prevence - pomůžete prosím?

Zpráva

jirkamm · #1 Příspěvek od **jirkamm** » 06 dub 2013 19:42

Zdravím.
internet - katastrofa. používám maxthon a po pár minutách musím prohlížeč restartovat. ve správci úloh vidím, že má načtených až 300 Mb paměti. Shodím ho a chvilku dobrý.
+ prosím o celkovou prevenci.
Díky moc.
Jirka

Logfile of random's system information tool 1.09 (written by random/random)
Run by jirka at 2013-04-06 20:31:26
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 378 GB (79%) free of 477 GB
Total RAM: 2047 MB (46% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:31:51, on 6.4.2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe
C:\Program Files\hw\BlueSoleil\BTNtService.exe
C:\WINDOWS\system32\crypserv.exe
C:\Program Files\zabezpeceni\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\zabezpeceni\Kerio\Personal Firewall 4\kpf4ss.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\ASUS\ASUS Remote\RemoteControlAppl.exe
C:\Program Files\Zabezpeceni\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files\Hw\Browser Mouse\1.0\lwbwheel.exe
C:\Program Files\zabezpeceni\Kerio\Personal Firewall 4\kpf4gui.exe
C:\PROGRA~1\hw\G-09 Gamepad\JoyUpDrv.EXE
C:\PROGRA~1\hw\Multimedia Hotkey Program\MMKBD.exe
C:\WINDOWS\system32\outinst.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\zabezpeceni\ESET NOD32 Antivirus\egui.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ASUS\Probe\AsusProb.exe
C:\Program Files\Hw\Monitor Calibration Wizard\MCW.exe
C:\Program Files\internet\365dní\365dniNET.exe
C:\Program Files\HP\HP Photosmart 5510 series\Bin\ScanToPCActivationApp.exe
C:\WINDOWS\system32\Mx-3 B-Cup Service.exe
C:\Program Files\Hw\ATITool\ATITool.exe
C:\Program Files\programy\Samurize\Client.exe
C:\Program Files\programy\Samurize\Client.exe
C:\Program Files\hry\Need for Speed Undercover\PB\PnkBstrA.exe
C:\Program Files\programy\Samurize\Client.exe
C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
C:\Program Files\programy\Samurize\Client.exe
C:\Program Files\programy\Samurize\Client.exe
C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\Program Files\programy\Samurize\InstanceManager.exe
C:\Program Files\Outlook Express\msimn.exe
C:\Program Files\programy\Rainlendar\Rainlendar.exe
C:\Program Files\APC\APC PowerChute Personal Edition\apcsystray.exe
C:\Program Files\zabezpeceni\SpamPal\spampal.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\zabezpeceni\Kerio\Personal Firewall 4\kpf4gui.exe
C:\Program Files\AudioVideo\FLY2000TV\Fly2000TV.exe
C:\Program Files\manazery\totalcmd\TOTALCMD.EXE
C:\Program Files\internet\Maxthon3\Bin\Maxthon.exe
C:\Program Files\internet\Maxthon3\Bin\Maxthon.exe
C:\Program Files\internet\Maxthon3\Bin\Maxthon.exe
C:\Program Files\internet\Maxthon3\Bin\Maxthon.exe
C:\Program Files\internet\Maxthon3\Bin\Maxthon.exe
C:\Program Files\internet\Maxthon3\Bin\Maxthon.exe
C:\RSIT.exe
C:\Program Files\trend micro\jirka.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O4 - HKLM\..\Run: [RemoteControl] C:\Program Files\ASUS\ASUS Remote\RemoteControlAppl.exe
O4 - HKLM\..\Run: [LWBMOUSE] C:\Program Files\Hw\Browser Mouse\1.0\lwbwheel.exe
O4 - HKLM\..\Run: [Game Device] C:\PROGRA~1\hw\G-09 Gamepad\JoyUpDrv.EXE
O4 - HKLM\..\Run: [Multimedir KBD] C:\PROGRA~1\hw\Multimedia Hotkey Program\MMKBD.exe
O4 - HKLM\..\Run: [OutlookFriend] outinst.exe
O4 - HKLM\..\Run: [PtiuPbmd] Rundll32.exe ptipbm.dll,SetWriteBack
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [egui] "C:\Program Files\zabezpeceni\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [ASUS Probe] C:\Program Files\ASUS\Probe\AsusProb.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [MCW Startup] "C:\Program Files\Hw\Monitor Calibration Wizard\MCW.exe" /s /p
O4 - HKCU\..\Run: [365dni] C:\Program Files\internet\365dní\365dniNET.exe
O4 - HKCU\..\Run: [HP Photosmart 5510 series (NET)] "C:\Program Files\HP\HP Photosmart 5510 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN22835FBS05V3:NW" -scfn "HP Photosmart 5510 series (NET)" -AutoStart 1
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Client počasí.lnk = C:\Program Files\programy\Samurize\Client.exe
O4 - Startup: Client procesy.lnk = C:\Program Files\programy\Samurize\Client.exe
O4 - Startup: Client svátek.lnk = C:\Program Files\programy\Samurize\Client.exe
O4 - Startup: Client winamp.lnk = C:\Program Files\programy\Samurize\Client.exe
O4 - Startup: Client základ.lnk = C:\Program Files\programy\Samurize\Client.exe
O4 - Startup: Instance Manager.lnk = C:\Program Files\programy\Samurize\InstanceManager.exe
O4 - Startup: Outlook Express.lnk = C:\Program Files\Outlook Express\msimn.exe
O4 - Startup: Rainlendar.lnk = C:\Program Files\programy\Rainlendar\Rainlendar.exe
O4 - Startup: SpamPal.lnk = C:\Program Files\zabezpeceni\SpamPal\spampal.exe
O4 - Startup: Total Commander 32.lnk = C:\Program Files\manazery\totalcmd\TOTALCMD.EXE
O4 - Global Startup: APC UPS Status.lnk = ?
O4 - Global Startup: ATITool.lnk = C:\Program Files\Hw\ATITool\ATITool.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O9 - Extra button: (no name) - AutorunsDisabled - (no file)
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: APC UPS Service - American Power Conversion Corporation - C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\hw\BlueSoleil\BTNtService.exe
O23 - Service: Crypkey License - CrypKey (Canada) Ltd. - C:\WINDOWS\SYSTEM32\crypserv.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\zabezpeceni\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\zabezpeceni\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: FLEXnet Licensing Service - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Kerio Personal Firewall 4 (KPF4) - Kerio Technologies - C:\Program Files\zabezpeceni\Kerio\Personal Firewall 4\kpf4ss.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Zabezpeceni\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Zabezpeceni\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: MX-3 B-Cup XP (Mx-3 B-Cup Service) - n.v.t. MX-3 - C:\WINDOWS\system32\Mx-3 B-Cup Service.exe
O23 - Service: PunkBuster (PnkBstrA) - Unknown owner - C:\Program Files\hry\Need for Speed Undercover\PB\PnkBstrA.exe
O23 - Service: Sentinel Protection Server (SentinelProtectionServer) - SafeNet, Inc - C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: SolidWorks Licensing Service - SolidWorks - C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe

--
End of file - 11391 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-12-18 66280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-12-12 194432]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-03-19 4529272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-05-04 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-05-04 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RemoteControl"=C:\Program Files\ASUS\ASUS Remote\RemoteControlAppl.exe [2006-02-14 69632]
"LWBMOUSE"=C:\Program Files\Hw\Browser Mouse\1.0\lwbwheel.exe [2001-03-26 429568]
"Game Device"=C:\PROGRA~1\hw\G-09 Gamepad\JoyUpDrv.EXE [2003-03-27 77889]
"Multimedir KBD"=C:\PROGRA~1\hw\Multimedia Hotkey Program\MMKBD.exe [1999-09-06 270336]
"OutlookFriend"=C:\WINDOWS\system32\outinst.exe [2005-02-25 29184]
"PtiuPbmd"=ptipbm.dll,SetWriteBack []
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2004-02-26 65024]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2008-08-01 61440]
"egui"=C:\Program Files\zabezpeceni\ESET NOD32 Antivirus\egui.exe [2009-11-16 2054360]
"ASUS Probe"=C:\Program Files\ASUS\Probe\AsusProb.exe [2002-12-06 617984]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-03 946352]
""= []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"MCW Startup"=C:\Program Files\Hw\Monitor Calibration Wizard\MCW.exe [2002-12-20 321024]
"365dni"=C:\Program Files\internet\365dní\365dniNET.exe [2008-11-03 749568]
"HP Photosmart 5510 series (NET)"=C:\Program Files\HP\HP Photosmart 5510 series\Bin\ScanToPCActivationApp.exe [2012-10-17 1837672]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
APC UPS Status.lnk - C:\Program Files\APC\APC PowerChute Personal Edition\Display.exe
ATITool.lnk - C:\Program Files\Hw\ATITool\ATITool.exe

C:\Documents and Settings\jirka\Nabídka Start\Programy\Po spuštění
Client počasí.lnk - C:\Program Files\programy\Samurize\Client.exe
Client procesy.lnk - C:\Program Files\programy\Samurize\Client.exe
Client svátek.lnk - C:\Program Files\programy\Samurize\Client.exe
Client winamp.lnk - C:\Program Files\programy\Samurize\Client.exe
Client základ.lnk - C:\Program Files\programy\Samurize\Client.exe
Instance Manager.lnk - C:\Program Files\programy\Samurize\InstanceManager.exe
Outlook Express.lnk - C:\Program Files\Outlook Express\msimn.exe
Rainlendar.lnk - C:\Program Files\programy\Rainlendar\Rainlendar.exe
SpamPal.lnk - C:\Program Files\zabezpeceni\SpamPal\spampal.exe
Total Commander 32.lnk - C:\Program Files\manazery\totalcmd\TOTALCMD.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2008-08-21 143360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoSMMyDocs"=1
"NoFavoritesMenu"=1
"NoDriveAutoRun"=67108863
"NoDrives"=0
"NoRecycleFiles"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Hw\BlueSoleil\BlueSoleil.exe"="C:\Program Files\Hw\BlueSoleil\BlueSoleil.exe:*:Enabled:BlueSoleil"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ArchVision\ArchVision Content Manager\rpcACMapp.exe"="C:\Program Files\ArchVision\ArchVision Content Manager\rpcACMapp.exe:*:Enabled:ArchVision Content Manager"
"C:\Program Files\ArchVision\ArchVision Content Manager\rpcACMftp.exe"="C:\Program Files\ArchVision\ArchVision Content Manager\rpcACMftp.exe:*:Enabled:ArchVision Download Processor"
"C:\Program Files\internet\Opera\opera.exe"="C:\Program Files\internet\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\Autodesk\Backburner\monitor.exe"="C:\Program Files\Autodesk\Backburner\monitor.exe:*:Enabled:backburner 2.3 monitor"
"C:\Program Files\Autodesk\Backburner\manager.exe"="C:\Program Files\Autodesk\Backburner\manager.exe:*:Enabled:backburner 2.3 manager"
"C:\Program Files\Autodesk\Backburner\server.exe"="C:\Program Files\Autodesk\Backburner\server.exe:*:Enabled:backburner 2.3 server"
"C:\Program Files\Pracovni\3ds Max 2010\3dsmax.exe"="C:\Program Files\Pracovni\3ds Max 2010\3dsmax.exe:*:Enabled:Autodesk 3ds Max 2010 32-bit"
"C:\Program Files\Pracovni\3ds Max 2010\mentalray\satellite\raysat_3dsmax2010_32server.exe"="C:\Program Files\Pracovni\3ds Max 2010\mentalray\satellite\raysat_3dsmax2010_32server.exe:*:Enabled:mental ray satellite server for Autodesk 3ds Max 2010 32-bit"
"C:\Program Files\Pracovni\3ds Max 2010\mentalray\satellite\raysat_3dsmax2010_32.exe"="C:\Program Files\Pracovni\3ds Max 2010\mentalray\satellite\raysat_3dsmax2010_32.exe:*:Enabled:mental ray satellite for Autodesk 3ds Max 2010 32-bit"
"C:\Program Files\zabezpeceni\Kerio\Personal Firewall 4\kpf4gui.exe"="C:\Program Files\zabezpeceni\Kerio\Personal Firewall 4\kpf4gui.exe:*:Enabled:Kerio Personal Firewall 4 - GUI"
"C:\Program Files\manazery\totalcmd\TOTALCMD.EXE"="C:\Program Files\manazery\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"C:\Program Files\programy\Proteus 7 Professional\BIN\ISIS.EXE"="C:\Program Files\programy\Proteus 7 Professional\BIN\ISIS.EXE:*:Enabled:ISIS Schematic Capture"
"C:\download\Terminal.exe"="C:\download\Terminal.exe:*:Enabled:Terminal"
"C:\Documents and Settings\jirka\Plocha\Terminal.exe"="C:\Documents and Settings\jirka\Plocha\Terminal.exe:*:Enabled:Terminal"
"C:\Program Files\programy\DATAQ\HardwareManager.exe"="C:\Program Files\programy\DATAQ\HardwareManager.exe:*:Enabled:HardwareManager"
"C:\Program Files\DATAQ\HardwareManager.exe"="C:\Program Files\DATAQ\HardwareManager.exe:*:Enabled:HardwareManager"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Java\jre6\bin\java.exe"="C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe"="C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe:*:Disabled:Sentinel Protection Server"
"C:\Program Files\internet\Opera\pluginwrapper\opera_plugin_wrapper.exe"="C:\Program Files\internet\Opera\pluginwrapper\opera_plugin_wrapper.exe:*:Enabled:Opera Internet Browser - Plugin wrapper"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Hw\SAMSUNG PC Share Manager\WiselinkPro.exe"="C:\Program Files\Hw\SAMSUNG PC Share Manager\WiselinkPro.exe:*:Enabled:AllShare"
"C:\Program Files\Hw\SAMSUNG PC Share Manager\http_ss_win_pro.exe"="C:\Program Files\Hw\SAMSUNG PC Share Manager\http_ss_win_pro.exe:*:Enabled:PCSM_http_ss_win_pro"
"C:\Program Files\internet\Maxthon3\Bin\Maxthon.exe"="C:\Program Files\internet\Maxthon3\Bin\Maxthon.exe:*:Enabled:Maxthon"
"C:\Program Files\internet\Maxthon3\Bin\MxUp.exe"="C:\Program Files\internet\Maxthon3\Bin\MxUp.exe:*:Enabled:MxUp"
"C:\Program Files\Common Files\soft602\langserv.exe"="C:\Program Files\Common Files\soft602\langserv.exe:*:Enabled:Software602 Spell Checker"
"C:\Program Files\HP\HP Photosmart 5510 series\Bin\DeviceSetup.exe"="C:\Program Files\HP\HP Photosmart 5510 series\Bin\DeviceSetup.exe:LocalSubNet:Enabled:Instalace zařízení HP (HP Photosmart 5510 series)"
"C:\Program Files\HP\HP Photosmart 5510 series\Bin\HPNetworkCommunicator.exe"="C:\Program Files\HP\HP Photosmart 5510 series\Bin\HPNetworkCommunicator.exe:LocalSubNet:Enabled:Síťový komunikační program HP (HP Photosmart 5510 series)"
"C:\Program Files\HP\HP Photosmart 5510 series\Bin\HPNetworkCommunicatorCom.exe"="C:\Program Files\HP\HP Photosmart 5510 series\Bin\HPNetworkCommunicatorCom.exe:LocalSubNet:Enabled:Síťový komunikační program HP COM (HP Photosmart 5510 series)"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=i420vfw.dll
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"vidc.yv12"=yv12vfw.dll
"VIDC.FFDS"=ff_vfw.dll
"wave"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"midi"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"vidc.GEOS"=C:\WINDOWS\system32\v8300\GEO-MPEG4\2011.11.19.19.56\GeoCodecD.dll
"vidc.GEOV"=C:\WINDOWS\system32\v8300\GEO-MPEG4\2011.11.19.19.56\GeoCodec.dll
"vidc.GEOX"=C:\WINDOWS\system32\v8300\GEO-MPEG4\2011.11.19.19.56\GeoCodec.dll
"vidc.DIVX"=DivX.dll

