
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
RSIT LOG - PREVENTIVKA
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
RSIT LOG - PREVENTIVKA
Zdravím a předem děkuji za vyřešení i přečtení tohoto tématu.
Jde pouze o preventivku, občas mi zamrzne prohlížeč, ale nějak sem si zvykl.
RSIT:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Ondřej Jiří Beneš at 2014-09-05 19:22:05
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 79 GB (69%) free of 114 GB
Total RAM: 767 MB (33% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:22:26, on 5.9.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVAST FREE ANTIVIRUS\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\acs.exe
C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\AVAST FREE ANTIVIRUS\AvastUI.exe
C:\Program Files\KeyScrambler\keyscrambler.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
c:\program files\mozilla firefox\firefox.exe
c:\program files\mozilla firefox\plugin-container.exe
C:\Documents and Settings\Ondřej Jiří Beneš\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\Ondřej Jiří Beneš.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: MHTBPos00 - {0C37B053-FD68-456a-82E1-D788EE342E6F} - C:\Program Files\Family Toolbar\tbcore3.dll (file missing)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST FREE ANTIVIRUS\aswWebRepIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: Family Toolbar - {FD2FD708-1F6F-4B68-B141-C5778F0C19BB} - C:\Program Files\Family Toolbar\tbcore3.dll (file missing)
O3 - Toolbar: (no name) - {98889811-442D-49dd-99D7-DC866BE87DBC} - (no file)
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST FREE ANTIVIRUS\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [KeyScrambler] C:\Program Files\KeyScrambler\keyscrambler.exe /a
O4 - HKLM\..\RunOnce: [AvgUninstallURL] cmd.exe /c start http://www.avg.com/ww.special-uninstall ... er=9.0.894
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Clownfish] "C:\Program Files\Clownfish\Clownfish.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: OpenOffice.org 3.4.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: TP-LINK Wireless Configuration Utility.lnk = C:\Program Files\TP-LINK\TP-LINK Wi-Fi\TWCU.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Plugin Control) - http://appldnld.apple.com.edgesuite.net ... plugin.cab
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocach ... 0.15-3.cab
O16 - DPF: {6218F7B5-0D3A-48BA-AE4C-49DCFA63D400} (CSEQueryObject Object) - http://www.myheritage.cz/Genoogle/Compo ... eQuery.dll
O16 - DPF: {813A45F9-744F-435F-A815-19E2DF35A9D8} (O2C-Player - area constructor view (ELECO Software GmbH)) - http://www.o2c.de/download/o2cplayerac.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Configuration Service (acs) - Atheros - C:\WINDOWS\system32\acs.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST FREE ANTIVIRUS\AvastSvc.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: JumpStart Wi-Fi Protected Setup (jswpsapi) - Unknown owner - C:\Program Files\TP-LINK\TP-LINK Wi-Fi\WPS\jswpsapi.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
--
End of file - 8802 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\avast! Emergency Update.job - C:\Program Files\AVAST FREE ANTIVIRUS\AvastEmUpdate.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe -c
C:\WINDOWS\tasks\User_Feed_Synchronization-{71701490-253E-4120-93F4-4E9CB40779D1}.job - C:\WINDOWS\system32\msfeedssync.exe sync
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Mozilla\Firefox\Profiles\gkbuontq.default-1409685594250
"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"fbphotozoom@installdaddy.com"=C:\Program Files\fbphotozoom\fbphotozoom14.xpi
"wrc@avast.com"=C:\Program Files\AVAST FREE ANTIVIRUS\WebRep\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 14.0.0.145 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Mozilla\Firefox\Profiles\gkbuontq.default-1409685594250\extensions\
{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0C37B053-FD68-456a-82E1-D788EE342E6F}]
MHTBPos00 Class - C:\Program Files\Family Toolbar\tbcore3.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST FREE ANTIVIRUS\aswWebRepIE.dll [2014-08-06 457712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-10-09 4502400]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
{FD2FD708-1F6F-4B68-B141-C5778F0C19BB} - Family Toolbar - C:\Program Files\Family Toolbar\tbcore3.dll []
{98889811-442D-49dd-99D7-DC866BE87DBC}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2005-10-24 90112]
"BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent []
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2012-07-08 421888]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
"AvastUI.exe"=C:\Program Files\AVAST FREE ANTIVIRUS\AvastUI.exe [2014-08-06 4085896]
"KeyScrambler"=C:\Program Files\KeyScrambler\keyscrambler.exe [2014-06-11 508232]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"AvgUninstallURL"=cmd.exe /c start http://www.avg.com/ww.special-uninstall ... er=9.0.894 []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2014-07-24 21650016]
"Clownfish"=C:\Program Files\Clownfish\Clownfish.exe [2014-07-28 1315584]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
TP-LINK Wireless Configuration Utility.lnk - C:\Program Files\TP-LINK\TP-LINK Wi-Fi\TWCU.exe
C:\Documents and Settings\Ondřej Jiří Beneš\Nabídka Start\Programy\Po spuštění
OpenOffice.org 3.4.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Run a DLL as an App"
"C:\Program Files\Nero\Nero 7\Nero Home\NeroHome.exe"="C:\Program Files\Nero\Nero 7\Nero Home\NeroHome.exe:*:Enabled:Nero Home"
"C:\Program Files\Sierra\Empire Earth\Empire Earth.exe"="C:\Program Files\Sierra\Empire Earth\Empire Earth.exe:*:Disabled:Empire Earth"
"C:\Program Files\City Interactive\Wings Of Honour\woh.exe"="C:\Program Files\City Interactive\Wings Of Honour\woh.exe:*:Enabled:woh"
"C:\WINDOWS\system32\dpnsvr.exe"="C:\WINDOWS\system32\dpnsvr.exe:*:Enabled:Microsoft DirectPlay8 Server"
"C:\Program Files\Nero\Nero 7\Nero ShowTime\ShowTime.exe"="C:\Program Files\Nero\Nero 7\Nero ShowTime\ShowTime.exe:*:Enabled:Nero ShowTime"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Nival Interactive\Etherlords II\Etherlords2.exe"="C:\Program Files\Nival Interactive\Etherlords II\Etherlords2.exe:*:Disabled:Etherlords 2 main executable file"
"C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer"
"C:\Program Files\AVG\AVG8\avgam.exe"="C:\Program Files\AVG\AVG8\avgam.exe:*:Enabled:avgam.exe"
"C:\Program Files\AVG\AVG8\avgdiag.exe"="C:\Program Files\AVG\AVG8\avgdiag.exe:*:Enabled:avgdiag.exe"
"C:\Program Files\AVG\AVG8\avgdiagex.exe"="C:\Program Files\AVG\AVG8\avgdiagex.exe:*:Enabled:avgdiagex.exe"
"C:\Program Files\AVG\AVG8\avgemc.exe"="C:\Program Files\AVG\AVG8\avgemc.exe:*:Enabled:avgemc.exe"
"C:\Program Files\AVG\AVG8\avgupd.exe"="C:\Program Files\AVG\AVG8\avgupd.exe:*:Enabled:avgupd.exe"
"C:\Program Files\AVG\AVG8\avgnsx.exe"="C:\Program Files\AVG\AVG8\avgnsx.exe:*:Enabled:avgnsx.exe"
"C:\Program Files\Playlogic\Knights of the Temple 2\KOTT2.exe"="C:\Program Files\Playlogic\Knights of the Temple 2\KOTT2.exe:*:Enabled:KOTT2"
"C:\Program Files\Google\Google Earth\plugin\geplugin.exe"="C:\Program Files\Google\Google Earth\plugin\geplugin.exe:*:Enabled:Google Earth"
"C:\Program Files\Metin2\metin2client.bin"="C:\Program Files\Metin2\metin2client.bin:*:Enabled:metin2client"
"C:\Program Files\VideoLAN\VLC\vlc.exe"="C:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Disabled:µTorrent"
"C:\Documents and Settings\pí. Matušková\Data aplikací\uTorrent\utorrent.exe"="C:\Documents and Settings\pí. Matušková\Data aplikací\uTorrent\utorrent.exe:*:Disabled:µTorrent"
"C:\Program Files\Aspyr\Tony Hawks Pro Skater 4\Game\Skate4.exe"="C:\Program Files\Aspyr\Tony Hawks Pro Skater 4\Game\Skate4.exe:*:Disabled:Skate4"
"C:\Program Files\Sniper Elite\SniperElite.exe"="C:\Program Files\Sniper Elite\SniperElite.exe:*:Disabled:SniperElite"
"C:\Documents and Settings\pí. Matušková\Plocha\Ondřejovo hra\metin2client.bin"="C:\Documents and Settings\pí. Matušková\Plocha\Ondřejovo hra\metin2client.bin:*:Enabled:metin2client"
"C:\Counter Strike\csko.exe"="C:\Counter Strike\csko.exe:*:Enabled:Half-Life Launcher"
"C:\Counter Strike •\csko.exe"="C:\Counter Strike •\csko.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Steam\Steam.exe"="C:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"C:\Program Files\TLI\metin2.bin"="C:\Program Files\TLI\metin2.bin:*:Enabled:metin2"
"C:\Program Files\TeamViewer\Version9\TeamViewer.exe"="C:\Program Files\TeamViewer\Version9\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe"="C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"C:\Program Files\Steam\bin\steamwebhelper.exe"="C:\Program Files\Steam\bin\steamwebhelper.exe:*:Enabled:Steam Web Helper"
"C:\Program Files\Steam\SteamApps\common\Half-Life\hl.exe"="C:\Program Files\Steam\SteamApps\common\Half-Life\hl.exe:*:Enabled:Counter-Strike"
"C:\Program Files\Steam\SteamApps\common\Unturned\Unturned.exe"="C:\Program Files\Steam\SteamApps\common\Unturned\Unturned.exe:*:Enabled:Unturned"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"msacm.l3acm"=l3codecp.acm
"wave1"=serwvdrv.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"vidc.3ivx"=
"VIDC.wmv3"=wmv9vcm.dll
"vidc.MPG4"=Mpg4c32.dll
"vidc.MP42"=Mpg4c32.dll
"vidc.MP43"=Mpg4c32.dll
"msacm.lhacm"=lhacm.acm
"VIDC.VDOM"=vdowave.drv
"vidc.tscc"=tsccvid.dll
"VIDC.I420"=msh263.drv
======List of files/folders created in the last 1 month======
2014-09-05 19:22:06 ----D---- C:\Program Files\trend micro
2014-09-05 19:22:05 ----D---- C:\rsit
2014-09-05 17:56:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2847311$
2014-09-05 17:39:21 ----D---- C:\Program Files\Common Files\DESIGNER
2014-09-05 17:20:40 ----SHD---- C:\Config.Msi
2014-09-05 17:16:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2807986$
2014-09-04 20:32:13 ----HDC---- C:\WINDOWS\$NtUninstallKB2868626$
2014-09-04 20:23:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2922229$
2014-09-04 20:21:23 ----D---- C:\Program Files\NVIDIA Corporation
2014-09-04 19:56:58 ----D---- C:\WINDOWS\system32\MRT
2014-09-04 19:46:01 ----HDC---- C:\WINDOWS\$NtUninstallKB2916036$
2014-09-04 19:45:44 ----HDC---- C:\WINDOWS\$NtUninstallKB2834886$
2014-09-04 19:27:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2900986$
2014-09-04 19:06:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2802968$
2014-09-04 19:06:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2898715$
2014-09-04 19:05:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2929961$
2014-09-04 19:05:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2862335$
2014-09-04 19:04:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$
2014-09-04 19:04:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2780091$
2014-09-04 18:56:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2904266$
2014-09-04 18:56:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2876217$
2014-09-04 18:35:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2845142_WM64$
2014-09-04 18:35:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2930275$
2014-09-04 18:35:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2864063$
2014-09-04 18:33:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2862152$
2014-09-04 18:33:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2770660$
2014-09-04 18:30:15 ----HDC---- C:\WINDOWS\$NtUninstallKB2850869$
2014-09-04 18:29:48 ----HDC---- C:\WINDOWS\$NtUninstallKB2876331$
2014-09-04 18:27:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2859537$
2014-09-03 20:57:27 ----D---- C:\d85a14643c18d1ab9e
2014-09-03 20:57:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2884256$
2014-09-03 20:56:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2868038$
2014-09-03 20:56:09 ----HDC---- C:\WINDOWS\$NtUninstallKB2820917$
2014-09-03 20:47:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2893294$
2014-09-03 20:47:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2757638$
2014-09-03 20:30:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2892075$
2014-09-03 20:17:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2934207$
2014-09-03 20:15:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2862330$
2014-09-03 20:09:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2813345$
2014-09-03 18:53:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2914368$
2014-09-03 17:27:54 ----N---- C:\WINDOWS\system32\xp_eos.exe
2014-09-03 16:51:54 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2014-09-03 16:51:54 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2014-09-03 16:40:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2014-09-02 20:12:30 ----D---- C:\Program Files\Clownfish
2014-08-25 13:45:07 ----D---- C:\Program Files\Steam
2014-08-12 15:22:50 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\QFX Software
2014-08-12 15:22:50 ----D---- C:\Documents and Settings\All Users\Data aplikací\QFX Software
2014-08-11 21:12:30 ----A---- C:\WINDOWS\system32\drivers\keyscrambler.sys
2014-08-11 21:12:26 ----D---- C:\Program Files\KeyScrambler
2014-08-11 18:54:52 ----D---- C:\Program Files\Paint.NET
2014-08-10 23:42:25 ----D---- C:\Program Files\dumps
2014-08-07 23:44:31 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Ahead
2014-08-07 20:56:07 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\TeamViewer
2014-08-07 20:55:45 ----D---- C:\Program Files\TeamViewer
2014-08-07 00:30:04 ----A---- C:\WINDOWS\system32\d3d9caps.dat
2014-08-07 00:05:23 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\TS3Client
2014-08-06 23:06:10 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\WinRAR
2014-08-06 22:34:36 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\AVAST Software
2014-08-06 22:34:16 ----D---- C:\WINDOWS\jumpshot.com
2014-08-06 22:33:43 ----A---- C:\WINDOWS\system32\drivers\aswVmm.sys
2014-08-06 22:33:43 ----A---- C:\WINDOWS\system32\drivers\aswTdi.sys
2014-08-06 22:33:43 ----A---- C:\WINDOWS\system32\drivers\aswsp.sys
2014-08-06 22:33:43 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2014-08-06 22:33:43 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2014-08-06 22:33:42 ----A---- C:\WINDOWS\system32\drivers\aswRdr.sys
2014-08-06 22:33:42 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2014-08-06 22:33:42 ----A---- C:\WINDOWS\system32\drivers\aswHwid.sys
2014-08-06 22:33:39 ----A---- C:\WINDOWS\system32\aswBoot.exe
2014-08-06 22:33:36 ----A---- C:\WINDOWS\avastSS.scr
2014-08-06 22:33:31 ----A---- C:\WINDOWS\system32\drivers\aswTap.sys
2014-08-06 22:32:11 ----D---- C:\Program Files\AVAST FREE ANTIVIRUS
2014-08-06 22:27:37 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2014-08-06 16:22:12 ----D---- C:\Program Files\Common Files\Skype
2014-08-06 16:16:01 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Skype
2014-08-06 16:10:23 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\TP-LINK
2014-08-06 16:09:52 ----A---- C:\WINDOWS\system32\jswscsup.dll
2014-08-06 16:09:52 ----A---- C:\WINDOWS\system32\jswscimd.sys
2014-08-06 16:09:52 ----A---- C:\WINDOWS\system32\drivers\jswscimd.sys
2014-08-06 16:09:50 ----RHD---- C:\Documents and Settings\All Users\Data aplikací\Atheros
2014-08-06 16:09:47 ----A---- C:\WINDOWS\system32\IPTests.dll
2014-08-06 16:09:47 ----A---- C:\WINDOWS\system32\acs.exe
2014-08-06 16:09:34 ----A---- C:\WINDOWS\system32\wsimd.sys
2014-08-06 16:09:34 ----A---- C:\WINDOWS\system32\wsimd.dll
2014-08-06 16:09:34 ----A---- C:\WINDOWS\system32\drivers\wsimd.sys
2014-08-06 16:09:33 ----A---- C:\WINDOWS\system32\wsfwDS.dll
2014-08-06 16:09:33 ----A---- C:\WINDOWS\system32\dsaNac.dll
2014-08-06 16:09:33 ----A---- C:\WINDOWS\system32\dsa.dll
2014-08-06 16:09:32 ----A---- C:\WINDOWS\system32\wgapi.dll
2014-08-06 16:09:32 ----A---- C:\WINDOWS\system32\wcapiU.dll
2014-08-06 16:09:32 ----A---- C:\WINDOWS\system32\wcapi.dll
2014-08-06 16:09:32 ----A---- C:\WINDOWS\system32\athcfg20U.dll
2014-08-06 16:09:32 ----A---- C:\WINDOWS\system32\athcfg20resU.dll
2014-08-06 16:09:32 ----A---- C:\WINDOWS\system32\athcfg20res.dll
2014-08-06 16:09:31 ----A---- C:\WINDOWS\system32\athcfg20.dll
2014-08-06 16:09:03 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Macromedia
2014-08-06 16:09:03 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Adobe
2014-08-06 16:09:00 ----A---- C:\WINDOWS\system32\drivers\athuw.sys
2014-08-06 16:09:00 ----A---- C:\WINDOWS\system32\athuw.sys
2014-08-06 16:08:31 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Mozilla
2014-08-06 16:07:10 ----D---- C:\Documents and Settings\All Users\Data aplikací\TP-LINK
======List of files/folders modified in the last 1 month======
2014-09-05 19:22:06 ----RD---- C:\Program Files
2014-09-05 19:20:28 ----D---- C:\WINDOWS\Prefetch
2014-09-05 18:56:01 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-09-05 18:54:36 ----D---- C:\WINDOWS\Temp
2014-09-05 18:54:33 ----D---- C:\WINDOWS
2014-09-05 18:53:28 ----D---- C:\WINDOWS\system32
2014-09-05 18:39:43 ----RSD---- C:\WINDOWS\assembly
2014-09-05 18:27:20 ----D---- C:\WINDOWS\Microsoft.NET
2014-09-05 18:11:58 ----SHD---- C:\WINDOWS\Installer
2014-09-05 18:11:41 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2014-09-05 17:56:20 ----HD---- C:\WINDOWS\inf
2014-09-05 17:56:14 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-09-05 17:47:03 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-09-05 17:46:19 ----D---- C:\WINDOWS\WinSxS
2014-09-05 17:39:21 ----D---- C:\Program Files\Common Files
2014-09-05 17:16:16 ----A---- C:\WINDOWS\imsins.BAK
2014-09-05 17:16:08 ----D---- C:\WINDOWS\system32\drivers
2014-09-05 17:14:25 ----HD---- C:\WINDOWS\$hf_mig$
2014-09-05 17:14:17 ----D---- C:\WINDOWS\system32\CatRoot2
2014-09-05 17:06:30 ----A---- C:\WINDOWS\win.ini
2014-09-05 17:06:28 ----D---- C:\Program Files\Common Files\System
2014-09-04 20:21:19 ----D---- C:\WINDOWS\system32\ReinstallBackups
2014-09-04 19:44:10 ----D---- C:\WINDOWS\ie8updates
2014-09-04 17:58:37 ----SD---- C:\WINDOWS\Tasks
2014-09-04 17:57:48 ----D---- C:\Program Files\Microsoft Silverlight
2014-09-04 17:57:43 ----D---- C:\Program Files\mozilla firefox
2014-09-03 20:39:57 ----RSD---- C:\WINDOWS\Fonts
2014-09-03 20:39:06 ----D---- C:\Program Files\Common Files\Microsoft Shared
2014-09-03 20:38:54 ----D---- C:\Program Files\Microsoft Works
2014-09-03 19:46:26 ----D---- C:\WINDOWS\system32\XPSViewer
2014-09-03 19:43:19 ----D---- C:\Program Files\Internet Explorer
2014-09-03 16:17:23 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-08-16 19:24:31 ----HD---- C:\Program Files\InstallShield Installation Information
