 28.11.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
C:\WINDOWS\system32\atiptaxx.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\a\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\svchost.exe
C:\Documents and Settings\a\Plocha\Nová složka (3)\RSIT.exe
C:\Program Files\trend micro\a.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [AtiPTA] atiptaxx.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\a\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html
O9 - Extra button: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files\ICQ7.0\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files\ICQ7.0\ICQ.exe
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 7511914859
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 7512023875
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\Skype4COM.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe

--
End of file - 6800 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-10-26 297648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll [2010-10-26 843832]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-03-02 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-03-02 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-10-26 297648]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2004-11-15 77824]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2010-03-02 149280]
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2010-06-28 2837864]
"AtiPTA"=C:\WINDOWS\system32\atiptaxx.exe [2005-06-28 344064]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Google Update"=C:\Documents and Settings\a\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2010-04-29 136176]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2006-05-03 61440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SynchronousMachineGroupPolicy"=0
"SynchronousUserGroupPolicy"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoSMBalloonTip"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoStrCmpLogical"=1
"NoResolveSearch"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ICQ7.0\ICQ.exe"="C:\Program Files\ICQ7.0\ICQ.exe:*:Enabled:ICQ7"
"C:\Program Files\ICQ7.0\aolload.exe"="C:\Program Files\ICQ7.0\aolload.exe:*:Enabled:aolload.exe"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Microsoft Games\Halo\halo.exe"="C:\Program Files\Microsoft Games\Halo\halo.exe:*:Enabled:Halo"
"C:\Program Files\QIP 2010\qip.exe"="C:\Program Files\QIP 2010\qip.exe:*:Enabled:QIP 2010"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\radim\lfs game\y\LFS.exe"="C:\radim\lfs game\y\LFS.exe:*:Enabled:LFS"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ICQ7.0\ICQ.exe"="C:\Program Files\ICQ7.0\ICQ.exe:*:Enabled:ICQ7"
"C:\Program Files\ICQ7.0\aolload.exe"="C:\Program Files\ICQ7.0\aolload.exe:*:Enabled:aolload.exe"

======List of files/folders created in the last 1 months======

2010-11-28 18:33:43 ----D---- C:\Program Files\trend micro
2010-11-28 18:33:42 ----D---- C:\rsit
2010-11-28 18:13:52 ----D---- C:\Program Files\Secunia
2010-11-28 17:14:26 ----D---- C:\Program Files\VS Revo Group
2010-11-28 17:05:19 ----D---- C:\WINDOWS\system32\appmgmt
2010-11-28 17:02:10 ----A---- C:\WINDOWS\imsins.BAK
2010-11-27 19:58:28 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-11-27 19:19:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\Lavasoft
2010-11-25 21:04:41 ----D---- C:\Documents and Settings\a\Data aplikací\Malwarebytes
2010-11-25 21:04:23 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2010-11-25 21:04:22 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-11-25 21:04:22 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2010-11-25 21:04:22 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2010-11-25 19:22:44 ----D---- C:\WINDOWS\pss
2010-11-25 19:17:19 ----HD---- C:\WINDOWS\system32\GroupPolicy
2010-11-25 19:03:41 ----D---- C:\Documents and Settings\All Users\Data aplikací\IObit
2010-11-25 18:18:03 ----D---- C:\Program Files\IObit
2010-11-25 18:18:03 ----D---- C:\Documents and Settings\a\Data aplikací\IObit
2010-11-25 17:51:40 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-11-25 17:47:36 ----D---- C:\Documents and Settings\a\Data aplikací\TuneUp Software
2010-11-25 17:45:09 ----SHD---- C:\Documents and Settings\All Users\Data aplikací\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
2010-11-25 15:36:35 ----D---- C:\WINDOWS\Speeditup Free
2010-11-25 15:36:27 ----A---- C:\WINDOWS\Speeditup Free Setup Log.txt
2010-11-24 23:22:03 ----D---- C:\Program Files\CCleaner
2010-11-23 21:47:00 ----HD---- C:\WINDOWS\msdownld.tmp
2010-11-23 21:40:05 ----D---- C:\Documents and Settings\a\Data aplikací\Nero
2010-11-23 21:37:40 ----D---- C:\Program Files\Nero
2010-11-23 21:37:22 ----D---- C:\Documents and Settings\All Users\Data aplikací\Nero
2010-11-23 21:37:21 ----D---- C:\Program Files\Common Files\Nero
2010-11-23 21:17:37 ----D---- C:\Program Files\ConduitEngine
2010-11-23 21:17:33 ----D---- C:\Program Files\BitTorrentBar
2010-11-22 23:16:39 ----D---- C:\Program Files\Windows Installer Clean Up
2010-11-22 23:16:26 ----D---- C:\Program Files\MSECACHE
2010-11-22 20:19:17 ----D---- C:\Documents and Settings\a\Data aplikací\Microsoft Game Studios
2010-11-20 00:45:14 ----D---- C:\Program Files\Speeditup Free
2010-11-17 21:11:20 ----D---- C:\Program Files\Microsoft Silverlight
2010-11-06 14:56:14 ----N---- C:\WINDOWS\system32\spmsg.dll
2010-11-06 11:52:18 ----D---- C:\Documents and Settings\a\Data aplikací\dvdcss
2010-11-05 09:30:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2010-11-05 09:30:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2279986$
2010-11-05 09:30:27 ----HDC---- C:\WINDOWS\$NtUninstallKB982214$
2010-11-05 09:30:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$
2010-11-05 09:29:54 ----HDC---- C:\WINDOWS\$NtUninstallKB2259922$
2010-11-05 09:29:31 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2010-11-05 09:29:14 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$
2010-11-05 09:29:00 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$
2010-11-05 09:28:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2010-11-05 09:28:36 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2010-11-05 09:26:51 ----HDC---- C:\WINDOWS\$NtUninstallKB2347290$
2010-11-05 09:26:27 ----HDC---- C:\WINDOWS\$NtUninstallKB981852$
2010-11-05 09:26:00 ----HDC---- C:\WINDOWS\$NtUninstallKB2079403$
2010-11-05 09:24:33 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2010-11-05 09:24:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2121546$
2010-11-05 09:10:12 ----HDC---- C:\WINDOWS\$NtUninstallKB980436$
2010-11-05 09:10:03 ----HDC---- C:\WINDOWS\$NtUninstallKB981322$
2010-11-05 09:00:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2286198$
2010-11-05 08:57:05 ----HDC---- C:\WINDOWS\$NtUninstallKB981957$
2010-11-05 08:53:52 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$
2010-11-05 08:47:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2141007$
2010-11-05 08:45:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2158563$
2010-11-05 08:44:38 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$
2010-11-05 08:42:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2360937$

