Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu. MBAM něco našel!

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
ferry11
Návštěvník
Návštěvník
Příspěvky: 31
Registrován: 23 bře 2009 11:51

Prosím o kontrolu. MBAM něco našel!

#1 Příspěvek od ferry11 »

Něco našel MBAM výsledky v raru (zabaleny dva poznámkové bloky výsledky MBAM):

Kód: Vybrat vše

http://www.ulozto.cz/xY6cpdT/nalez-rar
Logfile of random's system information tool 1.09 (written by random/random)
Run by uzivatel at 2012-11-07 21:01:24
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 15 GB (62%) free of 25 GB
Total RAM: 1535 MB (56% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:01:38, on 7.11.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe
C:\WINDOWS\TBPanel.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Seznam.cz\bin\postak.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
D:\DOKUMENTY\Downloads\RSIT.exe
C:\Program Files\trend micro\uzivatel.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Cole2k Media Toolbar Helper - {5499BCB1-5641-4A4C-9F75-462D4D8D0DA0} - C:\Program Files\Cole2k Media Toolbar\v3.3.0.1\Cole2k_Media_Toolbar.dll
O2 - BHO: Canon Easy Web Print Helper - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Ukazatel S-Rank - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files\Seznam.cz\bin\core.4.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: Cole2k Media Toolbar - {8AE33802-00D3-4F1B-B5C7-6FEE34E402CE} - C:\Program Files\Cole2k Media Toolbar\v3.3.0.1\Cole2k_Media_Toolbar.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: Nástroje Lištičky - {1EA00BE1-6E54-4E2A-8099-680300BF23E1} - C:\Program Files\Seznam.cz\toolbar\toolbar.dll
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe"
O4 - HKLM\..\Run: [Gainward] C:\WINDOWS\TBPanel.exe /A
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe 1
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [Seznam Postak] "C:\Program Files\Seznam.cz\bin\postak.exe" -s
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: Easy-WebPrint - Náhled - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_Preview.html
O8 - Extra context menu item: Easy-WebPrint - Přidat na seznam k tisku - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint - Tisk - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint - Vysokorychlostní tisk - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_HSPrint.html
O9 - Extra button: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files\Seznam.cz\listicka.dll
O9 - Extra 'Tools' menuitem: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files\Seznam.cz\listicka.dll
O9 - Extra button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files\Seznam.cz\listicka.dll
O9 - Extra 'Tools' menuitem: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files\Seznam.cz\listicka.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

--
End of file - 8095 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\avast! Emergency Update.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5499BCB1-5641-4A4C-9F75-462D4D8D0DA0}]
Cole2k Media Toolbar Helper - C:\Program Files\Cole2k Media Toolbar\v3.3.0.1\Cole2k_Media_Toolbar.dll [2011-08-23 806912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{68F9551E-0411-48E4-9AAF-4BC42A6A46BE}]
EWPBrowseObject Class - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll [2006-04-18 34304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-30 1227736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}]
Ukazatel S-Rank - C:\Program Files\Seznam.cz\bin\core.4.dll [2012-01-10 1151520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{327C2873-E90D-4c37-AA9D-10AC9BABA46C} - Easy-WebPrint - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll [2006-04-18 552960]
{8AE33802-00D3-4F1B-B5C7-6FEE34E402CE} - Cole2k Media Toolbar - C:\Program Files\Cole2k Media Toolbar\v3.3.0.1\Cole2k_Media_Toolbar.dll [2011-08-23 806912]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-30 1227736]
{1EA00BE1-6E54-4E2A-8099-680300BF23E1} - Nástroje Lištičky - C:\Program Files\Seznam.cz\toolbar\toolbar.dll [2011-05-25 188960]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SkyTel"=SkyTel.EXE []
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"SSBkgdUpdate"=C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2003-09-30 155648]
"OpwareSE4"=C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe [2006-03-21 69632]
"Gainward"=C:\WINDOWS\TBPanel.exe [2007-06-26 2173480]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2007-07-23 8466432]
"nwiz"=nwiz.exe /install []
"RTHDCPL"=RTHDCPL.EXE []
"Alcmtr"=ALCMTR.EXE []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2007-07-23 81920]
"HDAudDeck"=C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe [2009-12-03 33718272]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2012-10-30 4297136]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"NBJ"=C:\Program Files\Ahead\Nero BackItUp\NBJ.exe [2005-07-14 1961984]
"Seznam Postak"=C:\Program Files\Seznam.cz\bin\postak.exe [2012-01-10 491040]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"D:\CELE HRY\Far Cry\Bin32\FarCry.exe"="D:\CELE HRY\Far Cry\Bin32\FarCry.exe:*:Enabled:Far Cry"
"C:\Program Files\GameSpy Arcade\Aphex.exe"="C:\Program Files\GameSpy Arcade\Aphex.exe:*:Enabled:GameSpy Arcade"
"D:\INSTALACE\CALL OF DUTY II\CoD2MP_s.exe"="D:\INSTALACE\CALL OF DUTY II\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Opera\pluginwrapper\opera_plugin_wrapper.exe"="C:\Program Files\Opera\pluginwrapper\opera_plugin_wrapper.exe:*:Enabled:Opera Internet Browser - Plugin wrapper"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.DIVX"=divx.dll
"vidc.XVID"=xvidvfw.dll
"msacm.lameacm"=LameACM.acm
"vidc.3iv2"=3ivxVfWCodec.dll
"msacm.divxa32"=DivXa32.acm
"VIDC.HFYU"=huffyuv.dll
"VIDC.wmv3"=wmv9vcm.dll
"VIDC.VP60"=vp6vfw.dll
"VIDC.VP61"=vp6vfw.dll
"VIDC.VP62"=vp6vfw.dll
"VIDC.VP31"=vp31vfw.dll
"vidc.MPG4"=Mpg4c32.dll
"vidc.MP42"=Mpg4c32.dll
"vidc.MP43"=Mpg4c32.dll
"msacm.ac3acm"=ac3acm.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"msacm.ac3filter"=ac3filter.acm
"vidc.yv12"=divx.dll
"vidc.ffds"=ff_vfw.dll
"msacm.at3"=atrac3.acm

