VIRY.CZ

prosím o kontrolu, PC je pomalé a kamarád říkal že měl na USB vir

Logfile of random's system information tool 1.10 (written by random/random)
Run by Fotogold at 2015-11-18 08:41:56
Microsoft Windows XP Home Edition Service Pack 2
System drive C: has 52 GB (74%) free of 70 GB
Total RAM: 1015 MB (42% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:42:02, on 18.11.2015
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Wise\Wise Care 365\WiseTray.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\Fotogold\Nabídka Start\Programy\Po spuštění\ctfmon.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Fotogold\Dokumenty\Downloads\RSIT.exe
C:\Program Files\trend micro\Fotogold.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: ctfmon.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: SInstalátor (ssinstall) - PS Media s.r.o. - C:\WINDOWS\System32\ssins.exe
O23 - Service: Wise Boot Assistant (WiseBootAssistant) - WiseCleaner.com - C:\Program Files\Wise\Wise Care 365\BootTime.exe

--
End of file - 4230 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\Wise Care 365.job - C:\Program Files\Wise\Wise Care 365\WiseTray.exe -StartTray
C:\WINDOWS\tasks\Wise Turbo Checker.job - C:\Program Files\Wise\Wise Care 365\WiseTurbo.exe

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Fotogold\Data aplikací\Mozilla\Firefox\Profiles\wuawav6v.default

prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


C:\Documents and Settings\Fotogold\Data aplikací\Mozilla\Firefox\Profiles\wuawav6v.default\extensions\
{ea614400-e918-4741-9a97-7a972ff7c30b}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2008-02-15 135168]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2008-02-15 159744]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2008-02-15 131072]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-05-07 16862208]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2014-09-30 5046472]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2006-03-02 15360]

C:\Documents and Settings\Fotogold\Nabídka Start\Programy\Po spuštění
ctfmon.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2008-02-15 208896]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ESETOlmarikOlmascoCleaner]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ESETOlmarikOlmascoCleaner.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ESETOlmarikOlmascoCleaner]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ESETOlmarikOlmascoCleaner.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\totalcmd\TOTALCMD.EXE"="C:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:'Firefox' (C:\Program Files\Mozilla Firefox)"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======List of files/folders created in the last 1 month======

2015-11-18 08:41:57 ----D---- C:\Program Files\trend micro
2015-11-18 08:41:56 ----D---- C:\rsit
2015-11-04 13:17:16 ----D---- C:\Program Files\Mozilla Firefox

======List of files/folders modified in the last 1 month======

2015-11-18 08:41:57 ----RD---- C:\Program Files
2015-11-18 08:35:15 ----D---- C:\WINDOWS\Temp
2015-11-18 07:50:28 ----D---- C:\Documents and Settings\Fotogold\Data aplikací\Wise Care 365
2015-11-16 17:16:33 ----A---- C:\WINDOWS\SchedLgU.Txt
2015-11-16 13:32:55 ----D---- C:\WINDOWS\system32
2015-11-16 09:24:43 ----D---- C:\WINDOWS\system32\CatRoot2
2015-11-06 07:59:58 ----D---- C:\Program Files\Mozilla Maintenance Service
2015-10-26 08:27:00 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-21 13:50:36 ----RSHD---- C:\Recycled

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2014-09-30 185688]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2014-09-30 135296]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2014-09-30 118768]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2006-03-02 39936]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2006-03-02 14848]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2006-03-02 9600]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2008-02-15 5854752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-05-07 4739072]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-03-02 12160]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2007-10-23 103296]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2006-03-02 31616]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2006-03-02 26496]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
S3 ESETOlmarikOlmascoCleaner;ESET Olmarik/Olmasco Cleaner; \??\C:\WINDOWS\system32\Drivers\ESETOlmarikOlmascoCleaner.sys []
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2014-09-30 1343920]
S2 WiseBootAssistant;Wise Boot Assistant; C:\Program Files\Wise\Wise Care 365\BootTime.exe [2014-10-28 580232]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-06-08 268464]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-11-04 147624]
S3 ssinstall;SInstalátor; C:\WINDOWS\System32\ssins.exe [2014-11-12 2324216]

-----------------EOF-----------------

Zdravím,

proč tam nejsou aktualizace?
SP3 http://download.microsoft.com/download/ ... 86-CSY.exe
+IE8

doinstaluj a dej nový log RSIT

aktualizováno

Logfile of random's system information tool 1.10 (written by random/random)
Run by Fotogold at 2015-11-18 15:48:31
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 49 GB (70%) free of 70 GB
Total RAM: 1015 MB (42% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:48:35, on 18.11.2015
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Wise\Wise Care 365\WiseTray.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\Fotogold\Nabídka Start\Programy\Po spuštění\ctfmon.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\totalcmd\TOTALCMD.EXE
C:\Documents and Settings\Fotogold\Dokumenty\Downloads\RSIT.exe
C:\Program Files\trend micro\Fotogold.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: ctfmon.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: SInstalátor (ssinstall) - PS Media s.r.o. - C:\WINDOWS\System32\ssins.exe
O23 - Service: Wise Boot Assistant (WiseBootAssistant) - WiseCleaner.com - C:\Program Files\Wise\Wise Care 365\BootTime.exe

--
End of file - 4412 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe -c
C:\WINDOWS\tasks\Wise Care 365.job - C:\Program Files\Wise\Wise Care 365\WiseTray.exe -StartTray
C:\WINDOWS\tasks\Wise Turbo Checker.job - C:\Program Files\Wise\Wise Care 365\WiseTurbo.exe

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Fotogold\Data aplikací\Mozilla\Firefox\Profiles\wuawav6v.default

prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


C:\Documents and Settings\Fotogold\Data aplikací\Mozilla\Firefox\Profiles\wuawav6v.default\extensions\
{ea614400-e918-4741-9a97-7a972ff7c30b}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2008-02-15 135168]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2008-02-15 159744]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2008-02-15 131072]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-05-07 16862208]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2014-09-30 5046472]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

C:\Documents and Settings\Fotogold\Nabídka Start\Programy\Po spuštění
ctfmon.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2008-02-15 208896]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ESETOlmarikOlmascoCleaner]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ESETOlmarikOlmascoCleaner.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ESETOlmarikOlmascoCleaner]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ESETOlmarikOlmascoCleaner.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\totalcmd\TOTALCMD.EXE"="C:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:'Firefox' (C:\Program Files\Mozilla Firefox)"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======List of files/folders created in the last 1 month======