2014-08-13 18:58:06 ----D---- C:\Documents and Settings
2014-08-11 19:58:19 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Audacity
2014-08-11 15:45:17 ----D---- C:\WINDOWS\system32\CatRoot
2014-08-07 23:44:20 ----A---- C:\WINDOWS\NeroDigital.ini
2014-08-07 23:43:42 ----D---- C:\Program Files\Audacity
2014-08-07 20:01:36 ----SD---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Microsoft
2014-08-07 13:18:34 ----D---- C:\Program Files\WinRAR
2014-08-06 22:36:56 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-08-06 16:22:17 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2014-08-06 16:22:12 ----RD---- C:\Program Files\Skype
2014-08-06 16:09:50 ----D---- C:\WINDOWS\system32\config
2014-08-06 16:09:29 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 agp440;Filtr Intel sběrnice AGP; C:\WINDOWS\system32\DRIVERS\agp440.sys [2008-04-13 42368]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-08-06 49944]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-08-06 192352]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2008-11-20 43872]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINDOWS\System32\drivers\sfdrv01.sys [2005-03-03 48640]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\System32\drivers\sfhlp02.sys [2005-02-23 6656]
R0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); C:\WINDOWS\System32\drivers\sfsync02.sys [2004-12-03 20544]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2014-08-06 55112]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-08-06 779536]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-08-06 414520]
R1 aswTdi;aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [2014-08-06 57800]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-08-06 24184]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-08-06 67824]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2005-10-26 3786944]
R3 JSWSCIMD;jswscimd Service; C:\WINDOWS\system32\DRIVERS\jswscimd.sys [2011-12-26 57440]
R3 KeyScrambler;KeyScrambler; C:\WINDOWS\System32\drivers\keyscrambler.sys [2013-05-31 209016]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2013-02-08 12648960]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
R3 SoC PC-Camera Service;CANYON CN-WCAM21 PC-Camera; C:\WINDOWS\system32\DRIVERS\pfc027.sys [2004-09-01 138396]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 WSIMD;wsimd Service; C:\WINDOWS\system32\DRIVERS\wsimd.sys [2011-12-26 58208]
S0 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\System32\Drivers\vbtenum.sys []
S0 BTHidMgr;Bluetooth HID Manager Service; C:\WINDOWS\System32\Drivers\BTHidMgr.sys []
S3 AgereSoftModem;Microcom InPorte Home; C:\WINDOWS\system32\DRIVERS\AGRSM.sys []
S3 AR9271;Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\athuw.sys [2013-06-28 1763584]
S3 aswTap;avast! SecureLine TAP Adapter v3; C:\WINDOWS\system32\DRIVERS\aswTap.sys [2014-08-06 35144]
S3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys []
S3 BlueletSCOAudio;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys []
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys []
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-13 17024]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-13 101120]
S3 BTHPORT;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272128]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-13 18944]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 EagleNT;EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys []
S3 EL90XBC;3Com EtherLink XL 90XB/C Adapter Driver; C:\WINDOWS\system32\DRIVERS\el90xbc5.sys [2001-08-17 66591]
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 MODEMCSA;Unimodem Streaming Filter Device; C:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 PBDOWNFORCE_SERVICE;PBDOWNFORCE_SERVICE; \??\C:\Documents and Settings\pí. Matušková\Plocha\UnBaN hack\PBDownforce.sys []
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-13 59136]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-18 5888]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys []
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys []
S3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys []
S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 acs;Configuration Service; C:\WINDOWS\system32\acs.exe [2011-12-26 499796]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST FREE ANTIVIRUS\AvastSvc.exe [2014-08-06 50344]
R2 Skype C2C Service;Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-10-09 3275136]
R2 TeamViewer9;TeamViewer 9; C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe [2014-08-06 5052224]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-07-10 133104]
S2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2005-12-10 131139]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-04-03 315008]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-08-06 262320]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-07-10 133104]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 jswpsapi;JumpStart Wi-Fi Protected Setup; C:\Program Files\TP-LINK\TP-LINK Wi-Fi\WPS\jswpsapi.exe []
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-09-03 114288]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S4 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Jde pouze o preventivku, občas mi zamrzne prohlížeč, ale nějak sem si zvykl.
RSIT:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Ondřej Jiří Beneš at 2014-09-05 19:22:05
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 79 GB (69%) free of 114 GB
Total RAM: 767 MB (33% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:22:26, on 5.9.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVAST FREE ANTIVIRUS\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\acs.exe
C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\AVAST FREE ANTIVIRUS\AvastUI.exe
C:\Program Files\KeyScrambler\keyscrambler.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
c:\program files\mozilla firefox\firefox.exe
c:\program files\mozilla firefox\plugin-container.exe
C:\Documents and Settings\Ondřej Jiří Beneš\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\Ondřej Jiří Beneš.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: MHTBPos00 - {0C37B053-FD68-456a-82E1-D788EE342E6F} - C:\Program Files\Family Toolbar\tbcore3.dll (file missing)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST FREE ANTIVIRUS\aswWebRepIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: Family Toolbar - {FD2FD708-1F6F-4B68-B141-C5778F0C19BB} - C:\Program Files\Family Toolbar\tbcore3.dll (file missing)
O3 - Toolbar: (no name) - {98889811-442D-49dd-99D7-DC866BE87DBC} - (no file)
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST FREE ANTIVIRUS\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [KeyScrambler] C:\Program Files\KeyScrambler\keyscrambler.exe /a
O4 - HKLM\..\RunOnce: [AvgUninstallURL] cmd.exe /c start http://www.avg.com/ww.special-uninstall ... er=9.0.894
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Clownfish] "C:\Program Files\Clownfish\Clownfish.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: OpenOffice.org 3.4.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: TP-LINK Wireless Configuration Utility.lnk = C:\Program Files\TP-LINK\TP-LINK Wi-Fi\TWCU.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Plugin Control) - http://appldnld.apple.com.edgesuite.net ... plugin.cab
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocach ... 0.15-3.cab
O16 - DPF: {6218F7B5-0D3A-48BA-AE4C-49DCFA63D400} (CSEQueryObject Object) - http://www.myheritage.cz/Genoogle/Compo ... eQuery.dll
O16 - DPF: {813A45F9-744F-435F-A815-19E2DF35A9D8} (O2C-Player - area constructor view (ELECO Software GmbH)) - http://www.o2c.de/download/o2cplayerac.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Configuration Service (acs) - Atheros - C:\WINDOWS\system32\acs.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST FREE ANTIVIRUS\AvastSvc.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: JumpStart Wi-Fi Protected Setup (jswpsapi) - Unknown owner - C:\Program Files\TP-LINK\TP-LINK Wi-Fi\WPS\jswpsapi.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
--
End of file - 8802 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\avast! Emergency Update.job - C:\Program Files\AVAST FREE ANTIVIRUS\AvastEmUpdate.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe -c
C:\WINDOWS\tasks\User_Feed_Synchronization-{71701490-253E-4120-93F4-4E9CB40779D1}.job - C:\WINDOWS\system32\msfeedssync.exe sync
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Mozilla\Firefox\Profiles\gkbuontq.default-1409685594250
"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"fbphotozoom@installdaddy.com"=C:\Program Files\fbphotozoom\fbphotozoom14.xpi
"wrc@avast.com"=C:\Program Files\AVAST FREE ANTIVIRUS\WebRep\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 14.0.0.145 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Mozilla\Firefox\Profiles\gkbuontq.default-1409685594250\extensions\
{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0C37B053-FD68-456a-82E1-D788EE342E6F}]
MHTBPos00 Class - C:\Program Files\Family Toolbar\tbcore3.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST FREE ANTIVIRUS\aswWebRepIE.dll [2014-08-06 457712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-10-09 4502400]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
{FD2FD708-1F6F-4B68-B141-C5778F0C19BB} - Family Toolbar - C:\Program Files\Family Toolbar\tbcore3.dll []
{98889811-442D-49dd-99D7-DC866BE87DBC}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2005-10-24 90112]
"BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent []
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2012-07-08 421888]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
"AvastUI.exe"=C:\Program Files\AVAST FREE ANTIVIRUS\AvastUI.exe [2014-08-06 4085896]
"KeyScrambler"=C:\Program Files\KeyScrambler\keyscrambler.exe [2014-06-11 508232]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"AvgUninstallURL"=cmd.exe /c start http://www.avg.com/ww.special-uninstall ... er=9.0.894 []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2014-07-24 21650016]
"Clownfish"=C:\Program Files\Clownfish\Clownfish.exe [2014-07-28 1315584]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
TP-LINK Wireless Configuration Utility.lnk - C:\Program Files\TP-LINK\TP-LINK Wi-Fi\TWCU.exe
C:\Documents and Settings\Ondřej Jiří Beneš\Nabídka Start\Programy\Po spuštění
OpenOffice.org 3.4.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Run a DLL as an App"
"C:\Program Files\Nero\Nero 7\Nero Home\NeroHome.exe"="C:\Program Files\Nero\Nero 7\Nero Home\NeroHome.exe:*:Enabled:Nero Home"
"C:\Program Files\Sierra\Empire Earth\Empire Earth.exe"="C:\Program Files\Sierra\Empire Earth\Empire Earth.exe:*:Disabled:Empire Earth"
"C:\Program Files\City Interactive\Wings Of Honour\woh.exe"="C:\Program Files\City Interactive\Wings Of Honour\woh.exe:*:Enabled:woh"
"C:\WINDOWS\system32\dpnsvr.exe"="C:\WINDOWS\system32\dpnsvr.exe:*:Enabled:Microsoft DirectPlay8 Server"
"C:\Program Files\Nero\Nero 7\Nero ShowTime\ShowTime.exe"="C:\Program Files\Nero\Nero 7\Nero ShowTime\ShowTime.exe:*:Enabled:Nero ShowTime"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Nival Interactive\Etherlords II\Etherlords2.exe"="C:\Program Files\Nival Interactive\Etherlords II\Etherlords2.exe:*:Disabled:Etherlords 2 main executable file"
"C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer"
"C:\Program Files\AVG\AVG8\avgam.exe"="C:\Program Files\AVG\AVG8\avgam.exe:*:Enabled:avgam.exe"
"C:\Program Files\AVG\AVG8\avgdiag.exe"="C:\Program Files\AVG\AVG8\avgdiag.exe:*:Enabled:avgdiag.exe"
"C:\Program Files\AVG\AVG8\avgdiagex.exe"="C:\Program Files\AVG\AVG8\avgdiagex.exe:*:Enabled:avgdiagex.exe"
"C:\Program Files\AVG\AVG8\avgemc.exe"="C:\Program Files\AVG\AVG8\avgemc.exe:*:Enabled:avgemc.exe"
"C:\Program Files\AVG\AVG8\avgupd.exe"="C:\Program Files\AVG\AVG8\avgupd.exe:*:Enabled:avgupd.exe"
"C:\Program Files\AVG\AVG8\avgnsx.exe"="C:\Program Files\AVG\AVG8\avgnsx.exe:*:Enabled:avgnsx.exe"
"C:\Program Files\Playlogic\Knights of the Temple 2\KOTT2.exe"="C:\Program Files\Playlogic\Knights of the Temple 2\KOTT2.exe:*:Enabled:KOTT2"
"C:\Program Files\Google\Google Earth\plugin\geplugin.exe"="C:\Program Files\Google\Google Earth\plugin\geplugin.exe:*:Enabled:Google Earth"
"C:\Program Files\Metin2\metin2client.bin"="C:\Program Files\Metin2\metin2client.bin:*:Enabled:metin2client"
"C:\Program Files\VideoLAN\VLC\vlc.exe"="C:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Disabled:µTorrent"
"C:\Documents and Settings\pí. Matušková\Data aplikací\uTorrent\utorrent.exe"="C:\Documents and Settings\pí. Matušková\Data aplikací\uTorrent\utorrent.exe:*:Disabled:µTorrent"
"C:\Program Files\Aspyr\Tony Hawks Pro Skater 4\Game\Skate4.exe"="C:\Program Files\Aspyr\Tony Hawks Pro Skater 4\Game\Skate4.exe:*:Disabled:Skate4"
"C:\Program Files\Sniper Elite\SniperElite.exe"="C:\Program Files\Sniper Elite\SniperElite.exe:*:Disabled:SniperElite"
"C:\Documents and Settings\pí. Matušková\Plocha\Ondřejovo hra\metin2client.bin"="C:\Documents and Settings\pí. Matušková\Plocha\Ondřejovo hra\metin2client.bin:*:Enabled:metin2client"
"C:\Counter Strike\csko.exe"="C:\Counter Strike\csko.exe:*:Enabled:Half-Life Launcher"
"C:\Counter Strike •\csko.exe"="C:\Counter Strike •\csko.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Steam\Steam.exe"="C:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"C:\Program Files\TLI\metin2.bin"="C:\Program Files\TLI\metin2.bin:*:Enabled:metin2"
"C:\Program Files\TeamViewer\Version9\TeamViewer.exe"="C:\Program Files\TeamViewer\Version9\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe"="C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"C:\Program Files\Steam\bin\steamwebhelper.exe"="C:\Program Files\Steam\bin\steamwebhelper.exe:*:Enabled:Steam Web Helper"
"C:\Program Files\Steam\SteamApps\common\Half-Life\hl.exe"="C:\Program Files\Steam\SteamApps\common\Half-Life\hl.exe:*:Enabled:Counter-Strike"
"C:\Program Files\Steam\SteamApps\common\Unturned\Unturned.exe"="C:\Program Files\Steam\SteamApps\common\Unturned\Unturned.exe:*:Enabled:Unturned"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"msacm.l3acm"=l3codecp.acm
"wave1"=serwvdrv.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"vidc.3ivx"=
"VIDC.wmv3"=wmv9vcm.dll
"vidc.MPG4"=Mpg4c32.dll
"vidc.MP42"=Mpg4c32.dll
"vidc.MP43"=Mpg4c32.dll
"msacm.lhacm"=lhacm.acm
"VIDC.VDOM"=vdowave.drv
"vidc.tscc"=tsccvid.dll
"VIDC.I420"=msh263.drv
======List of files/folders created in the last 1 month======
2014-09-05 19:22:06 ----D---- C:\Program Files\trend micro
2014-09-05 19:22:05 ----D---- C:\rsit
2014-09-05 17:56:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2847311$
2014-09-05 17:39:21 ----D---- C:\Program Files\Common Files\DESIGNER
2014-09-05 17:20:40 ----SHD---- C:\Config.Msi
2014-09-05 17:16:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2807986$
2014-09-04 20:32:13 ----HDC---- C:\WINDOWS\$NtUninstallKB2868626$
2014-09-04 20:23:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2922229$
2014-09-04 20:21:23 ----D---- C:\Program Files\NVIDIA Corporation
2014-09-04 19:56:58 ----D---- C:\WINDOWS\system32\MRT
2014-09-04 19:46:01 ----HDC---- C:\WINDOWS\$NtUninstallKB2916036$
2014-09-04 19:45:44 ----HDC---- C:\WINDOWS\$NtUninstallKB2834886$
2014-09-04 19:27:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2900986$
2014-09-04 19:06:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2802968$
2014-09-04 19:06:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2898715$
2014-09-04 19:05:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2929961$
2014-09-04 19:05:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2862335$
2014-09-04 19:04:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$
2014-09-04 19:04:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2780091$
2014-09-04 18:56:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2904266$
2014-09-04 18:56:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2876217$
2014-09-04 18:35:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2845142_WM64$
2014-09-04 18:35:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2930275$
2014-09-04 18:35:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2864063$
2014-09-04 18:33:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2862152$
2014-09-04 18:33:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2770660$
2014-09-04 18:30:15 ----HDC---- C:\WINDOWS\$NtUninstallKB2850869$
2014-09-04 18:29:48 ----HDC---- C:\WINDOWS\$NtUninstallKB2876331$
2014-09-04 18:27:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2859537$
2014-09-03 20:57:27 ----D---- C:\d85a14643c18d1ab9e
2014-09-03 20:57:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2884256$
2014-09-03 20:56:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2868038$
2014-09-03 20:56:09 ----HDC---- C:\WINDOWS\$NtUninstallKB2820917$
2014-09-03 20:47:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2893294$
2014-09-03 20:47:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2757638$
2014-09-03 20:30:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2892075$
2014-09-03 20:17:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2934207$
2014-09-03 20:15:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2862330$
2014-09-03 20:09:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2813345$
2014-09-03 18:53:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2914368$
2014-09-03 17:27:54 ----N---- C:\WINDOWS\system32\xp_eos.exe
2014-09-03 16:51:54 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2014-09-03 16:51:54 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2014-09-03 16:40:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2014-09-02 20:12:30 ----D---- C:\Program Files\Clownfish
2014-08-25 13:45:07 ----D---- C:\Program Files\Steam
2014-08-12 15:22:50 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\QFX Software
2014-08-12 15:22:50 ----D---- C:\Documents and Settings\All Users\Data aplikací\QFX Software
2014-08-11 21:12:30 ----A---- C:\WINDOWS\system32\drivers\keyscrambler.sys
2014-08-11 21:12:26 ----D---- C:\Program Files\KeyScrambler
2014-08-11 18:54:52 ----D---- C:\Program Files\Paint.NET
2014-08-10 23:42:25 ----D---- C:\Program Files\dumps
2014-08-07 23:44:31 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Ahead
2014-08-07 20:56:07 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\TeamViewer
2014-08-07 20:55:45 ----D---- C:\Program Files\TeamViewer
2014-08-07 00:30:04 ----A---- C:\WINDOWS\system32\d3d9caps.dat
2014-08-07 00:05:23 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\TS3Client