======List of files/folders modified in the last 1 months======

2010-11-28 21:52:34 ----D---- C:\WINDOWS\Temp
2010-11-28 21:51:45 ----D---- C:\WINDOWS
2010-11-28 21:50:53 ----RD---- C:\Program Files
2010-11-28 21:49:59 ----D---- C:\WINDOWS\system32\CatRoot2
2010-11-28 21:48:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2010-11-28 21:45:22 ----SHD---- C:\WINDOWS\Installer
2010-11-28 21:45:09 ----D---- C:\WINDOWS\system32\drivers
2010-11-28 21:45:08 ----D---- C:\WINDOWS\system32
2010-11-28 21:44:07 ----SD---- C:\WINDOWS\Tasks
2010-11-28 19:00:34 ----D---- C:\Documents and Settings\a\Data aplikací\Skype
2010-11-28 19:00:17 ----D---- C:\Documents and Settings\a\Data aplikací\skypePM
2010-11-28 19:00:08 ----D---- C:\WINDOWS\Prefetch
2010-11-28 18:14:01 ----HD---- C:\WINDOWS\inf
2010-11-28 17:58:02 ----D---- C:\radim
2010-11-28 17:06:57 ----RD---- C:\Program Files\Skype
2010-11-28 17:06:57 ----D---- C:\WINDOWS\Debug
2010-11-28 17:06:38 ----A---- C:\WINDOWS\system32\MRT.exe
2010-11-28 17:05:48 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-11-28 17:05:45 ----HDC---- C:\WINDOWS\$NtUninstallKB929399$
2010-11-28 17:05:04 ----HDC---- C:\WINDOWS\$NtUninstallKB939683$
2010-11-28 17:01:53 ----HDC---- C:\WINDOWS\$NtUninstallKB954154_WM11$
2010-11-27 19:43:12 ----D---- C:\Program Files\Common Files
2010-11-27 10:47:18 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2010-11-25 18:59:03 ----D---- C:\WINDOWS\system32\config
2010-11-25 18:37:18 ----D---- C:\WINDOWS\system32\CatRoot
2010-11-25 15:36:16 ----D---- C:\Documents and Settings\a\Data aplikací\Uniblue
2010-11-23 21:49:12 ----D---- C:\WINDOWS\system32\wbem
2010-11-23 21:49:10 ----D---- C:\WINDOWS\Registration
2010-11-23 21:47:28 ----D---- C:\WINDOWS\system32\DirectX
2010-11-23 21:46:22 ----D---- C:\Program Files\Microsoft Games
2010-11-23 21:45:43 ----D---- C:\WINDOWS\system32\Restore
2010-11-23 21:36:12 ----D---- C:\WINDOWS\WinSxS
2010-11-23 20:47:36 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2010-11-23 19:36:38 ----D---- C:\Program Files\QIP 2010
2010-11-23 17:59:47 ----D---- C:\WINDOWS\system32\drivers\etc
2010-11-22 23:16:40 ----SD---- C:\Documents and Settings\a\Data aplikací\Microsoft
2010-11-06 14:55:59 ----D---- C:\Program Files\Windows Media Player
2010-11-06 14:55:43 ----D---- C:\WINDOWS\Help
2010-11-06 10:25:43 ----D---- C:\Documents and Settings\a\Data aplikací\vlc
2010-11-05 11:36:29 ----D---- C:\WINDOWS\Microsoft.NET
2010-11-05 11:36:23 ----RSD---- C:\WINDOWS\assembly
2010-11-05 09:32:27 ----A---- C:\WINDOWS\win.ini
2010-11-05 09:30:50 ----HD---- C:\WINDOWS\$hf_mig$
2010-11-05 09:23:41 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-11-05 09:17:35 ----D---- C:\Program Files\Internet Explorer
2010-11-05 09:17:08 ----D---- C:\WINDOWS\ie8updates
2010-11-05 08:53:55 ----D---- C:\Program Files\Movie Maker