======File associations======

.scr - open -
.scr - install -
.scr - config -

======List of files/folders created in the last 1 month======

2013-04-06 20:31:26 ----D---- C:\rsit
2013-04-06 20:31:15 ----A---- C:\RSIT.exe
2013-04-05 09:59:49 ----D---- C:\capture
2013-03-25 22:16:05 ----D---- C:\aaa
2013-03-18 01:17:46 ----D---- C:\Program Files\FriendlyARM
2013-03-17 23:14:51 ----A---- C:\zaba.txt
2013-03-17 22:48:58 ----D---- C:\mini2440
2013-03-17 21:06:51 ----A---- C:\maczak.txt
2013-03-15 18:40:09 ----A---- C:\martin.txt
2013-03-15 14:06:26 ----A---- C:\piityy.txt
2013-03-14 22:22:06 ----N---- C:\WINDOWS\system32\HPDiscoPMa111.dll
2013-03-14 22:22:04 ----A---- C:\WINDOWS\system32\HPWia1_PS5510.dll
2013-03-14 22:22:04 ----A---- C:\WINDOWS\system32\HPScanTRDrv_PS5510.dll
2013-03-14 22:22:02 ----A---- C:\WINDOWS\system32\hpinkstsa111LM.dll
2013-03-14 22:22:02 ----A---- C:\WINDOWS\system32\hpinkstsa111.dll
2013-03-14 22:22:02 ----A---- C:\WINDOWS\system32\hpinkinsa111.exe
2013-03-14 22:22:02 ----A---- C:\WINDOWS\system32\hpinkcoia111.dll
2013-03-13 08:33:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2807986$
2013-03-12 22:08:36 ----A---- C:\WINDOWS\system32\FlashPlayerInstaller.exe
2013-03-08 23:09:21 ----D---- C:\Documents and Settings\jirka\Data aplikací\HpUpdate
2013-03-08 21:45:00 ----A---- C:\WINDOWS\system32\reboot.txt
2013-03-08 21:19:56 ----D---- C:\Documents and Settings\jirka\Data aplikací\Složka odesílání Share-to-Web
2013-03-08 21:15:36 ----D---- C:\Program Files\Common Files\Hewlett-Packard
2013-03-08 20:59:08 ----A---- C:\WINDOWS\IsUn0405.exe
2013-03-08 17:57:28 ----A---- C:\WINDOWS\system32\drivers\serscan.sys
2013-03-08 17:07:48 ----D---- C:\Documents and Settings\All Users\Data aplikací\HP
2013-03-08 17:07:46 ----D---- C:\Program Files\HP
2013-03-08 17:07:39 ----A---- C:\Documents and Settings\All Users\Data aplikací\Ament.ini

======List of files/folders modified in the last 1 month======

2013-04-06 20:31:31 ----D---- C:\Program Files\trend micro
2013-04-06 20:31:29 ----D---- C:\WINDOWS\Temp
2013-04-06 19:21:02 ----D---- C:\WINDOWS\system32\CatRoot2
2013-04-06 09:41:23 ----AC---- C:\WINDOWS\NeroDigital.ini
2013-04-06 09:30:57 ----AC---- C:\WINDOWS\win.ini
2013-04-06 09:29:38 ----D---- C:\Documents and Settings\jirka\Data aplikací\365dni
2013-04-05 23:59:23 ----A---- C:\WINDOWS\SchedLgU.Txt
2013-04-05 22:57:52 ----D---- C:\temp
2013-04-05 22:52:55 ----D---- C:\kuch
2013-04-05 22:36:45 ----A---- C:\vraylog.txt
2013-04-05 18:05:04 ----SHD---- C:\WINDOWS\Installer
2013-04-05 18:04:51 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2013-04-05 18:04:49 ----RD---- C:\Program Files\Skype
2013-04-05 18:02:46 ----D---- C:\WINDOWS
2013-04-05 14:49:37 ----D---- C:\Documents and Settings\jirka\Data aplikací\Media Player Classic
2013-04-04 14:01:44 ----D---- C:\WINDOWS\system32
2013-03-31 21:06:48 ----A---- C:\WINDOWS\WTRAN32.INI
2013-03-31 09:21:02 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2013-03-29 08:26:39 ----D---- C:\Documents and Settings\jirka\Data aplikací\Skype
2013-03-29 00:12:26 ----D---- C:\WINDOWS\system32\drivers
2013-03-29 00:12:26 ----D---- C:\WINDOWS\system
2013-03-24 22:28:47 ----D---- C:\download
2013-03-24 03:04:04 ----D---- C:\WINDOWS\Help
2013-03-23 09:24:06 ----D---- C:\Corel
2013-03-22 12:00:55 ----D---- C:\WINDOWS\Minidump
2013-03-22 12:00:55 ----D---- C:\WINDOWS\Debug
2013-03-18 23:14:17 ----D---- C:\WINDOWS\system32\config
2013-03-18 01:17:59 ----HD---- C:\WINDOWS\inf
2013-03-18 01:17:46 ----D---- C:\Program Files
2013-03-14 22:22:04 ----DC---- C:\WINDOWS\system32\DRVSTORE
2013-03-14 22:21:58 ----D---- C:\WINDOWS\twain_32
2013-03-13 08:40:15 ----D---- C:\Program Files\Microsoft Silverlight
2013-03-13 08:35:04 ----AC---- C:\WINDOWS\system32\MRT.exe
2013-03-13 08:33:24 ----RSHDC---- C:\WINDOWS\system32\dllcache
2013-03-13 08:33:23 ----D---- C:\Program Files\Internet Explorer
2013-03-13 08:33:16 ----D---- C:\WINDOWS\ie8updates
2013-03-13 08:33:14 ----HD---- C:\WINDOWS\$hf_mig$
2013-03-12 22:08:52 ----AC---- C:\WINDOWS\system32\FlashPlayerApp.exe
2013-03-09 00:36:24 ----D---- C:\Program Files\zabezpeceni
2013-03-09 00:35:01 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2013-03-09 00:21:42 ----D---- C:\WINDOWS\system32\drivers\etc
2013-03-08 21:15:36 ----D---- C:\Program Files\Common Files
2013-03-08 19:56:01 ----D---- C:\Program Files\Hw
2013-03-08 17:11:14 ----D---- C:\WINDOWS\system32\CatRoot

