Kontrola logu - PC j zasekáne, pomalu se vypíná Vyřešeno

[memphisto]

Tak to zkus v nouzovém režimu

[Reklama]

[divine]

A jak se do nouzového režimu dostanu?

[memphisto]

Při nabíhání PC zmáčkneš F8 a dostaneš se na seznam režimů spouštění a tam vybereš nouzový režim

[divine]

A spustit ve stavu nouze nebo ve stavu nouze s prací v síti??

[jaro3]

To druhé ( i se sítí).

[divine]

Ok. jdu to zkusit a pa dám vědět.

[divine]

ComboFix 12-09-18.07 - Administrator 19.09.2012 10:59:07.2.2 - x86 NETWORK
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1535.1140 [GMT 2:00]
Spuštěný z: c:\documents and settings\Administrator\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\Administrator\Plocha\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
FILE ::
"c:\windows\system32\drivers\EagleXNt.sys"
"c:\windows\system32\Drivers\SSPORT.sys"
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\Google\Update
c:\program files\Google\Update\1.3.21.111\GoogleCrashHandler.exe
c:\program files\Google\Update\1.3.21.111\GoogleCrashHandler64.exe
c:\program files\Google\Update\1.3.21.111\GoogleUpdate.exe
c:\program files\Google\Update\1.3.21.111\GoogleUpdateBroker.exe
c:\program files\Google\Update\1.3.21.111\GoogleUpdateHelper.msi
c:\program files\Google\Update\1.3.21.111\GoogleUpdateOnDemand.exe
c:\program files\Google\Update\1.3.21.111\GoogleUpdateSetup.exe
c:\program files\Google\Update\1.3.21.111\goopdate.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_am.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_ar.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_bg.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_bn.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_ca.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_cs.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_da.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_de.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_el.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_en-GB.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_en.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_es-419.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_es.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_et.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_fa.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_fi.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_fil.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_fr.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_gu.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_hi.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_hr.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_hu.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_id.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_is.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_it.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_iw.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_ja.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_kn.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_ko.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_lt.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_lv.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_ml.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_mr.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_ms.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_nl.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_no.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_pl.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_pt-BR.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_pt-PT.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_ro.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_ru.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_sk.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_sl.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_sr.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_sv.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_sw.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_ta.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_te.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_th.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_tr.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_uk.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_ur.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_vi.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_zh-CN.dll
c:\program files\Google\Update\1.3.21.111\goopdateres_zh-TW.dll
c:\program files\Google\Update\1.3.21.111\npGoogleUpdate3.dll
c:\program files\Google\Update\1.3.21.111\psmachine.dll
c:\program files\Google\Update\1.3.21.111\psuser.dll
c:\program files\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.21.111\GoogleUpdateSetup.exe
c:\program files\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\21.0.1180.89\21.0.1180.89_chrome_installer.exe
c:\program files\Google\Update\GoogleUpdate.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_EAGLEXNT
-------\Legacy_GUPDATE
-------\Legacy_SSPORT
-------\Service_EagleXNt
-------\Service_gupdate
-------\Service_gupdatem
-------\Service_SSPORT
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-08-19 do 2012-09-19 )))))))))))))))))))))))))))))))
.
.
2012-09-19 08:50 . 2012-09-19 08:50 -------- d-----w- c:\documents and settings\Administrator
2012-09-16 17:25 . 2012-09-16 17:25 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2012-09-16 17:25 . 2012-09-07 15:04 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-09-16 17:25 . 2012-09-16 17:25 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-09-16 17:18 . 2012-09-16 17:18 73416 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-09-16 17:18 . 2012-09-16 17:18 696520 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-09-16 15:57 . 2012-09-16 15:57 -------- d-----w- c:\program files\Trend Micro
2012-09-16 15:54 . 2012-08-21 09:13 21256 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2012-09-16 15:54 . 2012-08-21 09:13 355632 ----a-w- c:\windows\system32\drivers\aswSP.sys
2012-09-16 15:54 . 2012-08-21 09:13 35928 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2012-09-16 15:54 . 2012-08-21 09:13 54232 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2012-09-16 15:54 . 2012-08-21 09:13 729752 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-09-16 15:54 . 2012-08-21 09:13 97608 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2012-09-16 15:54 . 2012-08-21 09:13 89624 ----a-w- c:\windows\system32\drivers\aswmon.sys
2012-09-16 15:54 . 2012-08-21 09:13 25256 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2012-09-16 15:53 . 2012-08-21 09:12 41224 ----a-w- c:\windows\avastSS.scr
2012-09-16 15:53 . 2012-08-21 09:12 227648 ----a-w- c:\windows\system32\aswBoot.exe
2012-09-16 15:53 . 2012-09-16 15:53 -------- d-----w- c:\program files\AVAST Software
2012-09-16 15:53 . 2012-09-16 15:53 -------- d-----w- c:\documents and settings\All Users\Data aplikací\AVAST Software
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-13 14:57 . 2011-09-08 12:03 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-08-21 09:12 121528 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
"LDM"="c:\program files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" [BU]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"="c:\program files\Analog Devices\SoundMAX\SMax4PNP.exe" [2004-04-01 1368064]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2008-01-21 61440]
"BDRegion"="c:\program files\Cyberlink\Shared Files\brs.exe" [2007-11-16 91432]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]
"LogitechCameraAssistant"="c:\program files\Logitech\Video\CameraAssistant.exe" [2005-12-07 489472]
"LogitechVideo[inspector]"="c:\program files\Logitech\Video\InstallHelper.exe" [2005-12-07 09:33 73728]
"LogitechCameraService(E)"="c:\windows\system32\ElkCtrl.exe" [2004-11-01 262144]
"Samsung PanelMgr"="c:\windows\Samsung\PanelMgr\SSMMgr.exe" [2008-05-07 524288]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-08-21 4282728]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
Logitech Desktop Messenger.lnk - c:\program files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe [2008-3-26 450560]
WinZip Quick Pick.lnk - c:\program files\WinZip\WZQKPICK.EXE [2008-4-3 415072]
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Valve\\hl.exe"=
"c:\\Program Files\\Activision\\Call of Duty 2\\CoD2MP_s.exe"=
"c:\\Program Files\\EA GAMES\\Battlefield 2\\BF2.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Valve\\hlds.exe"=
"c:\\Program Files\\EA Sports\\NHL 09\\nhl2009.exe"=
"c:\\Documents and Settings\\Michal\\Plocha\\Ostatní\\Worms-Armagedon-XP\\Worms Armagedon XP\\WA.exe"=
"c:\\Program Files\\EA GAMES\\Battlefield 2\\Bf2_w32ded.exe"=
"c:\\Program Files\\Army Men RTS\\amrts.exe"=
.
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [4.8.2008 10:02 691696]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [16.9.2012 17:54 729752]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [16.9.2012 17:54 355632]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [16.9.2012 17:54 21256]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [16.9.2012 19:25 676936]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [16.9.2012 19:25 22856]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [16.9.2012 19:18 250568]
S3 hwusbdev;Huawei DataCard USB PNP Device;c:\windows\system32\drivers\ewusbdev.sys [6.7.2011 15:52 100736]
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2007-06-20 10:47 451872 -c--a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2012-09-17 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-09-16 17:18]
.
2012-09-19 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2012-09-16 09:12]
.
.
------- Doplňkový sken -------
.
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.2.1
Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - c:\program files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
FF - ProfilePath - c:\documents and settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\nl7jo6o0.default\
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-09-19 11:21
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(756)
c:\windows\system32\Ati2evxx.dll
.
- - - - - - - > 'explorer.exe'(7200)
c:\progra~1\COMMON~1\MICROS~1\WEBCOM~1\11\OWC11.DLL
c:\program files\Common Files\Microsoft Shared\Web Components\11\1029\OWCI11.DLL
c:\progra~1\COMMON~1\MICROS~1\WEBCOM~1\10\OWC10.DLL
c:\program files\Common Files\Microsoft Shared\INK\SKCHUI.DLL
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\Ati2evxx.exe
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Malwarebytes' Anti-Malware\mbamscheduler.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\windows\system32\PnkBstrA.exe
c:\program files\CyberLink\Shared files\RichVideo.exe
c:\program files\Analog Devices\SoundMAX\SMAgent.exe
c:\windows\system32\WgaTray.exe
c:\windows\system32\rundll32.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
.
**************************************************************************
.
Celkový čas: 2012-09-19 11:25:43 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-09-19 09:25
ComboFix2.txt 2012-09-17 15:54
.
Před spuštěním: Volných bajtů: 22 658 093 056
Po spuštění: Volných bajtů: 22 420 254 720
.
- - End Of File - - 55D21BA8A44241929710BDE021098873

[memphisto]

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

Vyčisti systém CCleanerem
a použij i T-Cleaner
smaže vše po Combu,MWAVu atd.-stáhneš>spustíš

pozn. před stažením T-Cleaneru a po dobu čištění deaktivuj antivir a antispyware ,následně T-Cleaner smaž a zapni si znovu antivir a antispyware.


+ HJT

Jak se chová PC?

[divine]

PC je opravdu o něco rychlejší. Vypínání trvá cca. 5 minutek, ale to už bude spíše hardwarový problém. Chtěl jsem se zeptat na něco mimo téma : na svém druhém PC občas čistím Ccleanerem a vždy mi tam vyběhnou nějaké chyby v registrech. I když byl starý tak měsíc. Je to v pořádku?

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:25:49, on 19.9.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\CyberLink\Shared files\RichVideo.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\WgaTray.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Cyberlink\Shared Files\brs.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Logitech\Video\CameraAssistant.exe
C:\WINDOWS\system32\ElkCtrl.exe
C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [BDRegion] C:\Program Files\Cyberlink\Shared Files\brs.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [Samsung PanelMgr] C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe /autorun
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: bw+0 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {D5859FA1-86E7-4832-9606-2696EDB851A6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe

--
End of file - 17420 bytes

[memphisto]

HJT ok.

V pořádku to je. Může jít například o staré soubory, které byly odstraněny, aktualizace nainstalovány a poté instalačky smazány, apod. Je spousta věcí, co se zapisuje do registrů a ani o tom nevíš.

[divine]

ok. Tak děkuji za kontrolu. Trošku to určitě pomohlo.

[memphisto]

Není zač. Pokud je to vše, tak poprosím nahoře o zelenou fajku.