2015-11-18 15:22:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$
2015-11-18 15:22:47 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2015-11-18 12:46:09 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2015-11-18 12:04:30 ----D---- C:\WINDOWS\system32\MRT
2015-11-18 12:04:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2922229$
2015-11-18 12:04:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2930275$
2015-11-18 12:03:52 ----HDC---- C:\WINDOWS\$NtUninstallKB2929961$
2015-11-18 12:03:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2934207$
2015-11-18 12:03:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2909212$
2015-11-18 12:03:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2916036$
2015-11-18 12:03:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2914368$
2015-11-18 12:02:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2904266$
2015-11-18 12:02:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2893294$
2015-11-18 12:02:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2892075$
2015-11-18 12:02:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2898715$
2015-11-18 12:02:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2862152$
2015-11-18 12:02:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2868626$
2015-11-18 12:02:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2876331$
2015-11-18 12:01:59 ----HDC---- C:\WINDOWS\$NtUninstallKB2900986$
2015-11-18 12:01:48 ----D---- C:\WINDOWS\ie7updates
2015-11-18 12:01:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2862335$
2015-11-18 12:01:15 ----HDC---- C:\WINDOWS\$NtUninstallKB2862330$
2015-11-18 11:58:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2868038$
2015-11-18 11:55:37 ----HDC---- C:\WINDOWS\$NtUninstallKB2847311$
2015-11-18 11:55:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2864063$
2015-11-18 11:55:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2876217$
2015-11-18 11:55:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2803821-v2_WM9$
2015-11-18 11:54:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2859537$
2015-11-18 11:54:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2850869$
2015-11-18 11:54:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2834886$
2015-11-18 11:54:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2813345$
2015-11-18 11:54:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2820917$
2015-11-18 11:54:09 ----HDC---- C:\WINDOWS\$NtUninstallKB2807986$
2015-11-18 11:54:00 ----HDC---- C:\WINDOWS\$NtUninstallKB2780091$
2015-11-18 11:53:52 ----HDC---- C:\WINDOWS\$NtUninstallKB2802968$
2015-11-18 11:53:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2757638$
2015-11-18 11:53:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2770660$
2015-11-18 11:53:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2727528$
2015-11-18 11:53:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2705219-v2$
2015-11-18 11:53:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2723135-v2$
2015-11-18 11:53:00 ----HDC---- C:\WINDOWS\$NtUninstallKB2749655$
2015-11-18 11:52:51 ----HDC---- C:\WINDOWS\$NtUninstallKB2712808$
2015-11-18 11:52:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2698365$
2015-11-18 11:52:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2719985$
2015-11-18 11:52:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2655992$
2015-11-18 11:52:13 ----HDC---- C:\WINDOWS\$NtUninstallKB2691442$
2015-11-18 11:52:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2686509$
2015-11-18 11:51:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2659262$
2015-11-18 11:51:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2676562$
2015-11-18 11:51:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2653956$
2015-11-18 11:51:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2661637$
2015-11-18 11:50:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2467659$
2015-11-18 11:50:17 ----D---- C:\WINDOWS\ie8updates
2015-11-18 11:48:08 ----HDC---- C:\WINDOWS\ie8
2015-11-18 11:42:47 ----A---- C:\WINDOWS\system32\MRT.exe
2015-11-18 11:41:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2598479$
2015-11-18 11:41:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2603381$
2015-11-18 11:41:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2585542$
2015-11-18 11:41:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2631813$
2015-11-18 11:41:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2584146$
2015-11-18 11:40:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2620712$
2015-11-18 11:40:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2619339$
2015-11-18 11:40:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2544893-v2$
2015-11-18 11:40:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2564958$
2015-11-18 11:40:19 ----HDC---- C:\WINDOWS\$NtUninstallKB2592799$
2015-11-18 11:40:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2570947$
2015-11-18 11:40:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2536276-v2$
2015-11-18 11:39:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2566454$
2015-11-18 11:39:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2507938$
2015-11-18 11:39:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2535512$
2015-11-18 11:39:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2509553$
2015-11-18 11:39:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2510581$
2015-11-18 11:39:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2506212$
2015-11-18 11:39:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2508429$
2015-11-18 11:38:59 ----HDC---- C:\WINDOWS\$NtUninstallKB2485663$
2015-11-18 11:38:51 ----HDC---- C:\WINDOWS\$NtUninstallKB2481109$
2015-11-18 11:38:44 ----HDC---- C:\WINDOWS\$NtUninstallKB2479943$
2015-11-18 11:38:36 ----HDC---- C:\WINDOWS\$NtUninstallKB971029$
2015-11-18 11:38:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2393802$
2015-11-18 11:38:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2478960$
2015-11-18 11:38:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2483185$
2015-11-18 11:37:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2478971$
2015-11-18 11:37:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2419632$
2015-11-18 11:37:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2443105$
2015-11-18 11:37:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2423089$
2015-11-18 11:37:25 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2015-11-18 11:37:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2015-11-18 11:37:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2015-11-18 11:37:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2015-11-18 11:36:56 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2015-11-18 11:36:48 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$
2015-11-18 11:36:44 ----HDC---- C:\WINDOWS\$NtUninstallKB2347290$
2015-11-18 11:36:37 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$
2015-11-18 11:36:31 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$
2015-11-18 11:36:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$
2015-11-18 11:36:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2015-11-18 11:36:12 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2015-11-18 11:36:04 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2015-11-18 11:35:58 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2015-11-18 11:35:41 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2015-11-18 11:35:34 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2015-11-18 11:35:27 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2015-11-18 11:35:20 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2015-11-18 11:35:12 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2015-11-18 11:34:57 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2015-11-18 11:34:37 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2015-11-18 11:34:14 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2015-11-18 11:34:06 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2015-11-18 11:33:59 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2015-11-18 11:33:53 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2015-11-18 11:33:46 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2015-11-18 11:33:42 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2015-11-18 11:33:34 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2015-11-18 11:33:28 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2015-11-18 11:33:21 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2015-11-18 11:33:15 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2015-11-18 11:33:09 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2015-11-18 11:33:04 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2015-11-18 11:33:00 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2015-11-18 11:32:54 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2015-11-18 11:32:47 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2015-11-18 11:32:41 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2015-11-18 11:32:35 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2015-11-18 11:32:30 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2015-11-18 11:32:22 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2015-11-18 11:32:17 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2015-11-18 11:32:11 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2015-11-18 11:32:02 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2015-11-18 11:31:50 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2015-11-18 11:31:39 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2015-11-18 11:31:33 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2015-11-18 11:31:27 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2015-11-18 11:31:21 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2015-11-18 11:31:16 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2015-11-18 11:31:08 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2015-11-18 11:31:02 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2015-11-18 11:30:55 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2015-11-18 11:29:01 ----N---- C:\WINDOWS\system32\xp_eos.exe
2015-11-18 11:22:09 ----N---- C:\WINDOWS\system32\iacenc.dll
2015-11-18 10:55:02 ----D---- C:\WINDOWS\system32\PreInstall
2015-11-18 10:55:01 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2015-11-18 10:45:57 ----A---- C:\WINDOWS\system32\wups2.dll
2015-11-18 10:45:55 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2015-11-18 10:14:22 ----A---- C:\WINDOWS\OEWABLog.txt
2015-11-18 10:12:47 ----D---- C:\WINDOWS\Prefetch
2015-11-18 09:49:51 ----A---- C:\WINDOWS\setuplog.txt
2015-11-18 09:49:08 ----N---- C:\WINDOWS\system32\msxml6r.dll
2015-11-18 09:49:08 ----A---- C:\WINDOWS\system32\msxml6.dll
2015-11-18 09:48:49 ----N---- C:\WINDOWS\system32\aaclient.dll
2015-11-18 09:48:48 ----N---- C:\WINDOWS\system32\credssp.dll
2015-11-18 09:48:48 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2015-11-18 09:48:48 ----N---- C:\WINDOWS\system32\azroles.dll
2015-11-18 09:48:47 ----N---- C:\WINDOWS\system32\eapphost.dll
2015-11-18 09:48:47 ----N---- C:\WINDOWS\system32\eappgnui.dll
2015-11-18 09:48:47 ----N---- C:\WINDOWS\system32\eappcfg.dll
2015-11-18 09:48:47 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2015-11-18 09:48:47 ----N---- C:\WINDOWS\system32\eapolqec.dll
2015-11-18 09:48:47 ----N---- C:\WINDOWS\system32\dot3ui.dll
2015-11-18 09:48:47 ----N---- C:\WINDOWS\system32\dot3svc.dll
2015-11-18 09:48:47 ----N---- C:\WINDOWS\system32\dot3msm.dll
2015-11-18 09:48:47 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2015-11-18 09:48:47 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2015-11-18 09:48:47 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2015-11-18 09:48:47 ----N---- C:\WINDOWS\system32\dot3api.dll
2015-11-18 09:48:47 ----N---- C:\WINDOWS\system32\dimsroam.dll
2015-11-18 09:48:47 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2015-11-18 09:48:47 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2015-11-18 09:48:46 ----N---- C:\WINDOWS\system32\eapsvc.dll
2015-11-18 09:48:46 ----N---- C:\WINDOWS\system32\eapqec.dll
2015-11-18 09:48:46 ----N---- C:\WINDOWS\system32\eappprxy.dll
2015-11-18 09:48:45 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2015-11-18 09:48:44 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2015-11-18 09:48:44 ----N---- C:\WINDOWS\system32\kmsvc.dll
2015-11-18 09:48:44 ----N---- C:\WINDOWS\system32\kbdpash.dll
2015-11-18 09:48:44 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2015-11-18 09:48:44 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2015-11-18 09:48:43 ----N---- C:\WINDOWS\system32\mssha.dll
2015-11-18 09:48:43 ----N---- C:\WINDOWS\system32\mmcperf.exe
2015-11-18 09:48:43 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2015-11-18 09:48:43 ----N---- C:\WINDOWS\system32\mmcex.dll
2015-11-18 09:48:43 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2015-11-18 09:48:42 ----N---- C:\WINDOWS\system32\onex.dll
2015-11-18 09:48:42 ----N---- C:\WINDOWS\system32\napstat.exe
2015-11-18 09:48:42 ----N---- C:\WINDOWS\system32\napmontr.dll
2015-11-18 09:48:42 ----N---- C:\WINDOWS\system32\napipsec.dll
2015-11-18 09:48:42 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2015-11-18 09:48:41 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2015-11-18 09:48:41 ----N---- C:\WINDOWS\system32\rasqec.dll
2015-11-18 09:48:41 ----N---- C:\WINDOWS\system32\qutil.dll
2015-11-18 09:48:41 ----N---- C:\WINDOWS\system32\qcliprov.dll
2015-11-18 09:48:41 ----N---- C:\WINDOWS\system32\qagentrt.dll
2015-11-18 09:48:41 ----N---- C:\WINDOWS\system32\qagent.dll
2015-11-18 09:48:41 ----N---- C:\WINDOWS\system32\photometadatahandler.dll
2015-11-18 09:48:40 ----N---- C:\WINDOWS\system32\setupn.exe
2015-11-18 09:48:39 ----N---- C:\WINDOWS\system32\verclsid.exe
2015-11-18 09:48:39 ----N---- C:\WINDOWS\system32\tzchange.exe
2015-11-18 09:48:39 ----N---- C:\WINDOWS\system32\tspkg.dll
2015-11-18 09:48:39 ----N---- C:\WINDOWS\system32\tsgqec.dll
2015-11-18 09:48:38 ----N---- C:\WINDOWS\system32\wmphoto.dll
2015-11-18 09:48:38 ----N---- C:\WINDOWS\system32\wlanapi.dll
2015-11-18 09:48:38 ----N---- C:\WINDOWS\system32\windowscodecsext.dll
2015-11-18 09:48:38 ----N---- C:\WINDOWS\system32\windowscodecs.dll
2015-11-18 09:48:34 ----D---- C:\WINDOWS\l2schemas
2015-11-18 09:48:33 ----D---- C:\WINDOWS\system32\cs
2015-11-18 09:48:33 ----D---- C:\WINDOWS\system32\bits
2015-11-18 09:43:10 ----D---- C:\WINDOWS\network diagnostic
2015-11-18 09:43:05 ----N---- C:\WINDOWS\system32\drivers\sffp_mmc.sys
2015-11-18 09:41:08 ----A---- C:\WINDOWS\002784_.tmp
2015-11-18 09:36:29 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2015-11-18 08:41:57 ----D---- C:\Program Files\trend micro
2015-11-18 08:41:56 ----D---- C:\rsit
2015-11-04 13:17:16 ----D---- C:\Program Files\Mozilla Firefox

