VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

prosím o preventivní kontrolu

https://forum.viry.cz:443/viewtopic.php?t=132747

Stránka 1 z 1

prosím o preventivní kontrolu

Napsal: 14 zář 2013 12:21
od vava8
Dobrý den,

mohli byste prosím se mnou někdo udělat důkladnou preventivní kontrolu mého notebooku?

Nainstaloval jsem do něj nějaké upravené XP :?: od té doby se mi vůbec nevypíná HD.... je to možné? Pořád hučí, nonstop jede větráček..... nejde mi to nikde nastavit... nebo jsem to nenašel.

Druhá věc je, že poslední dobou po zapnutí a úplném naběhnutí začne po chvilce něco dlouze a intenzivně "chroustat" .... jsem trochu paranoidní a myslím že mně sledujou :shock: :D .

Díky moc Vava

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-09-2013 04
Ran by vnd (administrator) on VAVASA58-5CAD15 on 14-09-2013 12:03:51
Running from C:\Documents and Settings\vnd\Plocha
Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Microsoft Corporation) C:\WINDOWS\ehome\ehtray.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastUI.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Program Files\Messenger\msmsgs.exe
(Microsoft Corporation) C:\WINDOWS\eHome\ehmsas.exe
(Realtek Semiconductor Corp.) C:\DOCUME~1\vnd\LOCALS~1\Temp\RtkBtMnt.exe
(Microsoft) C:\WINDOWS\arservice.exe
(Microsoft Corporation) C:\WINDOWS\eHome\ehRecvr.exe
(Microsoft Corporation) C:\WINDOWS\eHome\ehSched.exe
(Microsoft Corporation) C:\WINDOWS\ehome\mcrdsvc.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDCPL] - C:\Windows\RTHDCPL.EXE [16861184 2008-04-10] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Alcmtr] - C:\Windows\ALCMTR.EXE [69632 2005-05-03] (Realtek Semiconductor Corp.)
HKLM\...\Run: [AlwaysReady Power Message APP] - C:\Windows\ARPWRMSG.EXE [77312 2008-12-26] (Microsoft)
HKLM\...\Run: [ehTray] - C:\WINDOWS\ehome\ehtray.exe [64512 2005-08-05] (Microsoft Corporation)
HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [33648 2007-08-24] (Microsoft Corporation)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-05-09] (AVAST Software)
Winlogon\Notify\AtiExtEvent: C:\Windows\system32\Ati2evxx.dll (ATI Technologies Inc.)
HKCU\...\Run: [MSMSGS] - C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
MountPoints2: F - "F:\WD SmartWare.exe" autoplay=true
HKU\Default User\...\RunOnce: [_nltide_2] - regsvr32 /s /n /i:U shell32

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.cz/
BHO: IE7Pro BHO - {00011268-E188-40DF-A514-835FCD78B1BF} - C:\Program Files\IEPro\iepro.dll (IE7Pro.com)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll (Google Inc.)
Toolbar: HKLM - &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll (Google Inc.)
Toolbar: HKLM - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Documents and Settings\vnd\Data aplikací\Mozilla\Firefox\Profiles\busi3win.default
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.6 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF

Chrome:
=======
CHR HomePage: hxxp://www.google.com
CHR RestoreOnStartup: "hxxp://www.google.com"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\29.0.1547.66\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\29.0.1547.66\pdf.dll ()
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
CHR Plugin: (VLC Web Plugin) - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Extension: (Google Docs) - C:\DOCUME~1\vnd\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\DOCUME~1\vnd\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (Google Search) - C:\DOCUME~1\vnd\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Chrome In-App Payments service) - C:\DOCUME~1\vnd\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0
CHR Extension: (Gmail) - C:\DOCUME~1\vnd\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0