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 40183525;40183525; C:\WINDOWS\system32\DRIVERS\40183525.sys [2012-08-28 133208]
R0 BTHidMgr;Bluetooth HID Manager Service; C:\WINDOWS\System32\Drivers\BTHidMgr.sys [2005-05-01 28271]
R0 gagp30kx;Filtr Microsoft Generic AGPv3.0 pro procesorovou platformu K8; C:\WINDOWS\system32\DRIVERS\gagp30kx.sys [2008-04-14 46464]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI VIA; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2010-07-12 45648]
R0 UlSata;UlSata; C:\WINDOWS\system32\DRIVERS\ulsata.sys [2003-09-25 56320]
R0 vax347b;vax347b; C:\WINDOWS\system32\DRIVERS\vax347b.sys [2005-07-08 159616]
R0 vax347s;vax347s; C:\WINDOWS\System32\Drivers\vax347s.sys [2004-04-30 5248]
R0 viaagp1;VIA AGP Filter; C:\WINDOWS\system32\DRIVERS\viaagp1.sys [2003-07-02 27904]
R0 viasraid;viasraid; C:\WINDOWS\system32\DRIVERS\viasraid.sys [2003-10-31 77312]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 AmdPPM;Ovladač procesoru HwPState AMD; C:\WINDOWS\system32\DRIVERS\AmdPPM.sys [2007-04-16 33792]
R1 aslm75;aslm75; \??\C:\WINDOWS\system32\drivers\aslm75.sys []
R1 ATITool;ATITool Overclocking Utility; C:\WINDOWS\system32\DRIVERS\ATITool.sys [2005-09-26 24064]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2009-11-16 108792]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2009-11-16 96408]
R1 fwdrv;Firewall Driver; C:\WINDOWS\system32\drivers\fwdrv.sys [2005-06-21 270336]
R1 Haspnt;HaspNT; \??\C:\WINDOWS\system32\drivers\Haspnt.sys []
R1 khips;Kerio HIPS Driver; C:\WINDOWS\system32\drivers\khips.sys [2005-05-30 53248]
R1 NetworkX;NetworkX; C:\WINDOWS\system32\ckldrv.sys [2006-01-10 31846]
R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-18 12032]
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-11-16 116520]
R2 Hardlock;Hardlock; \??\C:\WINDOWS\system32\drivers\hardlock.sys []
R2 IOPort;IOPort; \??\C:\WINDOWS\system32\DRIVERS\IOPORT.SYS []
R2 Sentinel;Sentinel; C:\WINDOWS\System32\Drivers\SENTINEL.SYS [2006-03-14 90176]
R3 3xHybrid;3xHybrid service; C:\WINDOWS\system32\DRIVERS\3xHybrid.sys [2006-04-11 2829696]
R3 ALCXSENS;Service for WDM 3D Audio Driver; C:\WINDOWS\system32\drivers\ALCXSENS.SYS [2004-02-24 400384]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-03-19 613244]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2008-08-21 3299840]
R3 BlueletSCOAudio;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys [2005-08-31 20480]
R3 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\system32\DRIVERS\vbtenum.sys [2005-07-30 11988]
R3 DigitalJoystickEnabler;Digtial Game Device Driver; C:\WINDOWS\system32\drivers\g2kgame.sys [2003-08-21 14414]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys []
R3 ms_mpu401;Microsoft MPU-401 MIDI UART Driver; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-18 2944]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-18 5888]
R3 seehcri;Sony Ericsson seehcri Device Driver; C:\WINDOWS\system32\DRIVERS\seehcri.sys [2011-02-13 27632]
R3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\WINDOWS\system32\DRIVERS\serscan.sys [2001-10-24 6784]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys [2004-10-19 61312]
R3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys [2006-02-28 84836]
R3 WinDriver6;WinDriver6; C:\WINDOWS\system32\drivers\windrvr6.sys [2010-08-31 195968]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2005-01-19 189568]
S3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys [2006-06-23 31488]
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys [2006-01-19 10068]
S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\WINDOWS\System32\Drivers\btcusb.sys [2006-07-16 23040]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 CrystalCpuInfo;CrystalCpuInfo; C:\WINDOWS\system32\drivers\CrystalCpuInfo.sys []
S3 FlyPCI;FlyPCI; \??\C:\WINDOWS\system32\drivers\FlyPCI.sys []
S3 FsUsbExDisk;FsUsbExDisk; \??\C:\WINDOWS\system32\FsUsbExDisk.SYS []
S3 FTDIBUS;DI148-U; C:\WINDOWS\system32\drivers\ftdibus.sys [2004-04-20 24209]
S3 FTSER2K;USB Serial Port Driver; C:\WINDOWS\system32\drivers\ftser2k.sys [2011-03-18 73096]
S3 ggflt;SEMC USB Flash Driver Filter; C:\WINDOWS\system32\DRIVERS\ggflt.sys [2011-02-13 13224]
S3 ggsemc;SEMC USB Flash Driver; C:\WINDOWS\system32\DRIVERS\ggsemc.sys [2011-02-13 25512]
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2008-03-23 17480]
S3 HidBatt;Ovladač baterie zdroje UPS standardu HID; C:\WINDOWS\system32\DRIVERS\HidBatt.sys [2008-04-14 20352]
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 i81x;i81x; C:\WINDOWS\system32\DRIVERS\i81xnt5.sys [2004-08-03 161020]
S3 kbfiltr;Keyboard Filter; C:\WINDOWS\system32\DRIVERS\kbfiltr.sys [2001-08-27 4693]
S3 MPE;Filtr MPE BDA; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-14 15232]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 RivaTuner32;RivaTuner32; \??\C:\Program Files\hw\RivaTuner v2.0 RC 15.8\RivaTuner32.sys []
S3 s0016bus;Sony Ericsson Device 0016 driver (WDM); C:\WINDOWS\system32\DRIVERS\s0016bus.sys [2008-05-16 89256]
S3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s0016mdfl.sys [2008-05-16 15016]
S3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s0016mdm.sys [2008-05-16 120744]
S3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s0016mgmt.sys [2008-05-16 114216]
S3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS); C:\WINDOWS\system32\DRIVERS\s0016nd5.sys [2008-05-16 25512]
S3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s0016obex.sys [2008-05-16 110632]
S3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM); C:\WINDOWS\system32\DRIVERS\s0016unic.sys [2008-05-16 115752]
S3 SE27bus;Sony Ericsson Device 039 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\SE27bus.sys [2006-04-28 61600]
S3 SE27mdfl;Sony Ericsson Device 039 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\SE27mdfl.sys [2006-04-28 9360]
S3 SE27mdm;Sony Ericsson Device 039 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\SE27mdm.sys [2006-04-28 97184]
S3 SE27mgmt;Sony Ericsson Device 039 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\SE27mgmt.sys [2006-04-28 88688]
S3 se27nd5;Sony Ericsson Device 039 USB Ethernet Emulation SEMC39 (NDIS); C:\WINDOWS\system32\DRIVERS\se27nd5.sys [2006-04-28 18704]
S3 SE27obex;Sony Ericsson Device 039 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\SE27obex.sys [2006-04-28 86560]
S3 se27unic;Sony Ericsson Device 039 USB Ethernet Emulation SEMC39 (WDM); C:\WINDOWS\system32\DRIVERS\se27unic.sys [2006-04-28 90800]
S3 SECBULK;FriendlyARM USB Download Driver; C:\WINDOWS\System32\Drivers\SECBULK.sys [2008-12-08 16640]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 tunmp;Microsoft Tun Miniport Adapter Driver; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2008-04-14 12288]
S3 usb_rndisx;Adaptér USB RNDIS; C:\WINDOWS\system32\DRIVERS\usb8023x.sys [2013-02-12 12928]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 vncdrv;vncdrv; C:\WINDOWS\system32\DRIVERS\vncdrv.sys [2004-06-26 4736]
S3 wceusbsh;Windows CE USB Serial Host Driver; C:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2006-11-06 28672]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 APC UPS Service;APC UPS Service; C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe [2005-12-12 176193]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2008-08-21 573440]
R2 BlueSoleil Hid Service;BlueSoleil Hid Service; C:\Program Files\hw\BlueSoleil\BTNtService.exe [2005-04-06 110592]
R2 Crypkey License;Crypkey License; C:\WINDOWS\system32\crypserv.exe [2006-09-22 69632]
R2 ekrn;ESET Service; C:\Program Files\zabezpeceni\ESET NOD32 Antivirus\ekrn.exe [2009-11-16 735960]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-05-04 153376]
R2 KPF4;Kerio Personal Firewall 4; C:\Program Files\zabezpeceni\Kerio\Personal Firewall 4\kpf4ss.exe [2005-07-15 1630208]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2011-06-20 73728]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Zabezpeceni\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-12-14 398184]
R2 Mx-3 B-Cup Service;MX-3 B-Cup XP; C:\WINDOWS\system32\Mx-3 B-Cup Service.exe [2008-03-22 124928]
R2 PnkBstrA;PunkBuster; C:\Program Files\hry\Need for Speed Undercover\PB\PnkBstrA.exe [2008-10-22 63040]
R2 SentinelProtectionServer;Sentinel Protection Server; C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe [2006-03-14 206400]
R2 Skype C2C Service;Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-03-19 3289208]
R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S1 StarWindService;StarWind iSCSI Service; C:\Program Files\CdRW\Alcohol\Alcohol 120\StarWind\StarWindService.exe [2005-04-02 217600]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2008-08-20 593920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 MBAMService;MBAMService; C:\Program Files\Zabezpeceni\Malwarebytes' Anti-Malware\mbamservice.exe [2012-12-14 682344]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-03-12 253656]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\zabezpeceni\ESET NOD32 Antivirus\EHttpSrv.exe [2009-11-16 20680]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-11-05 1044816]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 SolidWorks Licensing Service;SolidWorks Licensing Service; C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [2013-02-16 79360]
S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2007-06-14 74656]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 aawservice;Lavasoft Ad-Aware Service; C:\Program Files\zabezpeceni\Ad-Aware\aawservice.exe []
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-07-13 160944]

-----------------EOF-----------------

#2 Příspěvek od **Rudy** » 07 dub 2013 11:34

Zdravím!
Spusťte nejprve tuto utilitu:

Stáhněte AdwCleaner http://www.stahuj.centrum.cz/utility_a_ ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte na Search
Proběhne skenováni a pak se objeví log, který sem vložte.

jirkamm · #3 Příspěvek od **jirkamm** » 07 dub 2013 11:54

zdravím. Děkuji za reakci.
zde je log

díky moc

# AdwCleaner v2.109 - Logfile created 04/07/2013 at 12:52:10
# Updated 26/01/2013 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : jirka - PRACOVNI
# Boot Mode : Normal
# Running from : C:\Documents and Settings\jirka\Plocha\adwcleaner(1).exe
# Option [Search]

***** [Services] *****

***** [Files / Folders] *****

***** [Registry] *****

Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
Value Found : HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel [Homepage]

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

[HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls - Tabs] = hxxp://start.facemoods.com/?a=ddrnw&f=2

-\\ Opera v [Unable to get version]

File : C:\Documents and Settings\jirka\Data aplikací\Opera\Opera\operaprefs.ini

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [1234 octets] - [07/04/2013 12:52:10]

########## EOF - C:\AdwCleaner[R1].txt - [1294 octets] ##########

#4 Příspěvek od **Rudy** » 07 dub 2013 13:06

Spusťte znovu ADWCleaner a klikněte na >Delete<. Vložte nový log.

jirkamm · #5 Příspěvek od **jirkamm** » 07 dub 2013 13:18

delete - ok
neměl jsem před mazáním dát vyhledat?

Po restartu na mě vyskočilo toto:

díky moc

# AdwCleaner v2.109 - Logfile created 04/07/2013 at 14:11:05
# Updated 26/01/2013 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : jirka - PRACOVNI
# Boot Mode : Normal
# Running from : C:\Documents and Settings\jirka\Plocha\adwcleaner(1).exe
# Option [Delete]

***** [Services] *****

***** [Files / Folders] *****

***** [Registry] *****

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
Value Deleted : HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel [Homepage]

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

Replaced : [HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls - Tabs] = hxxp://start.facemoods.com/?a=ddrnw&f=2 --> hxxp://www.google.com

-\\ Opera v [Unable to get version]

File : C:\Documents and Settings\jirka\Data aplikací\Opera\Opera\operaprefs.ini

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [1363 octets] - [07/04/2013 12:52:10]
AdwCleaner[S1].txt - [1339 octets] - [07/04/2013 14:11:05]

########## EOF - C:\AdwCleaner[S1].txt - [1399 octets] ##########

#6 Příspěvek od **Rudy** » 07 dub 2013 16:06

Dejte nový log RSIT.

jirkamm · #7 Příspěvek od **jirkamm** » 07 dub 2013 16:12

zde je.
děkuji moc

Logfile of random's system information tool 1.09 (written by random/random)
Run by jirka at 2013-04-07 17:10:46
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 378 GB (79%) free of 477 GB
Total RAM: 2047 MB (51% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:11:09, on 7.4.2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe
C:\Program Files\hw\BlueSoleil\BTNtService.exe
C:\WINDOWS\system32\crypserv.exe
C:\Program Files\zabezpeceni\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\zabezpeceni\Kerio\Personal Firewall 4\kpf4ss.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\ASUS\ASUS Remote\RemoteControlAppl.exe
C:\Program Files\Zabezpeceni\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files\Hw\Browser Mouse\1.0\lwbwheel.exe
C:\PROGRA~1\hw\G-09 Gamepad\JoyUpDrv.EXE
C:\PROGRA~1\hw\Multimedia Hotkey Program\MMKBD.exe
C:\Program Files\zabezpeceni\Kerio\Personal Firewall 4\kpf4gui.exe
C:\WINDOWS\system32\outinst.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\zabezpeceni\ESET NOD32 Antivirus\egui.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ASUS\Probe\AsusProb.exe
C:\Program Files\Hw\Monitor Calibration Wizard\MCW.exe
C:\Program Files\internet\365dní\365dniNET.exe
C:\Program Files\HP\HP Photosmart 5510 series\Bin\ScanToPCActivationApp.exe
C:\WINDOWS\system32\Mx-3 B-Cup Service.exe
C:\Program Files\hry\Need for Speed Undercover\PB\PnkBstrA.exe
C:\Program Files\Hw\ATITool\ATITool.exe
C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
C:\Program Files\programy\Samurize\Client.exe
C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\Program Files\programy\Samurize\Client.exe
C:\Program Files\programy\Samurize\Client.exe
C:\Program Files\programy\Samurize\Client.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\programy\Samurize\Client.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\programy\Samurize\InstanceManager.exe
C:\Program Files\Outlook Express\msimn.exe
C:\Program Files\programy\Rainlendar\Rainlendar.exe
C:\Program Files\APC\APC PowerChute Personal Edition\apcsystray.exe
C:\Program Files\zabezpeceni\Kerio\Personal Firewall 4\kpf4gui.exe
C:\Program Files\zabezpeceni\SpamPal\spampal.exe
C:\Program Files\manazery\totalcmd\TOTALCMD.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\internet\Maxthon3\Bin\Maxthon.exe
C:\Program Files\internet\Maxthon3\Bin\Maxthon.exe
C:\Program Files\internet\Maxthon3\Bin\Maxthon.exe
C:\Program Files\internet\Maxthon3\Bin\Maxthon.exe
C:\Program Files\internet\Maxthon3\Bin\Maxthon.exe
C:\Program Files\AudioVideo\FLY2000TV\Fly2000TV.exe
C:\Program Files\HP\HP Photosmart 5510 series\Bin\HPNetworkCommunicator.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\programy\EAGLE-6.2.0\bin\eagle.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Documents and Settings\jirka\Plocha\RSIT.exe
C:\Program Files\trend micro\jirka.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O4 - HKLM\..\Run: [RemoteControl] C:\Program Files\ASUS\ASUS Remote\RemoteControlAppl.exe
O4 - HKLM\..\Run: [LWBMOUSE] C:\Program Files\Hw\Browser Mouse\1.0\lwbwheel.exe
O4 - HKLM\..\Run: [Game Device] C:\PROGRA~1\hw\G-09 Gamepad\JoyUpDrv.EXE
O4 - HKLM\..\Run: [Multimedir KBD] C:\PROGRA~1\hw\Multimedia Hotkey Program\MMKBD.exe
O4 - HKLM\..\Run: [OutlookFriend] outinst.exe
O4 - HKLM\..\Run: [PtiuPbmd] Rundll32.exe ptipbm.dll,SetWriteBack
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [egui] "C:\Program Files\zabezpeceni\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [ASUS Probe] C:\Program Files\ASUS\Probe\AsusProb.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [MCW Startup] "C:\Program Files\Hw\Monitor Calibration Wizard\MCW.exe" /s /p
O4 - HKCU\..\Run: [365dni] C:\Program Files\internet\365dní\365dniNET.exe
O4 - HKCU\..\Run: [HP Photosmart 5510 series (NET)] "C:\Program Files\HP\HP Photosmart 5510 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN22835FBS05V3:NW" -scfn "HP Photosmart 5510 series (NET)" -AutoStart 1
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Client počasí.lnk = C:\Program Files\programy\Samurize\Client.exe
O4 - Startup: Client procesy.lnk = C:\Program Files\programy\Samurize\Client.exe
O4 - Startup: Client svátek.lnk = C:\Program Files\programy\Samurize\Client.exe
O4 - Startup: Client winamp.lnk = C:\Program Files\programy\Samurize\Client.exe
O4 - Startup: Client základ.lnk = C:\Program Files\programy\Samurize\Client.exe
O4 - Startup: Instance Manager.lnk = C:\Program Files\programy\Samurize\InstanceManager.exe
O4 - Startup: Outlook Express.lnk = C:\Program Files\Outlook Express\msimn.exe
O4 - Startup: Rainlendar.lnk = C:\Program Files\programy\Rainlendar\Rainlendar.exe
O4 - Startup: SpamPal.lnk = C:\Program Files\zabezpeceni\SpamPal\spampal.exe
O4 - Startup: Total Commander 32.lnk = C:\Program Files\manazery\totalcmd\TOTALCMD.EXE
O4 - Global Startup: APC UPS Status.lnk = ?
O4 - Global Startup: ATITool.lnk = C:\Program Files\Hw\ATITool\ATITool.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O9 - Extra button: (no name) - AutorunsDisabled - (no file)
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: APC UPS Service - American Power Conversion Corporation - C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\hw\BlueSoleil\BTNtService.exe
O23 - Service: Crypkey License - CrypKey (Canada) Ltd. - C:\WINDOWS\SYSTEM32\crypserv.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\zabezpeceni\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\zabezpeceni\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: FLEXnet Licensing Service - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Kerio Personal Firewall 4 (KPF4) - Kerio Technologies - C:\Program Files\zabezpeceni\Kerio\Personal Firewall 4\kpf4ss.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Zabezpeceni\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Zabezpeceni\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: MX-3 B-Cup XP (Mx-3 B-Cup Service) - n.v.t. MX-3 - C:\WINDOWS\system32\Mx-3 B-Cup Service.exe
O23 - Service: PunkBuster (PnkBstrA) - Unknown owner - C:\Program Files\hry\Need for Speed Undercover\PB\PnkBstrA.exe
O23 - Service: Sentinel Protection Server (SentinelProtectionServer) - SafeNet, Inc - C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: SolidWorks Licensing Service - SolidWorks - C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe

--
End of file - 11503 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-12-18 66280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-12-12 194432]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-03-19 4529272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-05-04 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-05-04 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RemoteControl"=C:\Program Files\ASUS\ASUS Remote\RemoteControlAppl.exe [2006-02-14 69632]
"LWBMOUSE"=C:\Program Files\Hw\Browser Mouse\1.0\lwbwheel.exe [2001-03-26 429568]
"Game Device"=C:\PROGRA~1\hw\G-09 Gamepad\JoyUpDrv.EXE [2003-03-27 77889]
"Multimedir KBD"=C:\PROGRA~1\hw\Multimedia Hotkey Program\MMKBD.exe [1999-09-06 270336]
"OutlookFriend"=C:\WINDOWS\system32\outinst.exe [2005-02-25 29184]
"PtiuPbmd"=ptipbm.dll,SetWriteBack []
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2004-02-26 65024]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2008-08-01 61440]
"egui"=C:\Program Files\zabezpeceni\ESET NOD32 Antivirus\egui.exe [2009-11-16 2054360]
"ASUS Probe"=C:\Program Files\ASUS\Probe\AsusProb.exe [2002-12-06 617984]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-03 946352]
""= []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"MCW Startup"=C:\Program Files\Hw\Monitor Calibration Wizard\MCW.exe [2002-12-20 321024]
"365dni"=C:\Program Files\internet\365dní\365dniNET.exe [2008-11-03 749568]
"HP Photosmart 5510 series (NET)"=C:\Program Files\HP\HP Photosmart 5510 series\Bin\ScanToPCActivationApp.exe [2012-10-17 1837672]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
APC UPS Status.lnk - C:\Program Files\APC\APC PowerChute Personal Edition\Display.exe
ATITool.lnk - C:\Program Files\Hw\ATITool\ATITool.exe

C:\Documents and Settings\jirka\Nabídka Start\Programy\Po spuštění
Client počasí.lnk - C:\Program Files\programy\Samurize\Client.exe
Client procesy.lnk - C:\Program Files\programy\Samurize\Client.exe
Client svátek.lnk - C:\Program Files\programy\Samurize\Client.exe
Client winamp.lnk - C:\Program Files\programy\Samurize\Client.exe
Client základ.lnk - C:\Program Files\programy\Samurize\Client.exe
Instance Manager.lnk - C:\Program Files\programy\Samurize\InstanceManager.exe
Outlook Express.lnk - C:\Program Files\Outlook Express\msimn.exe
Rainlendar.lnk - C:\Program Files\programy\Rainlendar\Rainlendar.exe
SpamPal.lnk - C:\Program Files\zabezpeceni\SpamPal\spampal.exe
Total Commander 32.lnk - C:\Program Files\manazery\totalcmd\TOTALCMD.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2008-08-21 143360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoSMMyDocs"=1
"NoFavoritesMenu"=1
"NoDriveAutoRun"=67108863
"NoDrives"=0
"NoRecycleFiles"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Hw\BlueSoleil\BlueSoleil.exe"="C:\Program Files\Hw\BlueSoleil\BlueSoleil.exe:*:Enabled:BlueSoleil"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ArchVision\ArchVision Content Manager\rpcACMapp.exe"="C:\Program Files\ArchVision\ArchVision Content Manager\rpcACMapp.exe:*:Enabled:ArchVision Content Manager"
"C:\Program Files\ArchVision\ArchVision Content Manager\rpcACMftp.exe"="C:\Program Files\ArchVision\ArchVision Content Manager\rpcACMftp.exe:*:Enabled:ArchVision Download Processor"
"C:\Program Files\internet\Opera\opera.exe"="C:\Program Files\internet\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\Autodesk\Backburner\monitor.exe"="C:\Program Files\Autodesk\Backburner\monitor.exe:*:Enabled:backburner 2.3 monitor"
"C:\Program Files\Autodesk\Backburner\manager.exe"="C:\Program Files\Autodesk\Backburner\manager.exe:*:Enabled:backburner 2.3 manager"
"C:\Program Files\Autodesk\Backburner\server.exe"="C:\Program Files\Autodesk\Backburner\server.exe:*:Enabled:backburner 2.3 server"
"C:\Program Files\Pracovni\3ds Max 2010\3dsmax.exe"="C:\Program Files\Pracovni\3ds Max 2010\3dsmax.exe:*:Enabled:Autodesk 3ds Max 2010 32-bit"
"C:\Program Files\Pracovni\3ds Max 2010\mentalray\satellite\raysat_3dsmax2010_32server.exe"="C:\Program Files\Pracovni\3ds Max 2010\mentalray\satellite\raysat_3dsmax2010_32server.exe:*:Enabled:mental ray satellite server for Autodesk 3ds Max 2010 32-bit"
"C:\Program Files\Pracovni\3ds Max 2010\mentalray\satellite\raysat_3dsmax2010_32.exe"="C:\Program Files\Pracovni\3ds Max 2010\mentalray\satellite\raysat_3dsmax2010_32.exe:*:Enabled:mental ray satellite for Autodesk 3ds Max 2010 32-bit"
"C:\Program Files\zabezpeceni\Kerio\Personal Firewall 4\kpf4gui.exe"="C:\Program Files\zabezpeceni\Kerio\Personal Firewall 4\kpf4gui.exe:*:Enabled:Kerio Personal Firewall 4 - GUI"
"C:\Program Files\manazery\totalcmd\TOTALCMD.EXE"="C:\Program Files\manazery\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"C:\Program Files\programy\Proteus 7 Professional\BIN\ISIS.EXE"="C:\Program Files\programy\Proteus 7 Professional\BIN\ISIS.EXE:*:Enabled:ISIS Schematic Capture"
"C:\download\Terminal.exe"="C:\download\Terminal.exe:*:Enabled:Terminal"
"C:\Documents and Settings\jirka\Plocha\Terminal.exe"="C:\Documents and Settings\jirka\Plocha\Terminal.exe:*:Enabled:Terminal"
"C:\Program Files\programy\DATAQ\HardwareManager.exe"="C:\Program Files\programy\DATAQ\HardwareManager.exe:*:Enabled:HardwareManager"
"C:\Program Files\DATAQ\HardwareManager.exe"="C:\Program Files\DATAQ\HardwareManager.exe:*:Enabled:HardwareManager"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Java\jre6\bin\java.exe"="C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe"="C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe:*:Disabled:Sentinel Protection Server"
"C:\Program Files\internet\Opera\pluginwrapper\opera_plugin_wrapper.exe"="C:\Program Files\internet\Opera\pluginwrapper\opera_plugin_wrapper.exe:*:Enabled:Opera Internet Browser - Plugin wrapper"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Hw\SAMSUNG PC Share Manager\WiselinkPro.exe"="C:\Program Files\Hw\SAMSUNG PC Share Manager\WiselinkPro.exe:*:Enabled:AllShare"
"C:\Program Files\Hw\SAMSUNG PC Share Manager\http_ss_win_pro.exe"="C:\Program Files\Hw\SAMSUNG PC Share Manager\http_ss_win_pro.exe:*:Enabled:PCSM_http_ss_win_pro"
"C:\Program Files\internet\Maxthon3\Bin\Maxthon.exe"="C:\Program Files\internet\Maxthon3\Bin\Maxthon.exe:*:Enabled:Maxthon"
"C:\Program Files\internet\Maxthon3\Bin\MxUp.exe"="C:\Program Files\internet\Maxthon3\Bin\MxUp.exe:*:Enabled:MxUp"
"C:\Program Files\Common Files\soft602\langserv.exe"="C:\Program Files\Common Files\soft602\langserv.exe:*:Enabled:Software602 Spell Checker"
"C:\Program Files\HP\HP Photosmart 5510 series\Bin\DeviceSetup.exe"="C:\Program Files\HP\HP Photosmart 5510 series\Bin\DeviceSetup.exe:LocalSubNet:Enabled:Instalace zařízení HP (HP Photosmart 5510 series)"
"C:\Program Files\HP\HP Photosmart 5510 series\Bin\HPNetworkCommunicator.exe"="C:\Program Files\HP\HP Photosmart 5510 series\Bin\HPNetworkCommunicator.exe:LocalSubNet:Enabled:Síťový komunikační program HP (HP Photosmart 5510 series)"
"C:\Program Files\HP\HP Photosmart 5510 series\Bin\HPNetworkCommunicatorCom.exe"="C:\Program Files\HP\HP Photosmart 5510 series\Bin\HPNetworkCommunicatorCom.exe:LocalSubNet:Enabled:Síťový komunikační program HP COM (HP Photosmart 5510 series)"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=i420vfw.dll
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"vidc.yv12"=yv12vfw.dll
"VIDC.FFDS"=ff_vfw.dll
"wave"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"midi"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"vidc.GEOS"=C:\WINDOWS\system32\v8300\GEO-MPEG4\2011.11.19.19.56\GeoCodecD.dll
"vidc.GEOV"=C:\WINDOWS\system32\v8300\GEO-MPEG4\2011.11.19.19.56\GeoCodec.dll
"vidc.GEOX"=C:\WINDOWS\system32\v8300\GEO-MPEG4\2011.11.19.19.56\GeoCodec.dll
"vidc.DIVX"=DivX.dll

======File associations======

.scr - open -
.scr - install -
.scr - config -

======List of files/folders created in the last 1 month======

2013-04-07 14:11:05 ----A---- C:\AdwCleaner[S1].txt
2013-04-07 12:52:10 ----A---- C:\AdwCleaner[R1].txt
2013-04-06 20:31:26 ----D---- C:\rsit
2013-04-06 20:31:15 ----A---- C:\RSIT.exe
2013-04-05 09:59:49 ----D---- C:\capture
2013-03-25 22:16:05 ----D---- C:\aaa
2013-03-18 01:17:46 ----D---- C:\Program Files\FriendlyARM
2013-03-17 23:14:51 ----A---- C:\zaba.txt
2013-03-17 22:48:58 ----D---- C:\mini2440
2013-03-17 21:06:51 ----A---- C:\maczak.txt
2013-03-15 18:40:09 ----A---- C:\martin.txt
2013-03-15 14:06:26 ----A---- C:\piityy.txt
2013-03-14 22:22:06 ----N---- C:\WINDOWS\system32\HPDiscoPMa111.dll
2013-03-14 22:22:04 ----A---- C:\WINDOWS\system32\HPWia1_PS5510.dll
2013-03-14 22:22:04 ----A---- C:\WINDOWS\system32\HPScanTRDrv_PS5510.dll
2013-03-14 22:22:02 ----A---- C:\WINDOWS\system32\hpinkstsa111LM.dll
2013-03-14 22:22:02 ----A---- C:\WINDOWS\system32\hpinkstsa111.dll
2013-03-14 22:22:02 ----A---- C:\WINDOWS\system32\hpinkinsa111.exe
2013-03-14 22:22:02 ----A---- C:\WINDOWS\system32\hpinkcoia111.dll
2013-03-13 08:33:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2807986$
2013-03-12 22:08:36 ----A---- C:\WINDOWS\system32\FlashPlayerInstaller.exe
2013-03-08 23:09:21 ----D---- C:\Documents and Settings\jirka\Data aplikací\HpUpdate
2013-03-08 21:45:00 ----A---- C:\WINDOWS\system32\reboot.txt
2013-03-08 21:19:56 ----D---- C:\Documents and Settings\jirka\Data aplikací\Složka odesílání Share-to-Web
2013-03-08 21:15:36 ----D---- C:\Program Files\Common Files\Hewlett-Packard
2013-03-08 20:59:08 ----A---- C:\WINDOWS\IsUn0405.exe
2013-03-08 17:57:28 ----A---- C:\WINDOWS\system32\drivers\serscan.sys
2013-03-08 17:07:48 ----D---- C:\Documents and Settings\All Users\Data aplikací\HP
2013-03-08 17:07:46 ----D---- C:\Program Files\HP
2013-03-08 17:07:39 ----A---- C:\Documents and Settings\All Users\Data aplikací\Ament.ini

======List of files/folders modified in the last 1 month======

2013-04-07 17:10:51 ----D---- C:\Program Files\trend micro
2013-04-07 17:10:49 ----D---- C:\WINDOWS\Temp
2013-04-07 14:44:27 ----D---- C:\WINDOWS\system32
2013-04-07 14:15:44 ----AC---- C:\WINDOWS\NeroDigital.ini
2013-04-07 14:15:31 ----AC---- C:\WINDOWS\win.ini
2013-04-07 14:14:18 ----D---- C:\Documents and Settings\jirka\Data aplikací\365dni
2013-04-07 14:12:16 ----A---- C:\WINDOWS\SchedLgU.Txt
2013-04-07 01:56:51 ----A---- C:\WINDOWS\WTRAN32.INI
2013-04-07 01:34:02 ----D---- C:\WINDOWS
2013-04-06 21:01:29 ----AD---- C:\radek
2013-04-06 19:21:02 ----D---- C:\WINDOWS\system32\CatRoot2
2013-04-05 23:51:12 ----D---- C:\temp
2013-04-05 22:52:55 ----D---- C:\kuch
2013-04-05 22:36:45 ----A---- C:\vraylog.txt
2013-04-05 18:05:04 ----SHD---- C:\WINDOWS\Installer
2013-04-05 18:04:51 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2013-04-05 18:04:49 ----RD---- C:\Program Files\Skype
2013-04-05 14:49:37 ----D---- C:\Documents and Settings\jirka\Data aplikací\Media Player Classic
2013-03-31 09:21:02 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2013-03-29 08:26:39 ----D---- C:\Documents and Settings\jirka\Data aplikací\Skype
2013-03-29 00:12:26 ----D---- C:\WINDOWS\system32\drivers
2013-03-29 00:12:26 ----D---- C:\WINDOWS\system
2013-03-24 22:28:47 ----D---- C:\download
2013-03-24 03:04:04 ----D---- C:\WINDOWS\Help
2013-03-23 09:24:06 ----D---- C:\Corel
2013-03-22 12:00:55 ----D---- C:\WINDOWS\Minidump
2013-03-22 12:00:55 ----D---- C:\WINDOWS\Debug
2013-03-18 23:14:17 ----D---- C:\WINDOWS\system32\config
2013-03-18 01:17:59 ----HD---- C:\WINDOWS\inf
2013-03-18 01:17:46 ----D---- C:\Program Files
2013-03-14 22:22:04 ----DC---- C:\WINDOWS\system32\DRVSTORE
2013-03-14 22:21:58 ----D---- C:\WINDOWS\twain_32
2013-03-13 08:40:15 ----D---- C:\Program Files\Microsoft Silverlight
2013-03-13 08:35:04 ----AC---- C:\WINDOWS\system32\MRT.exe
2013-03-13 08:33:24 ----RSHDC---- C:\WINDOWS\system32\dllcache
2013-03-13 08:33:23 ----D---- C:\Program Files\Internet Explorer
2013-03-13 08:33:16 ----D---- C:\WINDOWS\ie8updates
2013-03-13 08:33:14 ----HD---- C:\WINDOWS\$hf_mig$
2013-03-12 22:08:52 ----AC---- C:\WINDOWS\system32\FlashPlayerApp.exe
2013-03-09 00:36:24 ----D---- C:\Program Files\zabezpeceni
2013-03-09 00:35:01 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2013-03-09 00:21:42 ----D---- C:\WINDOWS\system32\drivers\etc
2013-03-08 21:15:36 ----D---- C:\Program Files\Common Files
2013-03-08 19:56:01 ----D---- C:\Program Files\Hw
2013-03-08 17:11:14 ----D---- C:\WINDOWS\system32\CatRoot

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 40183525;40183525; C:\WINDOWS\system32\DRIVERS\40183525.sys [2012-08-28 133208]
R0 BTHidMgr;Bluetooth HID Manager Service; C:\WINDOWS\System32\Drivers\BTHidMgr.sys [2005-05-01 28271]
R0 gagp30kx;Filtr Microsoft Generic AGPv3.0 pro procesorovou platformu K8; C:\WINDOWS\system32\DRIVERS\gagp30kx.sys [2008-04-14 46464]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI VIA; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2010-07-12 45648]
R0 UlSata;UlSata; C:\WINDOWS\system32\DRIVERS\ulsata.sys [2003-09-25 56320]
R0 vax347b;vax347b; C:\WINDOWS\system32\DRIVERS\vax347b.sys [2005-07-08 159616]
R0 vax347s;vax347s; C:\WINDOWS\System32\Drivers\vax347s.sys [2004-04-30 5248]
R0 viaagp1;VIA AGP Filter; C:\WINDOWS\system32\DRIVERS\viaagp1.sys [2003-07-02 27904]
R0 viasraid;viasraid; C:\WINDOWS\system32\DRIVERS\viasraid.sys [2003-10-31 77312]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 AmdPPM;Ovladač procesoru HwPState AMD; C:\WINDOWS\system32\DRIVERS\AmdPPM.sys [2007-04-16 33792]
R1 aslm75;aslm75; \??\C:\WINDOWS\system32\drivers\aslm75.sys []
R1 ATITool;ATITool Overclocking Utility; C:\WINDOWS\system32\DRIVERS\ATITool.sys [2005-09-26 24064]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2009-11-16 108792]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2009-11-16 96408]
R1 fwdrv;Firewall Driver; C:\WINDOWS\system32\drivers\fwdrv.sys [2005-06-21 270336]
R1 Haspnt;HaspNT; \??\C:\WINDOWS\system32\drivers\Haspnt.sys []
R1 khips;Kerio HIPS Driver; C:\WINDOWS\system32\drivers\khips.sys [2005-05-30 53248]
R1 NetworkX;NetworkX; C:\WINDOWS\system32\ckldrv.sys [2006-01-10 31846]
R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-18 12032]
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-11-16 116520]
R2 Hardlock;Hardlock; \??\C:\WINDOWS\system32\drivers\hardlock.sys []
R2 IOPort;IOPort; \??\C:\WINDOWS\system32\DRIVERS\IOPORT.SYS []
R2 Sentinel;Sentinel; C:\WINDOWS\System32\Drivers\SENTINEL.SYS [2006-03-14 90176]
R3 3xHybrid;3xHybrid service; C:\WINDOWS\system32\DRIVERS\3xHybrid.sys [2006-04-11 2829696]
R3 ALCXSENS;Service for WDM 3D Audio Driver; C:\WINDOWS\system32\drivers\ALCXSENS.SYS [2004-02-24 400384]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-03-19 613244]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2008-08-21 3299840]
R3 BlueletSCOAudio;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys [2005-08-31 20480]
R3 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\system32\DRIVERS\vbtenum.sys [2005-07-30 11988]
R3 DigitalJoystickEnabler;Digtial Game Device Driver; C:\WINDOWS\system32\drivers\g2kgame.sys [2003-08-21 14414]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys []
R3 ms_mpu401;Microsoft MPU-401 MIDI UART Driver; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-18 2944]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-18 5888]
R3 seehcri;Sony Ericsson seehcri Device Driver; C:\WINDOWS\system32\DRIVERS\seehcri.sys [2011-02-13 27632]
R3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\WINDOWS\system32\DRIVERS\serscan.sys [2001-10-24 6784]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys [2004-10-19 61312]
R3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys [2006-02-28 84836]
R3 WinDriver6;WinDriver6; C:\WINDOWS\system32\drivers\windrvr6.sys [2010-08-31 195968]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2005-01-19 189568]
S3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys [2006-06-23 31488]
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys [2006-01-19 10068]
S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\WINDOWS\System32\Drivers\btcusb.sys [2006-07-16 23040]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 CrystalCpuInfo;CrystalCpuInfo; C:\WINDOWS\system32\drivers\CrystalCpuInfo.sys []
S3 FlyPCI;FlyPCI; \??\C:\WINDOWS\system32\drivers\FlyPCI.sys []
S3 FsUsbExDisk;FsUsbExDisk; \??\C:\WINDOWS\system32\FsUsbExDisk.SYS []
S3 FTDIBUS;DI148-U; C:\WINDOWS\system32\drivers\ftdibus.sys [2004-04-20 24209]
S3 FTSER2K;USB Serial Port Driver; C:\WINDOWS\system32\drivers\ftser2k.sys [2011-03-18 73096]
S3 ggflt;SEMC USB Flash Driver Filter; C:\WINDOWS\system32\DRIVERS\ggflt.sys [2011-02-13 13224]
S3 ggsemc;SEMC USB Flash Driver; C:\WINDOWS\system32\DRIVERS\ggsemc.sys [2011-02-13 25512]
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2008-03-23 17480]
S3 HidBatt;Ovladač baterie zdroje UPS standardu HID; C:\WINDOWS\system32\DRIVERS\HidBatt.sys [2008-04-14 20352]
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 i81x;i81x; C:\WINDOWS\system32\DRIVERS\i81xnt5.sys [2004-08-03 161020]
S3 kbfiltr;Keyboard Filter; C:\WINDOWS\system32\DRIVERS\kbfiltr.sys [2001-08-27 4693]
S3 MPE;Filtr MPE BDA; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-14 15232]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 RivaTuner32;RivaTuner32; \??\C:\Program Files\hw\RivaTuner v2.0 RC 15.8\RivaTuner32.sys []
S3 s0016bus;Sony Ericsson Device 0016 driver (WDM); C:\WINDOWS\system32\DRIVERS\s0016bus.sys [2008-05-16 89256]
S3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s0016mdfl.sys [2008-05-16 15016]
S3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s0016mdm.sys [2008-05-16 120744]
S3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s0016mgmt.sys [2008-05-16 114216]
S3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS); C:\WINDOWS\system32\DRIVERS\s0016nd5.sys [2008-05-16 25512]
S3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s0016obex.sys [2008-05-16 110632]
S3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM); C:\WINDOWS\system32\DRIVERS\s0016unic.sys [2008-05-16 115752]
S3 SE27bus;Sony Ericsson Device 039 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\SE27bus.sys [2006-04-28 61600]
S3 SE27mdfl;Sony Ericsson Device 039 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\SE27mdfl.sys [2006-04-28 9360]
S3 SE27mdm;Sony Ericsson Device 039 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\SE27mdm.sys [2006-04-28 97184]
S3 SE27mgmt;Sony Ericsson Device 039 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\SE27mgmt.sys [2006-04-28 88688]
S3 se27nd5;Sony Ericsson Device 039 USB Ethernet Emulation SEMC39 (NDIS); C:\WINDOWS\system32\DRIVERS\se27nd5.sys [2006-04-28 18704]
S3 SE27obex;Sony Ericsson Device 039 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\SE27obex.sys [2006-04-28 86560]
S3 se27unic;Sony Ericsson Device 039 USB Ethernet Emulation SEMC39 (WDM); C:\WINDOWS\system32\DRIVERS\se27unic.sys [2006-04-28 90800]
S3 SECBULK;FriendlyARM USB Download Driver; C:\WINDOWS\System32\Drivers\SECBULK.sys [2008-12-08 16640]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 tunmp;Microsoft Tun Miniport Adapter Driver; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2008-04-14 12288]
S3 usb_rndisx;Adaptér USB RNDIS; C:\WINDOWS\system32\DRIVERS\usb8023x.sys [2013-02-12 12928]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 vncdrv;vncdrv; C:\WINDOWS\system32\DRIVERS\vncdrv.sys [2004-06-26 4736]
S3 wceusbsh;Windows CE USB Serial Host Driver; C:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2006-11-06 28672]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 APC UPS Service;APC UPS Service; C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe [2005-12-12 176193]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2008-08-21 573440]
R2 BlueSoleil Hid Service;BlueSoleil Hid Service; C:\Program Files\hw\BlueSoleil\BTNtService.exe [2005-04-06 110592]
R2 Crypkey License;Crypkey License; C:\WINDOWS\system32\crypserv.exe [2006-09-22 69632]
R2 ekrn;ESET Service; C:\Program Files\zabezpeceni\ESET NOD32 Antivirus\ekrn.exe [2009-11-16 735960]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-05-04 153376]
R2 KPF4;Kerio Personal Firewall 4; C:\Program Files\zabezpeceni\Kerio\Personal Firewall 4\kpf4ss.exe [2005-07-15 1630208]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2011-06-20 73728]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Zabezpeceni\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-12-14 398184]
R2 Mx-3 B-Cup Service;MX-3 B-Cup XP; C:\WINDOWS\system32\Mx-3 B-Cup Service.exe [2008-03-22 124928]
R2 PnkBstrA;PunkBuster; C:\Program Files\hry\Need for Speed Undercover\PB\PnkBstrA.exe [2008-10-22 63040]
R2 SentinelProtectionServer;Sentinel Protection Server; C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe [2006-03-14 206400]
R2 Skype C2C Service;Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-03-19 3289208]
R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S1 StarWindService;StarWind iSCSI Service; C:\Program Files\CdRW\Alcohol\Alcohol 120\StarWind\StarWindService.exe [2005-04-02 217600]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2008-08-20 593920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 MBAMService;MBAMService; C:\Program Files\Zabezpeceni\Malwarebytes' Anti-Malware\mbamservice.exe [2012-12-14 682344]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-03-12 253656]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\zabezpeceni\ESET NOD32 Antivirus\EHttpSrv.exe [2009-11-16 20680]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-11-05 1044816]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 SolidWorks Licensing Service;SolidWorks Licensing Service; C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [2013-02-16 79360]
S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2007-06-14 74656]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 aawservice;Lavasoft Ad-Aware Service; C:\Program Files\zabezpeceni\Ad-Aware\aawservice.exe []
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-07-13 160944]