======List of files/folders modified in the last 1 month======

2015-11-18 15:48:06 ----A---- C:\WINDOWS\wincmd.ini
2015-11-18 15:30:19 ----D---- C:\WINDOWS\system32
2015-11-18 15:30:18 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-11-18 15:29:24 ----D---- C:\Documents and Settings\Fotogold\Data aplikací\Wise Care 365
2015-11-18 15:29:16 ----D---- C:\WINDOWS\Temp
2015-11-18 15:29:13 ----D---- C:\WINDOWS
2015-11-18 15:27:51 ----A---- C:\WINDOWS\SchedLgU.Txt
2015-11-18 15:23:09 ----HD---- C:\WINDOWS\inf
2015-11-18 15:23:08 ----RSHDC---- C:\WINDOWS\system32\dllcache
2015-11-18 15:23:03 ----HD---- C:\WINDOWS\$hf_mig$
2015-11-18 15:23:01 ----A---- C:\WINDOWS\imsins.BAK
2015-11-18 15:22:49 ----D---- C:\WINDOWS\system32\drivers
2015-11-18 13:30:58 ----D---- C:\WINDOWS\system32\CatRoot2
2015-11-18 13:07:25 ----D---- C:\WINDOWS\AppPatch
2015-11-18 12:34:20 ----SD---- C:\WINDOWS\Tasks
2015-11-18 12:33:46 ----D---- C:\WINDOWS\system32\cs-cz
2015-11-18 12:33:45 ----D---- C:\WINDOWS\Media
2015-11-18 12:33:45 ----D---- C:\WINDOWS\Help
2015-11-18 12:33:45 ----D---- C:\Program Files\Internet Explorer
2015-11-18 12:33:44 ----D---- C:\WINDOWS\system32\wbem
2015-11-18 11:54:36 ----D---- C:\WINDOWS\WinSxS
2015-11-18 11:37:34 ----D---- C:\Program Files\Outlook Express
2015-11-18 11:36:39 ----D---- C:\Program Files\Movie Maker
2015-11-18 11:31:17 ----D---- C:\Program Files\Messenger
2015-11-18 10:57:04 ----D---- C:\WINDOWS\SoftwareDistribution
2015-11-18 10:03:26 ----D---- C:\WINDOWS\system32\Setup
2015-11-18 10:03:24 ----RSD---- C:\WINDOWS\Fonts
2015-11-18 09:53:35 ----D---- C:\WINDOWS\security
2015-11-18 09:53:25 ----D---- C:\WINDOWS\system32\CatRoot
2015-11-18 09:49:07 ----D---- C:\Program Files\Windows Media Player
2015-11-18 09:48:51 ----D---- C:\WINDOWS\ime
2015-11-18 09:48:36 ----D---- C:\WINDOWS\system32\usmt
2015-11-18 09:48:33 ----SHD---- C:\WINDOWS\Installer
2015-11-18 09:48:33 ----D---- C:\WINDOWS\PeerNet
2015-11-18 09:45:33 ----D---- C:\WINDOWS\system32\Restore
2015-11-18 09:45:32 ----D---- C:\WINDOWS\system32\npp
2015-11-18 09:45:31 ----D---- C:\WINDOWS\msagent
2015-11-18 09:45:29 ----D---- C:\WINDOWS\srchasst
2015-11-18 09:45:29 ----D---- C:\Program Files\NetMeeting
2015-11-18 09:45:27 ----D---- C:\WINDOWS\system32\Com
2015-11-18 09:45:24 ----D---- C:\Program Files\Windows NT
2015-11-18 09:45:20 ----D---- C:\Program Files\Common Files\System
2015-11-18 09:44:56 ----D---- C:\WINDOWS\system32\oobe
2015-11-18 09:44:54 ----D---- C:\WINDOWS\system
2015-11-18 09:35:10 ----D---- C:\WINDOWS\EHome
2015-11-18 09:20:47 ----D---- C:\WINDOWS\Debug
2015-11-18 08:41:57 ----RD---- C:\Program Files
2015-11-06 07:59:58 ----D---- C:\Program Files\Mozilla Maintenance Service
2015-10-21 13:50:36 ----RSHD---- C:\Recycled

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2014-09-30 185688]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2014-09-30 135296]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2014-09-30 118768]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2008-02-15 5854752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-05-07 4739072]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-03-02 12160]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2007-10-23 103296]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S3 ESETOlmarikOlmascoCleaner;ESET Olmarik/Olmasco Cleaner; \??\C:\WINDOWS\system32\Drivers\ESETOlmarikOlmascoCleaner.sys []
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2014-09-30 1343920]
S2 WiseBootAssistant;Wise Boot Assistant; C:\Program Files\Wise\Wise Care 365\BootTime.exe [2014-10-28 580232]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-06-08 268464]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-11-04 147624]
S3 ssinstall;SInstalátor; C:\WINDOWS\System32\ssins.exe [2014-11-12 2324216]

-----------------EOF-----------------

Výborně

v logu nevidím nic nebezpečného, přesto bych provedl kontrolu MBAM
Stáhni a nainstaluj MBAM zde http://www.bleepingcomputer.com/downloa ... re/dl/241/ verzi 1.75
Při instalaci ti jako první nabídne instalaci nové verze (případně i při spuštění) - dáš Storno - bude aktualizována jen databáze
Po instalaci Spustit -> na 1.záložce "Kontrolor" -> Úplná kontrola -> Prohledat
po dokončení scanu vyskočí okno Notepad s výsledkem - obsah zkopíruj do své odpovědi
zatím nic nemazat - počkej na posouzení a program nezavírej, jen minimalizuj

ups něco to našlo

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2015.11.19.01

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Fotogold :: CT-3 [administrátor]

Ochrana: Povolena

19.11.2015 8:58:52
MBAM-log-2015-11-19 (09-41-39).txt

Typ: Kompletní kontrola (C:\|D:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 313183
Uplynulý čas: 37 minut, 49 sekund

Nalezené procesy v paměti: 1
C:\Documents and Settings\Fotogold\Nabídka Start\Programy\Po spuštění\ctfmon.exe (Trojan.VBAgent) -> 1216 -> Nebyla provedena žádná instrukce.

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 9
C:\Documents and Settings\Fotogold\Nabídka Start\Programy\Po spuštění\ctfmon.exe (Trojan.VBAgent) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Fotogold\Local Settings\Temp\dialsys.exe (PUP.Optional.Dialupass) -> Nebyla provedena žádná instrukce.
C:\Recycled\ctfmon.exe (Trojan.VBAgent) -> Nebyla provedena žádná instrukce.
C:\Recycled\Recycled\ctfmon.exe (Trojan.VBAgent) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{1463617E-5E74-462E-B5B2-DC7A750F6F56}\RP268\A0015390.exe (Trojan.VBAgent) -> Nebyla provedena žádná instrukce.
C:\System Volume Information\_restore{1463617E-5E74-462E-B5B2-DC7A750F6F56}\RP288\A0018176.exe (Trojan.VBAgent) -> Nebyla provedena žádná instrukce.
C:\WINDOWS\ctfmgr.exe.old (Trojan.Agent) -> Nebyla provedena žádná instrukce.
D:\Recycled\ctfmon.exe (Trojan.VBAgent) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Fotogold\Local Settings\Temp\dialsys.exe (Trojan.PasswordStealer) -> Nebyla provedena žádná instrukce.

(konec)

Nález MBAM označit vše a odstranit - pak dej Rychlou kontrolu a oznam výsledek

+nový log RSIT

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2015.11.19.01

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Fotogold :: CT-3 [administrátor]

Ochrana: Povolena

19.11.2015 11:13:20
mbam-log-2015-11-19 (11-13-20).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 274146
Uplynulý čas: 6 minut, 41 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

Logfile of random's system information tool 1.10 (written by random/random)
Run by Fotogold at 2015-11-19 11:29:30
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 49 GB (70%) free of 70 GB
Total RAM: 1015 MB (45% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:29:41, on 19.11.2015
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Wise\Wise Care 365\WiseTray.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\System32\svchost.exe
\P4\digitál\11\02\RSIT.exe
C:\Program Files\trend micro\Fotogold.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: SInstalátor (ssinstall) - PS Media s.r.o. - C:\WINDOWS\System32\ssins.exe
O23 - Service: Wise Boot Assistant (WiseBootAssistant) - WiseCleaner.com - C:\Program Files\Wise\Wise Care 365\BootTime.exe

--
End of file - 4581 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe -c
C:\WINDOWS\tasks\Wise Care 365.job - C:\Program Files\Wise\Wise Care 365\WiseTray.exe -StartTray
C:\WINDOWS\tasks\Wise Turbo Checker.job - C:\Program Files\Wise\Wise Care 365\WiseTurbo.exe

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Fotogold\Data aplikací\Mozilla\Firefox\Profiles\wuawav6v.default

prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


C:\Documents and Settings\Fotogold\Data aplikací\Mozilla\Firefox\Profiles\wuawav6v.default\extensions\
{ea614400-e918-4741-9a97-7a972ff7c30b}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2008-02-15 135168]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2008-02-15 159744]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2008-02-15 131072]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-05-07 16862208]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2014-09-30 5046472]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2008-02-15 208896]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ESETOlmarikOlmascoCleaner]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ESETOlmarikOlmascoCleaner.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ESETOlmarikOlmascoCleaner]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ESETOlmarikOlmascoCleaner.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\totalcmd\TOTALCMD.EXE"="C:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:'Firefox' (C:\Program Files\Mozilla Firefox)"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======List of files/folders created in the last 1 month======

2015-11-19 08:53:24 ----D---- C:\Documents and Settings\Fotogold\Data aplikací\Malwarebytes
2015-11-19 08:53:12 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2015-11-19 08:53:10 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2015-11-19 08:53:10 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2015-11-18 15:22:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$
2015-11-18 15:22:47 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2015-11-18 12:46:09 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2015-11-18 12:04:30 ----D---- C:\WINDOWS\system32\MRT
2015-11-18 12:04:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2922229$
2015-11-18 12:04:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2930275$
2015-11-18 12:03:52 ----HDC---- C:\WINDOWS\$NtUninstallKB2929961$
2015-11-18 12:03:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2934207$
2015-11-18 12:03:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2909212$
2015-11-18 12:03:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2916036$
2015-11-18 12:03:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2914368$
2015-11-18 12:02:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2904266$
2015-11-18 12:02:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2893294$
2015-11-18 12:02:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2892075$
2015-11-18 12:02:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2898715$
2015-11-18 12:02:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2862152$
2015-11-18 12:02:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2868626$
2015-11-18 12:02:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2876331$
2015-11-18 12:01:59 ----HDC---- C:\WINDOWS\$NtUninstallKB2900986$
2015-11-18 12:01:48 ----D---- C:\WINDOWS\ie7updates
2015-11-18 12:01:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2862335$
2015-11-18 12:01:15 ----HDC---- C:\WINDOWS\$NtUninstallKB2862330$
2015-11-18 11:58:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2868038$
2015-11-18 11:55:37 ----HDC---- C:\WINDOWS\$NtUninstallKB2847311$
2015-11-18 11:55:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2864063$
2015-11-18 11:55:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2876217$
2015-11-18 11:55:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2803821-v2_WM9$
2015-11-18 11:54:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2859537$
2015-11-18 11:54:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2850869$
2015-11-18 11:54:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2834886$
2015-11-18 11:54:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2813345$
2015-11-18 11:54:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2820917$
2015-11-18 11:54:09 ----HDC---- C:\WINDOWS\$NtUninstallKB2807986$
2015-11-18 11:54:00 ----HDC---- C:\WINDOWS\$NtUninstallKB2780091$
2015-11-18 11:53:52 ----HDC---- C:\WINDOWS\$NtUninstallKB2802968$
2015-11-18 11:53:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2757638$
2015-11-18 11:53:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2770660$
2015-11-18 11:53:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2727528$
2015-11-18 11:53:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2705219-v2$
2015-11-18 11:53:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2723135-v2$
2015-11-18 11:53:00 ----HDC---- C:\WINDOWS\$NtUninstallKB2749655$
2015-11-18 11:52:51 ----HDC---- C:\WINDOWS\$NtUninstallKB2712808$
2015-11-18 11:52:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2698365$
2015-11-18 11:52:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2719985$
2015-11-18 11:52:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2655992$
2015-11-18 11:52:13 ----HDC---- C:\WINDOWS\$NtUninstallKB2691442$
2015-11-18 11:52:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2686509$
2015-11-18 11:51:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2659262$
2015-11-18 11:51:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2676562$
2015-11-18 11:51:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2653956$
2015-11-18 11:51:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2661637$
2015-11-18 11:50:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2467659$
2015-11-18 11:50:17 ----D---- C:\WINDOWS\ie8updates
2015-11-18 11:48:08 ----HDC---- C:\WINDOWS\ie8
2015-11-18 11:42:47 ----A---- C:\WINDOWS\system32\MRT.exe
2015-11-18 11:41:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2598479$
2015-11-18 11:41:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2603381$
2015-11-18 11:41:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2585542$
2015-11-18 11:41:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2631813$
2015-11-18 11:41:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2584146$
2015-11-18 11:40:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2620712$
2015-11-18 11:40:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2619339$
2015-11-18 11:40:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2544893-v2$
2015-11-18 11:40:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2564958$
2015-11-18 11:40:19 ----HDC---- C:\WINDOWS\$NtUninstallKB2592799$
2015-11-18 11:40:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2570947$
2015-11-18 11:40:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2536276-v2$
2015-11-18 11:39:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2566454$
2015-11-18 11:39:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2507938$
2015-11-18 11:39:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2535512$
2015-11-18 11:39:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2509553$
2015-11-18 11:39:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2510581$
2015-11-18 11:39:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2506212$
2015-11-18 11:39:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2508429$
2015-11-18 11:38:59 ----HDC---- C:\WINDOWS\$NtUninstallKB2485663$
2015-11-18 11:38:51 ----HDC---- C:\WINDOWS\$NtUninstallKB2481109$
2015-11-18 11:38:44 ----HDC---- C:\WINDOWS\$NtUninstallKB2479943$
2015-11-18 11:38:36 ----HDC---- C:\WINDOWS\$NtUninstallKB971029$
2015-11-18 11:38:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2393802$
2015-11-18 11:38:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2478960$
2015-11-18 11:38:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2483185$
2015-11-18 11:37:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2478971$
2015-11-18 11:37:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2419632$
2015-11-18 11:37:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2443105$
2015-11-18 11:37:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2423089$
2015-11-18 11:37:25 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2015-11-18 11:37:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2015-11-18 11:37:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2015-11-18 11:37:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2015-11-18 11:36:56 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2015-11-18 11:36:48 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$
2015-11-18 11:36:44 ----HDC---- C:\WINDOWS\$NtUninstallKB2347290$
2015-11-18 11:36:37 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$
2015-11-18 11:36:31 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$
2015-11-18 11:36:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$
2015-11-18 11:36:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2015-11-18 11:36:12 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2015-11-18 11:36:04 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2015-11-18 11:35:58 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2015-11-18 11:35:41 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2015-11-18 11:35:34 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2015-11-18 11:35:27 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2015-11-18 11:35:20 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2015-11-18 11:35:12 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2015-11-18 11:34:57 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2015-11-18 11:34:37 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2015-11-18 11:34:14 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2015-11-18 11:34:06 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2015-11-18 11:33:59 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2015-11-18 11:33:53 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2015-11-18 11:33:46 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2015-11-18 11:33:42 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2015-11-18 11:33:34 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2015-11-18 11:33:28 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2015-11-18 11:33:21 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2015-11-18 11:33:15 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2015-11-18 11:33:09 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2015-11-18 11:33:04 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2015-11-18 11:33:00 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2015-11-18 11:32:54 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2015-11-18 11:32:47 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2015-11-18 11:32:41 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2015-11-18 11:32:35 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2015-11-18 11:32:30 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2015-11-18 11:32:22 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2015-11-18 11:32:17 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2015-11-18 11:32:11 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2015-11-18 11:32:02 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2015-11-18 11:31:50 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2015-11-18 11:31:39 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2015-11-18 11:31:33 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2015-11-18 11:31:27 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2015-11-18 11:31:21 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2015-11-18 11:31:16 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2015-11-18 11:31:08 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2015-11-18 11:31:02 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2015-11-18 11:30:55 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2015-11-18 11:29:01 ----N---- C:\WINDOWS\system32\xp_eos.exe
2015-11-18 11:22:09 ----N---- C:\WINDOWS\system32\iacenc.dll
2015-11-18 10:55:02 ----D---- C:\WINDOWS\system32\PreInstall
2015-11-18 10:55:01 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2015-11-18 10:45:57 ----A---- C:\WINDOWS\system32\wups2.dll
2015-11-18 10:45:55 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2015-11-18 10:14:22 ----A---- C:\WINDOWS\OEWABLog.txt
2015-11-18 10:12:47 ----D---- C:\WINDOWS\Prefetch
2015-11-18 09:49:51 ----A---- C:\WINDOWS\setuplog.txt
2015-11-18 09:49:08 ----N---- C:\WINDOWS\system32\msxml6r.dll
2015-11-18 09:49:08 ----A---- C:\WINDOWS\system32\msxml6.dll
2015-11-18 09:48:49 ----N---- C:\WINDOWS\system32\aaclient.dll
2015-11-18 09:48:48 ----N---- C:\WINDOWS\system32\credssp.dll
2015-11-18 09:48:48 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2015-11-18 09:48:48 ----N---- C:\WINDOWS\system32\azroles.dll
2015-11-18 09:48:47 ----N---- C:\WINDOWS\system32\eapphost.dll
2015-11-18 09:48:47 ----N---- C:\WINDOWS\system32\eappgnui.dll
2015-11-18 09:48:47 ----N---- C:\WINDOWS\system32\eappcfg.dll
2015-11-18 09:48:47 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2015-11-18 09:48:47 ----N---- C:\WINDOWS\system32\eapolqec.dll
2015-11-18 09:48:47 ----N---- C:\WINDOWS\system32\dot3ui.dll
2015-11-18 09:48:47 ----N---- C:\WINDOWS\system32\dot3svc.dll
2015-11-18 09:48:47 ----N---- C:\WINDOWS\system32\dot3msm.dll
2015-11-18 09:48:47 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2015-11-18 09:48:47 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2015-11-18 09:48:47 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2015-11-18 09:48:47 ----N---- C:\WINDOWS\system32\dot3api.dll
2015-11-18 09:48:47 ----N---- C:\WINDOWS\system32\dimsroam.dll
2015-11-18 09:48:47 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2015-11-18 09:48:47 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2015-11-18 09:48:46 ----N---- C:\WINDOWS\system32\eapsvc.dll
2015-11-18 09:48:46 ----N---- C:\WINDOWS\system32\eapqec.dll
2015-11-18 09:48:46 ----N---- C:\WINDOWS\system32\eappprxy.dll
2015-11-18 09:48:45 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2015-11-18 09:48:44 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2015-11-18 09:48:44 ----N---- C:\WINDOWS\system32\kmsvc.dll
2015-11-18 09:48:44 ----N---- C:\WINDOWS\system32\kbdpash.dll
2015-11-18 09:48:44 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2015-11-18 09:48:44 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2015-11-18 09:48:43 ----N---- C:\WINDOWS\system32\mssha.dll
2015-11-18 09:48:43 ----N---- C:\WINDOWS\system32\mmcperf.exe
2015-11-18 09:48:43 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2015-11-18 09:48:43 ----N---- C:\WINDOWS\system32\mmcex.dll
2015-11-18 09:48:43 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2015-11-18 09:48:42 ----N---- C:\WINDOWS\system32\onex.dll
2015-11-18 09:48:42 ----N---- C:\WINDOWS\system32\napstat.exe
2015-11-18 09:48:42 ----N---- C:\WINDOWS\system32\napmontr.dll
2015-11-18 09:48:42 ----N---- C:\WINDOWS\system32\napipsec.dll
2015-11-18 09:48:42 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2015-11-18 09:48:41 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2015-11-18 09:48:41 ----N---- C:\WINDOWS\system32\rasqec.dll
2015-11-18 09:48:41 ----N---- C:\WINDOWS\system32\qutil.dll
2015-11-18 09:48:41 ----N---- C:\WINDOWS\system32\qcliprov.dll
2015-11-18 09:48:41 ----N---- C:\WINDOWS\system32\qagentrt.dll
2015-11-18 09:48:41 ----N---- C:\WINDOWS\system32\qagent.dll
2015-11-18 09:48:41 ----N---- C:\WINDOWS\system32\photometadatahandler.dll
2015-11-18 09:48:40 ----N---- C:\WINDOWS\system32\setupn.exe
2015-11-18 09:48:39 ----N---- C:\WINDOWS\system32\verclsid.exe
2015-11-18 09:48:39 ----N---- C:\WINDOWS\system32\tzchange.exe
2015-11-18 09:48:39 ----N---- C:\WINDOWS\system32\tspkg.dll
2015-11-18 09:48:39 ----N---- C:\WINDOWS\system32\tsgqec.dll
2015-11-18 09:48:38 ----N---- C:\WINDOWS\system32\wmphoto.dll
2015-11-18 09:48:38 ----N---- C:\WINDOWS\system32\wlanapi.dll
2015-11-18 09:48:38 ----N---- C:\WINDOWS\system32\windowscodecsext.dll
2015-11-18 09:48:38 ----N---- C:\WINDOWS\system32\windowscodecs.dll
2015-11-18 09:48:34 ----D---- C:\WINDOWS\l2schemas
2015-11-18 09:48:33 ----D---- C:\WINDOWS\system32\cs
2015-11-18 09:48:33 ----D---- C:\WINDOWS\system32\bits
2015-11-18 09:43:10 ----D---- C:\WINDOWS\network diagnostic
2015-11-18 09:43:05 ----N---- C:\WINDOWS\system32\drivers\sffp_mmc.sys
2015-11-18 09:41:08 ----A---- C:\WINDOWS\002784_.tmp
2015-11-18 09:36:29 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2015-11-18 08:41:57 ----D---- C:\Program Files\trend micro
2015-11-18 08:41:56 ----D---- C:\rsit
2015-11-04 13:17:16 ----D---- C:\Program Files\Mozilla Firefox

======List of files/folders modified in the last 1 month======

2015-11-19 11:26:27 ----D---- C:\WINDOWS\system32\drivers
2015-11-19 10:53:22 ----D---- C:\Documents and Settings\Fotogold\Data aplikací\Wise Care 365
2015-11-19 10:52:57 ----D---- C:\WINDOWS\Temp
2015-11-19 10:50:35 ----A---- C:\WINDOWS\SchedLgU.Txt
2015-11-19 10:48:46 ----RSHD---- C:\Recycled
2015-11-19 10:48:46 ----D---- C:\WINDOWS
2015-11-19 10:32:24 ----D---- C:\WINDOWS\system32
2015-11-19 09:35:56 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2015-11-19 09:34:03 ----HD---- C:\WINDOWS\inf
2015-11-19 09:34:02 ----D---- C:\WINDOWS\system32\CatRoot2
2015-11-19 08:53:10 ----RD---- C:\Program Files
2015-11-18 15:49:29 ----A---- C:\WINDOWS\wincmd.ini
2015-11-18 15:30:18 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-11-18 15:23:08 ----RSHDC---- C:\WINDOWS\system32\dllcache
2015-11-18 15:23:03 ----HD---- C:\WINDOWS\$hf_mig$
2015-11-18 15:23:01 ----A---- C:\WINDOWS\imsins.BAK
2015-11-18 13:07:25 ----D---- C:\WINDOWS\AppPatch
2015-11-18 12:34:20 ----SD---- C:\WINDOWS\Tasks
2015-11-18 12:33:46 ----D---- C:\WINDOWS\system32\cs-cz
2015-11-18 12:33:45 ----D---- C:\WINDOWS\Media
2015-11-18 12:33:45 ----D---- C:\WINDOWS\Help
2015-11-18 12:33:45 ----D---- C:\Program Files\Internet Explorer
2015-11-18 12:33:44 ----D---- C:\WINDOWS\system32\wbem
2015-11-18 11:54:36 ----D---- C:\WINDOWS\WinSxS
2015-11-18 11:37:34 ----D---- C:\Program Files\Outlook Express
2015-11-18 11:36:39 ----D---- C:\Program Files\Movie Maker
2015-11-18 11:31:17 ----D---- C:\Program Files\Messenger
2015-11-18 10:57:04 ----D---- C:\WINDOWS\SoftwareDistribution
2015-11-18 10:03:26 ----D---- C:\WINDOWS\system32\Setup
2015-11-18 10:03:24 ----RSD---- C:\WINDOWS\Fonts
2015-11-18 09:53:35 ----D---- C:\WINDOWS\security
2015-11-18 09:53:25 ----D---- C:\WINDOWS\system32\CatRoot
2015-11-18 09:49:07 ----D---- C:\Program Files\Windows Media Player
2015-11-18 09:48:51 ----D---- C:\WINDOWS\ime
2015-11-18 09:48:36 ----D---- C:\WINDOWS\system32\usmt
2015-11-18 09:48:33 ----SHD---- C:\WINDOWS\Installer
2015-11-18 09:48:33 ----D---- C:\WINDOWS\PeerNet
2015-11-18 09:45:33 ----D---- C:\WINDOWS\system32\Restore
2015-11-18 09:45:32 ----D---- C:\WINDOWS\system32\npp
2015-11-18 09:45:31 ----D---- C:\WINDOWS\msagent
2015-11-18 09:45:29 ----D---- C:\WINDOWS\srchasst
2015-11-18 09:45:29 ----D---- C:\Program Files\NetMeeting
2015-11-18 09:45:27 ----D---- C:\WINDOWS\system32\Com
2015-11-18 09:45:24 ----D---- C:\Program Files\Windows NT
2015-11-18 09:45:20 ----D---- C:\Program Files\Common Files\System
2015-11-18 09:44:56 ----D---- C:\WINDOWS\system32\oobe
2015-11-18 09:44:54 ----D---- C:\WINDOWS\system
2015-11-18 09:35:10 ----D---- C:\WINDOWS\EHome
2015-11-18 09:20:47 ----D---- C:\WINDOWS\Debug
2015-11-06 07:59:58 ----D---- C:\Program Files\Mozilla Maintenance Service

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2014-09-30 185688]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2014-09-30 135296]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2014-09-30 118768]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2008-02-15 5854752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-05-07 4739072]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys []
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-03-02 12160]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2007-10-23 103296]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S3 ESETOlmarikOlmascoCleaner;ESET Olmarik/Olmasco Cleaner; \??\C:\WINDOWS\system32\Drivers\ESETOlmarikOlmascoCleaner.sys []
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2014-09-30 1343920]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
S2 WiseBootAssistant;Wise Boot Assistant; C:\Program Files\Wise\Wise Care 365\BootTime.exe [2014-10-28 580232]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-19 269000]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-11-04 147624]
S3 ssinstall;SInstalátor; C:\WINDOWS\System32\ssins.exe [2014-11-12 2324216]

-----------------EOF-----------------

Stáhni OTM z jednoho odkazu a rozbal nejlépe na plochu.
http://oldtimer.geekstogo.com/OTM.exe
http://www.itxassociates.com/OT-Tools/OTM.exe

Spusť program „OTM.exe“
Do okna pod žlutou čáru vlož celý text zeleným písmem ze „Scriptu“

Klikni na červené „MoveIt!“

Při nabídce restartu „YES“
a log potom najdeš v C:\_OTM\MovedFiles\ - dej mi ho sem na kontrolu

Script OTM

mám problém, vždycky mi zatuhne počítač když to spustím OTM.exe a pak vložím spustím a je zásek

Zkus operaci s OTM v Nouzovém režimu

povedlo se

All processes killed
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Fotogold
->Temp folder emptied: 22765206 bytes
->Temporary Internet Files folder emptied: 11811734 bytes
->FireFox cache emptied: 368779196 bytes
->Flash cache emptied: 0 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 1848261 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2168254 bytes
%systemroot%\System32 .tmp files removed: 2504 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 604 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 389,00 mb


[EMPTYFLASH]

User: Administrator

User: All Users

User: Default User

User: Fotogold
->Flash cache emptied: 0 bytes

User: LocalService

User: NetworkService

Total Flash Files Cleaned = 0,00 mb


[EMPTYJAVA]

User: Administrator

User: All Users

User: Default User

User: Fotogold

User: LocalService

User: NetworkService

Total Java Files Cleaned = 0,00 mb


Error creating restore point.
========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
File/Folder C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe not found.
File/Folder C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe -c not found.
File/Folder C:\WINDOWS\tasks\Wise Care 365.job - C:\Program Files\Wise\Wise Care 365\WiseTray.exe -StartTray not found.
File/Folder C:\WINDOWS\tasks\Wise Turbo Checker.job - C:\Program Files\Wise\Wise Care 365\WiseTurbo.exe not found.
C:\Documents and Settings\Fotogold\Data aplikací\Mozilla\Firefox\Profiles\wuawav6v.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\JAK folder moved successfully.
C:\Documents and Settings\Fotogold\Data aplikací\Mozilla\Firefox\Profiles\wuawav6v.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\subclasses\email folder moved successfully.
C:\Documents and Settings\Fotogold\Data aplikací\Mozilla\Firefox\Profiles\wuawav6v.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components\subclasses folder moved successfully.
C:\Documents and Settings\Fotogold\Data aplikací\Mozilla\Firefox\Profiles\wuawav6v.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\components folder moved successfully.
C:\Documents and Settings\Fotogold\Data aplikací\Mozilla\Firefox\Profiles\wuawav6v.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules\classes folder moved successfully.
C:\Documents and Settings\Fotogold\Data aplikací\Mozilla\Firefox\Profiles\wuawav6v.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\modules folder moved successfully.
C:\Documents and Settings\Fotogold\Data aplikací\Mozilla\Firefox\Profiles\wuawav6v.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\META-INF folder moved successfully.
C:\Documents and Settings\Fotogold\Data aplikací\Mozilla\Firefox\Profiles\wuawav6v.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}\chrome folder moved successfully.
C:\Documents and Settings\Fotogold\Data aplikací\Mozilla\Firefox\Profiles\wuawav6v.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} folder moved successfully.
C:\WINDOWS\system32\xp_eos.exe moved successfully.
File/Folder C:\WINDOWS\002784_.tmp not found.
C:\WINDOWS\system32\Drivers\ESETOlmarikOlmascoCleaner.sys moved successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ESETOlmarikOlmascoCleaner\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ESETOlmarikOlmascoCleaner.sys\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ESETOlmarikOlmascoCleaner\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ESETOlmarikOlmascoCleaner.sys\ deleted successfully.
========== SERVICES/DRIVERS ==========
Service ESETOlmarikOlmascoCleaner stopped successfully!
Service ESETOlmarikOlmascoCleaner deleted successfully!

OTM by OldTimer - Version 3.1.21.0 log created on 11202015_130403

Spusť opět OTM -> CleanUp! - odinstaluje a vyčistí po sobě.

Měl jsem chybku ve scriptu - následující smaž ručně

C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
C:\WINDOWS\tasks\Wise Care 365.job
C:\WINDOWS\tasks\Wise Turbo Checker.job

Mohu doporučit kontrolu a vyčištění Ccleanerem

Stáhni Ccleaner - http://www.filehippo.com/download_ccleaner
Při instalaci vyhodit fajfku u instalace různých toolbarů

zavřít Internetový prohlížeč a
spustit "Čistič" > "Spustit Ccleaner" - odstraní nepotřebné
spustit "Registry" > "Hledej problémy" > "Opravit vybrané problémy"
souhlas se zálohou registrů - opakovat dokud nebudou registry čisté.
spustit "Nástroje" > "Obnova systému" - 1.řádek zachovej, ostatní "Odstranit"
spustit "Nástroje" > "Start" - tady můžeš zkusit deaktivovat procesy, které při spuštění nepotřebuješ (pokud by ti potom něco nechodilo, stejným způsobem je povolíš)
Návod:http://jnp.zive.cz/Clanky/Prirucka-do-k ... fault.aspx

Ten si můžeš nechat i na budoucí občasné čištění.

hláška v logu OTM "Error creating restore point."
Pokud máš vypnutou Obnovu systému tak doporučuji Spustit a vytvořit aktuální Bod obnovy

Jak to vypadá s PC nyní

smazáno, vyčištěno
jen rychlost PC žádný zázrak

Zdravim
Len taka pripomienka.
Od tohto systemu ani nemozes cakat ziadny zazrak.
Total RAM: 1015 MB
pekny den.