========================== Services (Whitelisted) =================

R2 ARSVC; C:\WINDOWS\arservice.exe [58880 2008-12-26] (Microsoft)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-05-09] (AVAST Software)
R2 McrdSvc; C:\WINDOWS\ehome\mcrdsvc.exe [99328 2005-08-05] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R3 aracpi; C:\Windows\System32\DRIVERS\aracpi.sys [22784 2008-12-26] (Microsoft Corporation)
S3 arhidfltr; C:\Windows\System32\DRIVERS\arhidfltr.sys [19200 2008-12-26] (Microsoft Corporation)
R3 arkbcfltr; C:\Windows\System32\DRIVERS\arkbcfltr.sys [5376 2008-12-26] (Microsoft Corporation)
R3 armoucfltr; C:\Windows\System32\DRIVERS\armoucfltr.sys [4992 2008-12-26] (Microsoft Corporation)
R3 ARPolicy; C:\Windows\System32\DRIVERS\arpolicy.sys [10112 2008-12-26] (Microsoft Corporation)
R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [29816 2013-05-09] (AVAST Software)
R1 aswKbd; C:\Windows\System32\Drivers\aswKbd.sys [21576 2013-05-09] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [66336 2013-05-09] (AVAST Software)
R1 AswRdr; C:\Windows\System32\Drivers\AswRdr.sys [49760 2013-05-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [49376 2013-05-09] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [770344 2013-06-27] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [369584 2013-06-27] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [56080 2013-05-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [175176 2013-06-27] ()
R3 b57w2k; C:\Windows\System32\DRIVERS\b57xp32.sys [161792 2007-10-22] (Broadcom Corporation)
R3 NETw4x32; C:\Windows\System32\DRIVERS\NETw4x32.sys [2530176 2008-03-13] (Intel Corporation)
R3 Rasirda; C:\Windows\System32\DRIVERS\rasirda.sys [19584 2001-08-17] (Microsoft Corporation)
S3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [35088 2013-04-30] (The OpenVPN Project)
S2 bwcdrv; system32\DRIVERS\bwcdrv.sys [x]
S4 IntelIde; No ImagePath
U1 WS2IFSL;

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-09-14 12:03 - 2013-09-14 12:03 - 00000000 ____D C:\FRST
2013-09-14 12:03 - 2013-09-14 12:03 - 00000000 ____D C:\Documents and Settings\vnd\Local Settings\Data aplikací\qb2216AF.1F
2013-09-14 12:03 - 2013-09-13 21:11 - 01083285 _____ (Farbar) C:\Documents and Settings\vnd\Plocha\FRST.exe
2013-09-13 17:15 - 2013-09-13 17:15 - 00013754 _____ C:\WINDOWS\KB2870699-IE8.log
2013-09-13 17:15 - 2013-09-13 17:15 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2876315$
2013-09-13 17:15 - 2013-09-13 17:15 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2876217$
2013-09-13 17:14 - 2013-09-13 17:14 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2864063$
2013-09-12 06:37 - 2013-09-13 17:17 - 00019653 _____ C:\WINDOWS\KB2876315.log
2013-09-12 06:37 - 2013-09-13 17:17 - 00018552 _____ C:\WINDOWS\KB2876217.log
2013-09-12 06:37 - 2013-09-13 17:17 - 00018374 _____ C:\WINDOWS\KB2864063.log
2013-09-03 14:59 - 2013-09-13 17:28 - 00000000 ____D C:\Documents and Settings\vnd\Data aplikací\Skype
2013-09-03 14:59 - 2013-09-03 14:59 - 00001896 _____ C:\Documents and Settings\All Users\Plocha\Skype.lnk
2013-09-03 14:59 - 2013-09-03 14:59 - 00000000 ___RD C:\Program Files\Skype
2013-09-03 14:59 - 2013-09-03 14:59 - 00000000 ____D C:\Program Files\Common Files\Skype
2013-09-03 14:59 - 2013-09-03 14:59 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Skype
2013-08-30 10:32 - 2013-08-30 10:32 - 00004150 _____ C:\WINDOWS\KB2834904-v2.log
2013-08-30 10:32 - 2013-08-30 10:32 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$
2013-08-18 23:11 - 2013-08-19 10:39 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-08-15 10:31 - 2013-08-15 10:31 - 00013777 _____ C:\WINDOWS\KB2862772-IE8.log
2013-08-15 10:28 - 2013-08-15 10:28 - 00006341 _____ C:\WINDOWS\KB2863058.log
2013-08-15 10:28 - 2013-08-15 10:28 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2863058$
2013-08-15 10:28 - 2013-08-15 10:28 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2859537$
2013-08-15 10:28 - 2013-08-15 10:28 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2850869$
2013-08-15 10:28 - 2013-08-15 10:28 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2849470$