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 agp440;Filtr Intel sběrnice AGP; C:\WINDOWS\system32\DRIVERS\agp440.sys [2008-04-14 42368]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI VIA; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-05-15 691696]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2010-06-28 28880]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2010-06-28 165456]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2010-06-28 46672]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2010-06-28 17744]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2010-06-28 100176]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-11-17 2297664]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2010-06-28 23376]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2006-05-03 1540608]
R3 FilterService;UVC Filter Service; C:\WINDOWS\system32\DRIVERS\lvuvcflt.sys [2005-12-06 14080]
R3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2010-05-25 25280]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 Lvckap;Logitech Kernel Audio Processing Filter Driver; \??\C:\WINDOWS\system32\drivers\Lvckap.sys []
R3 lvmvdrv;Logitech Machine Vision Engine Loader; \??\C:\WINDOWS\system32\drivers\lvmvdrv.sys []
R3 lvpopflt;Logitech POP Suppression Filter; C:\WINDOWS\system32\DRIVERS\lvpopflt.sys [2005-12-06 2010240]
R3 LVPrcMon;Logitech LVPrcMon Driver; \??\C:\WINDOWS\system32\drivers\LVPrcMon.sys []
R3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\lvusbsta.sys [2005-12-06 39424]
R3 LVUVC;Logitech QuickCam Pro 5000(UVC); C:\WINDOWS\system32\DRIVERS\lvuvc.sys [2005-12-06 1103488]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
R3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; C:\WINDOWS\system32\drivers\WmBEnum.sys [2007-09-13 19352]
R3 WmFilter;Logitech Gaming HID Filter Driver; C:\WINDOWS\system32\drivers\WmFilter.sys [2007-09-13 29976]
R3 WmHidLo;Logitech Gaming USB Filter Driver; C:\WINDOWS\system32\drivers\WmHidLo.sys [2007-09-13 29208]
R3 WmXlCore;Logitech Translation Layer Driver; C:\WINDOWS\system32\drivers\WmXlCore.sys [2007-09-13 51608]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S3 azi9c4so;azi9c4so; C:\WINDOWS\system32\drivers\azi9c4so.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 PSI;PSI; C:\WINDOWS\system32\DRIVERS\psi_mf.sys [2008-06-16 7808]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WmVirHid;Logitech Virtual Hid Device Driver; C:\WINDOWS\system32\drivers\WmVirHid.sys [2007-09-13 14744]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2006-05-03 413696]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-03-02 153376]
R2 LVPrcSrv;Logitech Process Monitor; c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe [2005-12-09 81920]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2006-05-03 520192]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-04-29 135664]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-04-26 182768]
S3 idsvc;Služba Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------