2014-08-06 23:06:10 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\WinRAR
2014-08-06 22:34:36 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\AVAST Software
2014-08-06 22:34:16 ----D---- C:\WINDOWS\jumpshot.com
2014-08-06 22:33:43 ----A---- C:\WINDOWS\system32\drivers\aswVmm.sys
2014-08-06 22:33:43 ----A---- C:\WINDOWS\system32\drivers\aswTdi.sys
2014-08-06 22:33:43 ----A---- C:\WINDOWS\system32\drivers\aswsp.sys
2014-08-06 22:33:43 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2014-08-06 22:33:43 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2014-08-06 22:33:42 ----A---- C:\WINDOWS\system32\drivers\aswRdr.sys
2014-08-06 22:33:42 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2014-08-06 22:33:42 ----A---- C:\WINDOWS\system32\drivers\aswHwid.sys
2014-08-06 22:33:39 ----A---- C:\WINDOWS\system32\aswBoot.exe
2014-08-06 22:33:36 ----A---- C:\WINDOWS\avastSS.scr
2014-08-06 22:33:31 ----A---- C:\WINDOWS\system32\drivers\aswTap.sys
2014-08-06 22:32:11 ----D---- C:\Program Files\AVAST FREE ANTIVIRUS
2014-08-06 22:27:37 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2014-08-06 16:22:12 ----D---- C:\Program Files\Common Files\Skype
2014-08-06 16:16:01 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Skype
2014-08-06 16:10:23 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\TP-LINK
2014-08-06 16:09:52 ----A---- C:\WINDOWS\system32\jswscsup.dll
2014-08-06 16:09:52 ----A---- C:\WINDOWS\system32\jswscimd.sys
2014-08-06 16:09:52 ----A---- C:\WINDOWS\system32\drivers\jswscimd.sys
2014-08-06 16:09:50 ----RHD---- C:\Documents and Settings\All Users\Data aplikací\Atheros
2014-08-06 16:09:47 ----A---- C:\WINDOWS\system32\IPTests.dll
2014-08-06 16:09:47 ----A---- C:\WINDOWS\system32\acs.exe
2014-08-06 16:09:34 ----A---- C:\WINDOWS\system32\wsimd.sys
2014-08-06 16:09:34 ----A---- C:\WINDOWS\system32\wsimd.dll
2014-08-06 16:09:34 ----A---- C:\WINDOWS\system32\drivers\wsimd.sys
2014-08-06 16:09:33 ----A---- C:\WINDOWS\system32\wsfwDS.dll
2014-08-06 16:09:33 ----A---- C:\WINDOWS\system32\dsaNac.dll
2014-08-06 16:09:33 ----A---- C:\WINDOWS\system32\dsa.dll
2014-08-06 16:09:32 ----A---- C:\WINDOWS\system32\wgapi.dll
2014-08-06 16:09:32 ----A---- C:\WINDOWS\system32\wcapiU.dll
2014-08-06 16:09:32 ----A---- C:\WINDOWS\system32\wcapi.dll
2014-08-06 16:09:32 ----A---- C:\WINDOWS\system32\athcfg20U.dll
2014-08-06 16:09:32 ----A---- C:\WINDOWS\system32\athcfg20resU.dll
2014-08-06 16:09:32 ----A---- C:\WINDOWS\system32\athcfg20res.dll
2014-08-06 16:09:31 ----A---- C:\WINDOWS\system32\athcfg20.dll
2014-08-06 16:09:03 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Macromedia
2014-08-06 16:09:03 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Adobe
2014-08-06 16:09:00 ----A---- C:\WINDOWS\system32\drivers\athuw.sys
2014-08-06 16:09:00 ----A---- C:\WINDOWS\system32\athuw.sys
2014-08-06 16:08:31 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Mozilla
2014-08-06 16:07:10 ----D---- C:\Documents and Settings\All Users\Data aplikací\TP-LINK
======List of files/folders modified in the last 1 month======
2014-09-05 19:22:06 ----RD---- C:\Program Files
2014-09-05 19:20:28 ----D---- C:\WINDOWS\Prefetch
2014-09-05 18:56:01 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-09-05 18:54:36 ----D---- C:\WINDOWS\Temp
2014-09-05 18:54:33 ----D---- C:\WINDOWS
2014-09-05 18:53:28 ----D---- C:\WINDOWS\system32
2014-09-05 18:39:43 ----RSD---- C:\WINDOWS\assembly
2014-09-05 18:27:20 ----D---- C:\WINDOWS\Microsoft.NET
2014-09-05 18:11:58 ----SHD---- C:\WINDOWS\Installer
2014-09-05 18:11:41 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2014-09-05 17:56:20 ----HD---- C:\WINDOWS\inf
2014-09-05 17:56:14 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-09-05 17:47:03 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-09-05 17:46:19 ----D---- C:\WINDOWS\WinSxS
2014-09-05 17:39:21 ----D---- C:\Program Files\Common Files
2014-09-05 17:16:16 ----A---- C:\WINDOWS\imsins.BAK
2014-09-05 17:16:08 ----D---- C:\WINDOWS\system32\drivers
2014-09-05 17:14:25 ----HD---- C:\WINDOWS\$hf_mig$
2014-09-05 17:14:17 ----D---- C:\WINDOWS\system32\CatRoot2
2014-09-05 17:06:30 ----A---- C:\WINDOWS\win.ini
2014-09-05 17:06:28 ----D---- C:\Program Files\Common Files\System
2014-09-04 20:21:19 ----D---- C:\WINDOWS\system32\ReinstallBackups
2014-09-04 19:44:10 ----D---- C:\WINDOWS\ie8updates
2014-09-04 17:58:37 ----SD---- C:\WINDOWS\Tasks
2014-09-04 17:57:48 ----D---- C:\Program Files\Microsoft Silverlight
2014-09-04 17:57:43 ----D---- C:\Program Files\mozilla firefox
2014-09-03 20:39:57 ----RSD---- C:\WINDOWS\Fonts
2014-09-03 20:39:06 ----D---- C:\Program Files\Common Files\Microsoft Shared
2014-09-03 20:38:54 ----D---- C:\Program Files\Microsoft Works
2014-09-03 19:46:26 ----D---- C:\WINDOWS\system32\XPSViewer
2014-09-03 19:43:19 ----D---- C:\Program Files\Internet Explorer
2014-09-03 16:17:23 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-08-16 19:24:31 ----HD---- C:\Program Files\InstallShield Installation Information
2014-08-13 18:58:06 ----D---- C:\Documents and Settings
2014-08-11 19:58:19 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Audacity
2014-08-11 15:45:17 ----D---- C:\WINDOWS\system32\CatRoot
2014-08-07 23:44:20 ----A---- C:\WINDOWS\NeroDigital.ini
2014-08-07 23:43:42 ----D---- C:\Program Files\Audacity
2014-08-07 20:01:36 ----SD---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Microsoft
2014-08-07 13:18:34 ----D---- C:\Program Files\WinRAR
2014-08-06 22:36:56 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-08-06 16:22:17 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2014-08-06 16:22:12 ----RD---- C:\Program Files\Skype
2014-08-06 16:09:50 ----D---- C:\WINDOWS\system32\config
2014-08-06 16:09:29 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 agp440;Filtr Intel sběrnice AGP; C:\WINDOWS\system32\DRIVERS\agp440.sys [2008-04-13 42368]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-08-06 49944]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-08-06 192352]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2008-11-20 43872]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINDOWS\System32\drivers\sfdrv01.sys [2005-03-03 48640]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\System32\drivers\sfhlp02.sys [2005-02-23 6656]
R0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); C:\WINDOWS\System32\drivers\sfsync02.sys [2004-12-03 20544]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2014-08-06 55112]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-08-06 779536]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-08-06 414520]
R1 aswTdi;aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [2014-08-06 57800]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-08-06 24184]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-08-06 67824]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2005-10-26 3786944]
R3 JSWSCIMD;jswscimd Service; C:\WINDOWS\system32\DRIVERS\jswscimd.sys [2011-12-26 57440]
R3 KeyScrambler;KeyScrambler; C:\WINDOWS\System32\drivers\keyscrambler.sys [2013-05-31 209016]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2013-02-08 12648960]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
R3 SoC PC-Camera Service;CANYON CN-WCAM21 PC-Camera; C:\WINDOWS\system32\DRIVERS\pfc027.sys [2004-09-01 138396]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 WSIMD;wsimd Service; C:\WINDOWS\system32\DRIVERS\wsimd.sys [2011-12-26 58208]
S0 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\System32\Drivers\vbtenum.sys []
S0 BTHidMgr;Bluetooth HID Manager Service; C:\WINDOWS\System32\Drivers\BTHidMgr.sys []
S3 AgereSoftModem;Microcom InPorte Home; C:\WINDOWS\system32\DRIVERS\AGRSM.sys []
S3 AR9271;Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\athuw.sys [2013-06-28 1763584]
S3 aswTap;avast! SecureLine TAP Adapter v3; C:\WINDOWS\system32\DRIVERS\aswTap.sys [2014-08-06 35144]
S3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys []
S3 BlueletSCOAudio;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys []
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys []
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-13 17024]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-13 101120]
S3 BTHPORT;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272128]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-13 18944]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 EagleNT;EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys []
S3 EL90XBC;3Com EtherLink XL 90XB/C Adapter Driver; C:\WINDOWS\system32\DRIVERS\el90xbc5.sys [2001-08-17 66591]
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 MODEMCSA;Unimodem Streaming Filter Device; C:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 PBDOWNFORCE_SERVICE;PBDOWNFORCE_SERVICE; \??\C:\Documents and Settings\pí. Matušková\Plocha\UnBaN hack\PBDownforce.sys []
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-13 59136]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-18 5888]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys []
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys []
S3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys []
S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 acs;Configuration Service; C:\WINDOWS\system32\acs.exe [2011-12-26 499796]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST FREE ANTIVIRUS\AvastSvc.exe [2014-08-06 50344]
R2 Skype C2C Service;Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-10-09 3275136]
R2 TeamViewer9;TeamViewer 9; C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe [2014-08-06 5052224]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-07-10 133104]
S2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2005-12-10 131139]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-04-03 315008]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-08-06 262320]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-07-10 133104]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 jswpsapi;JumpStart Wi-Fi Protected Setup; C:\Program Files\TP-LINK\TP-LINK Wi-Fi\WPS\jswpsapi.exe []
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-09-03 114288]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S4 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Naposledy upravil(a) Shiawuo dne 06 zář 2014 21:23, celkem upraveno 1 x.
Re: RSIT LOG - PREVENTIVKA
Zdravim 
Vidim tam stopy MBAM. Nasel neco?
Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Spustte ho.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.



Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Spustte ho.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: RSIT LOG - PREVENTIVKA
Ano, MBAM (starší verzi - novější mi vypisuje chyby) mám nainstalovaný, ale nepoužívám jej.
AdwCleaner:
# AdwCleaner v3.309 - Report created 05/09/2014 at 21:57:20
# Updated 02/09/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Ondřej Jiří Beneš - N-8E6BF0FCA1244
# Running from : C:\Documents and Settings\Ondřej Jiří Beneš\Dokumenty\Stažené soubory\adwcleaner_3.309.exe
# Option : Scan
***** [ Services ] *****
***** [ Files / Folders ] *****
File Found : C:\Documents and Settings\pí. Matušková\Data aplikací\Mozilla\Firefox\Profiles\qh8nopdn.default\searchplugins\bingp.xml
File Found : C:\Documents and Settings\pí. Matušková\Data aplikací\Mozilla\Firefox\Profiles\qh8nopdn.default\searchplugins\SweetIm.xml
File Found : C:\Documents and Settings\pí. Matušková\Data aplikací\Mozilla\Firefox\Profiles\qh8nopdn.default\user.js
Folder Found : C:\Documents and Settings\All Users\Data aplikací\Ask
Folder Found : C:\Documents and Settings\All Users\Data aplikací\Babylon
Folder Found : C:\Documents and Settings\All Users\Data aplikací\NCH Software
Folder Found : C:\Documents and Settings\All Users\Data aplikací\Premium
Folder Found : C:\Documents and Settings\All Users\Data aplikací\Tarma Installer
Folder Found : C:\Documents and Settings\All Users\Data aplikací\TheBflix
Folder Found : C:\Documents and Settings\All Users\Data aplikací\TheBflix
Folder Found : C:\Documents and Settings\All Users\Data aplikací\Windows Genuine Advantage
Folder Found : C:\Documents and Settings\pí. Matušková\Data aplikací\Babylon
Folder Found : C:\Documents and Settings\pí. Matušková\Data aplikací\BabylonToolbar
Folder Found : C:\Documents and Settings\pí. Matušková\Data aplikací\NCH Software
Folder Found : C:\Documents and Settings\pí. Matušková\Data aplikací\PriceGong
Folder Found : C:\Documents and Settings\pí. Matušková\Local Settings\Data aplikací\Babylon
Folder Found : C:\Documents and Settings\pí. Matušková\Local Settings\Data aplikací\Conduit
Folder Found : C:\Documents and Settings\pí. Matušková\Local Settings\Data aplikací\iac
Folder Found : C:\Program Files\Conduit
Folder Found : C:\Program Files\NCH Software
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKLM\SOFTWARE\Babylon
Key Found : HKLM\SOFTWARE\BabylonToolbar
Key Found : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Found : HKLM\SOFTWARE\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Key Found : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Found : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
Key Found : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Found : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Found : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Found : HKLM\SOFTWARE\Classes\AppID\{F54A0D21-6A53-460C-8301-C694EC9E1033}
Key Found : HKLM\SOFTWARE\Classes\AppID\{F7BCCFD4-2FA6-477D-A1B0-EF7500B3C49E}
Key Found : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Found : HKLM\SOFTWARE\Classes\AppID\NCTAudioCompress3.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\NCTAudioFormatSettings3.DLL
Key Found : HKLM\SOFTWARE\Classes\b
Key Found : HKLM\SOFTWARE\Classes\Babylon.dskBnd
Key Found : HKLM\SOFTWARE\Classes\Babylon.dskBnd.1
Key Found : HKLM\SOFTWARE\Classes\bbylnApp.appCore
Key Found : HKLM\SOFTWARE\Classes\bbylnApp.appCore.1
Key Found : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
Key Found : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
Key Found : HKLM\SOFTWARE\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{03F14321-8FED-4CBC-B01A-4B57FC199062}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{147A976F-EEE1-4377-8EA7-4716E4CDD239}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{2C6F7E96-73BC-47A5-9F51-B67F0BAFE24D}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{4C58EB04-7B72-4D3D-A36E-66167A99BC31}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{4EE0B011-604C-47F3-8F2B-39F79640B85E}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{A4730EBE-43A6-443E-9776-36915D323AD3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{FD2FD708-1F6F-4B68-B141-C5778F0C19BB}
Key Found : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler
Key Found : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler.1
Key Found : HKLM\SOFTWARE\Classes\Conduit.Engine
Key Found : HKLM\SOFTWARE\Classes\escort.escortIEPane
Key Found : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Key Found : HKLM\SOFTWARE\Classes\escort.escrtBtn.1
Key Found : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc
Key Found : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc.1
Key Found : HKLM\SOFTWARE\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
Key Found : HKLM\SOFTWARE\Classes\Interface\{2E9937FC-CF2F-4F56-AF54-5A6A3DD375CC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Found : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Key Found : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Key Found : HKLM\SOFTWARE\Classes\Interface\{741DE825-A6F0-4497-9AA6-8023CF9B0FFF}
Key Found : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Key Found : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Key Found : HKLM\SOFTWARE\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Key Found : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT2801948
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{6C9945B7-1D19-46CB-88C0-45A24DF6CD6E}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{6E8BF012-2C85-4834-B10A-1B31AF173D70}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{84B9B044-17C0-48FB-A300-C9747D5DF29C}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{EC4085F2-8DB3-45A6-AD0B-CA289F3C5D7E}
Key Found : HKLM\SOFTWARE\Conduit
Key Found : HKLM\SOFTWARE\Fun Web Products
Key Found : HKLM\SOFTWARE\FunWebProducts
Key Found : HKLM\SOFTWARE\Iminent
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8375D9C8-634F-4ECB-8CF5-C7416BA5D542}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467E-B8D4-7786EDA79AE0}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BE28C22E-F666-424D-B5FD-125C4AFEE34E}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CF6E4B1C-DBDE-457E-9CEF-AB8ECAC8A5E8}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{2F603A45-D956-496B-81B5-50D782424976}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{4EF645BD-65B0-4F98-AD56-D0437B7045F6}_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{612AD33D-9824-4E87-8396-92374E91C4BB}_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\BabylonToolbar
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\conduitEngine
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A7BC02AF-1128-4A31-BCF8-1A3EE803D3B3}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A81A974F-8A22-43E6-9243-5198FF758DA1}
Key Found : HKLM\SOFTWARE\MyWebSearch
Key Found : HKLM\SOFTWARE\SweetIM
Key Found : HKLM\SOFTWARE\Tarma Installer
Key Found : HKLM\SOFTWARE\VideoDownloadConverter_4z
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{CCC7A320-B3CA-4199-B1A6-9F516DD69829}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{FD2FD708-1F6F-4B68-B141-C5778F0C19BB}]
Value Found : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\Aspyr\Tony Hawks Pro Skater 4\Game\Skate4.exe]
***** [ Browsers ] *****
-\\ Internet Explorer v8.0.6001.18702
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://home.sweetim.com
-\\ Mozilla Firefox v32.0 (x86 cs)
[ File : C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Mozilla\Firefox\Profiles\gkbuontq.default-1409685594250\prefs.js ]
[ File : C:\Documents and Settings\pí. Matušková\Data aplikací\Mozilla\Firefox\Profiles\qh8nopdn.default\prefs.js ]
Line Found : user_pref("browser.babylon.HPOnNewTab", "search.babylon.com");
Line Found : user_pref("browser.search.order.1", "Search the web (Babylon)");
Line Found : user_pref("extensions.3499ur3ur4hfsudfs.scode", "(function(){try{if('aol.com,mail.google.com,premiumreports.info,search.babylon.com,search.gboxapp.com'.indexOf(window.self.location.hostname)>-1) retur[...]
Line Found : user_pref("extensions.BabylonToolbar_i.aflt", "babsst");
Line Found : user_pref("extensions.BabylonToolbar_i.babExt", "");
Line Found : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=111361");
Line Found : user_pref("extensions.BabylonToolbar_i.hardId", "48055ad40000000000000016171da711");
Line Found : user_pref("extensions.BabylonToolbar_i.id", "48055ad40000000000000016171da711");
Line Found : user_pref("extensions.BabylonToolbar_i.instlDay", "15413");
Line Found : user_pref("extensions.BabylonToolbar_i.instlRef", "sst");
Line Found : user_pref("extensions.BabylonToolbar_i.newTab", true);
Line Found : user_pref("extensions.BabylonToolbar_i.newTabUrl", "hxxp://search.babylon.com/?affID=111361&babsrc=NT_ss&mntrId=48055ad40000000000000016171da711");
Line Found : user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar");
Line Found : user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon");
Line Found : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Line Found : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
Line Found : user_pref("extensions.BabylonToolbar_i.tlbrId", "base");
Line Found : user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17");
Line Found : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.3.1719:29:29");
Line Found : user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17");
Line Found : user_pref("extensions.mywebsearch.prevDefaultEngine", "SweetIM Search");
Line Found : user_pref("extensions.mywebsearch.prevKwdEnabled", true);
Line Found : user_pref("extensions.mywebsearch.prevKwdURL", "hxxp://search.babylon.com/?affID=111361&babsrc=KW_ss&mntrId=48055ad40000000000000016171da711&q=");
Line Found : user_pref("extensions.mywebsearch.prevSelectedEngine", "SweetIM Search");
Line Found : user_pref("extensions.toolbar.mindspark._4zMembers_.homepage", "hxxp://home.mywebsearch.com/index.jhtml?ptb=0A841DCB-0809-4417-B6E8-19571A66208C&n=77fce6ff&p2=^HJ^xdm073^YY^cz&si=pconverter");
Line Found : user_pref("extensions.toolbar.mindspark._4zMembers_.hp.enabled", true);
Line Found : user_pref("extensions.toolbar.mindspark._4zMembers_.initialized", true);
Line Found : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.contextKey", "");
Line Found : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.installDate", "2013062911");
Line Found : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.partnerId", "^HJ^xdm073^YY^cz");
Line Found : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.partnerSubId", "pconverter");
Line Found : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.success", true);
Line Found : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.toolbarId", "0A841DCB-0809-4417-B6E8-19571A66208C");
Line Found : user_pref("extensions.toolbar.mindspark._4zMembers_.lastActivePing", "1372497817691");
Line Found : user_pref("extensions.toolbar.mindspark._4zMembers_.options.defaultSearch", true);
Line Found : user_pref("extensions.toolbar.mindspark._4zMembers_.options.homePageEnabled", true);
Line Found : user_pref("extensions.toolbar.mindspark._4zMembers_.options.keywordEnabled", true);
Line Found : user_pref("extensions.toolbar.mindspark._4zMembers_.options.tabEnabled", true);
Line Found : user_pref("extensions.toolbar.mindspark.hp.enabled", true);
Line Found : user_pref("extensions.toolbar.mindspark.hp.enabled.guid", "videodownloadconverter@mindspark.com");
Line Found : user_pref("extensions.toolbar.mindspark.lastInstalled", "videodownloadconverter@mindspark.com");
*************************
AdwCleaner[R0].txt - [15219 octets] - [05/09/2014 21:57:20]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [15280 octets] ##########
AdwCleaner:
# AdwCleaner v3.309 - Report created 05/09/2014 at 21:57:20
# Updated 02/09/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Ondřej Jiří Beneš - N-8E6BF0FCA1244
# Running from : C:\Documents and Settings\Ondřej Jiří Beneš\Dokumenty\Stažené soubory\adwcleaner_3.309.exe
# Option : Scan
***** [ Services ] *****
***** [ Files / Folders ] *****
File Found : C:\Documents and Settings\pí. Matušková\Data aplikací\Mozilla\Firefox\Profiles\qh8nopdn.default\searchplugins\bingp.xml
File Found : C:\Documents and Settings\pí. Matušková\Data aplikací\Mozilla\Firefox\Profiles\qh8nopdn.default\searchplugins\SweetIm.xml
File Found : C:\Documents and Settings\pí. Matušková\Data aplikací\Mozilla\Firefox\Profiles\qh8nopdn.default\user.js
Folder Found : C:\Documents and Settings\All Users\Data aplikací\Ask
Folder Found : C:\Documents and Settings\All Users\Data aplikací\Babylon
Folder Found : C:\Documents and Settings\All Users\Data aplikací\NCH Software
Folder Found : C:\Documents and Settings\All Users\Data aplikací\Premium
Folder Found : C:\Documents and Settings\All Users\Data aplikací\Tarma Installer
Folder Found : C:\Documents and Settings\All Users\Data aplikací\TheBflix
Folder Found : C:\Documents and Settings\All Users\Data aplikací\TheBflix
Folder Found : C:\Documents and Settings\All Users\Data aplikací\Windows Genuine Advantage
Folder Found : C:\Documents and Settings\pí. Matušková\Data aplikací\Babylon
Folder Found : C:\Documents and Settings\pí. Matušková\Data aplikací\BabylonToolbar
Folder Found : C:\Documents and Settings\pí. Matušková\Data aplikací\NCH Software
Folder Found : C:\Documents and Settings\pí. Matušková\Data aplikací\PriceGong
Folder Found : C:\Documents and Settings\pí. Matušková\Local Settings\Data aplikací\Babylon
Folder Found : C:\Documents and Settings\pí. Matušková\Local Settings\Data aplikací\Conduit
Folder Found : C:\Documents and Settings\pí. Matušková\Local Settings\Data aplikací\iac
Folder Found : C:\Program Files\Conduit
Folder Found : C:\Program Files\NCH Software
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKLM\SOFTWARE\Babylon
Key Found : HKLM\SOFTWARE\BabylonToolbar
Key Found : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Found : HKLM\SOFTWARE\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Key Found : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Found : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
Key Found : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Found : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Found : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Found : HKLM\SOFTWARE\Classes\AppID\{F54A0D21-6A53-460C-8301-C694EC9E1033}
Key Found : HKLM\SOFTWARE\Classes\AppID\{F7BCCFD4-2FA6-477D-A1B0-EF7500B3C49E}
Key Found : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Found : HKLM\SOFTWARE\Classes\AppID\NCTAudioCompress3.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\NCTAudioFormatSettings3.DLL
Key Found : HKLM\SOFTWARE\Classes\b
Key Found : HKLM\SOFTWARE\Classes\Babylon.dskBnd
Key Found : HKLM\SOFTWARE\Classes\Babylon.dskBnd.1
Key Found : HKLM\SOFTWARE\Classes\bbylnApp.appCore
Key Found : HKLM\SOFTWARE\Classes\bbylnApp.appCore.1
Key Found : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
Key Found : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
Key Found : HKLM\SOFTWARE\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{03F14321-8FED-4CBC-B01A-4B57FC199062}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{147A976F-EEE1-4377-8EA7-4716E4CDD239}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{2C6F7E96-73BC-47A5-9F51-B67F0BAFE24D}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{4C58EB04-7B72-4D3D-A36E-66167A99BC31}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{4EE0B011-604C-47F3-8F2B-39F79640B85E}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{A4730EBE-43A6-443E-9776-36915D323AD3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{FD2FD708-1F6F-4B68-B141-C5778F0C19BB}
Key Found : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler
Key Found : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler.1
Key Found : HKLM\SOFTWARE\Classes\Conduit.Engine
Key Found : HKLM\SOFTWARE\Classes\escort.escortIEPane
Key Found : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Key Found : HKLM\SOFTWARE\Classes\escort.escrtBtn.1
Key Found : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc
Key Found : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc.1
Key Found : HKLM\SOFTWARE\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
Key Found : HKLM\SOFTWARE\Classes\Interface\{2E9937FC-CF2F-4F56-AF54-5A6A3DD375CC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Found : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Key Found : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Key Found : HKLM\SOFTWARE\Classes\Interface\{741DE825-A6F0-4497-9AA6-8023CF9B0FFF}
Key Found : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Key Found : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Key Found : HKLM\SOFTWARE\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Key Found : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT2801948
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{6C9945B7-1D19-46CB-88C0-45A24DF6CD6E}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{6E8BF012-2C85-4834-B10A-1B31AF173D70}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{84B9B044-17C0-48FB-A300-C9747D5DF29C}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{EC4085F2-8DB3-45A6-AD0B-CA289F3C5D7E}
Key Found : HKLM\SOFTWARE\Conduit
Key Found : HKLM\SOFTWARE\Fun Web Products
Key Found : HKLM\SOFTWARE\FunWebProducts
Key Found : HKLM\SOFTWARE\Iminent
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8375D9C8-634F-4ECB-8CF5-C7416BA5D542}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467E-B8D4-7786EDA79AE0}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BE28C22E-F666-424D-B5FD-125C4AFEE34E}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CF6E4B1C-DBDE-457E-9CEF-AB8ECAC8A5E8}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{2F603A45-D956-496B-81B5-50D782424976}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{4EF645BD-65B0-4F98-AD56-D0437B7045F6}_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{612AD33D-9824-4E87-8396-92374E91C4BB}_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\BabylonToolbar
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\conduitEngine
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A7BC02AF-1128-4A31-BCF8-1A3EE803D3B3}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A81A974F-8A22-43E6-9243-5198FF758DA1}
Key Found : HKLM\SOFTWARE\MyWebSearch
Key Found : HKLM\SOFTWARE\SweetIM
Key Found : HKLM\SOFTWARE\Tarma Installer
Key Found : HKLM\SOFTWARE\VideoDownloadConverter_4z
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{CCC7A320-B3CA-4199-B1A6-9F516DD69829}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{FD2FD708-1F6F-4B68-B141-C5778F0C19BB}]
Value Found : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\Aspyr\Tony Hawks Pro Skater 4\Game\Skate4.exe]
***** [ Browsers ] *****
-\\ Internet Explorer v8.0.6001.18702
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://home.sweetim.com
-\\ Mozilla Firefox v32.0 (x86 cs)
[ File : C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Mozilla\Firefox\Profiles\gkbuontq.default-1409685594250\prefs.js ]
[ File : C:\Documents and Settings\pí. Matušková\Data aplikací\Mozilla\Firefox\Profiles\qh8nopdn.default\prefs.js ]
Line Found : user_pref("browser.babylon.HPOnNewTab", "search.babylon.com");
Line Found : user_pref("browser.search.order.1", "Search the web (Babylon)");
Line Found : user_pref("extensions.3499ur3ur4hfsudfs.scode", "(function(){try{if('aol.com,mail.google.com,premiumreports.info,search.babylon.com,search.gboxapp.com'.indexOf(window.self.location.hostname)>-1) retur[...]
Line Found : user_pref("extensions.BabylonToolbar_i.aflt", "babsst");
Line Found : user_pref("extensions.BabylonToolbar_i.babExt", "");
Line Found : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=111361");
Line Found : user_pref("extensions.BabylonToolbar_i.hardId", "48055ad40000000000000016171da711");
Line Found : user_pref("extensions.BabylonToolbar_i.id", "48055ad40000000000000016171da711");
Line Found : user_pref("extensions.BabylonToolbar_i.instlDay", "15413");
Line Found : user_pref("extensions.BabylonToolbar_i.instlRef", "sst");
Line Found : user_pref("extensions.BabylonToolbar_i.newTab", true);
Line Found : user_pref("extensions.BabylonToolbar_i.newTabUrl", "hxxp://search.babylon.com/?affID=111361&babsrc=NT_ss&mntrId=48055ad40000000000000016171da711");
Line Found : user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar");
Line Found : user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon");
Line Found : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Line Found : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
Line Found : user_pref("extensions.BabylonToolbar_i.tlbrId", "base");
Line Found : user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17");
Line Found : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.3.1719:29:29");
Line Found : user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17");
Line Found : user_pref("extensions.mywebsearch.prevDefaultEngine", "SweetIM Search");
Line Found : user_pref("extensions.mywebsearch.prevKwdEnabled", true);
Line Found : user_pref("extensions.mywebsearch.prevKwdURL", "hxxp://search.babylon.com/?affID=111361&babsrc=KW_ss&mntrId=48055ad40000000000000016171da711&q=");
Line Found : user_pref("extensions.mywebsearch.prevSelectedEngine", "SweetIM Search");
Line Found : user_pref("extensions.toolbar.mindspark._4zMembers_.homepage", "hxxp://home.mywebsearch.com/index.jhtml?ptb=0A841DCB-0809-4417-B6E8-19571A66208C&n=77fce6ff&p2=^HJ^xdm073^YY^cz&si=pconverter");
Line Found : user_pref("extensions.toolbar.mindspark._4zMembers_.hp.enabled", true);
Line Found : user_pref("extensions.toolbar.mindspark._4zMembers_.initialized", true);
Line Found : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.contextKey", "");
Line Found : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.installDate", "2013062911");
Line Found : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.partnerId", "^HJ^xdm073^YY^cz");
Line Found : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.partnerSubId", "pconverter");
Line Found : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.success", true);
Line Found : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.toolbarId", "0A841DCB-0809-4417-B6E8-19571A66208C");
Line Found : user_pref("extensions.toolbar.mindspark._4zMembers_.lastActivePing", "1372497817691");
Line Found : user_pref("extensions.toolbar.mindspark._4zMembers_.options.defaultSearch", true);
Line Found : user_pref("extensions.toolbar.mindspark._4zMembers_.options.homePageEnabled", true);
Line Found : user_pref("extensions.toolbar.mindspark._4zMembers_.options.keywordEnabled", true);
Line Found : user_pref("extensions.toolbar.mindspark._4zMembers_.options.tabEnabled", true);
Line Found : user_pref("extensions.toolbar.mindspark.hp.enabled", true);
Line Found : user_pref("extensions.toolbar.mindspark.hp.enabled.guid", "videodownloadconverter@mindspark.com");
Line Found : user_pref("extensions.toolbar.mindspark.lastInstalled", "videodownloadconverter@mindspark.com");
*************************
AdwCleaner[R0].txt - [15219 octets] - [05/09/2014 21:57:20]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [15280 octets] ##########
Re: RSIT LOG - PREVENTIVKA
Nova verze na XP nefunguje. Aktualizujte virovou databazi stare verze (musite odmitnout upgrade na novejsi verzi) a spustte uplnou kontrolu. Navod zde http://forum.viry.cz/viewtopic.php?f=29&t=115222
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: RSIT LOG - PREVENTIVKA
Vím, že tohle se nedělá, ale nějak už to šlape jak má.
Můžete to tedy
a ještě jednou promiň.
Můžete to tedy

Re: RSIT LOG - PREVENTIVKA
No je to vase volbaShiawuo píše:Vím, že tohle se nedělá, ale nějak už to šlape jak má.

Nemate tedy zac

Mejte se a treba zase nekdy


Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: RSIT LOG - PREVENTIVKA
Už se nejedná o preventivku, ale o váhově macatější problém.
Bylo by zbytečné zakládat nový téma a tak dík Rudymu, že to odemkl.
Občas se mi stane, že videa na YT mají rychlejší obraz než zvuk + celkově pomalejší počítač s internetem.
RSIT:
Logfile of random's system information tool 1.06 (written by random/random)
Run by Ondřej Jiří Beneš at 2014-09-12 22:46:25
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 73 GB (64%) free of 114 GB
Total RAM: 767 MB (34% free)
HijackThis download failed
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\avast! Emergency Update.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{71701490-253E-4120-93F4-4E9CB40779D1}.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AFA\aswWebRepIE.dll [2014-09-10 457712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-10-09 4502400]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
{FD2FD708-1F6F-4B68-B141-C5778F0C19BB}
{98889811-442D-49dd-99D7-DC866BE87DBC}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2005-10-24 90112]
"BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent []
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2012-07-08 421888]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
"KeyScrambler"=C:\Program Files\KeyScrambler\keyscrambler.exe [2014-06-11 508232]
"AvastUI.exe"=C:\Program Files\AFA\AvastUI.exe [2014-09-10 4085896]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"AvgUninstallURL"=cmd.exe /c start http://www.avg.com/ww.special-uninstall ... er=9.0.894 []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2014-07-24 21650016]
"icq"=C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\ICQM\icq.exe [2014-09-05 35225096]
C:\Documents and Settings\Ondřej Jiří Beneš\Nabídka Start\Programy\Po spuštění
OpenOffice.org 3.4.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Run a DLL as an App"
"C:\Program Files\Nero\Nero 7\Nero Home\NeroHome.exe"="C:\Program Files\Nero\Nero 7\Nero Home\NeroHome.exe:*:Enabled:Nero Home"
"C:\Program Files\Sierra\Empire Earth\Empire Earth.exe"="C:\Program Files\Sierra\Empire Earth\Empire Earth.exe:*:Disabled:Empire Earth"
"C:\Program Files\City Interactive\Wings Of Honour\woh.exe"="C:\Program Files\City Interactive\Wings Of Honour\woh.exe:*:Enabled:woh"
"C:\WINDOWS\system32\dpnsvr.exe"="C:\WINDOWS\system32\dpnsvr.exe:*:Enabled:Microsoft DirectPlay8 Server"
"C:\Program Files\Nero\Nero 7\Nero ShowTime\ShowTime.exe"="C:\Program Files\Nero\Nero 7\Nero ShowTime\ShowTime.exe:*:Enabled:Nero ShowTime"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Nival Interactive\Etherlords II\Etherlords2.exe"="C:\Program Files\Nival Interactive\Etherlords II\Etherlords2.exe:*:Disabled:Etherlords 2 main executable file"
"C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer"
"C:\Program Files\AVG\AVG8\avgam.exe"="C:\Program Files\AVG\AVG8\avgam.exe:*:Enabled:avgam.exe"
"C:\Program Files\AVG\AVG8\avgdiag.exe"="C:\Program Files\AVG\AVG8\avgdiag.exe:*:Enabled:avgdiag.exe"
"C:\Program Files\AVG\AVG8\avgdiagex.exe"="C:\Program Files\AVG\AVG8\avgdiagex.exe:*:Enabled:avgdiagex.exe"
"C:\Program Files\AVG\AVG8\avgemc.exe"="C:\Program Files\AVG\AVG8\avgemc.exe:*:Enabled:avgemc.exe"
"C:\Program Files\AVG\AVG8\avgupd.exe"="C:\Program Files\AVG\AVG8\avgupd.exe:*:Enabled:avgupd.exe"
"C:\Program Files\AVG\AVG8\avgnsx.exe"="C:\Program Files\AVG\AVG8\avgnsx.exe:*:Enabled:avgnsx.exe"
"C:\Program Files\Playlogic\Knights of the Temple 2\KOTT2.exe"="C:\Program Files\Playlogic\Knights of the Temple 2\KOTT2.exe:*:Enabled:KOTT2"
"C:\Program Files\Google\Google Earth\plugin\geplugin.exe"="C:\Program Files\Google\Google Earth\plugin\geplugin.exe:*:Enabled:Google Earth"
"C:\Program Files\Metin2\metin2client.bin"="C:\Program Files\Metin2\metin2client.bin:*:Enabled:metin2client"
"C:\Program Files\VideoLAN\VLC\vlc.exe"="C:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Disabled:µTorrent"
"C:\Documents and Settings\pí. Matušková\Data aplikací\uTorrent\utorrent.exe"="C:\Documents and Settings\pí. Matušková\Data aplikací\uTorrent\utorrent.exe:*:Disabled:µTorrent"
"C:\Program Files\Aspyr\Tony Hawks Pro Skater 4\Game\Skate4.exe"="C:\Program Files\Aspyr\Tony Hawks Pro Skater 4\Game\Skate4.exe:*:Disabled:Skate4"
"C:\Program Files\Sniper Elite\SniperElite.exe"="C:\Program Files\Sniper Elite\SniperElite.exe:*:Disabled:SniperElite"
"C:\Documents and Settings\pí. Matušková\Plocha\Ondřejovo hra\metin2client.bin"="C:\Documents and Settings\pí. Matušková\Plocha\Ondřejovo hra\metin2client.bin:*:Enabled:metin2client"
"C:\Counter Strike\csko.exe"="C:\Counter Strike\csko.exe:*:Enabled:Half-Life Launcher"
"C:\Counter Strike •\csko.exe"="C:\Counter Strike •\csko.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Steam\Steam.exe"="C:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"C:\Program Files\TLI\metin2.bin"="C:\Program Files\TLI\metin2.bin:*:Enabled:metin2"
"C:\Program Files\TeamViewer\Version9\TeamViewer.exe"="C:\Program Files\TeamViewer\Version9\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe"="C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"C:\Program Files\Steam\bin\steamwebhelper.exe"="C:\Program Files\Steam\bin\steamwebhelper.exe:*:Enabled:Steam Web Helper"
"C:\Program Files\Steam\SteamApps\common\Half-Life\hl.exe"="C:\Program Files\Steam\SteamApps\common\Half-Life\hl.exe:*:Enabled:Counter-Strike"
"C:\Program Files\Steam\SteamApps\common\Unturned\Unturned.exe"="C:\Program Files\Steam\SteamApps\common\Unturned\Unturned.exe:*:Enabled:Unturned"
"C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\ICQM\icq.exe"="C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\ICQM\icq.exe:*:Enabled:ICQ"
"C:\Program Files\Steam\SteamApps\common\Team Fortress 2\hl2.exe"="C:\Program Files\Steam\SteamApps\common\Team Fortress 2\hl2.exe:*:Enabled:Team Fortress 2"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
======List of files/folders created in the last 1 months======
2014-09-12 21:27:16 ----D---- C:\Program Files\GTASA
2014-09-10 20:19:01 ----D---- C:\Program Files\Windows Imaging
2014-09-10 20:16:58 ----D---- C:\Program Files\Windows AIK
2014-09-10 20:15:23 ----D---- C:\Program Files\MSXML 6.0
2014-09-10 19:35:14 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\AVAST Software
2014-09-10 19:34:06 ----D---- C:\WINDOWS\jumpshot.com
2014-09-10 19:32:12 ----A---- C:\WINDOWS\system32\aswBoot.exe
2014-09-10 19:28:36 ----D---- C:\Program Files\AFA
2014-09-09 18:09:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\IObit
2014-09-07 00:00:32 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\BANDISOFT
2014-09-06 23:57:58 ----D---- C:\Program Files\BandiMPEG1
2014-09-06 22:24:48 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Malwarebytes
2014-09-05 21:57:13 ----D---- C:\AdwCleaner
2014-09-05 20:38:05 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\ICQ-Profile
2014-09-05 20:38:05 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\ICQM
2014-09-05 19:22:06 ----D---- C:\Program Files\trend micro
2014-09-05 19:22:05 ----D---- C:\rsit
2014-09-05 17:56:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2847311$
2014-09-05 17:39:21 ----D---- C:\Program Files\Common Files\DESIGNER
2014-09-05 17:16:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2807986$
2014-09-04 20:32:13 ----HDC---- C:\WINDOWS\$NtUninstallKB2868626$
2014-09-04 20:23:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2922229$
2014-09-04 20:21:23 ----D---- C:\Program Files\NVIDIA Corporation
2014-09-04 19:56:58 ----D---- C:\WINDOWS\system32\MRT
2014-09-04 19:46:01 ----HDC---- C:\WINDOWS\$NtUninstallKB2916036$
2014-09-04 19:45:44 ----HDC---- C:\WINDOWS\$NtUninstallKB2834886$
2014-09-04 19:27:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2900986$
2014-09-04 19:06:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2802968$
2014-09-04 19:06:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2898715$
2014-09-04 19:05:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2929961$
2014-09-04 19:05:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2862335$
2014-09-04 19:04:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$
2014-09-04 19:04:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2780091$
2014-09-04 18:56:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2904266$
2014-09-04 18:56:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2876217$
2014-09-04 18:35:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2845142_WM64$
2014-09-04 18:35:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2930275$
2014-09-04 18:35:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2864063$
2014-09-04 18:33:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2862152$
2014-09-04 18:33:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2770660$
2014-09-04 18:30:15 ----HDC---- C:\WINDOWS\$NtUninstallKB2850869$
2014-09-04 18:29:48 ----HDC---- C:\WINDOWS\$NtUninstallKB2876331$
2014-09-04 18:27:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2859537$
2014-09-03 20:57:27 ----D---- C:\d85a14643c18d1ab9e
2014-09-03 20:57:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2884256$
2014-09-03 20:56:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2868038$
2014-09-03 20:56:09 ----HDC---- C:\WINDOWS\$NtUninstallKB2820917$
2014-09-03 20:47:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2893294$
2014-09-03 20:47:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2757638$
2014-09-03 20:30:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2892075$
2014-09-03 20:17:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2934207$
2014-09-03 20:15:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2862330$
2014-09-03 20:09:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2813345$
2014-09-03 18:53:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2914368$
2014-09-03 17:27:54 ----N---- C:\WINDOWS\system32\xp_eos.exe
2014-09-03 16:51:54 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2014-09-03 16:40:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
======List of files/folders modified in the last 1 months======
2014-09-12 22:20:10 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Skype
2014-09-12 21:50:39 ----RD---- C:\Program Files
2014-09-12 21:50:01 ----D---- C:\WINDOWS\Prefetch
2014-09-12 20:51:00 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-09-12 17:08:59 ----SHD---- C:\WINDOWS\Installer
2014-09-12 17:08:55 ----D---- C:\WINDOWS\Temp
2014-09-12 17:08:55 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2014-09-12 17:01:58 ----D---- C:\WINDOWS\Debug
2014-09-12 17:01:36 ----A---- C:\WINDOWS\system32\MRT.exe
2014-09-12 15:28:39 ----D---- C:\WINDOWS\system32\CatRoot2
2014-09-12 15:26:31 ----D---- C:\WINDOWS
2014-09-12 15:25:24 ----D---- C:\WINDOWS\system32\drivers
2014-09-10 20:26:46 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Ahead
2014-09-10 20:19:39 ----HD---- C:\WINDOWS\inf
2014-09-10 19:46:13 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-09-10 19:34:45 ----D---- C:\WINDOWS\system32\CatRoot
2014-09-10 19:32:32 ----SD---- C:\WINDOWS\Tasks
2014-09-10 19:32:12 ----D---- C:\WINDOWS\system32
2014-09-10 19:28:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2014-09-09 18:50:40 ----D---- C:\Program Files\Google
2014-09-08 15:15:03 ----D---- C:\Program Files\Microsoft Office
2014-09-07 14:01:45 ----D---- C:\Documents and Settings
2014-09-07 00:07:36 ----A---- C:\WINDOWS\NeroDigital.ini
2014-09-05 22:38:25 ----HD---- C:\Program Files\InstallShield Installation Information
2014-09-05 22:25:17 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\TeamViewer
2014-09-05 22:22:49 ----D---- C:\Program Files\CCleaner
2014-09-05 20:38:41 ----RSD---- C:\WINDOWS\Fonts
2014-09-05 18:39:43 ----RSD---- C:\WINDOWS\assembly
2014-09-05 18:27:20 ----D---- C:\WINDOWS\Microsoft.NET
2014-09-05 17:56:14 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-09-05 17:47:03 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-09-05 17:46:19 ----D---- C:\WINDOWS\WinSxS
2014-09-05 17:39:21 ----D---- C:\Program Files\Common Files
2014-09-05 17:14:25 ----HD---- C:\WINDOWS\$hf_mig$
2014-09-05 17:06:30 ----A---- C:\WINDOWS\win.ini
2014-09-05 17:06:28 ----D---- C:\Program Files\Common Files\System
2014-09-04 20:21:19 ----D---- C:\WINDOWS\system32\ReinstallBackups
2014-09-04 19:44:10 ----D---- C:\WINDOWS\ie8updates
2014-09-04 17:57:48 ----D---- C:\Program Files\Microsoft Silverlight
2014-09-04 17:57:43 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-09-04 17:57:43 ----D---- C:\Program Files\mozilla firefox
2014-09-03 20:39:06 ----D---- C:\Program Files\Common Files\Microsoft Shared
2014-09-03 20:38:54 ----D---- C:\Program Files\Microsoft Works
2014-09-03 20:11:51 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\TS3Client
2014-09-03 19:46:26 ----D---- C:\WINDOWS\system32\XPSViewer
2014-09-03 19:43:19 ----D---- C:\Program Files\Internet Explorer
2014-08-13 12:09:21 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\TP-LINK
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2014-09-10 26136]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2014-09-10 55112]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-09-10 779536]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-09-10 414520]
R1 aswTdi;aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [2014-09-10 57800]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-09-10 24184]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-09-10 67824]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2005-10-26 3786944]
R3 KeyScrambler;KeyScrambler; C:\WINDOWS\System32\drivers\keyscrambler.sys [2013-05-31 209016]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2013-02-08 12648960]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
R3 SoC PC-Camera Service;CANYON CN-WCAM21 PC-Camera; C:\WINDOWS\system32\DRIVERS\pfc027.sys [2004-09-01 138396]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2009-03-18 30336]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S3 AgereSoftModem;Microcom InPorte Home; C:\WINDOWS\system32\DRIVERS\AGRSM.sys []
S3 AR9271;Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\athuw.sys []
S3 aswTap;avast! SecureLine TAP Adapter v3; C:\WINDOWS\system32\DRIVERS\aswTap.sys [2014-08-06 35144]
S3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys []
S3 BlueletSCOAudio;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys []
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys []
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-13 17024]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-13 101120]
S3 BTHPORT;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272128]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-13 18944]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 EagleNT;EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys []
S3 EL90XBC;3Com EtherLink XL 90XB/C Adapter Driver; C:\WINDOWS\system32\DRIVERS\el90xbc5.sys [2001-08-17 66591]
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys []
S3 MODEMCSA;Unimodem Streaming Filter Device; C:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 PBDOWNFORCE_SERVICE;PBDOWNFORCE_SERVICE; \??\C:\Documents and Settings\pí. Matušková\Plocha\UnBaN hack\PBDownforce.sys []
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-13 59136]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-18 5888]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys []
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
S3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys []
S3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys []
S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S3 WimFltr;WimFltr; C:\WINDOWS\system32\DRIVERS\wimfltr.sys [2006-11-02 128104]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AFA\AvastSvc.exe [2014-09-10 50344]
R2 avast! Firewall;avast! Firewall; C:\Program Files\AFA\afwServ.exe [2014-09-10 106488]
R2 Skype C2C Service;Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-10-09 3275136]
R2 TeamViewer9;TeamViewer 9; C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe [2014-08-06 5052224]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-07-10 133104]
S2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2005-12-10 131139]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-04-03 315008]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-10 262320]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-07-10 133104]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-09-03 114288]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S4 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Bylo by zbytečné zakládat nový téma a tak dík Rudymu, že to odemkl.
Občas se mi stane, že videa na YT mají rychlejší obraz než zvuk + celkově pomalejší počítač s internetem.
RSIT:
Logfile of random's system information tool 1.06 (written by random/random)
Run by Ondřej Jiří Beneš at 2014-09-12 22:46:25
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 73 GB (64%) free of 114 GB
Total RAM: 767 MB (34% free)
HijackThis download failed
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\avast! Emergency Update.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{71701490-253E-4120-93F4-4E9CB40779D1}.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AFA\aswWebRepIE.dll [2014-09-10 457712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-10-09 4502400]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
{FD2FD708-1F6F-4B68-B141-C5778F0C19BB}
{98889811-442D-49dd-99D7-DC866BE87DBC}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2005-10-24 90112]
"BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent []
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2012-07-08 421888]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
"KeyScrambler"=C:\Program Files\KeyScrambler\keyscrambler.exe [2014-06-11 508232]
"AvastUI.exe"=C:\Program Files\AFA\AvastUI.exe [2014-09-10 4085896]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"AvgUninstallURL"=cmd.exe /c start http://www.avg.com/ww.special-uninstall ... er=9.0.894 []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2014-07-24 21650016]
"icq"=C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\ICQM\icq.exe [2014-09-05 35225096]
C:\Documents and Settings\Ondřej Jiří Beneš\Nabídka Start\Programy\Po spuštění
OpenOffice.org 3.4.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Run a DLL as an App"
"C:\Program Files\Nero\Nero 7\Nero Home\NeroHome.exe"="C:\Program Files\Nero\Nero 7\Nero Home\NeroHome.exe:*:Enabled:Nero Home"
"C:\Program Files\Sierra\Empire Earth\Empire Earth.exe"="C:\Program Files\Sierra\Empire Earth\Empire Earth.exe:*:Disabled:Empire Earth"
"C:\Program Files\City Interactive\Wings Of Honour\woh.exe"="C:\Program Files\City Interactive\Wings Of Honour\woh.exe:*:Enabled:woh"
"C:\WINDOWS\system32\dpnsvr.exe"="C:\WINDOWS\system32\dpnsvr.exe:*:Enabled:Microsoft DirectPlay8 Server"
"C:\Program Files\Nero\Nero 7\Nero ShowTime\ShowTime.exe"="C:\Program Files\Nero\Nero 7\Nero ShowTime\ShowTime.exe:*:Enabled:Nero ShowTime"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Nival Interactive\Etherlords II\Etherlords2.exe"="C:\Program Files\Nival Interactive\Etherlords II\Etherlords2.exe:*:Disabled:Etherlords 2 main executable file"
"C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer"
"C:\Program Files\AVG\AVG8\avgam.exe"="C:\Program Files\AVG\AVG8\avgam.exe:*:Enabled:avgam.exe"
"C:\Program Files\AVG\AVG8\avgdiag.exe"="C:\Program Files\AVG\AVG8\avgdiag.exe:*:Enabled:avgdiag.exe"
"C:\Program Files\AVG\AVG8\avgdiagex.exe"="C:\Program Files\AVG\AVG8\avgdiagex.exe:*:Enabled:avgdiagex.exe"
"C:\Program Files\AVG\AVG8\avgemc.exe"="C:\Program Files\AVG\AVG8\avgemc.exe:*:Enabled:avgemc.exe"
"C:\Program Files\AVG\AVG8\avgupd.exe"="C:\Program Files\AVG\AVG8\avgupd.exe:*:Enabled:avgupd.exe"
"C:\Program Files\AVG\AVG8\avgnsx.exe"="C:\Program Files\AVG\AVG8\avgnsx.exe:*:Enabled:avgnsx.exe"
"C:\Program Files\Playlogic\Knights of the Temple 2\KOTT2.exe"="C:\Program Files\Playlogic\Knights of the Temple 2\KOTT2.exe:*:Enabled:KOTT2"
"C:\Program Files\Google\Google Earth\plugin\geplugin.exe"="C:\Program Files\Google\Google Earth\plugin\geplugin.exe:*:Enabled:Google Earth"
"C:\Program Files\Metin2\metin2client.bin"="C:\Program Files\Metin2\metin2client.bin:*:Enabled:metin2client"
"C:\Program Files\VideoLAN\VLC\vlc.exe"="C:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Disabled:µTorrent"
"C:\Documents and Settings\pí. Matušková\Data aplikací\uTorrent\utorrent.exe"="C:\Documents and Settings\pí. Matušková\Data aplikací\uTorrent\utorrent.exe:*:Disabled:µTorrent"
"C:\Program Files\Aspyr\Tony Hawks Pro Skater 4\Game\Skate4.exe"="C:\Program Files\Aspyr\Tony Hawks Pro Skater 4\Game\Skate4.exe:*:Disabled:Skate4"
"C:\Program Files\Sniper Elite\SniperElite.exe"="C:\Program Files\Sniper Elite\SniperElite.exe:*:Disabled:SniperElite"
"C:\Documents and Settings\pí. Matušková\Plocha\Ondřejovo hra\metin2client.bin"="C:\Documents and Settings\pí. Matušková\Plocha\Ondřejovo hra\metin2client.bin:*:Enabled:metin2client"
"C:\Counter Strike\csko.exe"="C:\Counter Strike\csko.exe:*:Enabled:Half-Life Launcher"
"C:\Counter Strike •\csko.exe"="C:\Counter Strike •\csko.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Steam\Steam.exe"="C:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"C:\Program Files\TLI\metin2.bin"="C:\Program Files\TLI\metin2.bin:*:Enabled:metin2"
"C:\Program Files\TeamViewer\Version9\TeamViewer.exe"="C:\Program Files\TeamViewer\Version9\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe"="C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"C:\Program Files\Steam\bin\steamwebhelper.exe"="C:\Program Files\Steam\bin\steamwebhelper.exe:*:Enabled:Steam Web Helper"
"C:\Program Files\Steam\SteamApps\common\Half-Life\hl.exe"="C:\Program Files\Steam\SteamApps\common\Half-Life\hl.exe:*:Enabled:Counter-Strike"
"C:\Program Files\Steam\SteamApps\common\Unturned\Unturned.exe"="C:\Program Files\Steam\SteamApps\common\Unturned\Unturned.exe:*:Enabled:Unturned"
"C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\ICQM\icq.exe"="C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\ICQM\icq.exe:*:Enabled:ICQ"
"C:\Program Files\Steam\SteamApps\common\Team Fortress 2\hl2.exe"="C:\Program Files\Steam\SteamApps\common\Team Fortress 2\hl2.exe:*:Enabled:Team Fortress 2"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
======List of files/folders created in the last 1 months======
2014-09-12 21:27:16 ----D---- C:\Program Files\GTASA
2014-09-10 20:19:01 ----D---- C:\Program Files\Windows Imaging
2014-09-10 20:16:58 ----D---- C:\Program Files\Windows AIK
2014-09-10 20:15:23 ----D---- C:\Program Files\MSXML 6.0
2014-09-10 19:35:14 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\AVAST Software
2014-09-10 19:34:06 ----D---- C:\WINDOWS\jumpshot.com
2014-09-10 19:32:12 ----A---- C:\WINDOWS\system32\aswBoot.exe
2014-09-10 19:28:36 ----D---- C:\Program Files\AFA
2014-09-09 18:09:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\IObit
2014-09-07 00:00:32 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\BANDISOFT
2014-09-06 23:57:58 ----D---- C:\Program Files\BandiMPEG1
2014-09-06 22:24:48 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Malwarebytes
2014-09-05 21:57:13 ----D---- C:\AdwCleaner
2014-09-05 20:38:05 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\ICQ-Profile
2014-09-05 20:38:05 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\ICQM
2014-09-05 19:22:06 ----D---- C:\Program Files\trend micro
2014-09-05 19:22:05 ----D---- C:\rsit
2014-09-05 17:56:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2847311$
2014-09-05 17:39:21 ----D---- C:\Program Files\Common Files\DESIGNER
2014-09-05 17:16:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2807986$
2014-09-04 20:32:13 ----HDC---- C:\WINDOWS\$NtUninstallKB2868626$
2014-09-04 20:23:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2922229$
2014-09-04 20:21:23 ----D---- C:\Program Files\NVIDIA Corporation
2014-09-04 19:56:58 ----D---- C:\WINDOWS\system32\MRT
2014-09-04 19:46:01 ----HDC---- C:\WINDOWS\$NtUninstallKB2916036$
2014-09-04 19:45:44 ----HDC---- C:\WINDOWS\$NtUninstallKB2834886$
2014-09-04 19:27:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2900986$
2014-09-04 19:06:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2802968$
2014-09-04 19:06:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2898715$
2014-09-04 19:05:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2929961$
2014-09-04 19:05:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2862335$
2014-09-04 19:04:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$
2014-09-04 19:04:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2780091$
2014-09-04 18:56:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2904266$
2014-09-04 18:56:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2876217$
2014-09-04 18:35:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2845142_WM64$
2014-09-04 18:35:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2930275$
2014-09-04 18:35:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2864063$
2014-09-04 18:33:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2862152$
2014-09-04 18:33:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2770660$
2014-09-04 18:30:15 ----HDC---- C:\WINDOWS\$NtUninstallKB2850869$
2014-09-04 18:29:48 ----HDC---- C:\WINDOWS\$NtUninstallKB2876331$
2014-09-04 18:27:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2859537$
2014-09-03 20:57:27 ----D---- C:\d85a14643c18d1ab9e
2014-09-03 20:57:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2884256$
2014-09-03 20:56:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2868038$
2014-09-03 20:56:09 ----HDC---- C:\WINDOWS\$NtUninstallKB2820917$
2014-09-03 20:47:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2893294$
2014-09-03 20:47:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2757638$
2014-09-03 20:30:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2892075$
2014-09-03 20:17:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2934207$
2014-09-03 20:15:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2862330$
2014-09-03 20:09:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2813345$
2014-09-03 18:53:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2914368$
2014-09-03 17:27:54 ----N---- C:\WINDOWS\system32\xp_eos.exe
2014-09-03 16:51:54 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2014-09-03 16:40:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
======List of files/folders modified in the last 1 months======
2014-09-12 22:20:10 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Skype
2014-09-12 21:50:39 ----RD---- C:\Program Files
2014-09-12 21:50:01 ----D---- C:\WINDOWS\Prefetch
2014-09-12 20:51:00 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-09-12 17:08:59 ----SHD---- C:\WINDOWS\Installer
2014-09-12 17:08:55 ----D---- C:\WINDOWS\Temp
2014-09-12 17:08:55 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2014-09-12 17:01:58 ----D---- C:\WINDOWS\Debug
2014-09-12 17:01:36 ----A---- C:\WINDOWS\system32\MRT.exe
2014-09-12 15:28:39 ----D---- C:\WINDOWS\system32\CatRoot2
2014-09-12 15:26:31 ----D---- C:\WINDOWS
2014-09-12 15:25:24 ----D---- C:\WINDOWS\system32\drivers
2014-09-10 20:26:46 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Ahead
2014-09-10 20:19:39 ----HD---- C:\WINDOWS\inf
2014-09-10 19:46:13 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-09-10 19:34:45 ----D---- C:\WINDOWS\system32\CatRoot
2014-09-10 19:32:32 ----SD---- C:\WINDOWS\Tasks
2014-09-10 19:32:12 ----D---- C:\WINDOWS\system32
2014-09-10 19:28:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2014-09-09 18:50:40 ----D---- C:\Program Files\Google
2014-09-08 15:15:03 ----D---- C:\Program Files\Microsoft Office
2014-09-07 14:01:45 ----D---- C:\Documents and Settings
2014-09-07 00:07:36 ----A---- C:\WINDOWS\NeroDigital.ini
2014-09-05 22:38:25 ----HD---- C:\Program Files\InstallShield Installation Information
2014-09-05 22:25:17 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\TeamViewer
2014-09-05 22:22:49 ----D---- C:\Program Files\CCleaner
2014-09-05 20:38:41 ----RSD---- C:\WINDOWS\Fonts
2014-09-05 18:39:43 ----RSD---- C:\WINDOWS\assembly
2014-09-05 18:27:20 ----D---- C:\WINDOWS\Microsoft.NET
2014-09-05 17:56:14 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-09-05 17:47:03 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-09-05 17:46:19 ----D---- C:\WINDOWS\WinSxS
2014-09-05 17:39:21 ----D---- C:\Program Files\Common Files
2014-09-05 17:14:25 ----HD---- C:\WINDOWS\$hf_mig$
2014-09-05 17:06:30 ----A---- C:\WINDOWS\win.ini
2014-09-05 17:06:28 ----D---- C:\Program Files\Common Files\System
2014-09-04 20:21:19 ----D---- C:\WINDOWS\system32\ReinstallBackups
2014-09-04 19:44:10 ----D---- C:\WINDOWS\ie8updates
2014-09-04 17:57:48 ----D---- C:\Program Files\Microsoft Silverlight
2014-09-04 17:57:43 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-09-04 17:57:43 ----D---- C:\Program Files\mozilla firefox
2014-09-03 20:39:06 ----D---- C:\Program Files\Common Files\Microsoft Shared
2014-09-03 20:38:54 ----D---- C:\Program Files\Microsoft Works
2014-09-03 20:11:51 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\TS3Client
2014-09-03 19:46:26 ----D---- C:\WINDOWS\system32\XPSViewer
2014-09-03 19:43:19 ----D---- C:\Program Files\Internet Explorer
2014-08-13 12:09:21 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\TP-LINK
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2014-09-10 26136]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2014-09-10 55112]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-09-10 779536]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-09-10 414520]
R1 aswTdi;aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [2014-09-10 57800]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-09-10 24184]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-09-10 67824]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2005-10-26 3786944]
R3 KeyScrambler;KeyScrambler; C:\WINDOWS\System32\drivers\keyscrambler.sys [2013-05-31 209016]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2013-02-08 12648960]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
R3 SoC PC-Camera Service;CANYON CN-WCAM21 PC-Camera; C:\WINDOWS\system32\DRIVERS\pfc027.sys [2004-09-01 138396]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2009-03-18 30336]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S3 AgereSoftModem;Microcom InPorte Home; C:\WINDOWS\system32\DRIVERS\AGRSM.sys []
S3 AR9271;Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\athuw.sys []
S3 aswTap;avast! SecureLine TAP Adapter v3; C:\WINDOWS\system32\DRIVERS\aswTap.sys [2014-08-06 35144]
S3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys []
S3 BlueletSCOAudio;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys []
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys []
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-13 17024]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-13 101120]
S3 BTHPORT;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272128]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-13 18944]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 EagleNT;EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys []
S3 EL90XBC;3Com EtherLink XL 90XB/C Adapter Driver; C:\WINDOWS\system32\DRIVERS\el90xbc5.sys [2001-08-17 66591]
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys []
S3 MODEMCSA;Unimodem Streaming Filter Device; C:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 PBDOWNFORCE_SERVICE;PBDOWNFORCE_SERVICE; \??\C:\Documents and Settings\pí. Matušková\Plocha\UnBaN hack\PBDownforce.sys []
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-13 59136]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-18 5888]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys []
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
S3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys []
S3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys []
S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S3 WimFltr;WimFltr; C:\WINDOWS\system32\DRIVERS\wimfltr.sys [2006-11-02 128104]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AFA\AvastSvc.exe [2014-09-10 50344]
R2 avast! Firewall;avast! Firewall; C:\Program Files\AFA\afwServ.exe [2014-09-10 106488]
R2 Skype C2C Service;Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-10-09 3275136]
R2 TeamViewer9;TeamViewer 9; C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe [2014-08-06 5052224]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-07-10 133104]
S2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2005-12-10 131139]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-04-03 315008]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-10 262320]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-07-10 133104]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-09-03 114288]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S4 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Re: RSIT LOG - PREVENTIVKA
To je tak, kdyz se skonci pred docistenim. Obvykle je to pak otazka chvilkyShiawuo píše:Už se nejedná o preventivku, ale o váhově macatější problém.

Predtim jste tu dal log z nejnovejsi verze RSIT, ted ze stare, proc?

Smazte RSIT a slozku C:\Program Files\trend micro , pokud ji najdete.
Pak stahnete nove RSIT http://images.malwareremoval.com/random/RSIT.exe a dejte log z nej.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: RSIT LOG - PREVENTIVKA
Ten problém jsem už měl předtím - jenže se trošku zhoršil s tím zasekáváním celého počítače.
Ještě jedna taková, na kterou jsem nechtěl zbytečně zakládat nové téma:
Přes Avast jsem i udělal ZD (Záchranný Disk), ale nevím přes jaký program ho mám otevírat.
Když ho chci na zkoušku otevřít na svém počítači, tak se mi otevírá jako soubor obrázků.
Nebylo by možné na ten disk přidat i program v kterém by se to otevíralo?
RSIT:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Ondřej Jiří Beneš at 2014-09-13 14:02:44
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 77 GB (67%) free of 114 GB
Total RAM: 767 MB (7% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:03:50, on 13.9.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AFA\AvastSvc.exe
C:\Program Files\AFA\afwServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe
C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\KeyScrambler\keyscrambler.exe
C:\Program Files\AFA\AvastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\ICQM\icq.exe
c:\program files\mozilla firefox\firefox.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Ondřej Jiří Beneš\Plocha\RSIT.exe
C:\Program Files\trend micro\Ondřej Jiří Beneš.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AFA\aswWebRepIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: (no name) - {FD2FD708-1F6F-4B68-B141-C5778F0C19BB} - (no file)
O3 - Toolbar: (no name) - {98889811-442D-49dd-99D7-DC866BE87DBC} - (no file)
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [KeyScrambler] C:\Program Files\KeyScrambler\keyscrambler.exe /a
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AFA\AvastUI.exe" /nogui
O4 - HKLM\..\RunOnce: [AvgUninstallURL] cmd.exe /c start http://www.avg.com/ww.special-uninstall ... er=9.0.894
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [icq] C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\ICQM\icq.exe -CU
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: OpenOffice.org 3.4.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\ICQM\icq.exe (HKCU)
O9 - Extra 'Tools' menuitem: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\ICQM\icq.exe (HKCU)
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Plugin Control) - http://appldnld.apple.com.edgesuite.net ... plugin.cab
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocach ... 0.15-3.cab
O16 - DPF: {6218F7B5-0D3A-48BA-AE4C-49DCFA63D400} (CSEQueryObject Object) - http://www.myheritage.cz/Genoogle/Compo ... eQuery.dll
O16 - DPF: {813A45F9-744F-435F-A815-19E2DF35A9D8} (O2C-Player - area constructor view (ELECO Software GmbH)) - http://www.o2c.de/download/o2cplayerac.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AFA\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AFA\afwServ.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
--
End of file - 8607 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\avast! Emergency Update.job - C:\Program Files\AFA\AvastEmUpdate.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe -c
C:\WINDOWS\tasks\User_Feed_Synchronization-{71701490-253E-4120-93F4-4E9CB40779D1}.job - C:\WINDOWS\system32\msfeedssync.exe sync
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Mozilla\Firefox\Profiles\gkbuontq.default-1409685594250
"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"fbphotozoom@installdaddy.com"=C:\Program Files\fbphotozoom\fbphotozoom14.xpi
"wrc@avast.com"=C:\Program Files\AFA\WebRep\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 14.0.0.145 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Mozilla\Firefox\Profiles\gkbuontq.default-1409685594250\extensions\
cookiemgr@jayapal.com
{8b86149f-01fb-4842-9dd8-4d7eb02fd055}
{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AFA\aswWebRepIE.dll [2014-09-10 457712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-10-09 4502400]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
{FD2FD708-1F6F-4B68-B141-C5778F0C19BB}
{98889811-442D-49dd-99D7-DC866BE87DBC}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2005-10-24 90112]
"BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent []
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2012-07-08 421888]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
"KeyScrambler"=C:\Program Files\KeyScrambler\keyscrambler.exe [2014-06-11 508232]
"AvastUI.exe"=C:\Program Files\AFA\AvastUI.exe [2014-09-10 4085896]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"AvgUninstallURL"=cmd.exe /c start http://www.avg.com/ww.special-uninstall ... er=9.0.894 []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2014-07-24 21650016]
"icq"=C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\ICQM\icq.exe [2014-09-05 35225096]
C:\Documents and Settings\Ondřej Jiří Beneš\Nabídka Start\Programy\Po spuštění
OpenOffice.org 3.4.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Run a DLL as an App"
"C:\Program Files\Nero\Nero 7\Nero Home\NeroHome.exe"="C:\Program Files\Nero\Nero 7\Nero Home\NeroHome.exe:*:Enabled:Nero Home"
"C:\Program Files\Sierra\Empire Earth\Empire Earth.exe"="C:\Program Files\Sierra\Empire Earth\Empire Earth.exe:*:Disabled:Empire Earth"
"C:\Program Files\City Interactive\Wings Of Honour\woh.exe"="C:\Program Files\City Interactive\Wings Of Honour\woh.exe:*:Enabled:woh"
"C:\WINDOWS\system32\dpnsvr.exe"="C:\WINDOWS\system32\dpnsvr.exe:*:Enabled:Microsoft DirectPlay8 Server"
"C:\Program Files\Nero\Nero 7\Nero ShowTime\ShowTime.exe"="C:\Program Files\Nero\Nero 7\Nero ShowTime\ShowTime.exe:*:Enabled:Nero ShowTime"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Nival Interactive\Etherlords II\Etherlords2.exe"="C:\Program Files\Nival Interactive\Etherlords II\Etherlords2.exe:*:Disabled:Etherlords 2 main executable file"
"C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer"
"C:\Program Files\AVG\AVG8\avgam.exe"="C:\Program Files\AVG\AVG8\avgam.exe:*:Enabled:avgam.exe"
"C:\Program Files\AVG\AVG8\avgdiag.exe"="C:\Program Files\AVG\AVG8\avgdiag.exe:*:Enabled:avgdiag.exe"
"C:\Program Files\AVG\AVG8\avgdiagex.exe"="C:\Program Files\AVG\AVG8\avgdiagex.exe:*:Enabled:avgdiagex.exe"
"C:\Program Files\AVG\AVG8\avgemc.exe"="C:\Program Files\AVG\AVG8\avgemc.exe:*:Enabled:avgemc.exe"
"C:\Program Files\AVG\AVG8\avgupd.exe"="C:\Program Files\AVG\AVG8\avgupd.exe:*:Enabled:avgupd.exe"
"C:\Program Files\AVG\AVG8\avgnsx.exe"="C:\Program Files\AVG\AVG8\avgnsx.exe:*:Enabled:avgnsx.exe"
"C:\Program Files\Playlogic\Knights of the Temple 2\KOTT2.exe"="C:\Program Files\Playlogic\Knights of the Temple 2\KOTT2.exe:*:Enabled:KOTT2"
"C:\Program Files\Google\Google Earth\plugin\geplugin.exe"="C:\Program Files\Google\Google Earth\plugin\geplugin.exe:*:Enabled:Google Earth"
"C:\Program Files\Metin2\metin2client.bin"="C:\Program Files\Metin2\metin2client.bin:*:Enabled:metin2client"
"C:\Program Files\VideoLAN\VLC\vlc.exe"="C:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Disabled:µTorrent"
"C:\Documents and Settings\pí. Matušková\Data aplikací\uTorrent\utorrent.exe"="C:\Documents and Settings\pí. Matušková\Data aplikací\uTorrent\utorrent.exe:*:Disabled:µTorrent"
"C:\Program Files\Aspyr\Tony Hawks Pro Skater 4\Game\Skate4.exe"="C:\Program Files\Aspyr\Tony Hawks Pro Skater 4\Game\Skate4.exe:*:Disabled:Skate4"
"C:\Program Files\Sniper Elite\SniperElite.exe"="C:\Program Files\Sniper Elite\SniperElite.exe:*:Disabled:SniperElite"
"C:\Documents and Settings\pí. Matušková\Plocha\Ondřejovo hra\metin2client.bin"="C:\Documents and Settings\pí. Matušková\Plocha\Ondřejovo hra\metin2client.bin:*:Enabled:metin2client"
"C:\Counter Strike\csko.exe"="C:\Counter Strike\csko.exe:*:Enabled:Half-Life Launcher"
"C:\Counter Strike •\csko.exe"="C:\Counter Strike •\csko.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Steam\Steam.exe"="C:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"C:\Program Files\TLI\metin2.bin"="C:\Program Files\TLI\metin2.bin:*:Enabled:metin2"
"C:\Program Files\TeamViewer\Version9\TeamViewer.exe"="C:\Program Files\TeamViewer\Version9\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe"="C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"C:\Program Files\Steam\bin\steamwebhelper.exe"="C:\Program Files\Steam\bin\steamwebhelper.exe:*:Enabled:Steam Web Helper"
"C:\Program Files\Steam\SteamApps\common\Half-Life\hl.exe"="C:\Program Files\Steam\SteamApps\common\Half-Life\hl.exe:*:Enabled:Counter-Strike"
"C:\Program Files\Steam\SteamApps\common\Unturned\Unturned.exe"="C:\Program Files\Steam\SteamApps\common\Unturned\Unturned.exe:*:Enabled:Unturned"
"C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\ICQM\icq.exe"="C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\ICQM\icq.exe:*:Enabled:ICQ"
"C:\Program Files\Steam\SteamApps\common\Team Fortress 2\hl2.exe"="C:\Program Files\Steam\SteamApps\common\Team Fortress 2\hl2.exe:*:Enabled:Team Fortress 2"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"msacm.l3acm"=l3codecp.acm
"wave1"=serwvdrv.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"vidc.3ivx"=
"VIDC.wmv3"=wmv9vcm.dll
"vidc.MPG4"=Mpg4c32.dll
"vidc.MP42"=Mpg4c32.dll
"vidc.MP43"=Mpg4c32.dll
"msacm.lhacm"=lhacm.acm
"VIDC.VDOM"=vdowave.drv
"vidc.tscc"=tsccvid.dll
"VIDC.I420"=msh263.drv
"vidc.mjpg"=bdmjpeg.dll
"vidc.mpeg"=bdmpegv.dll
"msacm.bdmpeg"=bdmpega.acm
======List of files/folders created in the last 1 month======
2014-09-13 13:50:17 ----D---- C:\Program Files\trend micro
2014-09-10 20:19:01 ----D---- C:\Program Files\Windows Imaging
2014-09-10 20:16:58 ----D---- C:\Program Files\Windows AIK
2014-09-10 20:15:23 ----D---- C:\Program Files\MSXML 6.0
2014-09-10 19:35:14 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\AVAST Software
2014-09-10 19:34:06 ----D---- C:\WINDOWS\jumpshot.com
2014-09-10 19:32:18 ----A---- C:\WINDOWS\system32\drivers\aswVmm.sys
2014-09-10 19:32:18 ----A---- C:\WINDOWS\system32\drivers\aswTdi.sys
2014-09-10 19:32:18 ----A---- C:\WINDOWS\system32\drivers\aswsp.sys
2014-09-10 19:32:18 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2014-09-10 19:32:18 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2014-09-10 19:32:17 ----A---- C:\WINDOWS\system32\drivers\aswRdr.sys
2014-09-10 19:32:17 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2014-09-10 19:32:17 ----A---- C:\WINDOWS\system32\drivers\aswHwid.sys
2014-09-10 19:32:16 ----A---- C:\WINDOWS\system32\drivers\aswNdis2.sys
2014-09-10 19:32:16 ----A---- C:\WINDOWS\system32\drivers\aswKbd.sys
2014-09-10 19:32:12 ----A---- C:\WINDOWS\system32\aswBoot.exe
2014-09-10 19:32:07 ----A---- C:\WINDOWS\avastSS.scr
2014-09-10 19:31:51 ----A---- C:\WINDOWS\system32\drivers\aswNdis.sys
2014-09-10 19:28:36 ----D---- C:\Program Files\AFA
2014-09-09 18:09:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\IObit
2014-09-07 00:00:32 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\BANDISOFT
2014-09-06 23:57:58 ----D---- C:\Program Files\BandiMPEG1
2014-09-06 22:24:49 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2014-09-06 22:24:48 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Malwarebytes
2014-09-05 21:57:13 ----D---- C:\AdwCleaner
2014-09-05 20:38:05 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\ICQ-Profile
2014-09-05 20:38:05 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\ICQM
2014-09-05 19:22:05 ----D---- C:\rsit
2014-09-05 17:56:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2847311$
2014-09-05 17:39:21 ----D---- C:\Program Files\Common Files\DESIGNER
2014-09-05 17:16:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2807986$
2014-09-04 20:32:13 ----HDC---- C:\WINDOWS\$NtUninstallKB2868626$
2014-09-04 20:23:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2922229$
2014-09-04 20:21:23 ----D---- C:\Program Files\NVIDIA Corporation
2014-09-04 19:56:58 ----D---- C:\WINDOWS\system32\MRT
2014-09-04 19:46:01 ----HDC---- C:\WINDOWS\$NtUninstallKB2916036$
2014-09-04 19:45:44 ----HDC---- C:\WINDOWS\$NtUninstallKB2834886$
2014-09-04 19:27:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2900986$
2014-09-04 19:06:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2802968$
2014-09-04 19:06:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2898715$
2014-09-04 19:05:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2929961$
2014-09-04 19:05:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2862335$
2014-09-04 19:04:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$
2014-09-04 19:04:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2780091$
2014-09-04 18:56:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2904266$
2014-09-04 18:56:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2876217$
2014-09-04 18:35:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2845142_WM64$
2014-09-04 18:35:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2930275$
2014-09-04 18:35:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2864063$
2014-09-04 18:33:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2862152$
2014-09-04 18:33:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2770660$
2014-09-04 18:30:15 ----HDC---- C:\WINDOWS\$NtUninstallKB2850869$
2014-09-04 18:29:48 ----HDC---- C:\WINDOWS\$NtUninstallKB2876331$
2014-09-04 18:27:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2859537$
2014-09-03 20:57:27 ----D---- C:\d85a14643c18d1ab9e
2014-09-03 20:57:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2884256$
2014-09-03 20:56:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2868038$
2014-09-03 20:56:09 ----HDC---- C:\WINDOWS\$NtUninstallKB2820917$
2014-09-03 20:47:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2893294$
2014-09-03 20:47:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2757638$
2014-09-03 20:30:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2892075$
2014-09-03 20:17:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2934207$
2014-09-03 20:15:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2862330$
2014-09-03 20:09:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2813345$
2014-09-03 18:53:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2914368$
2014-09-03 17:27:54 ----N---- C:\WINDOWS\system32\xp_eos.exe
2014-09-03 16:51:54 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2014-09-03 16:51:54 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2014-09-03 16:40:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
======List of files/folders modified in the last 1 month======
2014-09-13 14:03:03 ----D---- C:\Program Files\mozilla firefox
2014-09-13 13:59:39 ----RD---- C:\Program Files
2014-09-13 13:58:56 ----D---- C:\WINDOWS\Prefetch
2014-09-13 13:48:01 ----D---- C:\WINDOWS\Temp
2014-09-13 13:46:02 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Skype
2014-09-13 13:34:00 ----D---- C:\WINDOWS\system32\CatRoot2
2014-09-13 00:43:33 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-09-12 17:08:59 ----SHD---- C:\WINDOWS\Installer
2014-09-12 17:08:55 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2014-09-12 17:01:58 ----D---- C:\WINDOWS\Debug
2014-09-12 17:01:36 ----A---- C:\WINDOWS\system32\MRT.exe
2014-09-12 15:26:31 ----D---- C:\WINDOWS
2014-09-12 15:25:24 ----D---- C:\WINDOWS\system32\drivers
2014-09-10 20:26:46 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Ahead
2014-09-10 20:19:39 ----HD---- C:\WINDOWS\inf
2014-09-10 19:46:13 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-09-10 19:34:45 ----D---- C:\WINDOWS\system32\CatRoot
2014-09-10 19:32:32 ----SD---- C:\WINDOWS\Tasks
2014-09-10 19:32:12 ----D---- C:\WINDOWS\system32
2014-09-10 19:28:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2014-09-09 18:50:40 ----D---- C:\Program Files\Google
2014-09-08 15:15:03 ----D---- C:\Program Files\Microsoft Office
2014-09-07 14:01:45 ----D---- C:\Documents and Settings
2014-09-07 00:07:36 ----A---- C:\WINDOWS\NeroDigital.ini
2014-09-05 22:38:25 ----HD---- C:\Program Files\InstallShield Installation Information
2014-09-05 22:25:17 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\TeamViewer
2014-09-05 22:22:49 ----D---- C:\Program Files\CCleaner
2014-09-05 20:38:41 ----RSD---- C:\WINDOWS\Fonts
2014-09-05 18:39:43 ----RSD---- C:\WINDOWS\assembly
2014-09-05 18:27:20 ----D---- C:\WINDOWS\Microsoft.NET
2014-09-05 17:56:14 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-09-05 17:47:03 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-09-05 17:46:19 ----D---- C:\WINDOWS\WinSxS
2014-09-05 17:39:21 ----D---- C:\Program Files\Common Files
2014-09-05 17:14:25 ----HD---- C:\WINDOWS\$hf_mig$
2014-09-05 17:06:30 ----A---- C:\WINDOWS\win.ini
2014-09-05 17:06:28 ----D---- C:\Program Files\Common Files\System
2014-09-04 20:21:19 ----D---- C:\WINDOWS\system32\ReinstallBackups
2014-09-04 19:44:10 ----D---- C:\WINDOWS\ie8updates
2014-09-04 17:57:48 ----D---- C:\Program Files\Microsoft Silverlight
2014-09-04 17:57:43 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-09-03 20:39:06 ----D---- C:\Program Files\Common Files\Microsoft Shared
2014-09-03 20:38:54 ----D---- C:\Program Files\Microsoft Works
2014-09-03 20:11:51 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\TS3Client
2014-09-03 19:46:26 ----D---- C:\WINDOWS\system32\XPSViewer
2014-09-03 19:43:19 ----D---- C:\Program Files\Internet Explorer
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 agp440;Filtr Intel sběrnice AGP; C:\WINDOWS\system32\DRIVERS\agp440.sys [2008-04-13 42368]
R0 aswNdis;avast! Firewall NDIS Filter Service; C:\WINDOWS\system32\DRIVERS\aswNdis.sys [2014-09-10 12112]
R0 aswNdis2;avast! Firewall NDIS Driver; C:\WINDOWS\system32\drivers\aswNdis2.sys [2014-09-10 252872]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-09-10 49944]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-09-10 192352]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2008-11-20 43872]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINDOWS\System32\drivers\sfdrv01.sys [2005-03-03 48640]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\System32\drivers\sfhlp02.sys [2005-02-23 6656]
R0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); C:\WINDOWS\System32\drivers\sfsync02.sys [2004-12-03 20544]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2014-09-10 26136]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2014-09-10 55112]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-09-10 779536]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-09-10 414520]
R1 aswTdi;aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [2014-09-10 57800]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-09-10 24184]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-09-10 67824]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2005-10-26 3786944]
R3 KeyScrambler;KeyScrambler; C:\WINDOWS\System32\drivers\keyscrambler.sys [2013-05-31 209016]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2013-02-08 12648960]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
R3 SoC PC-Camera Service;CANYON CN-WCAM21 PC-Camera; C:\WINDOWS\system32\DRIVERS\pfc027.sys [2004-09-01 138396]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S0 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\System32\Drivers\vbtenum.sys []
S0 BTHidMgr;Bluetooth HID Manager Service; C:\WINDOWS\System32\Drivers\BTHidMgr.sys []
S3 AgereSoftModem;Microcom InPorte Home; C:\WINDOWS\system32\DRIVERS\AGRSM.sys []
S3 AR9271;Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\athuw.sys []
S3 aswTap;avast! SecureLine TAP Adapter v3; C:\WINDOWS\system32\DRIVERS\aswTap.sys [2014-08-06 35144]
S3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys []
S3 BlueletSCOAudio;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys []
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys []
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-13 17024]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-13 101120]
S3 BTHPORT;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272128]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-13 18944]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 EagleNT;EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys []
S3 EL90XBC;3Com EtherLink XL 90XB/C Adapter Driver; C:\WINDOWS\system32\DRIVERS\el90xbc5.sys [2001-08-17 66591]
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys []
S3 MODEMCSA;Unimodem Streaming Filter Device; C:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 PBDOWNFORCE_SERVICE;PBDOWNFORCE_SERVICE; \??\C:\Documents and Settings\pí. Matušková\Plocha\UnBaN hack\PBDownforce.sys []
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-13 59136]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-18 5888]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys []
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys []
S3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys []
S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S3 WimFltr;WimFltr; C:\WINDOWS\system32\DRIVERS\wimfltr.sys [2006-11-02 128104]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AFA\AvastSvc.exe [2014-09-10 50344]
R2 avast! Firewall;avast! Firewall; C:\Program Files\AFA\afwServ.exe [2014-09-10 106488]
R2 Skype C2C Service;Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-10-09 3275136]
R2 TeamViewer9;TeamViewer 9; C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe [2014-08-06 5052224]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-07-10 133104]
S2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2005-12-10 131139]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-04-03 315008]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-10 262320]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-07-10 133104]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-09-03 114288]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S4 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Ještě jedna taková, na kterou jsem nechtěl zbytečně zakládat nové téma:
Přes Avast jsem i udělal ZD (Záchranný Disk), ale nevím přes jaký program ho mám otevírat.
Když ho chci na zkoušku otevřít na svém počítači, tak se mi otevírá jako soubor obrázků.
Nebylo by možné na ten disk přidat i program v kterém by se to otevíralo?
RSIT:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Ondřej Jiří Beneš at 2014-09-13 14:02:44
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 77 GB (67%) free of 114 GB
Total RAM: 767 MB (7% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:03:50, on 13.9.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AFA\AvastSvc.exe
C:\Program Files\AFA\afwServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe
C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\KeyScrambler\keyscrambler.exe
C:\Program Files\AFA\AvastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\ICQM\icq.exe
c:\program files\mozilla firefox\firefox.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Ondřej Jiří Beneš\Plocha\RSIT.exe
C:\Program Files\trend micro\Ondřej Jiří Beneš.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AFA\aswWebRepIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: (no name) - {FD2FD708-1F6F-4B68-B141-C5778F0C19BB} - (no file)
O3 - Toolbar: (no name) - {98889811-442D-49dd-99D7-DC866BE87DBC} - (no file)
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [KeyScrambler] C:\Program Files\KeyScrambler\keyscrambler.exe /a
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AFA\AvastUI.exe" /nogui
O4 - HKLM\..\RunOnce: [AvgUninstallURL] cmd.exe /c start http://www.avg.com/ww.special-uninstall ... er=9.0.894
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [icq] C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\ICQM\icq.exe -CU
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: OpenOffice.org 3.4.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\ICQM\icq.exe (HKCU)
O9 - Extra 'Tools' menuitem: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\ICQM\icq.exe (HKCU)
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Plugin Control) - http://appldnld.apple.com.edgesuite.net ... plugin.cab
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocach ... 0.15-3.cab
O16 - DPF: {6218F7B5-0D3A-48BA-AE4C-49DCFA63D400} (CSEQueryObject Object) - http://www.myheritage.cz/Genoogle/Compo ... eQuery.dll
O16 - DPF: {813A45F9-744F-435F-A815-19E2DF35A9D8} (O2C-Player - area constructor view (ELECO Software GmbH)) - http://www.o2c.de/download/o2cplayerac.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AFA\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AFA\afwServ.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
--
End of file - 8607 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\avast! Emergency Update.job - C:\Program Files\AFA\AvastEmUpdate.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe -c
C:\WINDOWS\tasks\User_Feed_Synchronization-{71701490-253E-4120-93F4-4E9CB40779D1}.job - C:\WINDOWS\system32\msfeedssync.exe sync
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Mozilla\Firefox\Profiles\gkbuontq.default-1409685594250
"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"fbphotozoom@installdaddy.com"=C:\Program Files\fbphotozoom\fbphotozoom14.xpi
"wrc@avast.com"=C:\Program Files\AFA\WebRep\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 14.0.0.145 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Mozilla\Firefox\Profiles\gkbuontq.default-1409685594250\extensions\
cookiemgr@jayapal.com
{8b86149f-01fb-4842-9dd8-4d7eb02fd055}
{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AFA\aswWebRepIE.dll [2014-09-10 457712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-10-09 4502400]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
{FD2FD708-1F6F-4B68-B141-C5778F0C19BB}
{98889811-442D-49dd-99D7-DC866BE87DBC}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2005-10-24 90112]
"BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent []
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2012-07-08 421888]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
"KeyScrambler"=C:\Program Files\KeyScrambler\keyscrambler.exe [2014-06-11 508232]
"AvastUI.exe"=C:\Program Files\AFA\AvastUI.exe [2014-09-10 4085896]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"AvgUninstallURL"=cmd.exe /c start http://www.avg.com/ww.special-uninstall ... er=9.0.894 []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2014-07-24 21650016]
"icq"=C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\ICQM\icq.exe [2014-09-05 35225096]
C:\Documents and Settings\Ondřej Jiří Beneš\Nabídka Start\Programy\Po spuštění
OpenOffice.org 3.4.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Run a DLL as an App"
"C:\Program Files\Nero\Nero 7\Nero Home\NeroHome.exe"="C:\Program Files\Nero\Nero 7\Nero Home\NeroHome.exe:*:Enabled:Nero Home"
"C:\Program Files\Sierra\Empire Earth\Empire Earth.exe"="C:\Program Files\Sierra\Empire Earth\Empire Earth.exe:*:Disabled:Empire Earth"
"C:\Program Files\City Interactive\Wings Of Honour\woh.exe"="C:\Program Files\City Interactive\Wings Of Honour\woh.exe:*:Enabled:woh"
"C:\WINDOWS\system32\dpnsvr.exe"="C:\WINDOWS\system32\dpnsvr.exe:*:Enabled:Microsoft DirectPlay8 Server"
"C:\Program Files\Nero\Nero 7\Nero ShowTime\ShowTime.exe"="C:\Program Files\Nero\Nero 7\Nero ShowTime\ShowTime.exe:*:Enabled:Nero ShowTime"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Nival Interactive\Etherlords II\Etherlords2.exe"="C:\Program Files\Nival Interactive\Etherlords II\Etherlords2.exe:*:Disabled:Etherlords 2 main executable file"
"C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer"
"C:\Program Files\AVG\AVG8\avgam.exe"="C:\Program Files\AVG\AVG8\avgam.exe:*:Enabled:avgam.exe"
"C:\Program Files\AVG\AVG8\avgdiag.exe"="C:\Program Files\AVG\AVG8\avgdiag.exe:*:Enabled:avgdiag.exe"
"C:\Program Files\AVG\AVG8\avgdiagex.exe"="C:\Program Files\AVG\AVG8\avgdiagex.exe:*:Enabled:avgdiagex.exe"
"C:\Program Files\AVG\AVG8\avgemc.exe"="C:\Program Files\AVG\AVG8\avgemc.exe:*:Enabled:avgemc.exe"
"C:\Program Files\AVG\AVG8\avgupd.exe"="C:\Program Files\AVG\AVG8\avgupd.exe:*:Enabled:avgupd.exe"
"C:\Program Files\AVG\AVG8\avgnsx.exe"="C:\Program Files\AVG\AVG8\avgnsx.exe:*:Enabled:avgnsx.exe"
"C:\Program Files\Playlogic\Knights of the Temple 2\KOTT2.exe"="C:\Program Files\Playlogic\Knights of the Temple 2\KOTT2.exe:*:Enabled:KOTT2"
"C:\Program Files\Google\Google Earth\plugin\geplugin.exe"="C:\Program Files\Google\Google Earth\plugin\geplugin.exe:*:Enabled:Google Earth"
"C:\Program Files\Metin2\metin2client.bin"="C:\Program Files\Metin2\metin2client.bin:*:Enabled:metin2client"
"C:\Program Files\VideoLAN\VLC\vlc.exe"="C:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Disabled:µTorrent"
"C:\Documents and Settings\pí. Matušková\Data aplikací\uTorrent\utorrent.exe"="C:\Documents and Settings\pí. Matušková\Data aplikací\uTorrent\utorrent.exe:*:Disabled:µTorrent"
"C:\Program Files\Aspyr\Tony Hawks Pro Skater 4\Game\Skate4.exe"="C:\Program Files\Aspyr\Tony Hawks Pro Skater 4\Game\Skate4.exe:*:Disabled:Skate4"
"C:\Program Files\Sniper Elite\SniperElite.exe"="C:\Program Files\Sniper Elite\SniperElite.exe:*:Disabled:SniperElite"
"C:\Documents and Settings\pí. Matušková\Plocha\Ondřejovo hra\metin2client.bin"="C:\Documents and Settings\pí. Matušková\Plocha\Ondřejovo hra\metin2client.bin:*:Enabled:metin2client"
"C:\Counter Strike\csko.exe"="C:\Counter Strike\csko.exe:*:Enabled:Half-Life Launcher"
"C:\Counter Strike •\csko.exe"="C:\Counter Strike •\csko.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Steam\Steam.exe"="C:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"C:\Program Files\TLI\metin2.bin"="C:\Program Files\TLI\metin2.bin:*:Enabled:metin2"
"C:\Program Files\TeamViewer\Version9\TeamViewer.exe"="C:\Program Files\TeamViewer\Version9\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe"="C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"C:\Program Files\Steam\bin\steamwebhelper.exe"="C:\Program Files\Steam\bin\steamwebhelper.exe:*:Enabled:Steam Web Helper"
"C:\Program Files\Steam\SteamApps\common\Half-Life\hl.exe"="C:\Program Files\Steam\SteamApps\common\Half-Life\hl.exe:*:Enabled:Counter-Strike"
"C:\Program Files\Steam\SteamApps\common\Unturned\Unturned.exe"="C:\Program Files\Steam\SteamApps\common\Unturned\Unturned.exe:*:Enabled:Unturned"
"C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\ICQM\icq.exe"="C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\ICQM\icq.exe:*:Enabled:ICQ"
"C:\Program Files\Steam\SteamApps\common\Team Fortress 2\hl2.exe"="C:\Program Files\Steam\SteamApps\common\Team Fortress 2\hl2.exe:*:Enabled:Team Fortress 2"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"msacm.l3acm"=l3codecp.acm
"wave1"=serwvdrv.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"vidc.3ivx"=
"VIDC.wmv3"=wmv9vcm.dll
"vidc.MPG4"=Mpg4c32.dll
"vidc.MP42"=Mpg4c32.dll
"vidc.MP43"=Mpg4c32.dll
"msacm.lhacm"=lhacm.acm
"VIDC.VDOM"=vdowave.drv
"vidc.tscc"=tsccvid.dll
"VIDC.I420"=msh263.drv
"vidc.mjpg"=bdmjpeg.dll
"vidc.mpeg"=bdmpegv.dll
"msacm.bdmpeg"=bdmpega.acm
======List of files/folders created in the last 1 month======
2014-09-13 13:50:17 ----D---- C:\Program Files\trend micro
2014-09-10 20:19:01 ----D---- C:\Program Files\Windows Imaging
2014-09-10 20:16:58 ----D---- C:\Program Files\Windows AIK
2014-09-10 20:15:23 ----D---- C:\Program Files\MSXML 6.0
2014-09-10 19:35:14 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\AVAST Software
2014-09-10 19:34:06 ----D---- C:\WINDOWS\jumpshot.com
2014-09-10 19:32:18 ----A---- C:\WINDOWS\system32\drivers\aswVmm.sys
2014-09-10 19:32:18 ----A---- C:\WINDOWS\system32\drivers\aswTdi.sys
2014-09-10 19:32:18 ----A---- C:\WINDOWS\system32\drivers\aswsp.sys
2014-09-10 19:32:18 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2014-09-10 19:32:18 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2014-09-10 19:32:17 ----A---- C:\WINDOWS\system32\drivers\aswRdr.sys
2014-09-10 19:32:17 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2014-09-10 19:32:17 ----A---- C:\WINDOWS\system32\drivers\aswHwid.sys
2014-09-10 19:32:16 ----A---- C:\WINDOWS\system32\drivers\aswNdis2.sys
2014-09-10 19:32:16 ----A---- C:\WINDOWS\system32\drivers\aswKbd.sys
2014-09-10 19:32:12 ----A---- C:\WINDOWS\system32\aswBoot.exe
2014-09-10 19:32:07 ----A---- C:\WINDOWS\avastSS.scr
2014-09-10 19:31:51 ----A---- C:\WINDOWS\system32\drivers\aswNdis.sys
2014-09-10 19:28:36 ----D---- C:\Program Files\AFA
2014-09-09 18:09:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\IObit
2014-09-07 00:00:32 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\BANDISOFT
2014-09-06 23:57:58 ----D---- C:\Program Files\BandiMPEG1
2014-09-06 22:24:49 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2014-09-06 22:24:48 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Malwarebytes
2014-09-05 21:57:13 ----D---- C:\AdwCleaner
2014-09-05 20:38:05 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\ICQ-Profile
2014-09-05 20:38:05 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\ICQM
2014-09-05 19:22:05 ----D---- C:\rsit
2014-09-05 17:56:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2847311$
2014-09-05 17:39:21 ----D---- C:\Program Files\Common Files\DESIGNER
2014-09-05 17:16:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2807986$
2014-09-04 20:32:13 ----HDC---- C:\WINDOWS\$NtUninstallKB2868626$
2014-09-04 20:23:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2922229$
2014-09-04 20:21:23 ----D---- C:\Program Files\NVIDIA Corporation
2014-09-04 19:56:58 ----D---- C:\WINDOWS\system32\MRT
2014-09-04 19:46:01 ----HDC---- C:\WINDOWS\$NtUninstallKB2916036$
2014-09-04 19:45:44 ----HDC---- C:\WINDOWS\$NtUninstallKB2834886$
2014-09-04 19:27:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2900986$
2014-09-04 19:06:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2802968$
2014-09-04 19:06:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2898715$
2014-09-04 19:05:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2929961$
2014-09-04 19:05:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2862335$
2014-09-04 19:04:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$
2014-09-04 19:04:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2780091$
2014-09-04 18:56:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2904266$
2014-09-04 18:56:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2876217$
2014-09-04 18:35:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2845142_WM64$
2014-09-04 18:35:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2930275$
2014-09-04 18:35:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2864063$
2014-09-04 18:33:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2862152$
2014-09-04 18:33:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2770660$
2014-09-04 18:30:15 ----HDC---- C:\WINDOWS\$NtUninstallKB2850869$
2014-09-04 18:29:48 ----HDC---- C:\WINDOWS\$NtUninstallKB2876331$
2014-09-04 18:27:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2859537$
2014-09-03 20:57:27 ----D---- C:\d85a14643c18d1ab9e
2014-09-03 20:57:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2884256$
2014-09-03 20:56:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2868038$
2014-09-03 20:56:09 ----HDC---- C:\WINDOWS\$NtUninstallKB2820917$
2014-09-03 20:47:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2893294$
2014-09-03 20:47:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2757638$
2014-09-03 20:30:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2892075$
2014-09-03 20:17:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2934207$
2014-09-03 20:15:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2862330$
2014-09-03 20:09:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2813345$
2014-09-03 18:53:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2914368$
2014-09-03 17:27:54 ----N---- C:\WINDOWS\system32\xp_eos.exe
2014-09-03 16:51:54 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2014-09-03 16:51:54 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2014-09-03 16:40:33 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
======List of files/folders modified in the last 1 month======
2014-09-13 14:03:03 ----D---- C:\Program Files\mozilla firefox
2014-09-13 13:59:39 ----RD---- C:\Program Files
2014-09-13 13:58:56 ----D---- C:\WINDOWS\Prefetch
2014-09-13 13:48:01 ----D---- C:\WINDOWS\Temp
2014-09-13 13:46:02 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Skype
2014-09-13 13:34:00 ----D---- C:\WINDOWS\system32\CatRoot2
2014-09-13 00:43:33 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-09-12 17:08:59 ----SHD---- C:\WINDOWS\Installer
2014-09-12 17:08:55 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2014-09-12 17:01:58 ----D---- C:\WINDOWS\Debug
2014-09-12 17:01:36 ----A---- C:\WINDOWS\system32\MRT.exe
2014-09-12 15:26:31 ----D---- C:\WINDOWS
2014-09-12 15:25:24 ----D---- C:\WINDOWS\system32\drivers
2014-09-10 20:26:46 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\Ahead
2014-09-10 20:19:39 ----HD---- C:\WINDOWS\inf
2014-09-10 19:46:13 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-09-10 19:34:45 ----D---- C:\WINDOWS\system32\CatRoot
2014-09-10 19:32:32 ----SD---- C:\WINDOWS\Tasks
2014-09-10 19:32:12 ----D---- C:\WINDOWS\system32
2014-09-10 19:28:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2014-09-09 18:50:40 ----D---- C:\Program Files\Google
2014-09-08 15:15:03 ----D---- C:\Program Files\Microsoft Office
2014-09-07 14:01:45 ----D---- C:\Documents and Settings
2014-09-07 00:07:36 ----A---- C:\WINDOWS\NeroDigital.ini
2014-09-05 22:38:25 ----HD---- C:\Program Files\InstallShield Installation Information
2014-09-05 22:25:17 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\TeamViewer
2014-09-05 22:22:49 ----D---- C:\Program Files\CCleaner
2014-09-05 20:38:41 ----RSD---- C:\WINDOWS\Fonts
2014-09-05 18:39:43 ----RSD---- C:\WINDOWS\assembly
2014-09-05 18:27:20 ----D---- C:\WINDOWS\Microsoft.NET
2014-09-05 17:56:14 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-09-05 17:47:03 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-09-05 17:46:19 ----D---- C:\WINDOWS\WinSxS
2014-09-05 17:39:21 ----D---- C:\Program Files\Common Files
2014-09-05 17:14:25 ----HD---- C:\WINDOWS\$hf_mig$
2014-09-05 17:06:30 ----A---- C:\WINDOWS\win.ini
2014-09-05 17:06:28 ----D---- C:\Program Files\Common Files\System
2014-09-04 20:21:19 ----D---- C:\WINDOWS\system32\ReinstallBackups
2014-09-04 19:44:10 ----D---- C:\WINDOWS\ie8updates
2014-09-04 17:57:48 ----D---- C:\Program Files\Microsoft Silverlight
2014-09-04 17:57:43 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-09-03 20:39:06 ----D---- C:\Program Files\Common Files\Microsoft Shared
2014-09-03 20:38:54 ----D---- C:\Program Files\Microsoft Works
2014-09-03 20:11:51 ----D---- C:\Documents and Settings\Ondřej Jiří Beneš\Data aplikací\TS3Client
2014-09-03 19:46:26 ----D---- C:\WINDOWS\system32\XPSViewer
2014-09-03 19:43:19 ----D---- C:\Program Files\Internet Explorer
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 agp440;Filtr Intel sběrnice AGP; C:\WINDOWS\system32\DRIVERS\agp440.sys [2008-04-13 42368]
R0 aswNdis;avast! Firewall NDIS Filter Service; C:\WINDOWS\system32\DRIVERS\aswNdis.sys [2014-09-10 12112]
R0 aswNdis2;avast! Firewall NDIS Driver; C:\WINDOWS\system32\drivers\aswNdis2.sys [2014-09-10 252872]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-09-10 49944]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-09-10 192352]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2008-11-20 43872]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINDOWS\System32\drivers\sfdrv01.sys [2005-03-03 48640]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\System32\drivers\sfhlp02.sys [2005-02-23 6656]
R0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); C:\WINDOWS\System32\drivers\sfsync02.sys [2004-12-03 20544]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2014-09-10 26136]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2014-09-10 55112]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-09-10 779536]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-09-10 414520]
R1 aswTdi;aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [2014-09-10 57800]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-09-10 24184]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-09-10 67824]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2005-10-26 3786944]
R3 KeyScrambler;KeyScrambler; C:\WINDOWS\System32\drivers\keyscrambler.sys [2013-05-31 209016]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2013-02-08 12648960]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
R3 SoC PC-Camera Service;CANYON CN-WCAM21 PC-Camera; C:\WINDOWS\system32\DRIVERS\pfc027.sys [2004-09-01 138396]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S0 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\System32\Drivers\vbtenum.sys []
S0 BTHidMgr;Bluetooth HID Manager Service; C:\WINDOWS\System32\Drivers\BTHidMgr.sys []
S3 AgereSoftModem;Microcom InPorte Home; C:\WINDOWS\system32\DRIVERS\AGRSM.sys []
S3 AR9271;Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\athuw.sys []
S3 aswTap;avast! SecureLine TAP Adapter v3; C:\WINDOWS\system32\DRIVERS\aswTap.sys [2014-08-06 35144]
S3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys []
S3 BlueletSCOAudio;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys []
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys []
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-13 17024]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-13 101120]
S3 BTHPORT;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272128]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-13 18944]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 EagleNT;EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys []
S3 EL90XBC;3Com EtherLink XL 90XB/C Adapter Driver; C:\WINDOWS\system32\DRIVERS\el90xbc5.sys [2001-08-17 66591]
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys []
S3 MODEMCSA;Unimodem Streaming Filter Device; C:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 PBDOWNFORCE_SERVICE;PBDOWNFORCE_SERVICE; \??\C:\Documents and Settings\pí. Matušková\Plocha\UnBaN hack\PBDownforce.sys []
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-13 59136]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-18 5888]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys []
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys []
S3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys []
S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S3 WimFltr;WimFltr; C:\WINDOWS\system32\DRIVERS\wimfltr.sys [2006-11-02 128104]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AFA\AvastSvc.exe [2014-09-10 50344]
R2 avast! Firewall;avast! Firewall; C:\Program Files\AFA\afwServ.exe [2014-09-10 106488]
R2 Skype C2C Service;Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-10-09 3275136]
R2 TeamViewer9;TeamViewer 9; C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe [2014-08-06 5052224]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-07-10 133104]
S2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2005-12-10 131139]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-04-03 315008]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-10 262320]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-07-10 133104]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-09-03 114288]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S4 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Re: RSIT LOG - PREVENTIVKA
Zachranny disk se nespousti v pc z windowsu. Musite v BIOSu nastavit, aby pocitac nastartoval primo z toho disku.
Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Spustte ho.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.
Udelejte !!!kompletni!!! kontrolu s MBAM http://www.bleepingcomputer.com/downloa ... re/dl/241/ (musite stahnout verzi 1.75, odmitnout upgrade a aktualizovat jen virovou databazi) a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce. Navod zde http://forum.viry.cz/viewtopic.php?f=29&t=115222
11.10. pro neaktivitu
http://forum.viry.cz/viewtopic.php?f=12&t=123975

Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Spustte ho.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.

11.10. pro neaktivitu

Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).