==================== One Month Modified Files and Folders =======

2013-09-14 12:03 - 2013-09-14 12:03 - 00000000 ____D C:\FRST
2013-09-14 12:03 - 2013-09-14 12:03 - 00000000 ____D C:\Documents and Settings\vnd\Local Settings\Data aplikací\qb2216AF.1F
2013-09-14 12:03 - 2013-05-27 12:40 - 00000000 ____D C:\Documents and Settings\vnd\Dokumenty\Stažené soubory
2013-09-14 12:03 - 2013-05-26 21:35 - 00000000 ___HD C:\Documents and Settings\vnd\Local Settings\Data aplikací
2013-09-14 12:03 - 2013-05-26 21:35 - 00000000 ____D C:\Documents and Settings\vnd\Plocha
2013-09-14 11:53 - 2013-05-27 16:33 - 00000934 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-14 11:44 - 2013-05-27 12:49 - 00000664 _____ C:\WINDOWS\system32\d3d9caps.dat
2013-09-14 11:30 - 2013-05-26 22:53 - 00884654 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-09-14 11:28 - 2013-05-27 18:27 - 00065851 _____ C:\WINDOWS\KB973768.log
2013-09-14 11:28 - 2013-05-26 21:13 - 01609995 _____ C:\WINDOWS\WindowsUpdate.log
2013-09-14 11:27 - 2013-05-27 16:32 - 00000364 ____H C:\WINDOWS\Tasks\avast! Emergency Update.job
2013-09-14 11:26 - 2013-05-27 16:33 - 00000930 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-14 11:26 - 2013-05-26 22:58 - 00000159 _____ C:\WINDOWS\wiadebug.log
2013-09-14 11:26 - 2013-05-26 22:58 - 00000049 _____ C:\WINDOWS\wiaservc.log
2013-09-14 11:26 - 2013-05-26 21:31 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-09-14 11:26 - 2013-05-26 21:09 - 00000000 ____D C:\WINDOWS\Registration
2013-09-13 22:08 - 2013-05-26 21:35 - 00000178 ___SH C:\Documents and Settings\vnd\ntuser.ini
2013-09-13 22:08 - 2013-05-26 21:31 - 00032546 _____ C:\WINDOWS\SchedLgU.Txt
2013-09-13 21:11 - 2013-09-14 12:03 - 01083285 _____ (Farbar) C:\Documents and Settings\vnd\Plocha\FRST.exe
2013-09-13 17:51 - 2013-05-26 22:40 - 00278152 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-09-13 17:28 - 2013-09-03 14:59 - 00000000 ____D C:\Documents and Settings\vnd\Data aplikací\Skype
2013-09-13 17:17 - 2013-09-12 06:37 - 00019653 _____ C:\WINDOWS\KB2876315.log
2013-09-13 17:17 - 2013-09-12 06:37 - 00018552 _____ C:\WINDOWS\KB2876217.log
2013-09-13 17:17 - 2013-09-12 06:37 - 00018374 _____ C:\WINDOWS\KB2864063.log
2013-09-13 17:15 - 2013-09-13 17:15 - 00013754 _____ C:\WINDOWS\KB2870699-IE8.log
2013-09-13 17:15 - 2013-09-13 17:15 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2876315$
2013-09-13 17:15 - 2013-09-13 17:15 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2876217$
2013-09-13 17:15 - 2013-05-27 18:47 - 00000000 ____D C:\WINDOWS\ie8updates
2013-09-13 17:15 - 2013-05-26 22:53 - 00987480 _____ C:\WINDOWS\iis6.log
2013-09-13 17:15 - 2013-05-26 22:53 - 00877236 _____ C:\WINDOWS\FaxSetup.log
2013-09-13 17:15 - 2013-05-26 22:53 - 00584456 _____ C:\WINDOWS\ocgen.log
2013-09-13 17:15 - 2013-05-26 22:53 - 00405880 _____ C:\WINDOWS\tsoc.log
2013-09-13 17:15 - 2013-05-26 22:53 - 00301755 _____ C:\WINDOWS\comsetup.log
2013-09-13 17:15 - 2013-05-26 22:53 - 00282528 _____ C:\WINDOWS\msmqinst.log
2013-09-13 17:15 - 2013-05-26 22:53 - 00180921 _____ C:\WINDOWS\ntdtcsetup.log
2013-09-13 17:15 - 2013-05-26 22:53 - 00154410 _____ C:\WINDOWS\netfxocm.log
2013-09-13 17:15 - 2013-05-26 22:53 - 00079941 _____ C:\WINDOWS\MedCtrOC.log