AWC jsem si v logu vsiml ale nasel jsem pouze slozku v C:\Documents and Settings\a\Data aplikací\IObit\Advanced SystemCare kde se nachazi par zbytkovych souboru... pomuze odstranit rucni smazani ? Prozatim jsem ponechal... Revo v posledni dobe dost pomohl, Spybot jsem pouzival nekolik let a zatim zadny problem, pokud ale tedy postacuje avast, smazal jsem... A MBAM nasel dve chyby, po odstraneni vyrazny narust vykonu (MBAM byl den pred tim nez jsem zalozil tema - jeden ze zpusobu "leceni") Mam nyní stažen ještě Zone firewall, budu instalovat az po vyreseni... Jinak od poslani logu to vypada ze PC zatim posloucha...ale prece jen si chci byt stoprocentne jisty:-)

[cernohous13]

Jestli ještě vydržíš, dám něco dohromady. - jinak můžeš provést zítra

[kentus CZE]

V pořádku, chápu že to je asi náročnější práce:-) Tolik lidí... Pokud se tu objeví něco ještě dnes večer, není problém, moje spaní je dost problematický Jinak samozřejmě klidně počkám do zítra;-) Zatím moc děkuju za ochotu...

[cernohous13]

Stáhni OTM z jednoho odkazu a rozbal nejlépe na plochu.
http://oldtimer.geekstogo.com/OTM.exe
http://www.itxassociates.com/OT-Tools/OTM.exe

Spusť program „OTM.exe“
Do okna pod žlutou čáru vlož celý text zeleným písmem ze „Scriptu“

Klikni na červené „Moveit!“
Do své odpovědi vlož obsah zeleného okna
Při nabídce restartu „YES“
a log potom najdeš v C:\_OTM\MovedFiles\

OTM script

Kód: Vybrat vše

:Processes
explorer.exe

:Files
C:\Documents and Settings\All Users\Data aplikací\Lavasoft
C:\Documents and Settings\All Users\Data aplikací\IObit
C:\Program Files\IObit
C:\Documents and Settings\a\Data aplikací\IObit
C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
C:\Documents and Settings\a\Data aplikací\Uniblue
C:\Windows\system32\*.tmp.dll /s
C:\Windows\system32\SET*.tmp /s
C:\Windows\*.tmp /s

:Reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=-

:Services
gupdate
gusvc

:commands
[PURITY]
[RESETHOSTS]
[EMPTYTEMP]
[EMPTYFLASH]
[CLEARALLRESTOREPOINTS]

Stáhni TempFolderCleaner http://www.itxassociates.com/OT-Tools/TFC.exe
Zavři všechny programy a spusť. Po ukončení akce bude PC restartován.
Pokud ne, restartuj sám.
(čistí Temp složky , nečistí URL, historii, prefetch ani cookies)

Pokud máš chuť vyzkoušet

Vyčistíme registry
Stáhni, nainstaluj a spusť - http://www.softpedia.com/get/Tweak/Regi ... -Fix.shtml
na poslední záložce Setting -> Select language -> CzeCh (podle potřeby)
pak -> Vybrat vše a klik na ikonu Sken
další práce je intuitivní - program je user friendly
v Centru obnovy jsou uloženy zálohy pro případný návrat.

ráno ti zkouknu logy OTM + nový RSIT + popis chování PC
a uklidím po sobě - dobrou...

[kentus CZE]

Takže nejdříve k OTM... Nepodařilo se mi zkopírovat text "pod zelenou čarou", poněvadž to vypadalo, že program běží bez exploreru...Nemohl jsem tedy nikam vložit:-( V podstatě jediné okno, které zbylo na ploše při jeho činosti bylo právě to s OTM... a ten po skončení nabídl pouze restart... (Program teda vypadal jinak, než na vloženém obrázu, takže to bude buď novější verzí, nebo bude problém mezi klávesnicí a židlí...) Pokud jde "vylovit" dodatečně, přidám...

a LOG:

All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
========== FILES ==========
C:\Documents and Settings\All Users\Data aplikací\Lavasoft\MiniMessage folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Lavasoft\License folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Lavasoft folder moved successfully.
File/Folder C:\Documents and Settings\All Users\Data aplikací\IObit not found.
C:\Program Files\IObit\Advanced SystemCare 3\Update folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 3\Skin\White folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 3\Skin\Black folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 3\Skin folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 3\News\Css folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 3\News folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 3\Language folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 3\Images folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 3\Backup folder moved successfully.
C:\Program Files\IObit\Advanced SystemCare 3 folder moved successfully.
C:\Program Files\IObit folder moved successfully.
C:\Documents and Settings\a\Data aplikací\IObit\Advanced SystemCare\Backup\Registry folder moved successfully.
C:\Documents and Settings\a\Data aplikací\IObit\Advanced SystemCare\Backup folder moved successfully.
C:\Documents and Settings\a\Data aplikací\IObit\Advanced SystemCare folder moved successfully.
C:\Documents and Settings\a\Data aplikací\IObit folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy folder moved successfully.
C:\Documents and Settings\a\Data aplikací\Uniblue folder moved successfully.
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
C:\Windows\msdownld.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP14.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP15.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP162.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1B.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP20D.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP227.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP234.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP258.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP25B.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP301.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP30E.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP3E4.tmp folder moved successfully.
C:\Windows\Installer\MSI12.tmp moved successfully.
C:\Windows\Installer\MSI23C.tmp moved successfully.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Google Update deleted successfully.
========== SERVICES/DRIVERS ==========
Service gupdate stopped successfully!
Service gupdate deleted successfully!
Service gusvc stopped successfully!
Service gusvc deleted successfully!
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: a
->Temp folder emptied: 2250027 bytes
->Temporary Internet Files folder emptied: 1353032 bytes
->Java cache emptied: 1 bytes
->FireFox cache emptied: 134136329 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 23267 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 33251 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 31236610 bytes

Total Files Cleaned = 161,00 mb


Restore points cleared and new OTM Restore Point set!

OTM by OldTimer - Version 3.1.17.2 log created on 11282010_230655

Files moved on Reboot...
File move failed. C:\WINDOWS\temp\_avast5_\Webshlock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...






Temp Folred Cleaner použit...

A při použití Vit Registry Fix program našel nejdříve 450 chyb, ohlásil něco o ActiveX (že bylo odebrání více součástí, proto ať udělám znovu). Po opětovném skenu nalezeno 28 chyb...To mi došlo, že to bude spuštěným prohlížečem...Po vypnutí prohlížeče bez chyby. Nyní jsem restartoval a jdu testovat...

[kentus CZE]

Tak zatím vše vypadá v pořádku, vypnutí systému je otázkou cca pěti vteřin, start do fáze "můžu začít pracovat" kolem minutky, při jakékoliv činnosti nevidím žádnou neposlušnost.. Spíše bude něco s prohlížečem... K čemuž se vážou další otázky...Používám firefox, ale zdá se mi, že začal být až nepěkně pomalý... Tedy nedá se to srovnat se stavem před týdnem ale každopádně si myslím, že běhal rychleji... Přijde mi, že mi žere příliš paměti ve správci procesů... stabilně přes sto, někdy až kolem tří set... Samozřejmě někdy méně, záleží na náročnosti stránek... a pokud dělám třeba v G Chrome, tak ten vidím v procesech třikrát... A další věc k procesům... svchost.exe je spuštěn několikrát, přičemž jeden baští neustále něco kolem 20... přidávám obrázek a chci se zeptat zda neběží něco zbytečně... některé se mi nezdají...například MDM jsem dříve neregistroval... Toť snad už úplně vše



Uploaded with ImageShack.us

[cernohous13]

OTM
první příkaz ve scriptu explorer zastavil, log jsi ale našel - je to OK.
Znovu ho spusť a dej CleanUp! - uklidí po sobě.
Dík za upozornění - návod si upravím

Správce úloh
- svchost.exe - to je v pořádku, spouští si ho různé systémové služby
- MDM.exe - viz http://support.microsoft.com/kb/321410/cs - v návodu body 1.-5.
- ostatní spuštěné - OK (můj Firefox teď 135) a Chrome i IE tak normálně pracují

Firefox
- stáhni Mozbackup http://www.slunecnice.cz/sw/mozbackup/
proveď zálohu profilu - Firefox přeinstaluj (REVO) - pak obnov profil ze zálohy (Mozbackup)
- taky můžeš nejdřív zkusit spustit z nabídky Start -> Programy - jako Mozilla Firefox (Nouzový režim)
pokud by tam chodil dobře, je problém někde ve Správci doplňků

Jestli ti start systému trvá minutu, tak to máš svižného mladíka a už bych v tom raději nevrtal

FW - ZoneAlarm je dobrá volba - určitě doinstaluj a mělo by to být všechno

[kentus CZE]

Tak na Firefox to zdá se zabralo... časem se podívam, zda tam nemam nějaké zbytečné doplňky, ale zdá se ok Takže tedy za vše moc děkuji, je vidět, že jsou tady správní lidé na správném místě... Ted jdu na ZoneAlarm a snad vše bude sloužit;-) Ještě jednom moc díky

[cernohous13]

S tebou byla radost spolupracovat.

Nemáš zač - rádo se stalo a jsme tady i příště