======List of files/folders created in the last 1 month======

2012-11-07 21:01:25 ----D---- C:\Program Files\trend micro
2012-11-07 21:01:24 ----D---- C:\rsit
2012-11-07 18:13:58 ----D---- C:\Program Files\Google
2012-11-06 16:42:11 ----D---- C:\Program Files\Defraggler
2012-11-06 15:46:41 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2012-11-06 15:46:40 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2012-11-05 20:35:08 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2012-11-05 18:59:00 ----HDC---- C:\WINDOWS\ie8
2012-11-05 18:44:36 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$
2012-11-05 18:44:30 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2012-11-05 18:36:41 ----HDC---- C:\WINDOWS\$NtUninstallKB2731847-v2$
2012-11-05 18:36:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2756822$
2012-11-05 18:36:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2705219-v2$
2012-11-05 18:36:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2723135-v2$
2012-11-05 18:36:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2661254-v2$
2012-11-05 18:36:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2724197$
2012-11-05 18:36:00 ----HDC---- C:\WINDOWS\$NtUninstallKB2749655$
2012-11-05 18:35:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2736233$
2012-11-05 18:35:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2712808$
2012-11-05 18:35:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2698365$
2012-11-05 18:35:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2719985$
2012-11-05 18:35:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2655992$
2012-11-05 18:35:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2691442$
2012-11-05 18:34:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2686509$
2012-11-05 18:34:48 ----HDC---- C:\WINDOWS\$NtUninstallKB2659262$
2012-11-05 18:34:36 ----HDC---- C:\WINDOWS\$NtUninstallKB2676562$
2012-11-05 18:34:29 ----HDC---- C:\WINDOWS\$NtUninstallKB2653956$
2012-11-05 18:34:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2661637$
2012-11-05 18:33:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2467659$
2012-11-05 18:33:05 ----D---- C:\WINDOWS\ie8updates
2012-11-05 18:28:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2646524$
2012-11-05 18:28:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2598479$
2012-11-05 18:27:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2603381$
2012-11-05 18:27:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2585542$
2012-11-05 18:27:44 ----HDC---- C:\WINDOWS\$NtUninstallKB2631813$
2012-11-05 18:27:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2584146$
2012-11-05 18:27:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2620712$
2012-11-05 18:27:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2619339$
2012-11-05 18:27:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2618451$
2012-11-05 18:27:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2624667$
2012-11-05 18:27:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2544893-v2$
2012-11-05 18:27:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2564958$
2012-11-05 18:27:01 ----HDC---- C:\WINDOWS\$NtUninstallKB2592799$
2012-11-05 18:26:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2570947$
2012-11-05 18:26:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2536276-v2$
2012-11-05 18:26:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2566454$
2012-11-05 18:26:40 ----D---- C:\Program Files\MSXML 4.0
2012-11-05 18:26:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2507938$
2012-11-05 18:26:27 ----D---- C:\WINDOWS\ie7updates
2012-11-05 18:26:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2476490$
2012-11-05 18:26:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2535512$
2012-11-05 18:26:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2509553$
2012-11-05 18:26:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2510581$
2012-11-05 18:25:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2507618$
2012-11-05 18:25:52 ----HDC---- C:\WINDOWS\$NtUninstallKB2506212$
2012-11-05 18:25:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2508429$
2012-11-05 18:25:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2485663$
2012-11-05 18:25:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2481109$
2012-11-05 18:25:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2479943$
2012-11-05 18:25:22 ----HDC---- C:\WINDOWS\$NtUninstallKB971029$
2012-11-05 18:25:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2393802$
2012-11-05 18:25:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2478960$
2012-11-05 18:24:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2483185$
2012-11-05 18:24:52 ----HDC---- C:\WINDOWS\$NtUninstallKB2478971$
2012-11-05 18:24:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2419632$
2012-11-05 18:24:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2440591$
2012-11-05 18:24:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2443105$
2012-11-05 18:24:29 ----HDC---- C:\WINDOWS\$NtUninstallKB2423089$
2012-11-05 18:24:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2360937$
2012-11-05 18:24:18 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2012-11-05 18:24:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2012-11-05 18:24:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2012-11-05 18:24:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2012-11-05 18:23:55 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2012-11-05 18:23:50 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$
2012-11-05 18:23:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2347290$
2012-11-05 18:23:42 ----HDC---- C:\WINDOWS\$NtUninstallKB981322$
2012-11-05 18:23:35 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$
2012-11-05 18:23:30 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$
2012-11-05 18:23:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2012-11-05 18:23:19 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2012-11-05 18:23:14 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2012-11-05 18:23:10 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2012-11-05 18:23:02 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2012-11-05 18:22:55 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2012-11-05 18:22:50 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2012-11-05 18:22:45 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2012-11-05 18:22:39 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2012-11-05 18:22:31 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2012-11-05 18:22:22 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2012-11-05 18:22:17 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2012-11-05 18:22:10 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2012-11-05 18:22:05 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2012-11-05 18:21:59 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2012-11-05 18:21:53 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2012-11-05 18:21:50 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2012-11-05 18:21:43 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2012-11-05 18:21:37 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2012-11-05 18:21:32 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2012-11-05 18:21:28 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2012-11-05 18:21:23 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2012-11-05 18:21:17 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2012-11-05 18:21:14 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2012-11-05 18:21:09 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2012-11-05 18:21:04 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2012-11-05 18:20:58 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2012-11-05 18:20:53 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2012-11-05 18:20:47 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2012-11-05 18:20:42 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2012-11-05 18:20:36 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2012-11-05 18:20:32 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2012-11-05 18:20:27 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2012-11-05 18:20:21 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2012-11-05 18:20:09 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2012-11-05 18:20:02 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2012-11-05 18:19:57 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2012-11-05 18:19:53 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2012-11-05 18:19:48 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2012-11-05 18:19:43 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2012-11-05 18:19:39 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2012-11-05 18:19:32 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2012-11-05 18:19:27 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2012-11-05 18:19:21 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2012-11-05 18:11:49 ----D---- C:\Program Files\Seznam.cz
2012-11-05 18:08:08 ----N---- C:\WINDOWS\system32\browserchoice.exe
2012-11-05 18:05:27 ----N---- C:\WINDOWS\system32\iacenc.dll
2012-11-05 17:54:24 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2012-11-05 17:36:03 ----HDC---- C:\WINDOWS\ie7
2012-11-05 17:35:52 ----HDC---- C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$
2012-11-05 17:35:25 ----HDC---- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
2012-11-05 17:34:47 ----HDC---- C:\WINDOWS\$NtUninstallKB915865$
2012-11-05 17:18:16 ----D---- C:\WINDOWS\WBEM
2012-11-05 16:42:37 ----A---- C:\WINDOWS\system32\drivers\aswTdi.sys
2012-11-05 16:42:37 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2012-11-05 16:42:37 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2012-11-05 16:42:37 ----A---- C:\WINDOWS\system32\drivers\aswRdr.sys
2012-11-05 16:42:37 ----A---- C:\WINDOWS\system32\drivers\aswFsBlk.sys
2012-11-05 16:42:36 ----A---- C:\WINDOWS\system32\drivers\aswmon2.sys
2012-11-05 16:42:36 ----A---- C:\WINDOWS\system32\drivers\aswmon.sys
2012-11-05 16:42:36 ----A---- C:\WINDOWS\system32\drivers\aavmker4.sys
2012-11-05 16:42:05 ----A---- C:\WINDOWS\system32\aswBoot.exe
2012-11-05 16:42:05 ----A---- C:\WINDOWS\avastSS.scr
2012-11-05 16:41:48 ----D---- C:\Program Files\AVAST Software
2012-11-05 16:41:48 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2012-11-05 16:11:57 ----D---- C:\Documents and Settings\uzivatel\Data aplikací\Opera
2012-11-05 16:11:53 ----D---- C:\Program Files\Opera
2012-10-22 17:17:19 ----A---- C:\WINDOWS\wininit.ini