2013-09-13 17:15 - 2013-05-26 22:53 - 00054539 _____ C:\WINDOWS\ocmsn.log
2013-09-13 17:15 - 2013-05-26 22:53 - 00045054 _____ C:\WINDOWS\tabletoc.log
2013-09-13 17:15 - 2013-05-26 22:53 - 00044131 _____ C:\WINDOWS\msgsocm.log
2013-09-13 17:15 - 2013-05-26 22:53 - 00001374 _____ C:\WINDOWS\imsins.log
2013-09-13 17:15 - 2013-05-26 22:53 - 00001374 _____ C:\WINDOWS\imsins.BAK
2013-09-13 17:15 - 2013-05-26 21:16 - 00097615 _____ C:\WINDOWS\updspapi.log
2013-09-13 17:14 - 2013-09-13 17:14 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2864063$
2013-09-13 17:14 - 2013-07-16 06:43 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-09-13 17:11 - 2013-05-27 18:25 - 76725432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-09-13 17:09 - 2001-10-25 15:00 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl
2013-09-12 11:07 - 2013-05-27 13:14 - 00000000 ____D C:\Documents and Settings\vnd\Data aplikací\vlc
2013-09-09 00:36 - 2013-05-26 21:35 - 00000000 ____D C:\Documents and Settings\vnd
2013-09-08 22:57 - 2013-05-27 16:37 - 00001813 _____ C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2013-09-04 11:47 - 2013-05-26 21:17 - 00929345 _____ C:\WINDOWS\setupapi.log
2013-09-03 14:59 - 2013-09-03 14:59 - 00001896 _____ C:\Documents and Settings\All Users\Plocha\Skype.lnk
2013-09-03 14:59 - 2013-09-03 14:59 - 00000000 ___RD C:\Program Files\Skype
2013-09-03 14:59 - 2013-09-03 14:59 - 00000000 ____D C:\Program Files\Common Files\Skype
2013-09-03 14:59 - 2013-09-03 14:59 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Skype
2013-09-03 14:59 - 2013-05-26 22:53 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2013-09-03 14:59 - 2013-05-26 22:53 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2013-09-03 14:59 - 2013-05-26 21:38 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Skype
2013-09-03 14:59 - 2013-05-26 21:35 - 00000000 __RHD C:\Documents and Settings\vnd\Data aplikací
2013-08-30 10:32 - 2013-08-30 10:32 - 00004150 _____ C:\WINDOWS\KB2834904-v2.log
2013-08-30 10:32 - 2013-08-30 10:32 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$
2013-08-27 21:15 - 2013-05-27 12:45 - 00692104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2013-08-27 21:15 - 2013-05-27 12:45 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2013-08-19 17:14 - 2013-05-27 12:36 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-08-19 10:39 - 2013-08-18 23:11 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-08-15 10:31 - 2013-08-15 10:31 - 00013777 _____ C:\WINDOWS\KB2862772-IE8.log
2013-08-15 10:30 - 2013-05-26 22:52 - 00681818 _____ C:\WINDOWS\setupact.log
2013-08-15 10:28 - 2013-08-15 10:28 - 00006341 _____ C:\WINDOWS\KB2863058.log
2013-08-15 10:28 - 2013-08-15 10:28 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2863058$
2013-08-15 10:28 - 2013-08-15 10:28 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2859537$
2013-08-15 10:28 - 2013-08-15 10:28 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2850869$
2013-08-15 10:28 - 2013-08-15 10:28 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2849470$
2013-08-15 10:28 - 2013-08-14 14:39 - 00013246 _____ C:\WINDOWS\KB2859537.log
2013-08-15 10:28 - 2013-08-14 14:39 - 00012256 _____ C:\WINDOWS\KB2850869.log
2013-08-15 10:28 - 2013-05-27 18:37 - 00012520 _____ C:\WINDOWS\system32\TZLog.log

