Zdravím, rád bych poprosil o preventivní kontrolu. Mám netbook Samsung n150 a mám pocit, že na jeho slabý výkon je trochu přecpaný.
Předem děkuji za vaši pomoc.
Log z RSIT:
Logfile of random's system information tool 1.09 (written by random/random)
Run by michal at 2013-03-17 02:13:24
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 49 GB (69%) free of 71 GB
Total RAM: 1013 MB (18% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 2:13:48, on 17.3.2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe
C:\Documents and Settings\All Users\Data aplikací\DatacardService\HWDeviceService.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Documents and Settings\All Users\Data aplikací\PLAY ONLINE\OnlineUpdate\ouc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe
C:\Program Files\USB Disk Security\USBGuard.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SAMSUNG\MagicKBD\MagicKBD.exe
C:\Program Files\SAMSUNG\MagicKBD\PerformanceManager.exe
C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe
C:\WINDOWS\system32\igfxext.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\michal\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\michal.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [DWPersistentQueuedReporting] C:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE -a
O4 - HKLM\..\Run: [ZoneAlarm] "C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe"
O4 - HKLM\..\Run: [USB Security] C:\Program Files\USB Disk Security\USBGuard.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [MagicKeyboard] C:\Program Files\SAMSUNG\MagicKBD\PreMKBD.exe
O4 - HKLM\..\Run: [DMHotKey] C:\Program Files\Samsung\Easy Display Manager\DMLoader.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BatteryLifeExtender] C:\Program Files\Samsung\BatteryLifeExtender\BatteryLifeExtender.exe /2
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [KB976002-v5] rundll32.exe advpack.dll,LaunchINFSection OPMWXPUP.inf,BrowserChoiceGoo (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: SystemExplorerDisabled
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat do zařízení Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) -
http://www.update.microsoft.com/microso ... 9990158984
O16 - DPF: {B1E2B96C-12FE-45E2-BEF1-44A219113CDD} (SABScanProcesses Class) - http://www.superadblocker.com/activex/sabspx.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: RailNotification - Invalid registry found
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HWDeviceService.exe - Unknown owner - C:\Documents and Settings\All Users\Data aplikací\DatacardService\HWDeviceService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: PLAY ONLINE. OUC (PLAY ONLINE. RunOuc) - Unknown owner - C:\Program Files\PLAY ONLINE\UpdateDog\ouc.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: System Explorer Service (SystemExplorerHelpService) - Mister Group - C:\Program Files\System Explorer\service\SystemExplorerService.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe
--
End of file - 8551 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\michal\Data aplikací\Mozilla\Firefox\Profiles\9kuz53oy.default
prefs.js - "browser.startup.homepage" - "http://www.novinky.cz/"
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.6.602.180 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_6_602_180.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@checkpoint.com/FFApi]
"Description"=ZoneAlarm LTD Toolbar Api
"Path"=C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\npFFApi.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.17.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\WINDOWS\system32\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nokia.com/EnablerPlugin]
"Description"=Nokia Suite Enabler Plugin
"Path"=C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll
C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-03-09 461216]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-03-09 170912]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"DWPersistentQueuedReporting"=C:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE [2011-07-27 434080]
"ZoneAlarm"=C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe [2012-07-30 73392]
"USB Security"=C:\Program Files\USB Disk Security\USBGuard.exe [2012-07-31 658632]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2010-04-25 134656]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2010-04-25 166912]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2010-04-25 134656]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-10-28 17331200]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2008-06-19 57344]
"MagicKeyboard"=C:\Program Files\SAMSUNG\MagicKBD\PreMKBD.exe [2006-05-14 151552]
"DMHotKey"=C:\Program Files\Samsung\Easy Display Manager\DMLoader.exe [2006-12-27 466944]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"BatteryLifeExtender"=C:\Program Files\Samsung\BatteryLifeExtender\BatteryLifeExtender.exe [2009-11-19 567976]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2013-01-08 18705664]
""= []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AIDA64 AutoStart]
C:\DOCUME~1\michal\LOCALS~1\Temp\Rar$EXa0.984\aida64.exe []
C:\Documents and Settings\michal\Nabídka Start\Programy\Po spuštění
SystemExplorerDisabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2010-04-25 205312]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\RailNotification]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2011-02-12 239496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2011-02-12 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2011-02-12 304128]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=159
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveTypeAutoRun"=159
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\H264WebCam\H264WebCam.exe"="C:\Program Files\H264WebCam\H264WebCam.exe:*:Enabled:H264WebCam"
"C:\Program Files\Vuze\Azureus.exe"="C:\Program Files\Vuze\Azureus.exe:*:Enabled:Azureus / Vuze"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"VIDC.I420"=msh263.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"msacm.l3codecp"=l3codecp.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
======List of files/folders created in the last 2 months======
2013-03-17 02:13:25 ----D---- C:\Program Files\trend micro
2013-03-17 02:13:24 ----D---- C:\rsit
2013-03-13 17:07:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\MoneyPlan
2013-03-13 17:06:27 ----A---- C:\WINDOWS\system32\ss2uinst.exe
2013-03-11 22:28:56 ----D---- C:\Documents and Settings\michal\Data aplikací\Nokia Suite
2013-03-11 22:25:47 ----D---- C:\WINDOWS\system32\LogFiles
2013-03-11 22:25:40 ----HDC---- C:\WINDOWS\$NtUninstallWudf01009$
2013-03-11 22:25:34 ----D---- C:\WINDOWS\system32\drivers\UMDF
2013-03-11 22:11:27 ----D---- C:\Documents and Settings\All Users\Data aplikací\Nokia
2013-03-11 22:09:30 ----A---- C:\WINDOWS\system32\drivers\pccsmcfd.sys
2013-03-11 22:09:18 ----D---- C:\Program Files\PC Connectivity Solution
2013-03-11 22:08:34 ----A---- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys
2013-03-11 22:08:33 ----A---- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys
2013-03-11 22:08:30 ----A---- C:\WINDOWS\system32\drivers\ccdcmbo.sys
2013-03-11 22:08:29 ----A---- C:\WINDOWS\system32\drivers\ccdcmb.sys
2013-03-09 21:32:20 ----A---- C:\WINDOWS\system32\javaws.exe
2013-03-09 21:32:05 ----A---- C:\WINDOWS\system32\WindowsAccessBridge.dll
2013-03-09 21:32:05 ----A---- C:\WINDOWS\system32\javaw.exe
2013-03-09 21:32:05 ----A---- C:\WINDOWS\system32\java.exe
2013-03-08 10:40:11 ----D---- C:\Program Files\Mozilla Firefox
2013-03-02 15:57:24 ----D---- C:\CamersoftOutput
2013-03-02 05:42:56 ----D---- C:\Documents and Settings\michal\Data aplikací\Solveig Multimedia
2013-03-02 01:27:44 ----D---- C:\Documents and Settings\michal\Data aplikací\HellSpy.cz Download Manager
2013-03-01 21:38:41 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2013-03-01 21:38:41 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\WdfCoInstaller01007.dll
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\usbccid.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\mod7700.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\ewusbnet.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\ewusbmdm.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\ewdcsc.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\ew_usbenumfilter.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\ew_juextctrl.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\ew_jucdcecm.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\ew_jucdcacm.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\ew_jubusenum.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\ew_hwusbdev.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\ew_hwupgrade.sys
2013-02-23 15:37:17 ----D---- C:\Program Files\PLAY ONLINE
2013-02-14 19:45:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2778344$
2013-02-14 19:44:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2799494$
2013-02-14 19:43:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2802968$
2013-02-14 19:42:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2780091$
2013-02-14 19:27:41 ----D---- C:\Documents and Settings\All Users\Data aplikací\Raxco
2013-02-14 18:07:43 ----D---- C:\Documents and Settings\michal\Data aplikací\TrustPort
2013-02-12 01:56:44 ----RHD---- C:\MSOCache
2013-02-12 01:49:32 ----D---- C:\WINDOWS\system32\appmgmt
2013-02-11 21:35:58 ----D---- C:\Documents and Settings\michal\Data aplikací\Thinstall
2013-02-11 21:33:40 ----D---- C:\Documents and Settings\All Users\Data aplikací\Thinstall
2013-02-09 19:34:05 ----D---- C:\Documents and Settings\michal\Data aplikací\Thunderbird
2013-02-09 19:32:03 ----D---- C:\Program Files\Mozilla Maintenance Service
2013-02-07 16:52:40 ----D---- C:\Documents and Settings\All Users\Data aplikací\SAMSUNG
2013-02-07 16:51:33 ----A---- C:\WINDOWS\system32\KBDV.INI
2013-02-07 16:51:33 ----A---- C:\WINDOWS\system32\KBDUU.INI
2013-02-07 16:51:33 ----A---- C:\WINDOWS\system32\KBDU.INI
2013-02-07 16:51:33 ----A---- C:\WINDOWS\system32\KBDT.INI
2013-02-07 16:51:33 ----A---- C:\WINDOWS\system32\KBDS.INI
2013-02-07 16:51:33 ----A---- C:\WINDOWS\system32\KBDR.INI
2013-02-07 16:51:33 ----A---- C:\WINDOWS\system32\KBDQ.INI
2013-02-07 16:51:33 ----A---- C:\WINDOWS\system32\KBDP.INI
2013-02-07 16:51:33 ----A---- C:\WINDOWS\system32\KBDO.INI
2013-02-07 16:51:33 ----A---- C:\WINDOWS\system32\KBDN.INI
2013-02-07 16:51:33 ----A---- C:\WINDOWS\system32\KBDG.INI
2013-02-07 16:51:33 ----A---- C:\WINDOWS\system32\KBDF.INI
2013-02-07 16:51:33 ----A---- C:\WINDOWS\system32\KBDE.INI
2013-02-07 16:51:33 ----A---- C:\WINDOWS\system32\KBDD.INI
2013-02-07 16:51:33 ----A---- C:\WINDOWS\system32\KBDC.INI
2013-02-07 16:51:33 ----A---- C:\WINDOWS\system32\KBDB.INI
2013-02-07 16:51:33 ----A---- C:\WINDOWS\system32\KBDA.INI
2013-02-07 16:51:32 ----D---- C:\Program Files\SAMSUNG
2013-02-07 12:48:09 ----D---- C:\Documents and Settings\michal\Data aplikací\ElevatedDiagnostics
2013-02-07 09:50:14 ----A---- C:\WINDOWS\system32\d3d8caps.dat
2013-02-07 07:33:34 ----HD---- C:\kleaner.tmp
2013-02-07 05:39:26 ----A---- C:\WINDOWS\system32\drivers\vdmindvd.sys
2013-02-07 05:39:26 ----A---- C:\WINDOWS\system32\drivers\usbd.sys
2013-02-07 05:39:25 ----A---- C:\WINDOWS\system32\drivers\tsbvcap.sys
2013-02-07 05:39:24 ----A---- C:\WINDOWS\system32\drivers\tosdvd.sys
2013-02-07 05:39:24 ----A---- C:\WINDOWS\system32\drivers\riodrv.sys
2013-02-07 05:39:23 ----A---- C:\WINDOWS\system32\drivers\rio8drv.sys
2013-02-07 05:39:22 ----A---- C:\WINDOWS\system32\drivers\pciide.sys
2013-02-07 05:39:22 ----A---- C:\WINDOWS\system32\drivers\oprghdlr.sys
2013-02-07 05:39:21 ----A---- C:\WINDOWS\system32\drivers\nikedrv.sys
2013-02-07 05:39:20 ----A---- C:\WINDOWS\system32\drivers\mouhid.sys
2013-02-07 05:39:20 ----A---- C:\WINDOWS\system32\drivers\ftdisk.sys
2013-02-07 05:39:19 ----A---- C:\WINDOWS\system32\drivers\fsvga.sys
2013-02-07 05:39:18 ----A---- C:\WINDOWS\system32\drivers\cpqdap01.sys
2013-02-07 05:39:17 ----A---- C:\WINDOWS\system32\drivers\cinemst2.sys
2013-02-07 05:39:17 ----A---- C:\WINDOWS\system32\drivers\cdaudio.sys
2013-02-07 05:39:16 ----A---- C:\WINDOWS\system32\drivers\cbidf2k.sys
2013-02-07 05:39:15 ----A---- C:\WINDOWS\system32\drivers\audstub.sys
2013-02-07 05:39:14 ----A---- C:\WINDOWS\system32\drivers\wstcodec.sys
2013-02-07 05:39:14 ----A---- C:\WINDOWS\system32\drivers\usbvideo.sys
2013-02-07 05:39:14 ----A---- C:\WINDOWS\system32\drivers\acpiec.sys
2013-02-07 05:39:13 ----A---- C:\WINDOWS\system32\drivers\usbuhci.sys
2013-02-07 05:39:13 ----A---- C:\WINDOWS\system32\drivers\usbstor.sys
2013-02-07 05:39:12 ----A---- C:\WINDOWS\system32\drivers\usbport.sys
2013-02-07 05:39:12 ----A---- C:\WINDOWS\system32\drivers\usbintel.sys
2013-02-07 05:39:11 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2013-02-07 05:39:11 ----A---- C:\WINDOWS\system32\drivers\usbehci.sys
2013-02-07 05:39:10 ----A---- C:\WINDOWS\system32\drivers\usbccgp.sys
2013-02-07 05:39:10 ----A---- C:\WINDOWS\system32\drivers\usbcamd2.sys
2013-02-07 05:39:09 ----A---- C:\WINDOWS\system32\drivers\usbcamd.sys
2013-02-07 05:39:08 ----A---- C:\WINDOWS\system32\drivers\tunmp.sys
2013-02-07 05:39:07 ----A---- C:\WINDOWS\system32\drivers\termdd.sys
2013-02-07 05:39:07 ----A---- C:\WINDOWS\system32\drivers\swenum.sys
2013-02-07 05:39:07 ----A---- C:\WINDOWS\system32\drivers\streamip.sys
2013-02-07 05:39:06 ----A---- C:\WINDOWS\system32\drivers\sonydcam.sys
2013-02-07 05:39:06 ----A---- C:\WINDOWS\system32\drivers\slip.sys
2013-02-07 05:39:05 ----A---- C:\WINDOWS\system32\drivers\sfloppy.sys
2013-02-07 05:39:05 ----A---- C:\WINDOWS\system32\drivers\sffp_sd.sys
2013-02-07 05:39:05 ----A---- C:\WINDOWS\system32\drivers\sffdisk.sys
2013-02-07 05:39:04 ----A---- C:\WINDOWS\system32\drivers\serial.sys
2013-02-07 05:39:04 ----A---- C:\WINDOWS\system32\drivers\serenum.sys
2013-02-07 05:39:03 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2013-02-07 05:39:02 ----A---- C:\WINDOWS\system32\drivers\scsiport.sys
2013-02-07 05:39:02 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys
2013-02-07 05:39:01 ----A---- C:\WINDOWS\system32\drivers\processr.sys
2013-02-07 05:39:00 ----A---- C:\WINDOWS\system32\drivers\pcmcia.sys
2013-02-07 05:39:00 ----A---- C:\WINDOWS\system32\drivers\pciidex.sys
2013-02-07 05:38:59 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2013-02-07 05:38:59 ----A---- C:\WINDOWS\system32\drivers\parport.sys
2013-02-07 05:38:58 ----A---- C:\WINDOWS\system32\drivers\p3.sys
2013-02-07 05:38:58 ----A---- C:\WINDOWS\system32\drivers\nic1394.sys
2013-02-07 05:38:57 ----A---- C:\WINDOWS\system32\drivers\ndisuio.sys
2013-02-07 05:38:57 ----A---- C:\WINDOWS\system32\drivers\ndisip.sys
2013-02-07 05:38:56 ----A---- C:\WINDOWS\system32\drivers\nabtsfec.sys
2013-02-07 05:38:56 ----A---- C:\WINDOWS\system32\drivers\mstee.sys
2013-02-07 05:38:55 ----A---- C:\WINDOWS\system32\drivers\mssmbios.sys
2013-02-07 05:38:55 ----A---- C:\WINDOWS\system32\drivers\mspqm.sys
2013-02-07 05:38:54 ----A---- C:\WINDOWS\system32\drivers\mspclock.sys
2013-02-07 05:38:54 ----A---- C:\WINDOWS\system32\drivers\mskssrv.sys
2013-02-07 05:38:53 ----A---- C:\WINDOWS\system32\drivers\mouclass.sys
2013-02-07 05:38:52 ----A---- C:\WINDOWS\system32\drivers\modem.sys
2013-02-07 05:38:52 ----A---- C:\WINDOWS\system32\drivers\mf.sys
2013-02-07 05:38:51 ----A---- C:\WINDOWS\system32\drivers\kbdclass.sys
2013-02-07 05:38:51 ----A---- C:\WINDOWS\system32\drivers\isapnp.sys
2013-02-07 05:38:50 ----A---- C:\WINDOWS\system32\drivers\intelppm.sys
2013-02-07 05:38:50 ----A---- C:\WINDOWS\system32\drivers\intelide.sys
2013-02-07 05:38:49 ----A---- C:\WINDOWS\system32\drivers\imapi.sys
2013-02-07 05:38:49 ----A---- C:\WINDOWS\system32\drivers\i8042prt.sys
2013-02-07 05:38:48 ----A---- C:\WINDOWS\system32\drivers\http.sys
2013-02-07 05:38:47 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
2013-02-07 05:38:47 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys
2013-02-07 05:38:46 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2013-02-07 05:38:46 ----A---- C:\WINDOWS\system32\drivers\flpydisk.sys
2013-02-07 05:38:45 ----A---- C:\WINDOWS\system32\drivers\fdc.sys
2013-02-07 05:38:44 ----A---- C:\WINDOWS\system32\drivers\disk.sys
2013-02-07 05:38:44 ----A---- C:\WINDOWS\system32\drivers\crusoe.sys
2013-02-07 05:38:44 ----A---- C:\WINDOWS\system32\drivers\compbatt.sys
2013-02-07 05:38:43 ----A---- C:\WINDOWS\system32\drivers\cmbatt.sys
2013-02-07 05:38:42 ----A---- C:\WINDOWS\system32\drivers\ccdecode.sys
2013-02-07 05:38:42 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2013-02-07 05:38:41 ----A---- C:\WINDOWS\system32\drivers\battc.sys
2013-02-07 05:38:40 ----A---- C:\WINDOWS\system32\drivers\atapi.sys
2013-02-07 05:38:39 ----A---- C:\WINDOWS\system32\drivers\arp1394.sys
2013-02-07 05:38:39 ----A---- C:\WINDOWS\system32\drivers\amdk7.sys
2013-02-07 05:38:38 ----A---- C:\WINDOWS\system32\drivers\amdk6.sys
2013-02-07 05:38:37 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2013-02-06 12:57:58 ----D---- C:\SafeHouse
2013-02-06 12:57:58 ----D---- C:\Program Files\SafeHouse Explorer
2013-02-01 18:42:21 ----D---- C:\Program Files\Common Files\Lingea Shared
2013-02-01 18:40:11 ----D---- C:\Program Files\Lingea
2013-01-29 19:58:28 ----D---- C:\Program Files\Google
======List of files/folders modified in the last 2 months======
2013-03-17 02:13:37 ----D---- C:\WINDOWS\Prefetch
2013-03-17 02:13:25 ----D---- C:\Program Files
2013-03-17 02:00:44 ----HD---- C:\Program Files\InstallShield Installation Information
2013-03-16 23:06:17 ----SD---- C:\WINDOWS\Tasks
2013-03-16 23:04:28 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2013-03-16 23:01:46 ----D---- C:\WINDOWS\Temp
2013-03-16 23:01:38 ----D---- C:\WINDOWS\system32\CatRoot2
2013-03-16 23:00:20 ----D---- C:\Documents and Settings\michal\Data aplikací\Skype
2013-03-16 16:47:24 ----A---- C:\WINDOWS\SchedLgU.Txt
2013-03-16 16:40:28 ----D---- C:\Documents and Settings\michal\Data aplikací\Azureus
2013-03-16 13:03:34 ----A---- C:\WINDOWS\hpbafd.ini
2013-03-16 00:00:14 ----D---- C:\Program Files\PokerStars.EU
2013-03-15 14:23:23 ----D---- C:\WINDOWS
2013-03-15 14:22:51 ----D---- C:\WINDOWS\system32
2013-03-15 14:22:51 ----D---- C:\Program Files\Microsoft Silverlight
2013-03-15 14:22:40 ----D---- C:\WINDOWS\system32\drivers
2013-03-15 13:06:01 ----D---- C:\WINDOWS\Debug
2013-03-15 13:05:47 ----A---- C:\WINDOWS\system32\MRT.exe
2013-03-15 13:05:36 ----SHD---- C:\WINDOWS\Installer
2013-03-15 13:05:35 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2013-03-15 13:03:36 ----HD---- C:\WINDOWS\inf
2013-03-15 13:03:15 ----RSHDC---- C:\WINDOWS\system32\dllcache
2013-03-15 13:03:14 ----D---- C:\Program Files\Internet Explorer
2013-03-15 13:02:48 ----D---- C:\WINDOWS\ie8updates
2013-03-15 13:02:22 ----HD---- C:\WINDOWS\$hf_mig$
2013-03-14 15:12:01 ----D---- C:\WINDOWS\Connection Wizard
2013-03-11 22:46:02 ----D---- C:\Documents and Settings\All Users\Data aplikací\Installations
2013-03-11 22:45:59 ----D---- C:\Program Files\Nokia
2013-03-11 22:45:59 ----D---- C:\Program Files\Common Files\Nokia
2013-03-11 22:45:59 ----D---- C:\Program Files\Common Files
2013-03-11 22:45:39 ----DC---- C:\WINDOWS\system32\DRVSTORE
2013-03-11 22:28:55 ----D---- C:\Documents and Settings\michal\Data aplikací\Nokia
2013-03-11 22:25:32 ----D---- C:\Documents and Settings\All Users\Data aplikací\PC Suite
2013-03-11 22:24:20 ----D---- C:\WINDOWS\system32\CatRoot
2013-03-11 22:15:00 ----D---- C:\WINDOWS\WinSxS
2013-03-09 21:31:53 ----A---- C:\WINDOWS\system32\npDeployJava1.dll
2013-03-09 21:31:52 ----A---- C:\WINDOWS\system32\deployJava1.dll
2013-03-09 21:31:47 ----D---- C:\Program Files\Java
2013-03-07 15:23:58 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2013-03-02 02:10:22 ----D---- C:\Program Files\Vuze
2013-03-01 03:26:40 ----A---- C:\WINDOWS\system32\mshtml.dll
2013-02-27 10:58:07 ----D---- C:\WINDOWS\system32\wbem
2013-02-23 15:37:51 ----D---- C:\Documents and Settings\All Users\Data aplikací\DatacardService
2013-02-23 15:37:30 ----A---- C:\WINDOWS\system32\wdfcoinstaller01007.dll
2013-02-22 18:25:52 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2013-02-19 16:05:45 ----D---- C:\Program Files\Raxco
2013-02-19 16:04:21 ----RSD---- C:\WINDOWS\assembly
2013-02-14 21:25:52 ----D---- C:\WINDOWS\Microsoft.NET
2013-02-12 01:49:32 ----D---- C:\Program Files\Microsoft Office
2013-02-10 01:53:04 ----AD---- C:\Documents and Settings\All Users\Data aplikací\Temp
2013-02-09 19:34:14 ----D---- C:\Documents and Settings\michal\Data aplikací\Mozilla
2013-02-08 00:20:14 ----D---- C:\WINDOWS\SoftwareDistribution
2013-02-07 16:51:44 ----N---- C:\WINDOWS\system32\michal_KBD.ini
2013-02-07 14:37:56 ----D---- C:\WINDOWS\AppPatch
2013-02-07 14:34:18 ----RSD---- C:\WINDOWS\Fonts
2013-02-07 10:30:10 ----D---- C:\WINDOWS\system32\ReinstallBackups
2013-02-07 07:40:42 ----D---- C:\WINDOWS\system32\drivers\etc
2013-02-07 07:01:07 ----D---- C:\Program Files\System Explorer
2013-02-07 06:58:18 ----SD---- C:\Documents and Settings\michal\Data aplikací\Microsoft
2013-02-07 06:47:26 ----D---- C:\Documents and Settings\All Users\Data aplikací\SystemExplorer
2013-02-07 05:24:00 ----D---- C:\WINDOWS\Help
2013-02-06 01:43:22 ----A---- C:\WINDOWS\system32\ieframe.dll
2013-02-05 21:13:36 ----A---- C:\WINDOWS\system32\wininet.dll
2013-02-05 21:13:36 ----A---- C:\WINDOWS\system32\urlmon.dll
2013-02-05 21:13:35 ----A---- C:\WINDOWS\system32\url.dll
2013-02-05 21:13:35 ----A---- C:\WINDOWS\system32\occache.dll
2013-02-05 21:13:34 ----A---- C:\WINDOWS\system32\mstime.dll
2013-02-05 21:13:34 ----A---- C:\WINDOWS\system32\mshtmled.dll
2013-02-05 21:13:26 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2013-02-05 21:13:26 ----A---- C:\WINDOWS\system32\msfeeds.dll
2013-02-05 21:13:25 ----A---- C:\WINDOWS\system32\licmgr10.dll
2013-02-05 21:13:25 ----A---- C:\WINDOWS\system32\jsproxy.dll
2013-02-05 21:13:23 ----A---- C:\WINDOWS\system32\iertutil.dll
2013-02-05 21:13:21 ----A---- C:\WINDOWS\system32\iepeers.dll
2013-02-05 21:13:11 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2013-02-05 06:40:53 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2013-01-28 18:57:30 ----D---- C:\Documents and Settings\michal\Data aplikací\DAEMON Tools Lite
2013-01-26 04:55:43 ----A---- C:\WINDOWS\system32\oleaut32.dll
2013-01-18 14:01:42 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2009-07-13 91904]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 Vsdatant;vsdatant; C:\WINDOWS\System32\vsdatant.sys [2012-07-30 526640]
R2 DOSMEMIO;MEMIO; \??\C:\WINDOWS\system32\MEMIO.SYS []
R2 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2012-09-19 52136]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 huawei_enumerator;huawei_enumerator; C:\WINDOWS\system32\DRIVERS\ew_jubusenum.sys [2013-02-23 73984]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2010-04-25 1754912]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-10-31 4942336]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys []
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-22 32384]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2009-05-12 122240]
R3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2009-10-21 298752]
S0 mv61xxmm;mv61xxmm; C:\WINDOWS\system32\drivers\mv61xxmm.sys []
S0 mv64xxmm;mv64xxmm; C:\WINDOWS\system32\drivers\mv64xxmm.sys []
S0 mvxxmm;mvxxmm; C:\WINDOWS\system32\drivers\mvxxmm.sys []
S0 reparse;Reparse; C:\WINDOWS\system32\DRIVERS\cbreparse.sys []
S0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys []
S1 DumpDrv;Crash Dump Driver; C:\WINDOWS\system32\drivers\DumpDrv.sys []
S1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys []
S1 SafDskNT;SafeHouse; \??\C:\WINDOWS\system32\drivers\SAFDSKNT.SYS []
S2 rspndr;Odpovídající zařízení zjišťování topologie linkové vrstvy; C:\WINDOWS\system32\DRIVERS\rspndr.sys []
S2 WCMVCAM;WebcamMax, WDM Video Capture; C:\WINDOWS\system32\DRIVERS\wcmvcam.sys [2012-04-15 1068216]
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736]
S3 AR5416;Atheros Wireless Adapter Service; C:\WINDOWS\system32\DRIVERS\athw.sys [2011-12-12 1984704]
S3 btaudio;Zvukové zařízení Bluetooth; C:\WINDOWS\system32\drivers\btaudio.sys []
S3 BTDriver;Ovladač virtuálních komunikací Bluetooth; C:\WINDOWS\system32\DRIVERS\btport.sys []
S3 btkrnl;Enumenátor sběrnice Bluetooth; C:\WINDOWS\system32\DRIVERS\btkrnl.sys []
S3 BTWDNDIS;Server pro přístup k síti LAN Bluetooth; C:\WINDOWS\system32\DRIVERS\btwdndis.sys []
S3 btwmodem;Modem Bluetooth; C:\WINDOWS\system32\DRIVERS\btwmodem.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 dot4;Ovladač MS IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2008-04-13 206976]
S3 Dot4Print;Ovladač třídy tiskárny standardu IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4Prt.sys [2001-08-17 12928]
S3 dot4usb;Filtr Dot4USB Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2001-10-24 23808]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\WINDOWS\system32\DRIVERS\ew_hwusbdev.sys [2013-02-23 102784]
S3 ew_usbenumfilter;huawei_CompositeFilter; C:\WINDOWS\system32\DRIVERS\ew_usbenumfilter.sys [2013-02-23 11136]
S3 huawei_cdcacm;huawei_cdcacm; C:\WINDOWS\system32\DRIVERS\ew_jucdcacm.sys [2013-02-23 89856]
S3 huawei_cdcecm;huawei_cdcecm; C:\WINDOWS\system32\DRIVERS\ew_jucdcecm.sys [2013-02-23 66688]
S3 huawei_ext_ctrl;huawei_ext_ctrl; C:\WINDOWS\system32\DRIVERS\ew_juextctrl.sys [2013-02-23 26624]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\WINDOWS\system32\drivers\ccdcmb.sys [2012-11-09 18560]
S3 nmwcdc;Nokia USB Communication Driver; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2012-11-09 23168]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2012-10-17 19072]
S3 RimVSerPort;RIM Virtual Serial Port v2; C:\WINDOWS\system32\DRIVERS\RimSerial.sys []
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2001-10-25 5888]
S3 SABProcEnum;SABProcEnum; \??\C:\Program Files\Internet Explorer\SABProcEnum.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 TotRec8;Total Recorder WDM audio filter driver; \??\C:\WINDOWS\system32\drivers\TotRec8.sys []
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2012-11-09 8192]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-13 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2012-11-09 8192]
S3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys []
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2009-07-13 132224]
S4 clwvd;CyberLink WebCam Virtual Driver; C:\WINDOWS\system32\DRIVERS\clwvd.sys []
S4 exFat;exFat; C:\WINDOWS\system32\drivers\exFat.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 HWDeviceService.exe;HWDeviceService.exe; C:\Documents and Settings\All Users\Data aplikací\DatacardService\HWDeviceService.exe [2011-03-14 271712]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2013-03-09 170912]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2012-12-14 682344]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-12-14 398184]
R2 vsmon;TrueVector Internet Monitor; C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe [2012-07-30 2445880]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2011-02-12 14848]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18
130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-01-29 116648]
S2 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-03-08 115608]
S2 PLAY ONLINE. RunOuc;PLAY ONLINE. OUC; C:\Program Files\PLAY ONLINE\UpdateDog\ouc.exe [2013-02-23 246112]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-01-08 161536]
S2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2011-02-12 439808]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2012-02-24 365912]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
[2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-01-29 116648]
S3 idsvc;Služba Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2012-12-19 732648]
S3 SystemExplorerHelpService;System Explorer Service; C:\Program Files\System Explorer\service\SystemExplorerService.exe [2012-11-25 567256]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2011-02-12 14848]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
[2010-03-18 753504]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25
69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2011-02-12 913920]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
preventivka
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119524
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: preventivka
Také zdravím!
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.:files
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: preventivka
Dobrý večer, tak jsem to provedl podle vašeho návodu, jen OTM jsem musel spustit v nouzovém režimu, protože normálně nešlapal - 2x mi to celé zamrzlo.
Tady je ten nový log z RSIT:
Logfile of random's system information tool 1.09 (written by random/random)
Run by michal at 2013-03-17 18:35:29
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 51 GB (71%) free of 71 GB
Total RAM: 1013 MB (40% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:35:41, on 17.3.2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe
C:\Documents and Settings\All Users\Data aplikací\DatacardService\HWDeviceService.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Documents and Settings\All Users\Data aplikací\PLAY ONLINE\OnlineUpdate\ouc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe
C:\Program Files\USB Disk Security\USBGuard.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\SAMSUNG\MagicKBD\MagicKBD.exe
C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe
C:\Program Files\SAMSUNG\MagicKBD\PerformanceManager.exe
C:\WINDOWS\system32\igfxext.exe
C:\Documents and Settings\michal\Dokumenty\Stažené soubory\Software\RSIT.exe
C:\Program Files\trend micro\michal.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [DWPersistentQueuedReporting] C:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE -a
O4 - HKLM\..\Run: [ZoneAlarm] C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe
O4 - HKLM\..\Run: [USB Security] C:\Program Files\USB Disk Security\USBGuard.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [MagicKeyboard] C:\Program Files\SAMSUNG\MagicKBD\PreMKBD.exe
O4 - HKLM\..\Run: [DMHotKey] C:\Program Files\Samsung\Easy Display Manager\DMLoader.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BatteryLifeExtender] C:\Program Files\Samsung\BatteryLifeExtender\BatteryLifeExtender.exe /2
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [KB976002-v5] rundll32.exe advpack.dll,LaunchINFSection OPMWXPUP.inf,BrowserChoiceGoo (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: SystemExplorerDisabled
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat do zařízení Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 9990158984
O16 - DPF: {B1E2B96C-12FE-45E2-BEF1-44A219113CDD} (SABScanProcesses Class) - http://www.superadblocker.com/activex/sabspx.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: RailNotification - Invalid registry found
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HWDeviceService.exe - Unknown owner - C:\Documents and Settings\All Users\Data aplikací\DatacardService\HWDeviceService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: PLAY ONLINE. OUC (PLAY ONLINE. RunOuc) - Unknown owner - C:\Program Files\PLAY ONLINE\UpdateDog\ouc.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: System Explorer Service (SystemExplorerHelpService) - Mister Group - C:\Program Files\System Explorer\service\SystemExplorerService.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe
--
End of file - 8547 bytes
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\michal\Data aplikací\Mozilla\Firefox\Profiles\9kuz53oy.default
prefs.js - "browser.startup.homepage" - "http://www.novinky.cz/"
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.6.602.180 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_6_602_180.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@checkpoint.com/FFApi]
"Description"=ZoneAlarm LTD Toolbar Api
"Path"=C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\npFFApi.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.17.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\WINDOWS\system32\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nokia.com/EnablerPlugin]
"Description"=Nokia Suite Enabler Plugin
"Path"=C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll
C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-03-09 461216]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-03-09 170912]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"DWPersistentQueuedReporting"=C:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE [2011-07-27 434080]
"ZoneAlarm"=C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe [2012-07-30 73392]
"USB Security"=C:\Program Files\USB Disk Security\USBGuard.exe [2012-07-31 658632]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2010-04-25 134656]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2010-04-25 166912]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2010-04-25 134656]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-10-28 17331200]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2008-06-19 57344]
"MagicKeyboard"=C:\Program Files\SAMSUNG\MagicKBD\PreMKBD.exe [2006-05-14 151552]
"DMHotKey"=C:\Program Files\Samsung\Easy Display Manager\DMLoader.exe [2006-12-27 466944]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"BatteryLifeExtender"=C:\Program Files\Samsung\BatteryLifeExtender\BatteryLifeExtender.exe [2009-11-19 567976]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2013-01-08 18705664]
""= []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AIDA64 AutoStart]
C:\DOCUME~1\michal\LOCALS~1\Temp\Rar$EXa0.984\aida64.exe []
C:\Documents and Settings\michal\Nabídka Start\Programy\Po spuštění
SystemExplorerDisabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2010-04-25 205312]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\RailNotification]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2011-02-12 239496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2011-02-12 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2011-02-12 304128]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=159
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveTypeAutoRun"=159
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\H264WebCam\H264WebCam.exe"="C:\Program Files\H264WebCam\H264WebCam.exe:*:Enabled:H264WebCam"
"C:\Program Files\Vuze\Azureus.exe"="C:\Program Files\Vuze\Azureus.exe:*:Enabled:Azureus / Vuze"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"VIDC.I420"=msh263.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"msacm.l3codecp"=l3codecp.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
======List of files/folders created in the last 1 month======
2013-03-17 18:16:00 ----A---- C:\WINDOWS\ntbtlog.txt
2013-03-17 17:17:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2807986$
2013-03-17 16:27:36 ----D---- C:\_OTM
2013-03-17 03:41:28 ----D---- C:\Program Files\IObit
2013-03-17 02:13:25 ----D---- C:\Program Files\trend micro
2013-03-17 02:13:24 ----D---- C:\rsit
2013-03-13 17:07:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\MoneyPlan
2013-03-13 17:06:27 ----A---- C:\WINDOWS\system32\ss2uinst.exe
2013-03-11 22:28:56 ----D---- C:\Documents and Settings\michal\Data aplikací\Nokia Suite
2013-03-11 22:25:47 ----D---- C:\WINDOWS\system32\LogFiles
2013-03-11 22:25:40 ----HDC---- C:\WINDOWS\$NtUninstallWudf01009$
2013-03-11 22:25:34 ----D---- C:\WINDOWS\system32\drivers\UMDF
2013-03-11 22:11:27 ----D---- C:\Documents and Settings\All Users\Data aplikací\Nokia
2013-03-11 22:09:30 ----A---- C:\WINDOWS\system32\drivers\pccsmcfd.sys
2013-03-11 22:09:18 ----D---- C:\Program Files\PC Connectivity Solution
2013-03-11 22:08:34 ----A---- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys
2013-03-11 22:08:33 ----A---- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys
2013-03-11 22:08:30 ----A---- C:\WINDOWS\system32\drivers\ccdcmbo.sys
2013-03-11 22:08:29 ----A---- C:\WINDOWS\system32\drivers\ccdcmb.sys
2013-03-09 21:32:20 ----A---- C:\WINDOWS\system32\javaws.exe
2013-03-09 21:32:05 ----A---- C:\WINDOWS\system32\WindowsAccessBridge.dll
2013-03-09 21:32:05 ----A---- C:\WINDOWS\system32\javaw.exe
2013-03-09 21:32:05 ----A---- C:\WINDOWS\system32\java.exe
2013-03-08 10:40:11 ----D---- C:\Program Files\Mozilla Firefox
2013-03-02 15:57:24 ----D---- C:\CamersoftOutput
2013-03-02 05:42:56 ----D---- C:\Documents and Settings\michal\Data aplikací\Solveig Multimedia
2013-03-02 01:27:44 ----D---- C:\Documents and Settings\michal\Data aplikací\HellSpy.cz Download Manager
2013-03-01 21:38:41 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2013-03-01 21:38:41 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\WdfCoInstaller01007.dll
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\usbccid.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\mod7700.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\ewusbnet.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\ewusbmdm.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\ewdcsc.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\ew_usbenumfilter.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\ew_juextctrl.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\ew_jucdcecm.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\ew_jucdcacm.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\ew_jubusenum.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\ew_hwusbdev.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\ew_hwupgrade.sys
2013-02-23 15:37:17 ----D---- C:\Program Files\PLAY ONLINE
======List of files/folders modified in the last 1 month======
2013-03-17 18:35:40 ----D---- C:\WINDOWS\Prefetch
2013-03-17 18:23:34 ----D---- C:\WINDOWS\Temp
2013-03-17 18:23:26 ----D---- C:\WINDOWS\system32\CatRoot2
2013-03-17 18:21:33 ----D---- C:\WINDOWS\system32
2013-03-17 18:21:29 ----SD---- C:\WINDOWS\Tasks
2013-03-17 18:16:00 ----D---- C:\WINDOWS
2013-03-17 18:14:13 ----A---- C:\WINDOWS\SchedLgU.Txt
2013-03-17 18:12:00 ----D---- C:\Documents and Settings\michal\Data aplikací\Skype
2013-03-17 17:18:00 ----HD---- C:\WINDOWS\inf
2013-03-17 17:17:52 ----RSHDC---- C:\WINDOWS\system32\dllcache
2013-03-17 17:17:52 ----D---- C:\WINDOWS\system32\drivers
2013-03-17 17:17:48 ----HD---- C:\WINDOWS\$hf_mig$
2013-03-17 16:11:31 ----D---- C:\Documents and Settings\michal\Data aplikací\Azureus
2013-03-17 16:11:28 ----D---- C:\WINDOWS\Debug
2013-03-17 08:03:31 ----A---- C:\WINDOWS\hpbafd.ini
2013-03-17 03:41:28 ----D---- C:\Program Files
2013-03-17 03:27:32 ----D---- C:\Program Files\Vuze
2013-03-17 02:00:44 ----HD---- C:\Program Files\InstallShield Installation Information
2013-03-17 02:00:44 ----D---- C:\Program Files\SAMSUNG
2013-03-16 23:04:28 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2013-03-16 00:00:14 ----D---- C:\Program Files\PokerStars.EU
2013-03-15 14:22:51 ----D---- C:\Program Files\Microsoft Silverlight
2013-03-15 14:22:40 ----D---- C:\WINDOWS\Connection Wizard
2013-03-15 13:05:47 ----A---- C:\WINDOWS\system32\MRT.exe
2013-03-15 13:05:36 ----SHD---- C:\WINDOWS\Installer
2013-03-15 13:05:35 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2013-03-15 13:03:14 ----D---- C:\Program Files\Internet Explorer
2013-03-15 13:02:48 ----D---- C:\WINDOWS\ie8updates
2013-03-11 22:46:02 ----D---- C:\Documents and Settings\All Users\Data aplikací\Installations
2013-03-11 22:45:59 ----D---- C:\Program Files\Nokia
2013-03-11 22:45:59 ----D---- C:\Program Files\Common Files\Nokia
2013-03-11 22:45:59 ----D---- C:\Program Files\Common Files
2013-03-11 22:45:39 ----DC---- C:\WINDOWS\system32\DRVSTORE
2013-03-11 22:28:55 ----D---- C:\Documents and Settings\michal\Data aplikací\Nokia
2013-03-11 22:25:32 ----D---- C:\Documents and Settings\All Users\Data aplikací\PC Suite
2013-03-11 22:24:20 ----D---- C:\WINDOWS\system32\CatRoot
2013-03-11 22:15:00 ----D---- C:\WINDOWS\WinSxS
2013-03-11 09:50:03 ----D---- C:\Program Files\Mozilla Maintenance Service
2013-03-09 21:31:53 ----A---- C:\WINDOWS\system32\npDeployJava1.dll
2013-03-09 21:31:52 ----A---- C:\WINDOWS\system32\deployJava1.dll
2013-03-09 21:31:47 ----D---- C:\Program Files\Java
2013-03-07 15:23:58 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2013-03-01 03:26:40 ----A---- C:\WINDOWS\system32\mshtml.dll
2013-02-27 10:58:07 ----D---- C:\WINDOWS\system32\wbem
2013-02-23 15:37:51 ----D---- C:\Documents and Settings\All Users\Data aplikací\DatacardService
2013-02-23 15:37:30 ----A---- C:\WINDOWS\system32\wdfcoinstaller01007.dll
2013-02-22 18:25:52 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2013-02-19 16:05:45 ----D---- C:\Program Files\Raxco
2013-02-19 16:04:21 ----RSD---- C:\WINDOWS\assembly
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2009-07-13 91904]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 Vsdatant;vsdatant; C:\WINDOWS\System32\vsdatant.sys [2012-07-30 526640]
R2 DOSMEMIO;MEMIO; \??\C:\WINDOWS\system32\MEMIO.SYS []
R2 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R2 PfFilter;PfFilter; \??\C:\Program Files\IObit\Protected Folder\pffilter.sys []
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2012-09-19 52136]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 huawei_enumerator;huawei_enumerator; C:\WINDOWS\system32\DRIVERS\ew_jubusenum.sys [2013-02-23 73984]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2010-04-25 1754912]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-10-31 4942336]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys []
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-22 32384]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2009-05-12 122240]
R3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2009-10-21 298752]
S0 mv61xxmm;mv61xxmm; C:\WINDOWS\system32\drivers\mv61xxmm.sys []
S0 mv64xxmm;mv64xxmm; C:\WINDOWS\system32\drivers\mv64xxmm.sys []
S0 mvxxmm;mvxxmm; C:\WINDOWS\system32\drivers\mvxxmm.sys []
S0 reparse;Reparse; C:\WINDOWS\system32\DRIVERS\cbreparse.sys []
S0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys []
S1 DumpDrv;Crash Dump Driver; C:\WINDOWS\system32\drivers\DumpDrv.sys []
S1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys []
S1 SafDskNT;SafeHouse; \??\C:\WINDOWS\system32\drivers\SAFDSKNT.SYS []
S2 rspndr;Odpovídající zařízení zjišťování topologie linkové vrstvy; C:\WINDOWS\system32\DRIVERS\rspndr.sys []
S2 WCMVCAM;WebcamMax, WDM Video Capture; C:\WINDOWS\system32\DRIVERS\wcmvcam.sys [2012-04-15 1068216]
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736]
S3 AR5416;Atheros Wireless Adapter Service; C:\WINDOWS\system32\DRIVERS\athw.sys [2011-12-12 1984704]
S3 btaudio;Zvukové zařízení Bluetooth; C:\WINDOWS\system32\drivers\btaudio.sys []
S3 BTDriver;Ovladač virtuálních komunikací Bluetooth; C:\WINDOWS\system32\DRIVERS\btport.sys []
S3 btkrnl;Enumenátor sběrnice Bluetooth; C:\WINDOWS\system32\DRIVERS\btkrnl.sys []
S3 BTWDNDIS;Server pro přístup k síti LAN Bluetooth; C:\WINDOWS\system32\DRIVERS\btwdndis.sys []
S3 btwmodem;Modem Bluetooth; C:\WINDOWS\system32\DRIVERS\btwmodem.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 dot4;Ovladač MS IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2008-04-13 206976]
S3 Dot4Print;Ovladač třídy tiskárny standardu IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4Prt.sys [2001-08-17 12928]
S3 dot4usb;Filtr Dot4USB Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2001-10-24 23808]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\WINDOWS\system32\DRIVERS\ew_hwusbdev.sys [2013-02-23 102784]
S3 ew_usbenumfilter;huawei_CompositeFilter; C:\WINDOWS\system32\DRIVERS\ew_usbenumfilter.sys [2013-02-23 11136]
S3 huawei_cdcacm;huawei_cdcacm; C:\WINDOWS\system32\DRIVERS\ew_jucdcacm.sys [2013-02-23 89856]
S3 huawei_cdcecm;huawei_cdcecm; C:\WINDOWS\system32\DRIVERS\ew_jucdcecm.sys [2013-02-23 66688]
S3 huawei_ext_ctrl;huawei_ext_ctrl; C:\WINDOWS\system32\DRIVERS\ew_juextctrl.sys [2013-02-23 26624]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\WINDOWS\system32\drivers\ccdcmb.sys [2012-11-09 18560]
S3 nmwcdc;Nokia USB Communication Driver; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2012-11-09 23168]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2012-10-17 19072]
S3 RimVSerPort;RIM Virtual Serial Port v2; C:\WINDOWS\system32\DRIVERS\RimSerial.sys []
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2001-10-25 5888]
S3 SABProcEnum;SABProcEnum; \??\C:\Program Files\Internet Explorer\SABProcEnum.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 TotRec8;Total Recorder WDM audio filter driver; \??\C:\WINDOWS\system32\drivers\TotRec8.sys []
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2012-11-09 8192]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-13 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2012-11-09 8192]
S3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys []
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2009-07-13 132224]
S4 clwvd;CyberLink WebCam Virtual Driver; C:\WINDOWS\system32\DRIVERS\clwvd.sys []
S4 exFat;exFat; C:\WINDOWS\system32\drivers\exFat.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 HWDeviceService.exe;HWDeviceService.exe; C:\Documents and Settings\All Users\Data aplikací\DatacardService\HWDeviceService.exe [2011-03-14 271712]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2013-03-09 170912]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2012-12-14 682344]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-12-14 398184]
R2 vsmon;TrueVector Internet Monitor; C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe [2012-07-30 2445880]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2011-02-12 14848]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-01-29 116648]
S2 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-03-08 115608]
S2 PLAY ONLINE. RunOuc;PLAY ONLINE. OUC; C:\Program Files\PLAY ONLINE\UpdateDog\ouc.exe [2013-02-23 246112]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-01-08 161536]
S2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2011-02-12 439808]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2012-02-24 365912]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-01-29 116648]
S3 idsvc;Služba Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2012-12-19 732648]
S3 SystemExplorerHelpService;System Explorer Service; C:\Program Files\System Explorer\service\SystemExplorerService.exe [2012-11-25 567256]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2011-02-12 14848]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2011-02-12 913920]
-----------------EOF-----------------
Tady je ten nový log z RSIT:
Logfile of random's system information tool 1.09 (written by random/random)
Run by michal at 2013-03-17 18:35:29
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 51 GB (71%) free of 71 GB
Total RAM: 1013 MB (40% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:35:41, on 17.3.2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe
C:\Documents and Settings\All Users\Data aplikací\DatacardService\HWDeviceService.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Documents and Settings\All Users\Data aplikací\PLAY ONLINE\OnlineUpdate\ouc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe
C:\Program Files\USB Disk Security\USBGuard.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\SAMSUNG\MagicKBD\MagicKBD.exe
C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe
C:\Program Files\SAMSUNG\MagicKBD\PerformanceManager.exe
C:\WINDOWS\system32\igfxext.exe
C:\Documents and Settings\michal\Dokumenty\Stažené soubory\Software\RSIT.exe
C:\Program Files\trend micro\michal.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [DWPersistentQueuedReporting] C:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE -a
O4 - HKLM\..\Run: [ZoneAlarm] C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe
O4 - HKLM\..\Run: [USB Security] C:\Program Files\USB Disk Security\USBGuard.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [MagicKeyboard] C:\Program Files\SAMSUNG\MagicKBD\PreMKBD.exe
O4 - HKLM\..\Run: [DMHotKey] C:\Program Files\Samsung\Easy Display Manager\DMLoader.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BatteryLifeExtender] C:\Program Files\Samsung\BatteryLifeExtender\BatteryLifeExtender.exe /2
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [KB976002-v5] rundll32.exe advpack.dll,LaunchINFSection OPMWXPUP.inf,BrowserChoiceGoo (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: SystemExplorerDisabled
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat do zařízení Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 9990158984
O16 - DPF: {B1E2B96C-12FE-45E2-BEF1-44A219113CDD} (SABScanProcesses Class) - http://www.superadblocker.com/activex/sabspx.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: RailNotification - Invalid registry found
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HWDeviceService.exe - Unknown owner - C:\Documents and Settings\All Users\Data aplikací\DatacardService\HWDeviceService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: PLAY ONLINE. OUC (PLAY ONLINE. RunOuc) - Unknown owner - C:\Program Files\PLAY ONLINE\UpdateDog\ouc.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: System Explorer Service (SystemExplorerHelpService) - Mister Group - C:\Program Files\System Explorer\service\SystemExplorerService.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe
--
End of file - 8547 bytes
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\michal\Data aplikací\Mozilla\Firefox\Profiles\9kuz53oy.default
prefs.js - "browser.startup.homepage" - "http://www.novinky.cz/"
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.6.602.180 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_6_602_180.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@checkpoint.com/FFApi]
"Description"=ZoneAlarm LTD Toolbar Api
"Path"=C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\npFFApi.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.17.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\WINDOWS\system32\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nokia.com/EnablerPlugin]
"Description"=Nokia Suite Enabler Plugin
"Path"=C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll
C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-03-09 461216]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-03-09 170912]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"DWPersistentQueuedReporting"=C:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE [2011-07-27 434080]
"ZoneAlarm"=C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe [2012-07-30 73392]
"USB Security"=C:\Program Files\USB Disk Security\USBGuard.exe [2012-07-31 658632]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2010-04-25 134656]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2010-04-25 166912]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2010-04-25 134656]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-10-28 17331200]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2008-06-19 57344]
"MagicKeyboard"=C:\Program Files\SAMSUNG\MagicKBD\PreMKBD.exe [2006-05-14 151552]
"DMHotKey"=C:\Program Files\Samsung\Easy Display Manager\DMLoader.exe [2006-12-27 466944]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"BatteryLifeExtender"=C:\Program Files\Samsung\BatteryLifeExtender\BatteryLifeExtender.exe [2009-11-19 567976]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2013-01-08 18705664]
""= []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AIDA64 AutoStart]
C:\DOCUME~1\michal\LOCALS~1\Temp\Rar$EXa0.984\aida64.exe []
C:\Documents and Settings\michal\Nabídka Start\Programy\Po spuštění
SystemExplorerDisabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2010-04-25 205312]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\RailNotification]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2011-02-12 239496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2011-02-12 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2011-02-12 304128]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=159
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveTypeAutoRun"=159
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\H264WebCam\H264WebCam.exe"="C:\Program Files\H264WebCam\H264WebCam.exe:*:Enabled:H264WebCam"
"C:\Program Files\Vuze\Azureus.exe"="C:\Program Files\Vuze\Azureus.exe:*:Enabled:Azureus / Vuze"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"VIDC.I420"=msh263.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"msacm.l3codecp"=l3codecp.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
======List of files/folders created in the last 1 month======
2013-03-17 18:16:00 ----A---- C:\WINDOWS\ntbtlog.txt
2013-03-17 17:17:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2807986$
2013-03-17 16:27:36 ----D---- C:\_OTM
2013-03-17 03:41:28 ----D---- C:\Program Files\IObit
2013-03-17 02:13:25 ----D---- C:\Program Files\trend micro
2013-03-17 02:13:24 ----D---- C:\rsit
2013-03-13 17:07:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\MoneyPlan
2013-03-13 17:06:27 ----A---- C:\WINDOWS\system32\ss2uinst.exe
2013-03-11 22:28:56 ----D---- C:\Documents and Settings\michal\Data aplikací\Nokia Suite
2013-03-11 22:25:47 ----D---- C:\WINDOWS\system32\LogFiles
2013-03-11 22:25:40 ----HDC---- C:\WINDOWS\$NtUninstallWudf01009$
2013-03-11 22:25:34 ----D---- C:\WINDOWS\system32\drivers\UMDF
2013-03-11 22:11:27 ----D---- C:\Documents and Settings\All Users\Data aplikací\Nokia
2013-03-11 22:09:30 ----A---- C:\WINDOWS\system32\drivers\pccsmcfd.sys
2013-03-11 22:09:18 ----D---- C:\Program Files\PC Connectivity Solution
2013-03-11 22:08:34 ----A---- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys
2013-03-11 22:08:33 ----A---- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys
2013-03-11 22:08:30 ----A---- C:\WINDOWS\system32\drivers\ccdcmbo.sys
2013-03-11 22:08:29 ----A---- C:\WINDOWS\system32\drivers\ccdcmb.sys
2013-03-09 21:32:20 ----A---- C:\WINDOWS\system32\javaws.exe
2013-03-09 21:32:05 ----A---- C:\WINDOWS\system32\WindowsAccessBridge.dll
2013-03-09 21:32:05 ----A---- C:\WINDOWS\system32\javaw.exe
2013-03-09 21:32:05 ----A---- C:\WINDOWS\system32\java.exe
2013-03-08 10:40:11 ----D---- C:\Program Files\Mozilla Firefox
2013-03-02 15:57:24 ----D---- C:\CamersoftOutput
2013-03-02 05:42:56 ----D---- C:\Documents and Settings\michal\Data aplikací\Solveig Multimedia
2013-03-02 01:27:44 ----D---- C:\Documents and Settings\michal\Data aplikací\HellSpy.cz Download Manager
2013-03-01 21:38:41 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2013-03-01 21:38:41 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\WdfCoInstaller01007.dll
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\usbccid.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\mod7700.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\ewusbnet.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\ewusbmdm.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\ewdcsc.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\ew_usbenumfilter.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\ew_juextctrl.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\ew_jucdcecm.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\ew_jucdcacm.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\ew_jubusenum.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\ew_hwusbdev.sys
2013-02-23 15:37:46 ----A---- C:\WINDOWS\system32\drivers\ew_hwupgrade.sys
2013-02-23 15:37:17 ----D---- C:\Program Files\PLAY ONLINE
======List of files/folders modified in the last 1 month======
2013-03-17 18:35:40 ----D---- C:\WINDOWS\Prefetch
2013-03-17 18:23:34 ----D---- C:\WINDOWS\Temp
2013-03-17 18:23:26 ----D---- C:\WINDOWS\system32\CatRoot2
2013-03-17 18:21:33 ----D---- C:\WINDOWS\system32
2013-03-17 18:21:29 ----SD---- C:\WINDOWS\Tasks
2013-03-17 18:16:00 ----D---- C:\WINDOWS
2013-03-17 18:14:13 ----A---- C:\WINDOWS\SchedLgU.Txt
2013-03-17 18:12:00 ----D---- C:\Documents and Settings\michal\Data aplikací\Skype
2013-03-17 17:18:00 ----HD---- C:\WINDOWS\inf
2013-03-17 17:17:52 ----RSHDC---- C:\WINDOWS\system32\dllcache
2013-03-17 17:17:52 ----D---- C:\WINDOWS\system32\drivers
2013-03-17 17:17:48 ----HD---- C:\WINDOWS\$hf_mig$
2013-03-17 16:11:31 ----D---- C:\Documents and Settings\michal\Data aplikací\Azureus
2013-03-17 16:11:28 ----D---- C:\WINDOWS\Debug
2013-03-17 08:03:31 ----A---- C:\WINDOWS\hpbafd.ini
2013-03-17 03:41:28 ----D---- C:\Program Files
2013-03-17 03:27:32 ----D---- C:\Program Files\Vuze
2013-03-17 02:00:44 ----HD---- C:\Program Files\InstallShield Installation Information
2013-03-17 02:00:44 ----D---- C:\Program Files\SAMSUNG
2013-03-16 23:04:28 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2013-03-16 00:00:14 ----D---- C:\Program Files\PokerStars.EU
2013-03-15 14:22:51 ----D---- C:\Program Files\Microsoft Silverlight
2013-03-15 14:22:40 ----D---- C:\WINDOWS\Connection Wizard
2013-03-15 13:05:47 ----A---- C:\WINDOWS\system32\MRT.exe
2013-03-15 13:05:36 ----SHD---- C:\WINDOWS\Installer
2013-03-15 13:05:35 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2013-03-15 13:03:14 ----D---- C:\Program Files\Internet Explorer
2013-03-15 13:02:48 ----D---- C:\WINDOWS\ie8updates
2013-03-11 22:46:02 ----D---- C:\Documents and Settings\All Users\Data aplikací\Installations
2013-03-11 22:45:59 ----D---- C:\Program Files\Nokia
2013-03-11 22:45:59 ----D---- C:\Program Files\Common Files\Nokia
2013-03-11 22:45:59 ----D---- C:\Program Files\Common Files
2013-03-11 22:45:39 ----DC---- C:\WINDOWS\system32\DRVSTORE
2013-03-11 22:28:55 ----D---- C:\Documents and Settings\michal\Data aplikací\Nokia
2013-03-11 22:25:32 ----D---- C:\Documents and Settings\All Users\Data aplikací\PC Suite
2013-03-11 22:24:20 ----D---- C:\WINDOWS\system32\CatRoot
2013-03-11 22:15:00 ----D---- C:\WINDOWS\WinSxS
2013-03-11 09:50:03 ----D---- C:\Program Files\Mozilla Maintenance Service
2013-03-09 21:31:53 ----A---- C:\WINDOWS\system32\npDeployJava1.dll
2013-03-09 21:31:52 ----A---- C:\WINDOWS\system32\deployJava1.dll
2013-03-09 21:31:47 ----D---- C:\Program Files\Java
2013-03-07 15:23:58 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2013-03-01 03:26:40 ----A---- C:\WINDOWS\system32\mshtml.dll
2013-02-27 10:58:07 ----D---- C:\WINDOWS\system32\wbem
2013-02-23 15:37:51 ----D---- C:\Documents and Settings\All Users\Data aplikací\DatacardService
2013-02-23 15:37:30 ----A---- C:\WINDOWS\system32\wdfcoinstaller01007.dll
2013-02-22 18:25:52 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2013-02-19 16:05:45 ----D---- C:\Program Files\Raxco
2013-02-19 16:04:21 ----RSD---- C:\WINDOWS\assembly
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2009-07-13 91904]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 Vsdatant;vsdatant; C:\WINDOWS\System32\vsdatant.sys [2012-07-30 526640]
R2 DOSMEMIO;MEMIO; \??\C:\WINDOWS\system32\MEMIO.SYS []
R2 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R2 PfFilter;PfFilter; \??\C:\Program Files\IObit\Protected Folder\pffilter.sys []
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2012-09-19 52136]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 huawei_enumerator;huawei_enumerator; C:\WINDOWS\system32\DRIVERS\ew_jubusenum.sys [2013-02-23 73984]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2010-04-25 1754912]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-10-31 4942336]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys []
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-22 32384]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 usbvideo;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2009-05-12 122240]
R3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2009-10-21 298752]
S0 mv61xxmm;mv61xxmm; C:\WINDOWS\system32\drivers\mv61xxmm.sys []
S0 mv64xxmm;mv64xxmm; C:\WINDOWS\system32\drivers\mv64xxmm.sys []
S0 mvxxmm;mvxxmm; C:\WINDOWS\system32\drivers\mvxxmm.sys []
S0 reparse;Reparse; C:\WINDOWS\system32\DRIVERS\cbreparse.sys []
S0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys []
S1 DumpDrv;Crash Dump Driver; C:\WINDOWS\system32\drivers\DumpDrv.sys []
S1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys []
S1 SafDskNT;SafeHouse; \??\C:\WINDOWS\system32\drivers\SAFDSKNT.SYS []
S2 rspndr;Odpovídající zařízení zjišťování topologie linkové vrstvy; C:\WINDOWS\system32\DRIVERS\rspndr.sys []
S2 WCMVCAM;WebcamMax, WDM Video Capture; C:\WINDOWS\system32\DRIVERS\wcmvcam.sys [2012-04-15 1068216]
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736]
S3 AR5416;Atheros Wireless Adapter Service; C:\WINDOWS\system32\DRIVERS\athw.sys [2011-12-12 1984704]
S3 btaudio;Zvukové zařízení Bluetooth; C:\WINDOWS\system32\drivers\btaudio.sys []
S3 BTDriver;Ovladač virtuálních komunikací Bluetooth; C:\WINDOWS\system32\DRIVERS\btport.sys []
S3 btkrnl;Enumenátor sběrnice Bluetooth; C:\WINDOWS\system32\DRIVERS\btkrnl.sys []
S3 BTWDNDIS;Server pro přístup k síti LAN Bluetooth; C:\WINDOWS\system32\DRIVERS\btwdndis.sys []
S3 btwmodem;Modem Bluetooth; C:\WINDOWS\system32\DRIVERS\btwmodem.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 dot4;Ovladač MS IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2008-04-13 206976]
S3 Dot4Print;Ovladač třídy tiskárny standardu IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4Prt.sys [2001-08-17 12928]
S3 dot4usb;Filtr Dot4USB Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2001-10-24 23808]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\WINDOWS\system32\DRIVERS\ew_hwusbdev.sys [2013-02-23 102784]
S3 ew_usbenumfilter;huawei_CompositeFilter; C:\WINDOWS\system32\DRIVERS\ew_usbenumfilter.sys [2013-02-23 11136]
S3 huawei_cdcacm;huawei_cdcacm; C:\WINDOWS\system32\DRIVERS\ew_jucdcacm.sys [2013-02-23 89856]
S3 huawei_cdcecm;huawei_cdcecm; C:\WINDOWS\system32\DRIVERS\ew_jucdcecm.sys [2013-02-23 66688]
S3 huawei_ext_ctrl;huawei_ext_ctrl; C:\WINDOWS\system32\DRIVERS\ew_juextctrl.sys [2013-02-23 26624]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\WINDOWS\system32\drivers\ccdcmb.sys [2012-11-09 18560]
S3 nmwcdc;Nokia USB Communication Driver; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2012-11-09 23168]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2012-10-17 19072]
S3 RimVSerPort;RIM Virtual Serial Port v2; C:\WINDOWS\system32\DRIVERS\RimSerial.sys []
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2001-10-25 5888]
S3 SABProcEnum;SABProcEnum; \??\C:\Program Files\Internet Explorer\SABProcEnum.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 TotRec8;Total Recorder WDM audio filter driver; \??\C:\WINDOWS\system32\drivers\TotRec8.sys []
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2012-11-09 8192]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-13 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2012-11-09 8192]
S3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys []
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2009-07-13 132224]
S4 clwvd;CyberLink WebCam Virtual Driver; C:\WINDOWS\system32\DRIVERS\clwvd.sys []
S4 exFat;exFat; C:\WINDOWS\system32\drivers\exFat.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 HWDeviceService.exe;HWDeviceService.exe; C:\Documents and Settings\All Users\Data aplikací\DatacardService\HWDeviceService.exe [2011-03-14 271712]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2013-03-09 170912]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2012-12-14 682344]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-12-14 398184]
R2 vsmon;TrueVector Internet Monitor; C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe [2012-07-30 2445880]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2011-02-12 14848]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-01-29 116648]
S2 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-03-08 115608]
S2 PLAY ONLINE. RunOuc;PLAY ONLINE. OUC; C:\Program Files\PLAY ONLINE\UpdateDog\ouc.exe [2013-02-23 246112]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-01-08 161536]
S2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2011-02-12 439808]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2012-02-24 365912]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-01-29 116648]
S3 idsvc;Služba Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2012-12-19 732648]
S3 SystemExplorerHelpService;System Explorer Service; C:\Program Files\System Explorer\service\SystemExplorerService.exe [2012-11-25 567256]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2011-02-12 14848]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2011-02-12 913920]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119524
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: preventivka
Log již vypadá OK. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: preventivka
Vše vypada ok, děkuju za pomoc!
-
Rudy
- Site Admin
- Příspěvky: 119524
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: preventivka
Nemáte zač!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?