======List of files/folders modified in the last 1 month======

2012-11-07 21:01:25 ----RD---- C:\Program Files
2012-11-07 21:01:22 ----D---- C:\WINDOWS\Prefetch
2012-11-07 20:57:03 ----A---- C:\WINDOWS\DFC.INI
2012-11-07 19:38:21 ----D---- C:\WINDOWS\system32\drivers
2012-11-07 18:49:02 ----D---- C:\WINDOWS\Temp
2012-11-07 18:43:21 ----HD---- C:\WINDOWS
2012-11-07 18:40:12 ----N---- C:\WINDOWS\SchedLgU.Txt
2012-11-07 18:24:03 ----SHD---- C:\WINDOWS\Installer
2012-11-07 18:15:15 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2012-11-07 18:14:14 ----SD---- C:\WINDOWS\Tasks
2012-11-06 17:04:11 ----SHD---- C:\System Volume Information
2012-11-06 17:04:11 ----D---- C:\WINDOWS\system32\Restore
2012-11-06 14:31:30 ----D---- C:\WINDOWS\AppPatch
2012-11-05 20:35:12 ----HD---- C:\WINDOWS\inf
2012-11-05 20:35:10 ----RSHDC---- C:\WINDOWS\system32\dllcache
2012-11-05 20:35:02 ----HD---- C:\WINDOWS\$hf_mig$
2012-11-05 20:35:01 ----D---- C:\WINDOWS\system32\CatRoot2
2012-11-05 19:09:04 ----D---- C:\WINDOWS\system32
2012-11-05 19:08:04 ----D---- C:\WINDOWS\system32\CatRoot
2012-11-05 19:03:04 ----D---- C:\WINDOWS\Debug
2012-11-05 19:01:37 ----D---- C:\WINDOWS\system32\cs-cz
2012-11-05 19:01:37 ----D---- C:\WINDOWS\Media
2012-11-05 19:01:37 ----D---- C:\WINDOWS\Help
2012-11-05 19:01:37 ----D---- C:\Program Files\Internet Explorer
2012-11-05 18:47:09 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2012-11-05 18:44:54 ----D---- C:\WINDOWS\WinSxS
2012-11-05 18:39:29 ----D---- C:\WINDOWS\system32\wbem
2012-11-05 18:24:30 ----D---- C:\Program Files\Outlook Express
2012-11-05 18:23:37 ----D---- C:\Program Files\Movie Maker
2012-11-05 18:19:40 ----D---- C:\Program Files\Messenger
2012-11-05 18:04:58 ----D---- C:\WINDOWS\SoftwareDistribution
2012-11-05 18:00:08 ----SD---- C:\WINDOWS\Downloaded Program Files
2012-11-05 16:04:39 ----D---- C:\WINDOWS\Logs
2012-11-05 16:03:13 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2012-11-05 16:02:14 ----D---- C:\Program Files\Mozilla Firefox
2012-11-05 16:00:28 ----D---- C:\Program Files\CCleaner
2012-11-03 19:06:15 ----HD---- C:\Program Files\InstallShield Installation Information
2012-11-03 14:44:58 ----D---- C:\Documents and Settings\uzivatel\Data aplikací\OpenOffice.org2

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 nvgts;nvgts; C:\WINDOWS\system32\DRIVERS\nvgts.sys [2008-08-18 145952]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2012-10-30 25256]
R1 AmdK8;AMD Processor Driver; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2005-03-09 36352]
R1 AswRdr;aswRdr; C:\WINDOWS\system32\drivers\AswRdr.sys [2012-10-30 35928]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2012-10-30 738504]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2012-10-30 361032]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2012-10-30 54232]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2006-03-02 12032]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2012-10-30 21256]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2012-10-30 97608]
R2 DgiVecp;Team MFP Comm Driver; C:\WINDOWS\System32\Drivers\DgiVecp.sys [2003-07-29 40448]
R2 irda;Protokol IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-13 88192]
R2 TBPanel;TBPanel; C:\WINDOWS\system32\drivers\TBPanel.sys [2007-03-16 12256]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys []
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2007-07-23 6807328]
R3 NVENETFD;NVIDIA nForce 10/100 Mbps Ethernet ; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2008-03-25 54400]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2008-03-25 22016]
R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\WINDOWS\system32\drivers\viahduaa.sys [2009-11-25 1617408]
S3 AMBFilt;AMBFilt; C:\WINDOWS\system32\drivers\AMBFilt.sys [2009-06-26 1656960]
S3 Amsmpu4p;Amsmpu4p; \??\C:\DOCUME~1\uzivatel\LOCALS~1\Temp\Amsmpu4p.sys []
S3 AsrCDDrv;AsrCDDrv; \??\C:\WINDOWS\system32\Drivers\AsrCDDrv.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 grmnusb;Garmin USB Driver; C:\WINDOWS\system32\drivers\grmnusb.sys [2009-01-22 8320]
S3 GVCplDrv;GVCplDrv; C:\WINDOWS\system32\drivers\GVCplDrv.sys [2004-05-02 23040]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys []
S3 irsir;Microsoft Serial Infrared Driver; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]
S3 MonFilt;MonFilt; C:\WINDOWS\system32\drivers\MonFilt.sys [2008-12-02 1389056]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\nmwcd.sys [2007-02-22 137216]
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\nmwcdc.sys [2007-02-22 8320]
S3 nmwcdcj;Nokia USB Port; C:\WINDOWS\system32\drivers\nmwcdcj.sys [2007-02-22 12288]
S3 nmwcdcm;Nokia USB Modem; C:\WINDOWS\system32\drivers\nmwcdcm.sys [2007-02-22 12288]
S3 NTACCESS;NTACCESS; \??\D:\NTACCESS.sys []
S3 SetupNTGLM7X;SetupNTGLM7X; \??\D:\NTGLM7X.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-13 121984]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-10-30 44808]
R2 Irmon;Sledování infračerveného přenosu; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2006-02-17 73728]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2012-09-29 676936]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-09-29 399432]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2007-07-23 155716]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-11-07 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-11-07 250808]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-11-07 116648]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2007-06-15 300544]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119520
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu. MBAM něco našel!

#2 Příspěvek od Rudy »

Nález MBAM byl v záloze systému a byl smazán. PC potřebuje vyčistit od zbytečností. Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
:files
C:\Program Files\Cole2k Media Toolbar
C:\Program Files\Seznam.cz\bin\core.4.dll
C:\Program Files\Seznam.cz\toolbar
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5499BCB1-5641-4A4C-9F75-462D4D8D0DA0}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Seznam Postak"=-

:commands
[Purity]
[Emptytemp]
[Emptyflash]
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
ferry11
Návštěvník
Návštěvník
Příspěvky: 31
Registrován: 23 bře 2009 11:51

Re: Prosím o kontrolu. MBAM něco našel!

#3 Příspěvek od ferry11 »

Tak provedeno.

All processes killed
========== FILES ==========
C:\Program Files\Cole2k Media Toolbar\v3.3.0.1\resources\search folder moved successfully.
C:\Program Files\Cole2k Media Toolbar\v3.3.0.1\resources\intro folder moved successfully.
C:\Program Files\Cole2k Media Toolbar\v3.3.0.1\resources folder moved successfully.
C:\Program Files\Cole2k Media Toolbar\v3.3.0.1\firefox\chrome\skin folder moved successfully.
C:\Program Files\Cole2k Media Toolbar\v3.3.0.1\firefox\chrome\content folder moved successfully.
C:\Program Files\Cole2k Media Toolbar\v3.3.0.1\firefox\chrome folder moved successfully.
C:\Program Files\Cole2k Media Toolbar\v3.3.0.1\firefox folder moved successfully.
C:\Program Files\Cole2k Media Toolbar\v3.3.0.1 folder moved successfully.
C:\Program Files\Cole2k Media Toolbar folder moved successfully.
C:\Program Files\Seznam.cz\bin\core.4.dll moved successfully.
C:\Program Files\Seznam.cz\toolbar folder moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5499BCB1-5641-4A4C-9F75-462D4D8D0DA0}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5499BCB1-5641-4A4C-9F75-462D4D8D0DA0}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\ deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Seznam Postak deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: LocalService
->Temp folder emptied: 65984 bytes
->Temporary Internet Files folder emptied: 32902 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 194268 bytes

User: Po spuštění

User: uzivatel
->Temp folder emptied: 1536322 bytes
->Temporary Internet Files folder emptied: 311407 bytes
->FireFox cache emptied: 4098070 bytes
->Google Chrome cache emptied: 6491918 bytes
->Opera cache emptied: 553027 bytes
->Flash cache emptied: 36648 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 109568 bytes
%systemroot%\System32 .tmp files removed: 2504 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 13,00 mb


[EMPTYFLASH]

User: All Users

User: Default User

User: LocalService

User: NetworkService

User: Po spuštění

User: uzivatel
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb


OTM by OldTimer - Version 3.1.21.0 log created on 11082012_154002

Files moved on Reboot...

Registry entries deleted on Reboot...
Nahoru
ferry11
Návštěvník
Návštěvník
Příspěvky: 31
Registrován: 23 bře 2009 11:51

Re: Prosím o kontrolu. MBAM něco našel!

#4 Příspěvek od ferry11 »

Tohle jsem ještě našel v karanténě Avastu, a přikládám ten nový log

Obrázek

Logfile of random's system information tool 1.09 (written by random/random)
Run by uzivatel at 2012-11-08 15:56:48
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 15 GB (61%) free of 25 GB
Total RAM: 1535 MB (68% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:56:53, on 8.11.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe
C:\WINDOWS\TBPanel.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Seznam.cz\bin\postak.exe
C:\Program Files\Seznam.cz\bin\MiniBrowser.exe
C:\Program Files\Seznam.cz\bin\MiniBrowser.exe
C:\Documents and Settings\uzivatel\Plocha\RSIT.exe
C:\Program Files\trend micro\uzivatel.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Canon Easy Web Print Helper - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Ukazatel S-Rank - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files\Seznam.cz\bin\core.4.dll
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe"
O4 - HKLM\..\Run: [Gainward] C:\WINDOWS\TBPanel.exe /A
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe 1
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [Seznam Postak] "C:\Program Files\Seznam.cz\bin\postak.exe" -s
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: Easy-WebPrint - Náhled - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_Preview.html
O8 - Extra context menu item: Easy-WebPrint - Přidat na seznam k tisku - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint - Tisk - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint - Vysokorychlostní tisk - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_HSPrint.html
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

--
End of file - 6359 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\avast! Emergency Update.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{68F9551E-0411-48E4-9AAF-4BC42A6A46BE}]
EWPBrowseObject Class - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll [2006-04-18 34304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-30 1227736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}]
Ukazatel S-Rank - C:\Program Files\Seznam.cz\bin\core.4.dll [2012-01-10 1151520]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SkyTel"=SkyTel.EXE []
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"SSBkgdUpdate"=C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2003-09-30 155648]
"OpwareSE4"=C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe [2006-03-21 69632]
"Gainward"=C:\WINDOWS\TBPanel.exe [2007-06-26 2173480]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2007-07-23 8466432]
"nwiz"=nwiz.exe /install []
"RTHDCPL"=RTHDCPL.EXE []
"Alcmtr"=ALCMTR.EXE []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2007-07-23 81920]
"HDAudDeck"=C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe [2009-12-03 33718272]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2012-10-30 4297136]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"NBJ"=C:\Program Files\Ahead\Nero BackItUp\NBJ.exe [2005-07-14 1961984]
"Seznam Postak"=C:\Program Files\Seznam.cz\bin\postak.exe [2012-01-10 491040]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"D:\CELE HRY\Far Cry\Bin32\FarCry.exe"="D:\CELE HRY\Far Cry\Bin32\FarCry.exe:*:Enabled:Far Cry"
"C:\Program Files\GameSpy Arcade\Aphex.exe"="C:\Program Files\GameSpy Arcade\Aphex.exe:*:Enabled:GameSpy Arcade"
"D:\INSTALACE\CALL OF DUTY II\CoD2MP_s.exe"="D:\INSTALACE\CALL OF DUTY II\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Opera\pluginwrapper\opera_plugin_wrapper.exe"="C:\Program Files\Opera\pluginwrapper\opera_plugin_wrapper.exe:*:Enabled:Opera Internet Browser - Plugin wrapper"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.DIVX"=divx.dll
"vidc.XVID"=xvidvfw.dll
"msacm.lameacm"=LameACM.acm
"vidc.3iv2"=3ivxVfWCodec.dll
"msacm.divxa32"=DivXa32.acm
"VIDC.HFYU"=huffyuv.dll
"VIDC.wmv3"=wmv9vcm.dll
"VIDC.VP60"=vp6vfw.dll
"VIDC.VP61"=vp6vfw.dll
"VIDC.VP62"=vp6vfw.dll
"VIDC.VP31"=vp31vfw.dll
"vidc.MPG4"=Mpg4c32.dll
"vidc.MP42"=Mpg4c32.dll
"vidc.MP43"=Mpg4c32.dll
"msacm.ac3acm"=ac3acm.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"msacm.ac3filter"=ac3filter.acm
"vidc.yv12"=divx.dll
"vidc.ffds"=ff_vfw.dll
"msacm.at3"=atrac3.acm

======List of files/folders created in the last 1 month======

2012-11-08 15:56:48 ----D---- C:\rsit
2012-11-08 15:52:40 ----D---- C:\Program Files\Seznam.cz
2012-11-07 21:01:25 ----D---- C:\Program Files\trend micro
2012-11-07 18:13:58 ----D---- C:\Program Files\Google
2012-11-06 16:42:11 ----D---- C:\Program Files\Defraggler
2012-11-05 20:35:08 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2012-11-05 18:59:00 ----HDC---- C:\WINDOWS\ie8
2012-11-05 18:44:36 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$
2012-11-05 18:44:30 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2012-11-05 18:36:41 ----HDC---- C:\WINDOWS\$NtUninstallKB2731847-v2$
2012-11-05 18:36:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2756822$
2012-11-05 18:36:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2705219-v2$
2012-11-05 18:36:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2723135-v2$
2012-11-05 18:36:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2661254-v2$
2012-11-05 18:36:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2724197$
2012-11-05 18:36:00 ----HDC---- C:\WINDOWS\$NtUninstallKB2749655$
2012-11-05 18:35:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2736233$
2012-11-05 18:35:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2712808$
2012-11-05 18:35:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2698365$
2012-11-05 18:35:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2719985$
2012-11-05 18:35:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2655992$
2012-11-05 18:35:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2691442$
2012-11-05 18:34:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2686509$
2012-11-05 18:34:48 ----HDC---- C:\WINDOWS\$NtUninstallKB2659262$
2012-11-05 18:34:36 ----HDC---- C:\WINDOWS\$NtUninstallKB2676562$
2012-11-05 18:34:29 ----HDC---- C:\WINDOWS\$NtUninstallKB2653956$
2012-11-05 18:34:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2661637$
2012-11-05 18:33:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2467659$
2012-11-05 18:33:05 ----D---- C:\WINDOWS\ie8updates
2012-11-05 18:28:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2646524$
2012-11-05 18:28:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2598479$
2012-11-05 18:27:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2603381$
2012-11-05 18:27:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2585542$
2012-11-05 18:27:44 ----HDC---- C:\WINDOWS\$NtUninstallKB2631813$
2012-11-05 18:27:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2584146$
2012-11-05 18:27:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2620712$
2012-11-05 18:27:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2619339$
2012-11-05 18:27:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2618451$
2012-11-05 18:27:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2624667$
2012-11-05 18:27:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2544893-v2$
2012-11-05 18:27:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2564958$
2012-11-05 18:27:01 ----HDC---- C:\WINDOWS\$NtUninstallKB2592799$
2012-11-05 18:26:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2570947$
2012-11-05 18:26:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2536276-v2$
2012-11-05 18:26:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2566454$
2012-11-05 18:26:40 ----D---- C:\Program Files\MSXML 4.0
2012-11-05 18:26:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2507938$
2012-11-05 18:26:27 ----D---- C:\WINDOWS\ie7updates
2012-11-05 18:26:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2476490$
2012-11-05 18:26:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2535512$
2012-11-05 18:26:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2509553$
2012-11-05 18:26:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2510581$
2012-11-05 18:25:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2507618$
2012-11-05 18:25:52 ----HDC---- C:\WINDOWS\$NtUninstallKB2506212$
2012-11-05 18:25:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2508429$
2012-11-05 18:25:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2485663$
2012-11-05 18:25:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2481109$
2012-11-05 18:25:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2479943$
2012-11-05 18:25:22 ----HDC---- C:\WINDOWS\$NtUninstallKB971029$
2012-11-05 18:25:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2393802$
2012-11-05 18:25:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2478960$
2012-11-05 18:24:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2483185$
2012-11-05 18:24:52 ----HDC---- C:\WINDOWS\$NtUninstallKB2478971$
2012-11-05 18:24:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2419632$
2012-11-05 18:24:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2440591$
2012-11-05 18:24:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2443105$
2012-11-05 18:24:29 ----HDC---- C:\WINDOWS\$NtUninstallKB2423089$
2012-11-05 18:24:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2360937$
2012-11-05 18:24:18 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2012-11-05 18:24:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2012-11-05 18:24:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2012-11-05 18:24:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2012-11-05 18:23:55 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2012-11-05 18:23:50 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$
2012-11-05 18:23:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2347290$
2012-11-05 18:23:42 ----HDC---- C:\WINDOWS\$NtUninstallKB981322$
2012-11-05 18:23:35 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$
2012-11-05 18:23:30 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$
2012-11-05 18:23:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2012-11-05 18:23:19 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2012-11-05 18:23:14 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2012-11-05 18:23:10 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2012-11-05 18:23:02 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2012-11-05 18:22:55 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2012-11-05 18:22:50 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2012-11-05 18:22:45 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2012-11-05 18:22:39 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2012-11-05 18:22:31 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2012-11-05 18:22:22 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2012-11-05 18:22:17 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2012-11-05 18:22:10 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2012-11-05 18:22:05 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2012-11-05 18:21:59 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2012-11-05 18:21:53 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2012-11-05 18:21:50 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2012-11-05 18:21:43 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2012-11-05 18:21:37 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2012-11-05 18:21:32 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2012-11-05 18:21:28 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2012-11-05 18:21:23 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2012-11-05 18:21:17 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2012-11-05 18:21:14 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2012-11-05 18:21:09 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2012-11-05 18:21:04 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2012-11-05 18:20:58 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2012-11-05 18:20:53 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2012-11-05 18:20:47 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2012-11-05 18:20:42 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2012-11-05 18:20:36 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2012-11-05 18:20:32 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2012-11-05 18:20:27 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2012-11-05 18:20:21 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2012-11-05 18:20:09 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2012-11-05 18:20:02 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2012-11-05 18:19:57 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2012-11-05 18:19:53 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2012-11-05 18:19:48 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2012-11-05 18:19:43 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2012-11-05 18:19:39 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2012-11-05 18:19:32 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2012-11-05 18:19:27 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2012-11-05 18:19:21 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2012-11-05 18:08:08 ----N---- C:\WINDOWS\system32\browserchoice.exe
2012-11-05 18:05:27 ----N---- C:\WINDOWS\system32\iacenc.dll
2012-11-05 17:54:24 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2012-11-05 17:36:03 ----HDC---- C:\WINDOWS\ie7
2012-11-05 17:35:52 ----HDC---- C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$
2012-11-05 17:35:25 ----HDC---- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
2012-11-05 17:34:47 ----HDC---- C:\WINDOWS\$NtUninstallKB915865$
2012-11-05 17:18:16 ----D---- C:\WINDOWS\WBEM
2012-11-05 16:42:37 ----A---- C:\WINDOWS\system32\drivers\aswTdi.sys
2012-11-05 16:42:37 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2012-11-05 16:42:37 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2012-11-05 16:42:37 ----A---- C:\WINDOWS\system32\drivers\aswRdr.sys
2012-11-05 16:42:37 ----A---- C:\WINDOWS\system32\drivers\aswFsBlk.sys
2012-11-05 16:42:36 ----A---- C:\WINDOWS\system32\drivers\aswmon2.sys
2012-11-05 16:42:36 ----A---- C:\WINDOWS\system32\drivers\aswmon.sys
2012-11-05 16:42:36 ----A---- C:\WINDOWS\system32\drivers\aavmker4.sys
2012-11-05 16:42:05 ----A---- C:\WINDOWS\system32\aswBoot.exe
2012-11-05 16:42:05 ----A---- C:\WINDOWS\avastSS.scr
2012-11-05 16:41:48 ----D---- C:\Program Files\AVAST Software
2012-11-05 16:41:48 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2012-11-05 16:11:57 ----D---- C:\Documents and Settings\uzivatel\Data aplikací\Opera
2012-11-05 16:11:53 ----D---- C:\Program Files\Opera
2012-10-22 17:17:19 ----A---- C:\WINDOWS\wininit.ini

======List of files/folders modified in the last 1 month======

2012-11-08 15:55:25 ----D---- C:\WINDOWS\Prefetch
2012-11-08 15:52:40 ----RD---- C:\Program Files
2012-11-08 15:52:27 ----A---- C:\WINDOWS\DFC.INI
2012-11-08 15:49:24 ----D---- C:\WINDOWS\Temp
2012-11-08 15:48:36 ----D---- C:\WINDOWS\system32\drivers
2012-11-08 15:43:35 ----HD---- C:\WINDOWS
2012-11-08 15:40:17 ----N---- C:\WINDOWS\SchedLgU.Txt
2012-11-08 15:40:06 ----D---- C:\WINDOWS\system32
2012-11-08 15:40:03 ----SD---- C:\WINDOWS\Tasks
2012-11-07 21:03:26 ----D---- C:\Documents and Settings\uzivatel\Data aplikací\OpenOffice.org2
2012-11-07 18:24:03 ----SHD---- C:\WINDOWS\Installer
2012-11-07 18:15:15 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2012-11-06 17:04:11 ----SHD---- C:\System Volume Information
2012-11-06 17:04:11 ----D---- C:\WINDOWS\system32\Restore
2012-11-06 14:31:30 ----D---- C:\WINDOWS\AppPatch
2012-11-05 20:35:12 ----HD---- C:\WINDOWS\inf
2012-11-05 20:35:10 ----RSHDC---- C:\WINDOWS\system32\dllcache
2012-11-05 20:35:02 ----HD---- C:\WINDOWS\$hf_mig$
2012-11-05 20:35:01 ----D---- C:\WINDOWS\system32\CatRoot2
2012-11-05 19:08:04 ----D---- C:\WINDOWS\system32\CatRoot
2012-11-05 19:03:04 ----D---- C:\WINDOWS\Debug
2012-11-05 19:01:37 ----D---- C:\WINDOWS\system32\cs-cz
2012-11-05 19:01:37 ----D---- C:\WINDOWS\Media
2012-11-05 19:01:37 ----D---- C:\WINDOWS\Help
2012-11-05 19:01:37 ----D---- C:\Program Files\Internet Explorer
2012-11-05 18:47:09 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2012-11-05 18:44:54 ----D---- C:\WINDOWS\WinSxS
2012-11-05 18:39:29 ----D---- C:\WINDOWS\system32\wbem
2012-11-05 18:24:30 ----D---- C:\Program Files\Outlook Express
2012-11-05 18:23:37 ----D---- C:\Program Files\Movie Maker
2012-11-05 18:19:40 ----D---- C:\Program Files\Messenger
2012-11-05 18:04:58 ----D---- C:\WINDOWS\SoftwareDistribution
2012-11-05 18:00:08 ----SD---- C:\WINDOWS\Downloaded Program Files
2012-11-05 16:04:39 ----D---- C:\WINDOWS\Logs
2012-11-05 16:03:13 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2012-11-05 16:02:14 ----D---- C:\Program Files\Mozilla Firefox
2012-11-05 16:00:28 ----D---- C:\Program Files\CCleaner
2012-11-03 19:06:15 ----HD---- C:\Program Files\InstallShield Installation Information

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 nvgts;nvgts; C:\WINDOWS\system32\DRIVERS\nvgts.sys [2008-08-18 145952]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2012-10-30 25256]
R1 AmdK8;AMD Processor Driver; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2005-03-09 36352]
R1 AswRdr;aswRdr; C:\WINDOWS\system32\drivers\AswRdr.sys [2012-10-30 35928]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2012-10-30 738504]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2012-10-30 361032]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2012-10-30 54232]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2006-03-02 12032]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2012-10-30 21256]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2012-10-30 97608]
R2 DgiVecp;Team MFP Comm Driver; C:\WINDOWS\System32\Drivers\DgiVecp.sys [2003-07-29 40448]
R2 irda;Protokol IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-13 88192]
R2 TBPanel;TBPanel; C:\WINDOWS\system32\drivers\TBPanel.sys [2007-03-16 12256]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2007-07-23 6807328]
R3 NVENETFD;NVIDIA nForce 10/100 Mbps Ethernet ; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2008-03-25 54400]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2008-03-25 22016]
R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\WINDOWS\system32\drivers\viahduaa.sys [2009-11-25 1617408]
S3 AMBFilt;AMBFilt; C:\WINDOWS\system32\drivers\AMBFilt.sys [2009-06-26 1656960]
S3 Amsmpu4p;Amsmpu4p; \??\C:\DOCUME~1\uzivatel\LOCALS~1\Temp\Amsmpu4p.sys []
S3 AsrCDDrv;AsrCDDrv; \??\C:\WINDOWS\system32\Drivers\AsrCDDrv.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 grmnusb;Garmin USB Driver; C:\WINDOWS\system32\drivers\grmnusb.sys [2009-01-22 8320]
S3 GVCplDrv;GVCplDrv; C:\WINDOWS\system32\drivers\GVCplDrv.sys [2004-05-02 23040]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys []
S3 irsir;Microsoft Serial Infrared Driver; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]
S3 MonFilt;MonFilt; C:\WINDOWS\system32\drivers\MonFilt.sys [2008-12-02 1389056]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\nmwcd.sys [2007-02-22 137216]
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\nmwcdc.sys [2007-02-22 8320]
S3 nmwcdcj;Nokia USB Port; C:\WINDOWS\system32\drivers\nmwcdcj.sys [2007-02-22 12288]
S3 nmwcdcm;Nokia USB Modem; C:\WINDOWS\system32\drivers\nmwcdcm.sys [2007-02-22 12288]
S3 NTACCESS;NTACCESS; \??\D:\NTACCESS.sys []
S3 SetupNTGLM7X;SetupNTGLM7X; \??\D:\NTGLM7X.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-13 121984]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-10-30 44808]
R2 Irmon;Sledování infračerveného přenosu; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2006-02-17 73728]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2007-07-23 155716]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-11-07 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-11-07 250808]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-11-07 116648]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2007-06-15 300544]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119520
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu. MBAM něco našel!

#5 Příspěvek od Rudy »

Dvouklikem na soubor C:\Program Files\trend micro\uzivatel.exe spusťte HijackThis. Klikněte na "Do a system scan only" a v otevřeném okně vlevo ve čtverečcích zaškrtněte:
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
Klikněte na >FixChecked<. Pak znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
ferry11
Návštěvník
Návštěvník
Příspěvky: 31
Registrován: 23 bře 2009 11:51

Re: Prosím o kontrolu. MBAM něco našel!

#6 Příspěvek od ferry11 »

Ok jdu na to, ještě se zeptám co s tím objektem v karanténě avastu nechat ho tam nebo odstranit ? Děkuji
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119520
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu. MBAM něco našel!

#7 Příspěvek od Rudy »

Byl to troják v systémovém adresáři. Avast ho přesunul do karantény, kde je neškodný. Karanténu můžete smazat.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
ferry11
Návštěvník
Návštěvník
Příspěvky: 31
Registrován: 23 bře 2009 11:51

Re: Prosím o kontrolu. MBAM něco našel!

#8 Příspěvek od ferry11 »

Ok děkuji :)
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119520
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu. MBAM něco našel!

#9 Příspěvek od Rudy »

Nemáte zač!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Zamčeno

Zpět na „Řešení problémů, logy“