Some content of TEMP:
====================
C:\Documents and Settings\vnd\Local Settings\Temp\GoogleToolbarInstaller_en.exe
C:\Documents and Settings\vnd\Local Settings\Temp\ose00000.exe
C:\Documents and Settings\vnd\Local Settings\Temp\RtkBtMnt.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe
[2008-12-19 14:43] - [2008-12-19 14:43] - 1486336 ____A (Microsoft Corporation) d39127310cbad1485ec5001a4ed1d853

C:\Windows\System32\winlogon.exe
[2008-12-19 14:29] - [2008-12-19 14:29] - 0557056 ____A (Microsoft Corporation) 12a799ad9415ae9c8abcc5f75e9cf034

C:\Windows\System32\svchost.exe
[2008-04-14 08:52] - [2008-04-14 08:52] - 0014336 ____A (Microsoft Corporation) be4a520e29b6391f49e79ccc52044d93

C:\Windows\System32\services.exe
[2008-04-14 08:52] - [2009-02-09 13:25] - 0111104 ____A (Microsoft Corporation) 9ef697af07bb8dd82c3b02ca953a95b7

C:\Windows\System32\User32.dll
[2008-12-19 14:28] - [2008-12-19 14:28] - 0578560 ____A (Microsoft Corporation) ccb32d10c69a89822e9134c0c4894be1

C:\Windows\System32\userinit.exe
[2008-04-14 08:52] - [2008-04-14 08:52] - 0026112 ____A (Microsoft Corporation) 7dc1830f22e7d275b438127b68030239

C:\Windows\System32\Drivers\volsnap.sys
[2008-04-14 07:42] - [2008-04-14 07:42] - 0052480 ____A (Microsoft Corporation) 28a4b296b47782173c346e376cb374d1


==================== Alternate Data Streams (whitelisted) ====


==================== Loaded Modules (whitelisted) ============

2013-09-14 11:29 - 2013-09-14 09:49 - 02101248 _____ () C:\Program Files\AVAST Software\Avast\defs\13091400\algo.dll
2013-05-26 21:45 - 2006-10-26 17:26 - 00033104 _____ (Microsoft Corporation) C:\WINDOWS\System32\spool\PRTPROCS\W32X86\msonpppr.dll
2008-12-19 14:23 - 2008-12-19 14:23 - 00190976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mui\0005\HHCTRLui.dll
2013-05-26 21:20 - 2005-08-05 14:01 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\eHome\ehProxy.dll
2008-03-23 00:01 - 2008-03-23 00:01 - 00046032 _____ () C:\Program Files\Alky for Applications\Libraries\vADVAPI32.dll
2008-03-23 00:01 - 2008-03-23 00:01 - 00058320 _____ () C:\Program Files\Alky for Applications\Libraries\vKERNEL32.dll
2008-03-23 00:01 - 2008-03-23 00:01 - 00040400 _____ () C:\Program Files\Alky for Applications\Libraries\vUSER32.dll
2008-03-23 00:01 - 2008-03-23 00:01 - 00019920 _____ () C:\Program Files\Alky for Applications\Libraries\vmsvcrt.dll
2008-03-23 00:01 - 2008-03-23 00:01 - 00082384 _____ () C:\Program Files\Alky for Applications\Libraries\vntdll.dll
2008-03-23 00:00 - 2008-03-23 00:00 - 00096208 _____ () C:\Program Files\Alky for Applications\Libraries\vCOMCTL32.dll
2008-03-23 00:01 - 2008-03-23 00:01 - 00047056 _____ () C:\Program Files\Alky for Applications\Libraries\vgdiplus.dll
2008-03-23 00:01 - 2008-03-23 00:01 - 00026576 _____ () C:\Program Files\Alky for Applications\Libraries\vSHELL32.dll
2008-03-23 00:01 - 2008-03-23 00:01 - 00008144 _____ () C:\Program Files\Alky for Applications\Libraries\vdwmapi.dll
2008-03-23 00:01 - 2008-03-23 00:01 - 00011216 _____ () C:\Program Files\Alky for Applications\Libraries\vUxTheme.dll
2008-12-26 22:17 - 2008-12-26 22:17 - 00050176 _____ () C:\WINDOWS\armcex.dll
2013-05-26 21:20 - 2005-08-05 14:02 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\eHome\ehTrace.dll
2008-12-26 22:17 - 2008-12-26 22:17 - 00291840 _____ () C:\WINDOWS\system32\sbe.dll
2008-04-14 08:51 - 2008-04-14 08:51 - 00014336 _____ () C:\WINDOWS\system32\msdmo.dll
2013-08-18 23:11 - 2013-08-18 23:12 - 03551640 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll

==================== Scheduled Tasks (whitelisted) ===========

Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Supplementary Scan (All) ================


HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\nm
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\nm.sys

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001
"InstallVisualStyle"=hex(2):43,00,3a,00,5c,00,57,00,49,00,4e,00,44,00,4f,00,57,\
00,53,00,5c,00,52,00,65,00,73,00,6f,00,75,00,72,00,63,00,65,00,73,00,5c,00,\
54,00,68,00,65,00,6d,00,65,00,73,00,5c,00,57,00,69,00,6e,00,64,00,6f,00,77,\
00,73,00,20,00,58,00,50,00,20,00,55,00,6c,00,74,00,69,00,6d,00,61,00,74,00,\
65,00,20,00,32,00,30,00,30,00,39,00,5c,00,57,00,69,00,6e,00,64,00,6f,00,77,\
00,73,00,20,00,58,00,50,00,20,00,55,00,6c,00,74,00,69,00,6d,00,61,00,74,00,\
65,00,20,00,32,00,30,00,30,00,39,00,2e,00,6d,00,73,00,73,00,74,00,79,00,6c,\
00,65,00,73,00,00,00
"InstallTheme"=hex(2):43,00,3a,00,5c,00,57,00,49,00,4e,00,44,00,4f,00,57,00,53,\
00,5c,00,52,00,65,00,73,00,6f,00,75,00,72,00,63,00,65,00,73,00,5c,00,54,00,\
68,00,65,00,6d,00,65,00,73,00,5c,00,57,00,69,00,6e,00,64,00,6f,00,77,00,73,\
00,20,00,58,00,50,00,20,00,55,00,6c,00,74,00,69,00,6d,00,61,00,74,00,65,00,\
20,00,32,00,30,00,30,00,39,00,2e,00,74,00,68,00,65,00,6d,00,65,00,00,00

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=dword:00000001

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled"=dword:00000001
"AntiVirusDisableNotify"=dword:00000000
"FirewallDisableNotify"=dword:00000000
"UpdatesDisableNotify"=dword:00000000
"AntiVirusOverride"=dword:00000000
"FirewallOverride"=dword:00000000

AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: avast! Antivirus *Disabled* {7591DB91-41F0-48A3-B128-1A293FD8233D}

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DoNotAllowExceptions REG_DWORD 0x0
DisableNotifications REG_DWORD 0x0


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE:*:Disabled:Microsoft Office Outlook"
"C:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe"="C:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe:*:Disabled:@xpsp3res.dll,-20000"
"C:\\WINDOWS\\system32\\sessmgr.exe"="C:\\WINDOWS\\system32\\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"
"C:\\Documents and Settings\\vnd\\Data aplikac\\uTorrent\\utorrent.exe"="C:\\Documents and Settings\\vnd\\Data aplikac\\uTorrent\\utorrent.exe:*:Disabled:uTorrent"
"C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\\Program Files\\IEPro\\MiniDM.exe"="C:\\Program Files\\IEPro\\MiniDM.exe:*:Enabled:MiniDM"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP"="1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"="midimap.dll"
"msacm.imaadpcm"="imaadp32.acm"
"msacm.msadpcm"="msadp32.acm"
"msacm.msg711"="msg711.acm"
"msacm.msgsm610"="msgsm32.acm"
"msacm.trspch"="tssoft32.acm"
"vidc.cvid"="iccvid.dll"
"vidc.I420"="msh263.drv"
"vidc.iv31"="ir32_32.dll"
"vidc.iv32"="ir32_32.dll"
"vidc.iv41"="ir41_32.ax"
"vidc.iyuv"="iyuv_32.dll"
"vidc.mrle"="msrle32.dll"
"vidc.msvc"="msvidc32.dll"
"vidc.uyvy"="msyuv.dll"
"vidc.yuy2"="msyuv.dll"
"vidc.yvu9"="tsbyuv.dll"
"vidc.yvyu"="msyuv.dll"
"wavemapper"="msacm32.drv"
"wave"="wdmaud.drv"
"midi"="wdmaud.drv"
"mixer"="wdmaud.drv"
"aux"="wdmaud.drv"
"msacm.msg723"="msg723.acm"
"vidc.M263"="msh263.drv"
"vidc.M261"="msh261.drv"
"msacm.msaudio1"="msaud32.acm"
"msacm.sl_anet"="sl_anet.acm"
"msacm.iac2"="C:\\WINDOWS\\system32\\iac25_32.ax"
"vidc.iv50"="ir50_32.dll"
"msacm.l3acm"="C:\\WINDOWS\\system32\\l3codeca.acm"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32\Terminal Server]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32\Terminal Server\RDP]
"wave"="rdpsnd.dll"
"mixer"="rdpsnd.dll"
"MaxBandwidth"=dword:000056b9
"wavemapper"="msacm32.drv"
"EnableMP3Codec"=dword:00000001
"midimapper"="midimap.dll"