-----------------EOF-----------------

#8 Příspěvek od **Rudy** » 07 dub 2013 16:26

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\Program Files\Skype\Toolbars

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]

:services
Skype C2C Service

:commands
[Purity]
[Emptytemp]
[Empytflash]

a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.

jirkamm · #9 Příspěvek od **jirkamm** » 07 dub 2013 16:45

je fakt, že skype mě tam také vytáčel. ale nějak se nedařilo ho vyhodit.

zde je log

děkuji moc

Logfile of random's system information tool 1.09 (written by random/random)
Run by jirka at 2013-04-07 17:42:21
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 378 GB (79%) free of 477 GB
Total RAM: 2047 MB (64% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:42:50, on 7.4.2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe
C:\Program Files\hw\BlueSoleil\BTNtService.exe
C:\WINDOWS\system32\crypserv.exe
C:\Program Files\zabezpeceni\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\zabezpeceni\Kerio\Personal Firewall 4\kpf4ss.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Zabezpeceni\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files\zabezpeceni\Kerio\Personal Firewall 4\kpf4gui.exe
C:\WINDOWS\system32\Mx-3 B-Cup Service.exe
C:\Program Files\ASUS\ASUS Remote\RemoteControlAppl.exe
C:\Program Files\Hw\Browser Mouse\1.0\lwbwheel.exe
C:\PROGRA~1\hw\G-09 Gamepad\JoyUpDrv.EXE
C:\PROGRA~1\hw\Multimedia Hotkey Program\MMKBD.exe
C:\WINDOWS\system32\outinst.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\zabezpeceni\ESET NOD32 Antivirus\egui.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ASUS\Probe\AsusProb.exe
C:\Program Files\hry\Need for Speed Undercover\PB\PnkBstrA.exe
C:\Program Files\Hw\Monitor Calibration Wizard\MCW.exe
C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\internet\365dní\365dniNET.exe
C:\Program Files\HP\HP Photosmart 5510 series\Bin\ScanToPCActivationApp.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\zabezpeceni\Kerio\Personal Firewall 4\kpf4gui.exe
C:\Program Files\Hw\ATITool\ATITool.exe
C:\Program Files\programy\Samurize\Client.exe
C:\Program Files\programy\Samurize\Client.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\programy\Samurize\Client.exe
C:\Program Files\programy\Samurize\Client.exe
C:\Program Files\programy\Samurize\Client.exe
C:\Program Files\programy\Samurize\InstanceManager.exe
C:\Program Files\APC\APC PowerChute Personal Edition\apcsystray.exe
C:\Program Files\Outlook Express\msimn.exe
C:\Program Files\programy\Rainlendar\Rainlendar.exe
C:\Program Files\zabezpeceni\SpamPal\spampal.exe
C:\Program Files\manazery\totalcmd\TOTALCMD.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Documents and Settings\jirka\Plocha\RSIT.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Program Files\trend micro\jirka.exe
C:\Program Files\HP\HP Photosmart 5510 series\Bin\HPNetworkCommunicator.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O4 - HKLM\..\Run: [RemoteControl] C:\Program Files\ASUS\ASUS Remote\RemoteControlAppl.exe
O4 - HKLM\..\Run: [LWBMOUSE] C:\Program Files\Hw\Browser Mouse\1.0\lwbwheel.exe
O4 - HKLM\..\Run: [Game Device] C:\PROGRA~1\hw\G-09 Gamepad\JoyUpDrv.EXE
O4 - HKLM\..\Run: [Multimedir KBD] C:\PROGRA~1\hw\Multimedia Hotkey Program\MMKBD.exe
O4 - HKLM\..\Run: [OutlookFriend] outinst.exe
O4 - HKLM\..\Run: [PtiuPbmd] Rundll32.exe ptipbm.dll,SetWriteBack
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [egui] "C:\Program Files\zabezpeceni\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [ASUS Probe] C:\Program Files\ASUS\Probe\AsusProb.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [MCW Startup] "C:\Program Files\Hw\Monitor Calibration Wizard\MCW.exe" /s /p
O4 - HKCU\..\Run: [365dni] C:\Program Files\internet\365dní\365dniNET.exe
O4 - HKCU\..\Run: [HP Photosmart 5510 series (NET)] "C:\Program Files\HP\HP Photosmart 5510 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN22835FBS05V3:NW" -scfn "HP Photosmart 5510 series (NET)" -AutoStart 1
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Client počasí.lnk = C:\Program Files\programy\Samurize\Client.exe
O4 - Startup: Client procesy.lnk = C:\Program Files\programy\Samurize\Client.exe
O4 - Startup: Client svátek.lnk = C:\Program Files\programy\Samurize\Client.exe
O4 - Startup: Client winamp.lnk = C:\Program Files\programy\Samurize\Client.exe
O4 - Startup: Client základ.lnk = C:\Program Files\programy\Samurize\Client.exe
O4 - Startup: Instance Manager.lnk = C:\Program Files\programy\Samurize\InstanceManager.exe
O4 - Startup: Outlook Express.lnk = C:\Program Files\Outlook Express\msimn.exe
O4 - Startup: Rainlendar.lnk = C:\Program Files\programy\Rainlendar\Rainlendar.exe
O4 - Startup: SpamPal.lnk = C:\Program Files\zabezpeceni\SpamPal\spampal.exe
O4 - Startup: Total Commander 32.lnk = C:\Program Files\manazery\totalcmd\TOTALCMD.EXE
O4 - Global Startup: APC UPS Status.lnk = ?
O4 - Global Startup: ATITool.lnk = C:\Program Files\Hw\ATITool\ATITool.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O9 - Extra button: (no name) - AutorunsDisabled - (no file)
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: APC UPS Service - American Power Conversion Corporation - C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\hw\BlueSoleil\BTNtService.exe
O23 - Service: Crypkey License - CrypKey (Canada) Ltd. - C:\WINDOWS\SYSTEM32\crypserv.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\zabezpeceni\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\zabezpeceni\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: FLEXnet Licensing Service - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Kerio Personal Firewall 4 (KPF4) - Kerio Technologies - C:\Program Files\zabezpeceni\Kerio\Personal Firewall 4\kpf4ss.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Zabezpeceni\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Zabezpeceni\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: MX-3 B-Cup XP (Mx-3 B-Cup Service) - n.v.t. MX-3 - C:\WINDOWS\system32\Mx-3 B-Cup Service.exe
O23 - Service: PunkBuster (PnkBstrA) - Unknown owner - C:\Program Files\hry\Need for Speed Undercover\PB\PnkBstrA.exe
O23 - Service: Sentinel Protection Server (SentinelProtectionServer) - SafeNet, Inc - C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
O23 - Service: SolidWorks Licensing Service - SolidWorks - C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe

--
End of file - 10767 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-12-18 66280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-12-12 194432]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-05-04 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-05-04 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RemoteControl"=C:\Program Files\ASUS\ASUS Remote\RemoteControlAppl.exe [2006-02-14 69632]
"LWBMOUSE"=C:\Program Files\Hw\Browser Mouse\1.0\lwbwheel.exe [2001-03-26 429568]
"Game Device"=C:\PROGRA~1\hw\G-09 Gamepad\JoyUpDrv.EXE [2003-03-27 77889]
"Multimedir KBD"=C:\PROGRA~1\hw\Multimedia Hotkey Program\MMKBD.exe [1999-09-06 270336]
"OutlookFriend"=C:\WINDOWS\system32\outinst.exe [2005-02-25 29184]
"PtiuPbmd"=ptipbm.dll,SetWriteBack []
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2004-02-26 65024]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2008-08-01 61440]
"egui"=C:\Program Files\zabezpeceni\ESET NOD32 Antivirus\egui.exe [2009-11-16 2054360]
"ASUS Probe"=C:\Program Files\ASUS\Probe\AsusProb.exe [2002-12-06 617984]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-03 946352]
""= []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"MCW Startup"=C:\Program Files\Hw\Monitor Calibration Wizard\MCW.exe [2002-12-20 321024]
"365dni"=C:\Program Files\internet\365dní\365dniNET.exe [2008-11-03 749568]
"HP Photosmart 5510 series (NET)"=C:\Program Files\HP\HP Photosmart 5510 series\Bin\ScanToPCActivationApp.exe [2012-10-17 1837672]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
APC UPS Status.lnk - C:\Program Files\APC\APC PowerChute Personal Edition\Display.exe
ATITool.lnk - C:\Program Files\Hw\ATITool\ATITool.exe

C:\Documents and Settings\jirka\Nabídka Start\Programy\Po spuštění
Client počasí.lnk - C:\Program Files\programy\Samurize\Client.exe
Client procesy.lnk - C:\Program Files\programy\Samurize\Client.exe
Client svátek.lnk - C:\Program Files\programy\Samurize\Client.exe
Client winamp.lnk - C:\Program Files\programy\Samurize\Client.exe
Client základ.lnk - C:\Program Files\programy\Samurize\Client.exe
Instance Manager.lnk - C:\Program Files\programy\Samurize\InstanceManager.exe
Outlook Express.lnk - C:\Program Files\Outlook Express\msimn.exe
Rainlendar.lnk - C:\Program Files\programy\Rainlendar\Rainlendar.exe
SpamPal.lnk - C:\Program Files\zabezpeceni\SpamPal\spampal.exe
Total Commander 32.lnk - C:\Program Files\manazery\totalcmd\TOTALCMD.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2008-08-21 143360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoSMMyDocs"=1
"NoFavoritesMenu"=1
"NoDriveAutoRun"=67108863
"NoDrives"=0
"NoRecycleFiles"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Hw\BlueSoleil\BlueSoleil.exe"="C:\Program Files\Hw\BlueSoleil\BlueSoleil.exe:*:Enabled:BlueSoleil"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ArchVision\ArchVision Content Manager\rpcACMapp.exe"="C:\Program Files\ArchVision\ArchVision Content Manager\rpcACMapp.exe:*:Enabled:ArchVision Content Manager"
"C:\Program Files\ArchVision\ArchVision Content Manager\rpcACMftp.exe"="C:\Program Files\ArchVision\ArchVision Content Manager\rpcACMftp.exe:*:Enabled:ArchVision Download Processor"
"C:\Program Files\internet\Opera\opera.exe"="C:\Program Files\internet\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\Autodesk\Backburner\monitor.exe"="C:\Program Files\Autodesk\Backburner\monitor.exe:*:Enabled:backburner 2.3 monitor"
"C:\Program Files\Autodesk\Backburner\manager.exe"="C:\Program Files\Autodesk\Backburner\manager.exe:*:Enabled:backburner 2.3 manager"
"C:\Program Files\Autodesk\Backburner\server.exe"="C:\Program Files\Autodesk\Backburner\server.exe:*:Enabled:backburner 2.3 server"
"C:\Program Files\Pracovni\3ds Max 2010\3dsmax.exe"="C:\Program Files\Pracovni\3ds Max 2010\3dsmax.exe:*:Enabled:Autodesk 3ds Max 2010 32-bit"
"C:\Program Files\Pracovni\3ds Max 2010\mentalray\satellite\raysat_3dsmax2010_32server.exe"="C:\Program Files\Pracovni\3ds Max 2010\mentalray\satellite\raysat_3dsmax2010_32server.exe:*:Enabled:mental ray satellite server for Autodesk 3ds Max 2010 32-bit"
"C:\Program Files\Pracovni\3ds Max 2010\mentalray\satellite\raysat_3dsmax2010_32.exe"="C:\Program Files\Pracovni\3ds Max 2010\mentalray\satellite\raysat_3dsmax2010_32.exe:*:Enabled:mental ray satellite for Autodesk 3ds Max 2010 32-bit"
"C:\Program Files\zabezpeceni\Kerio\Personal Firewall 4\kpf4gui.exe"="C:\Program Files\zabezpeceni\Kerio\Personal Firewall 4\kpf4gui.exe:*:Enabled:Kerio Personal Firewall 4 - GUI"
"C:\Program Files\manazery\totalcmd\TOTALCMD.EXE"="C:\Program Files\manazery\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"C:\Program Files\programy\Proteus 7 Professional\BIN\ISIS.EXE"="C:\Program Files\programy\Proteus 7 Professional\BIN\ISIS.EXE:*:Enabled:ISIS Schematic Capture"
"C:\download\Terminal.exe"="C:\download\Terminal.exe:*:Enabled:Terminal"
"C:\Documents and Settings\jirka\Plocha\Terminal.exe"="C:\Documents and Settings\jirka\Plocha\Terminal.exe:*:Enabled:Terminal"
"C:\Program Files\programy\DATAQ\HardwareManager.exe"="C:\Program Files\programy\DATAQ\HardwareManager.exe:*:Enabled:HardwareManager"
"C:\Program Files\DATAQ\HardwareManager.exe"="C:\Program Files\DATAQ\HardwareManager.exe:*:Enabled:HardwareManager"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Java\jre6\bin\java.exe"="C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe"="C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe:*:Disabled:Sentinel Protection Server"
"C:\Program Files\internet\Opera\pluginwrapper\opera_plugin_wrapper.exe"="C:\Program Files\internet\Opera\pluginwrapper\opera_plugin_wrapper.exe:*:Enabled:Opera Internet Browser - Plugin wrapper"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Hw\SAMSUNG PC Share Manager\WiselinkPro.exe"="C:\Program Files\Hw\SAMSUNG PC Share Manager\WiselinkPro.exe:*:Enabled:AllShare"
"C:\Program Files\Hw\SAMSUNG PC Share Manager\http_ss_win_pro.exe"="C:\Program Files\Hw\SAMSUNG PC Share Manager\http_ss_win_pro.exe:*:Enabled:PCSM_http_ss_win_pro"
"C:\Program Files\internet\Maxthon3\Bin\Maxthon.exe"="C:\Program Files\internet\Maxthon3\Bin\Maxthon.exe:*:Enabled:Maxthon"
"C:\Program Files\internet\Maxthon3\Bin\MxUp.exe"="C:\Program Files\internet\Maxthon3\Bin\MxUp.exe:*:Enabled:MxUp"
"C:\Program Files\Common Files\soft602\langserv.exe"="C:\Program Files\Common Files\soft602\langserv.exe:*:Enabled:Software602 Spell Checker"
"C:\Program Files\HP\HP Photosmart 5510 series\Bin\DeviceSetup.exe"="C:\Program Files\HP\HP Photosmart 5510 series\Bin\DeviceSetup.exe:LocalSubNet:Enabled:Instalace zařízení HP (HP Photosmart 5510 series)"
"C:\Program Files\HP\HP Photosmart 5510 series\Bin\HPNetworkCommunicator.exe"="C:\Program Files\HP\HP Photosmart 5510 series\Bin\HPNetworkCommunicator.exe:LocalSubNet:Enabled:Síťový komunikační program HP (HP Photosmart 5510 series)"
"C:\Program Files\HP\HP Photosmart 5510 series\Bin\HPNetworkCommunicatorCom.exe"="C:\Program Files\HP\HP Photosmart 5510 series\Bin\HPNetworkCommunicatorCom.exe:LocalSubNet:Enabled:Síťový komunikační program HP COM (HP Photosmart 5510 series)"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=i420vfw.dll
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"vidc.yv12"=yv12vfw.dll
"VIDC.FFDS"=ff_vfw.dll
"wave"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"midi"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"vidc.GEOS"=C:\WINDOWS\system32\v8300\GEO-MPEG4\2011.11.19.19.56\GeoCodecD.dll
"vidc.GEOV"=C:\WINDOWS\system32\v8300\GEO-MPEG4\2011.11.19.19.56\GeoCodec.dll
"vidc.GEOX"=C:\WINDOWS\system32\v8300\GEO-MPEG4\2011.11.19.19.56\GeoCodec.dll
"vidc.DIVX"=DivX.dll

======File associations======

.scr - open -
.scr - install -
.scr - config -

======List of files/folders created in the last 1 month======

2013-04-07 17:38:41 ----D---- C:\_OTM
2013-04-07 14:11:05 ----A---- C:\AdwCleaner[S1].txt
2013-04-07 12:52:10 ----A---- C:\AdwCleaner[R1].txt
2013-04-06 20:31:26 ----D---- C:\rsit
2013-04-06 20:31:15 ----A---- C:\RSIT.exe
2013-04-05 09:59:49 ----D---- C:\capture
2013-03-25 22:16:05 ----D---- C:\aaa
2013-03-18 01:17:46 ----D---- C:\Program Files\FriendlyARM
2013-03-17 23:14:51 ----A---- C:\zaba.txt
2013-03-17 22:48:58 ----D---- C:\mini2440
2013-03-17 21:06:51 ----A---- C:\maczak.txt
2013-03-15 18:40:09 ----A---- C:\martin.txt
2013-03-15 14:06:26 ----A---- C:\piityy.txt
2013-03-14 22:22:06 ----N---- C:\WINDOWS\system32\HPDiscoPMa111.dll
2013-03-14 22:22:04 ----A---- C:\WINDOWS\system32\HPWia1_PS5510.dll
2013-03-14 22:22:04 ----A---- C:\WINDOWS\system32\HPScanTRDrv_PS5510.dll
2013-03-14 22:22:02 ----A---- C:\WINDOWS\system32\hpinkstsa111LM.dll
2013-03-14 22:22:02 ----A---- C:\WINDOWS\system32\hpinkstsa111.dll
2013-03-14 22:22:02 ----A---- C:\WINDOWS\system32\hpinkinsa111.exe
2013-03-14 22:22:02 ----A---- C:\WINDOWS\system32\hpinkcoia111.dll
2013-03-13 08:33:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2807986$
2013-03-12 22:08:36 ----A---- C:\WINDOWS\system32\FlashPlayerInstaller.exe
2013-03-08 23:09:21 ----D---- C:\Documents and Settings\jirka\Data aplikací\HpUpdate
2013-03-08 21:45:00 ----A---- C:\WINDOWS\system32\reboot.txt
2013-03-08 21:19:56 ----D---- C:\Documents and Settings\jirka\Data aplikací\Složka odesílání Share-to-Web
2013-03-08 21:15:36 ----D---- C:\Program Files\Common Files\Hewlett-Packard
2013-03-08 20:59:08 ----A---- C:\WINDOWS\IsUn0405.exe
2013-03-08 17:57:28 ----A---- C:\WINDOWS\system32\drivers\serscan.sys
2013-03-08 17:07:48 ----D---- C:\Documents and Settings\All Users\Data aplikací\HP
2013-03-08 17:07:46 ----D---- C:\Program Files\HP
2013-03-08 17:07:39 ----A---- C:\Documents and Settings\All Users\Data aplikací\Ament.ini

======List of files/folders modified in the last 1 month======

2013-04-07 17:42:45 ----AC---- C:\WINDOWS\win.ini
2013-04-07 17:42:29 ----D---- C:\Program Files\trend micro
2013-04-07 17:42:25 ----D---- C:\WINDOWS\Temp
2013-04-07 17:41:40 ----D---- C:\Documents and Settings\jirka\Data aplikací\365dni
2013-04-07 17:38:58 ----A---- C:\WINDOWS\SchedLgU.Txt
2013-04-07 17:38:43 ----RD---- C:\Program Files\Skype
2013-04-07 14:44:27 ----D---- C:\WINDOWS\system32
2013-04-07 14:15:44 ----AC---- C:\WINDOWS\NeroDigital.ini
2013-04-07 01:56:51 ----A---- C:\WINDOWS\WTRAN32.INI
2013-04-07 01:34:02 ----D---- C:\WINDOWS
2013-04-06 21:01:29 ----AD---- C:\radek
2013-04-06 19:21:02 ----D---- C:\WINDOWS\system32\CatRoot2
2013-04-05 23:51:12 ----D---- C:\temp
2013-04-05 22:52:55 ----D---- C:\kuch
2013-04-05 22:36:45 ----A---- C:\vraylog.txt
2013-04-05 18:05:04 ----SHD---- C:\WINDOWS\Installer
2013-04-05 18:04:51 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2013-04-05 14:49:37 ----D---- C:\Documents and Settings\jirka\Data aplikací\Media Player Classic
2013-03-31 09:21:02 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2013-03-29 08:26:39 ----D---- C:\Documents and Settings\jirka\Data aplikací\Skype
2013-03-29 00:12:26 ----D---- C:\WINDOWS\system32\drivers
2013-03-29 00:12:26 ----D---- C:\WINDOWS\system
2013-03-24 22:28:47 ----D---- C:\download
2013-03-24 03:04:04 ----D---- C:\WINDOWS\Help
2013-03-23 09:24:06 ----D---- C:\Corel
2013-03-22 12:00:55 ----D---- C:\WINDOWS\Minidump
2013-03-22 12:00:55 ----D---- C:\WINDOWS\Debug
2013-03-18 23:14:17 ----D---- C:\WINDOWS\system32\config
2013-03-18 01:17:59 ----HD---- C:\WINDOWS\inf
2013-03-18 01:17:46 ----D---- C:\Program Files
2013-03-14 22:22:04 ----DC---- C:\WINDOWS\system32\DRVSTORE
2013-03-14 22:21:58 ----D---- C:\WINDOWS\twain_32
2013-03-13 08:40:15 ----D---- C:\Program Files\Microsoft Silverlight
2013-03-13 08:35:04 ----AC---- C:\WINDOWS\system32\MRT.exe
2013-03-13 08:33:24 ----RSHDC---- C:\WINDOWS\system32\dllcache
2013-03-13 08:33:23 ----D---- C:\Program Files\Internet Explorer
2013-03-13 08:33:16 ----D---- C:\WINDOWS\ie8updates
2013-03-13 08:33:14 ----HD---- C:\WINDOWS\$hf_mig$
2013-03-12 22:08:52 ----AC---- C:\WINDOWS\system32\FlashPlayerApp.exe
2013-03-09 00:36:24 ----D---- C:\Program Files\zabezpeceni
2013-03-09 00:35:01 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2013-03-09 00:21:42 ----D---- C:\WINDOWS\system32\drivers\etc
2013-03-08 21:15:36 ----D---- C:\Program Files\Common Files
2013-03-08 19:56:01 ----D---- C:\Program Files\Hw
2013-03-08 17:11:14 ----D---- C:\WINDOWS\system32\CatRoot

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 40183525;40183525; C:\WINDOWS\system32\DRIVERS\40183525.sys [2012-08-28 133208]
R0 BTHidMgr;Bluetooth HID Manager Service; C:\WINDOWS\System32\Drivers\BTHidMgr.sys [2005-05-01 28271]
R0 gagp30kx;Filtr Microsoft Generic AGPv3.0 pro procesorovou platformu K8; C:\WINDOWS\system32\DRIVERS\gagp30kx.sys [2008-04-14 46464]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI VIA; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2010-07-12 45648]
R0 UlSata;UlSata; C:\WINDOWS\system32\DRIVERS\ulsata.sys [2003-09-25 56320]
R0 vax347b;vax347b; C:\WINDOWS\system32\DRIVERS\vax347b.sys [2005-07-08 159616]
R0 vax347s;vax347s; C:\WINDOWS\System32\Drivers\vax347s.sys [2004-04-30 5248]
R0 viaagp1;VIA AGP Filter; C:\WINDOWS\system32\DRIVERS\viaagp1.sys [2003-07-02 27904]
R0 viasraid;viasraid; C:\WINDOWS\system32\DRIVERS\viasraid.sys [2003-10-31 77312]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 AmdPPM;Ovladač procesoru HwPState AMD; C:\WINDOWS\system32\DRIVERS\AmdPPM.sys [2007-04-16 33792]
R1 aslm75;aslm75; \??\C:\WINDOWS\system32\drivers\aslm75.sys []
R1 ATITool;ATITool Overclocking Utility; C:\WINDOWS\system32\DRIVERS\ATITool.sys [2005-09-26 24064]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2009-11-16 108792]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2009-11-16 96408]
R1 fwdrv;Firewall Driver; C:\WINDOWS\system32\drivers\fwdrv.sys [2005-06-21 270336]
R1 Haspnt;HaspNT; \??\C:\WINDOWS\system32\drivers\Haspnt.sys []
R1 khips;Kerio HIPS Driver; C:\WINDOWS\system32\drivers\khips.sys [2005-05-30 53248]
R1 NetworkX;NetworkX; C:\WINDOWS\system32\ckldrv.sys [2006-01-10 31846]
R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-18 12032]
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-11-16 116520]
R2 Hardlock;Hardlock; \??\C:\WINDOWS\system32\drivers\hardlock.sys []
R2 IOPort;IOPort; \??\C:\WINDOWS\system32\DRIVERS\IOPORT.SYS []
R2 Sentinel;Sentinel; C:\WINDOWS\System32\Drivers\SENTINEL.SYS [2006-03-14 90176]
R3 3xHybrid;3xHybrid service; C:\WINDOWS\system32\DRIVERS\3xHybrid.sys [2006-04-11 2829696]
R3 ALCXSENS;Service for WDM 3D Audio Driver; C:\WINDOWS\system32\drivers\ALCXSENS.SYS [2004-02-24 400384]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-03-19 613244]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2008-08-21 3299840]
R3 BlueletSCOAudio;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys [2005-08-31 20480]
R3 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\system32\DRIVERS\vbtenum.sys [2005-07-30 11988]
R3 DigitalJoystickEnabler;Digtial Game Device Driver; C:\WINDOWS\system32\drivers\g2kgame.sys [2003-08-21 14414]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys []
R3 ms_mpu401;Microsoft MPU-401 MIDI UART Driver; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-18 2944]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-18 5888]
R3 seehcri;Sony Ericsson seehcri Device Driver; C:\WINDOWS\system32\DRIVERS\seehcri.sys [2011-02-13 27632]
R3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\WINDOWS\system32\DRIVERS\serscan.sys [2001-10-24 6784]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys [2004-10-19 61312]
R3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys [2006-02-28 84836]
R3 WinDriver6;WinDriver6; C:\WINDOWS\system32\drivers\windrvr6.sys [2010-08-31 195968]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2005-01-19 189568]
S3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys [2006-06-23 31488]
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys [2006-01-19 10068]
S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\WINDOWS\System32\Drivers\btcusb.sys [2006-07-16 23040]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 CrystalCpuInfo;CrystalCpuInfo; C:\WINDOWS\system32\drivers\CrystalCpuInfo.sys []
S3 FlyPCI;FlyPCI; \??\C:\WINDOWS\system32\drivers\FlyPCI.sys []
S3 FsUsbExDisk;FsUsbExDisk; \??\C:\WINDOWS\system32\FsUsbExDisk.SYS []
S3 FTDIBUS;DI148-U; C:\WINDOWS\system32\drivers\ftdibus.sys [2004-04-20 24209]
S3 FTSER2K;USB Serial Port Driver; C:\WINDOWS\system32\drivers\ftser2k.sys [2011-03-18 73096]
S3 ggflt;SEMC USB Flash Driver Filter; C:\WINDOWS\system32\DRIVERS\ggflt.sys [2011-02-13 13224]
S3 ggsemc;SEMC USB Flash Driver; C:\WINDOWS\system32\DRIVERS\ggsemc.sys [2011-02-13 25512]
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2008-03-23 17480]
S3 HidBatt;Ovladač baterie zdroje UPS standardu HID; C:\WINDOWS\system32\DRIVERS\HidBatt.sys [2008-04-14 20352]
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 i81x;i81x; C:\WINDOWS\system32\DRIVERS\i81xnt5.sys [2004-08-03 161020]
S3 kbfiltr;Keyboard Filter; C:\WINDOWS\system32\DRIVERS\kbfiltr.sys [2001-08-27 4693]
S3 MPE;Filtr MPE BDA; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-14 15232]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 RivaTuner32;RivaTuner32; \??\C:\Program Files\hw\RivaTuner v2.0 RC 15.8\RivaTuner32.sys []
S3 s0016bus;Sony Ericsson Device 0016 driver (WDM); C:\WINDOWS\system32\DRIVERS\s0016bus.sys [2008-05-16 89256]
S3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s0016mdfl.sys [2008-05-16 15016]
S3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s0016mdm.sys [2008-05-16 120744]
S3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s0016mgmt.sys [2008-05-16 114216]
S3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS); C:\WINDOWS\system32\DRIVERS\s0016nd5.sys [2008-05-16 25512]
S3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s0016obex.sys [2008-05-16 110632]
S3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM); C:\WINDOWS\system32\DRIVERS\s0016unic.sys [2008-05-16 115752]
S3 SE27bus;Sony Ericsson Device 039 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\SE27bus.sys [2006-04-28 61600]
S3 SE27mdfl;Sony Ericsson Device 039 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\SE27mdfl.sys [2006-04-28 9360]
S3 SE27mdm;Sony Ericsson Device 039 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\SE27mdm.sys [2006-04-28 97184]
S3 SE27mgmt;Sony Ericsson Device 039 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\SE27mgmt.sys [2006-04-28 88688]
S3 se27nd5;Sony Ericsson Device 039 USB Ethernet Emulation SEMC39 (NDIS); C:\WINDOWS\system32\DRIVERS\se27nd5.sys [2006-04-28 18704]
S3 SE27obex;Sony Ericsson Device 039 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\SE27obex.sys [2006-04-28 86560]
S3 se27unic;Sony Ericsson Device 039 USB Ethernet Emulation SEMC39 (WDM); C:\WINDOWS\system32\DRIVERS\se27unic.sys [2006-04-28 90800]
S3 SECBULK;FriendlyARM USB Download Driver; C:\WINDOWS\System32\Drivers\SECBULK.sys [2008-12-08 16640]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 tunmp;Microsoft Tun Miniport Adapter Driver; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2008-04-14 12288]
S3 usb_rndisx;Adaptér USB RNDIS; C:\WINDOWS\system32\DRIVERS\usb8023x.sys [2013-02-12 12928]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 vncdrv;vncdrv; C:\WINDOWS\system32\DRIVERS\vncdrv.sys [2004-06-26 4736]
S3 wceusbsh;Windows CE USB Serial Host Driver; C:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2006-11-06 28672]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 APC UPS Service;APC UPS Service; C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe [2005-12-12 176193]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2008-08-21 573440]
R2 BlueSoleil Hid Service;BlueSoleil Hid Service; C:\Program Files\hw\BlueSoleil\BTNtService.exe [2005-04-06 110592]
R2 Crypkey License;Crypkey License; C:\WINDOWS\system32\crypserv.exe [2006-09-22 69632]
R2 ekrn;ESET Service; C:\Program Files\zabezpeceni\ESET NOD32 Antivirus\ekrn.exe [2009-11-16 735960]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-05-04 153376]
R2 KPF4;Kerio Personal Firewall 4; C:\Program Files\zabezpeceni\Kerio\Personal Firewall 4\kpf4ss.exe [2005-07-15 1630208]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2011-06-20 73728]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Zabezpeceni\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-12-14 398184]
R2 Mx-3 B-Cup Service;MX-3 B-Cup XP; C:\WINDOWS\system32\Mx-3 B-Cup Service.exe [2008-03-22 124928]
R2 PnkBstrA;PunkBuster; C:\Program Files\hry\Need for Speed Undercover\PB\PnkBstrA.exe [2008-10-22 63040]
R2 SentinelProtectionServer;Sentinel Protection Server; C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe [2006-03-14 206400]
R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S1 StarWindService;StarWind iSCSI Service; C:\Program Files\CdRW\Alcohol\Alcohol 120\StarWind\StarWindService.exe [2005-04-02 217600]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2008-08-20 593920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 MBAMService;MBAMService; C:\Program Files\Zabezpeceni\Malwarebytes' Anti-Malware\mbamservice.exe [2012-12-14 682344]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-03-12 253656]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\zabezpeceni\ESET NOD32 Antivirus\EHttpSrv.exe [2009-11-16 20680]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-11-05 1044816]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 SolidWorks Licensing Service;SolidWorks Licensing Service; C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [2013-02-16 79360]
S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2007-06-14 74656]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 aawservice;Lavasoft Ad-Aware Service; C:\Program Files\zabezpeceni\Ad-Aware\aawservice.exe []
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-07-13 160944]

-----------------EOF-----------------

#10 Příspěvek od **Rudy** » 07 dub 2013 16:55

Dvouklikem na soubor C:\Program Files\trend micro\jirka.exe spusťte HijackThis. Klikněte na "Do a system scan only" a v otevřeném okně vlevo ve čtverečcích zaškrtněte:

O3 - Toolbar: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: (no name) - AutorunsDisabled - (no file)
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)

Klikněte na >FixChecked<. Pak znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.

jirkamm · #11 Příspěvek od **jirkamm** » 07 dub 2013 17:25

hotovo.
teď by to mohlo být v poho?
díky moc

#12 Příspěvek od **Rudy** » 07 dub 2013 17:55

Musíte vyzkoušet. Zatím nemáte zač!

jirkamm · #13 Příspěvek od **jirkamm** » 07 dub 2013 18:16

Gdyby cokoli - ozvu se.
ještě jednou moc děkuji
jirka

#14 Příspěvek od **Rudy** » 07 dub 2013 19:22

Samozřejmě můžete. Nemáte zač!

VIRY.CZ

prevence - pomůžete prosím?

prevence - pomůžete prosím?

Re: prevence - pomůžete prosím?

Re: prevence - pomůžete prosím?

Re: prevence - pomůžete prosím?

Re: prevence - pomůžete prosím?

Re: prevence - pomůžete prosím?

Re: prevence - pomůžete prosím?

Re: prevence - pomůžete prosím?

Re: prevence - pomůžete prosím?

Re: prevence - pomůžete prosím?

Re: prevence - pomůžete prosím?

Re: prevence - pomůžete prosím?

Re: prevence - pomůžete prosím?

Re: prevence - pomůžete prosím?