==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:149.04 GB) (Free:120.54 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: (Nový svazek) (Fixed) (Total:149.04 GB) (Free:16.49 GB) NTFS

Available physical RAM: 1455.75 MB
Total physical RAM: 2046.36 MB
Percentage of memory in use: 28%

==================== MBR and Partition Table =================

Disk: 0 (Size: 298 GB) (Disk ID: 0F550F54)
Partition 1: (Not Active) - (Size=149 GB) - (Type=OF Extended)
Partition 2: (Active) - (Size=149 GB) - (Type=07 NTFS)


==================== End Of Log ==============================

Re: prosím o preventivní kontrolu

Napsal: 14 zář 2013 12:41
od vyosek
Zdravim :)

Podporujeme jen oficialni verze windows s licenci...ne nejake radoby upravy a urcite cracknute...Tam se pak clovek nemuze spolehnout na veskere komponenty a nechova se to jako standardni windows...

Re: prosím o preventivní kontrolu

Napsal: 14 zář 2013 13:22
od vava8
Ajajaj..... :?:

Takže to jsem neměl psát s těma vindows...... no co já mam teď dělat? Už jste mi dvakrát pomohli s mým noťasem, jednou s ntb manželky a teď tohle ..... tzn, že si musim nainstalovat jinej operační systém? Ale co když nějakou havěť v kompu mám? ..... to není jenom v OS pokud se nemýlím.
tak mi prosím poraďte co mám dělat.
Díky

Re: prosím o preventivní kontrolu

Napsal: 14 zář 2013 13:30
od vyosek
A na tyhle upravene windows mate licenci nebo jsou nejak "osetrene" (cracknute, keygen...) :???:

Na havet to vypada ciste, ale ten upraveny system tam muze mit nejake chyby...

Re: prosím o preventivní kontrolu

Napsal: 14 zář 2013 14:08
od vava8
..... no já nevím jakej je rozdíl mezi cracknutejma a keygen........spadl mi před časem Windows takovym způsobem, že už nenaběhl, nskakovala pořád dokola modrá obrazovka a znovu okamžitě bootoval.......vyndal jsem disk, bratrovo kamarád zálohoval data na flashku a doporučil windows na uloz.to, ze jsou supr, nebudou po mně chtít pořád aktualizovat atd.....udělal jsem.......
Takže teď jsem potřeboval primárně vědět, jestli dokážete opravdu najít vše a jestli jsem čistej.... to že pořád jedou a nevim kde to nastavit to není až tak důležitý..... dá se stím žít

Re: prosím o preventivní kontrolu

Napsal: 14 zář 2013 14:15
od vyosek
No, reknu to takto...

Nelegalnimi a pozmenenymi operacnimi systemy se nezabyvame. Vy mate oboje, takze dle pravidel pomoci nemohu...

Kamarad je opravdu dobry kamarad, kdyz vas vedomne vystahuje moznosti trestniho stihani za porusovania autorskeho zakona, pachani trestneho cinu atd...A mnoha tisicive pokuty...

My tu zde toto nepodporujeme...
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz