seznam one-time-password

Zpráva

jasanek · #1 Příspěvek od **jasanek** » 31 led 2015 18:05

Počítač funguje dobře. Po přihlášení na mail seznamu vyskočí okno s nabídkou one-time-password, která se nedá zrušit.
Pochopitelně jsme nic nevyplňovali. Ještě jedna věc. Při snad každém překliku stránky v prohlížeči, vyskakuje antivir s oznámením o zachycených hrozbách. Kterých je vždy hned několik.
Přikládám log z programu RSIT.
Předem děkujeme za pomoc.

Logfile of random's system information tool 1.10 (written by random/random)
Run by admin at 2015-01-31 18:00:17
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 121 GB (80%) free of 153 GB
Total RAM: 895 MB (19% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:00:32, on 31.1.2015
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\Common Files\Java\Java Update\jucheck.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\AVAST Software\Avast\setup\instup.exe
C:\Documents and Settings\admin\Plocha\RSIT.exe
C:\Program Files\trend micro\admin.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [GemwuKsacc] regsvr32.exe "C:\Documents and Settings\All Users\Data aplikací\GemwuKsacc\DehrUnrob.mtj"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windows ... 8243955109
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 6132 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\avast! Emergency Update.job - C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe
C:\WINDOWS\tasks\Norton Security Scan for admin.job - C:\PROGRA~1\NORTON~2\Engine\410~1.28\Nss.exe /scan-quick /scheduled
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe -c

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\ao56ul8m.default

prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"

"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.296 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_16_0_0_296.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\system32\Adobe\Director\np32dsw_1167637.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.11.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\ao56ul8m.default\extensions\
{ea614400-e918-4741-9a97-7a972ff7c30b}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-01-12 461216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-01-31 586968]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-01-12 170912]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-02-26 16125440]
"SkyTel"=C:\WINDOWS\SkyTel.EXE [2006-05-16 2879488]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-01-31 5227112]
"MSConfig"=C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe [2008-04-14 171008]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2014-12-11 30877280]
"GemwuKsacc"=regsvr32.exe C:\Documents and Settings\All Users\Data aplikací\GemwuKsacc\DehrUnrob.mtj []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files\Skype\Phone\Skype.exe [2014-12-11 30877280]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\snpstd3]
C:\WINDOWS\vsnpstd3.exe [2006-09-18 843776]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\tsnpstd3]
C:\WINDOWS\tsnpstd3.exe [2007-06-15 368640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\totalcmd\TOTALCMD.EXE"="C:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit"
"C:\Program Files\Google\Chrome\Application\chrome.exe"="C:\Program Files\Google\Chrome\Application\chrome.exe:*:Enabled:Google Chrome"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox (C:\Program Files\Mozilla Firefox)"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======List of files/folders created in the last 1 month======

2015-01-31 18:00:17 ----D---- C:\rsit
2015-01-31 18:00:17 ----D---- C:\Program Files\trend micro
2015-01-31 17:30:16 ----D---- C:\Documents and Settings\admin\Data aplikací\AVAST Software
2015-01-31 17:29:10 ----D---- C:\WINDOWS\jumpshot.com
2015-01-31 17:26:40 ----A---- C:\WINDOWS\system32\drivers\aswVmm.sys
2015-01-31 17:26:40 ----A---- C:\WINDOWS\system32\drivers\aswTdi.sys
2015-01-31 17:26:40 ----A---- C:\WINDOWS\system32\drivers\aswsp.sys
2015-01-31 17:26:40 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2015-01-31 17:26:39 ----A---- C:\WINDOWS\system32\drivers\aswRdr.sys
2015-01-31 17:26:39 ----A---- C:\WINDOWS\system32\drivers\aswmonflt.sys
2015-01-31 17:26:39 ----A---- C:\WINDOWS\system32\drivers\aswHwid.sys
2015-01-31 17:26:38 ----A---- C:\WINDOWS\system32\drivers\aswsnx.sys
2015-01-31 17:26:35 ----A---- C:\WINDOWS\system32\aswBoot.exe
2015-01-31 17:26:30 ----A---- C:\WINDOWS\avastSS.scr
2015-01-31 17:23:58 ----D---- C:\Program Files\AVAST Software
2015-01-31 17:23:01 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2015-01-30 15:56:26 ----A---- C:\WINDOWS\system32\ptpusb.dll
2015-01-30 15:56:24 ----A---- C:\WINDOWS\system32\ptpusd.dll
2015-01-30 10:16:16 ----D---- C:\Documents and Settings\All Users\Data aplikací\GemwuKsacc
2015-01-28 18:27:37 ----HDC---- C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$
2015-01-28 18:27:34 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2015-01-28 18:27:09 ----HDC---- C:\WINDOWS\$NtUninstallKB929399$
2015-01-28 18:26:55 ----HDC---- C:\WINDOWS\$NtUninstallKB939683$
2015-01-28 18:26:22 ----HDC---- C:\WINDOWS\$NtUninstallKB954154_WM11$
2015-01-28 11:57:48 ----D---- C:\Program Files\Common Files\Skype
2015-01-28 11:57:39 ----RD---- C:\Program Files\Skype
2015-01-28 06:39:33 ----N---- C:\WINDOWS\system32\spmsg.dll
2015-01-28 06:39:32 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$
2015-01-28 06:39:11 ----D---- C:\Program Files\Windows Media Connect 2
2015-01-28 06:39:01 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
2015-01-28 06:38:09 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2015-01-27 07:00:24 ----D---- C:\Program Files\Mozilla Firefox

======List of files/folders modified in the last 1 month======

2015-01-31 18:00:25 ----D---- C:\WINDOWS\Prefetch
2015-01-31 18:00:17 ----RD---- C:\Program Files
2015-01-31 17:53:06 ----A---- C:\WINDOWS\SchedLgU.Txt
2015-01-31 17:50:07 ----SH---- C:\boot.ini
2015-01-31 17:50:07 ----A---- C:\WINDOWS\win.ini
2015-01-31 17:50:07 ----A---- C:\WINDOWS\system.ini
2015-01-31 17:47:59 ----D---- C:\WINDOWS\Temp
2015-01-31 17:33:51 ----D---- C:\WINDOWS
2015-01-31 17:33:09 ----D---- C:\WINDOWS\system32\drivers
2015-01-31 17:32:46 ----D---- C:\WINDOWS\system32\CatRoot2
2015-01-31 17:27:16 ----SD---- C:\WINDOWS\Tasks
2015-01-31 17:26:37 ----D---- C:\WINDOWS\WinSxS
2015-01-31 17:26:35 ----D---- C:\WINDOWS\system32
2015-01-31 17:23:19 ----SHD---- C:\WINDOWS\Installer
2015-01-31 17:22:40 ----HD---- C:\WINDOWS\inf
2015-01-30 15:56:31 ----RSHDC---- C:\WINDOWS\system32\dllcache
2015-01-30 10:11:03 ----A---- C:\WINDOWS\system32\PnkBstrB.exe
2015-01-30 09:41:36 ----D---- C:\Documents and Settings\admin\Data aplikací\Skype
2015-01-30 08:41:14 ----D---- C:\Program Files\Mozilla Maintenance Service
2015-01-28 18:27:49 ----D---- C:\WINDOWS\system32\CatRoot
2015-01-28 18:27:36 ----A---- C:\WINDOWS\imsins.BAK
2015-01-28 11:57:48 ----D---- C:\Program Files\Common Files
2015-01-28 11:57:27 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2015-01-28 06:39:11 ----D---- C:\Program Files\Windows Media Player
2015-01-28 06:39:08 ----D---- C:\WINDOWS\Help
2015-01-28 06:38:22 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-01-25 12:25:23 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2015-01-14 07:35:54 ----A---- C:\WINDOWS\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-01-31 49944]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-01-31 206248]
R0 nvata;nvata; C:\WINDOWS\system32\DRIVERS\nvata.sys [2006-10-18 105472]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2015-01-31 55240]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-01-31 787800]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-01-31 423784]
R1 aswTdi;aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [2015-01-31 57928]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys []
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-01-31 24184]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-01-31 73480]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-03-01 4484608]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2007-08-02 12160]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2013-02-08 12648960]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-09-27 57856]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-09-27 19968]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 SNPSTD3;USB PC Camera (SNPSTD3); C:\WINDOWS\system32\DRIVERS\snpstd3.sys [2007-05-02 10222720]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-07-17 60160]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-01-31 50344]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2013-01-12 170912]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2014-10-27 66872]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-20 107912]
S2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2006-10-31 155715]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-25 267440]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-20 107912]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-01-27 114800]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

#2 Příspěvek od **Rudy** » 31 led 2015 19:17

Zdravím!
Spusťte nejprve tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

jasanek · #3 Příspěvek od **jasanek** » 01 úno 2015 09:24

Hotovo. Děkuji. Na Seznamu stále po přihlášení vyskakuje okno s nabídkou one-time-password a antivir ještě vyskakuje s oznámením o zachycených hrozbách.
Zde je log:

# AdwCleaner v4.109 - Report created 01/02/2015 at 09:19:18
# Updated 24/01/2015 by Xplode
# Database : 2015-01-26.1 [Live]
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : admin - HELCA
# Running from : C:\Documents and Settings\admin\Plocha\adwcleaner_4.109.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\ao56ul8m.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702

-\\ Mozilla Firefox v35.0.1 (x86 cs)

-\\ Google Chrome v40.0.2214.93

*************************

AdwCleaner[R0].txt - [956 octets] - [01/02/2015 09:15:52]
AdwCleaner[S0].txt - [880 octets] - [01/02/2015 09:19:18]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [939 octets] ##########

#4 Příspěvek od **Rudy** » 01 úno 2015 11:15

Dejte nový log RSIT.

jasanek · #5 Příspěvek od **jasanek** » 01 úno 2015 18:48

Počítač oznámil chybějící soubor windowsu, tak jsem ho musel přeinstalovat. Zatím se chyba neprojevila. Ale to může být jen otázkou času. Zatím jsem nestihl nainstalovat všechny aktualizace windows. Nejedná se o můj počítač. Proto jsem log poslal před jejich instalací.

Nový log je zde:
Logfile of random's system information tool 1.10 (written by random/random)
Run by admin at 2015-02-01 18:41:38
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 129 GB (85%) free of 153 GB
Total RAM: 895 MB (50% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:42:01, on 1.2.2015
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\msiexec.exe
C:\WINDOWS\system32\MsiExec.exe
C:\Documents and Settings\admin\Plocha\RSIT.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\trend micro\admin.exe
C:\WINDOWS\SoftwareDistribution\Download\101bbf4f5c9d2211451aac0774baf64f\update\update.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 3850 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\avast! Emergency Update.job - C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\xu3p3bvc.default

prefs.js - "browser.startup.homepage" - "http://seznam.cz"

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2006-10-31 7634944]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2006-10-31 86016]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-02-26 16125440]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-02-01 5227112]
"MSConfig"=C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe [2008-04-14 171008]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-01-23 31087200]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]
C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SkyTel]
C:\WINDOWS\SkyTel.EXE [2006-05-16 2879488]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox (C:\Program Files\Mozilla Firefox)"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======List of files/folders created in the last 1 month======

2015-02-01 18:41:39 ----D---- C:\Program Files\trend micro
2015-02-01 18:41:38 ----D---- C:\rsit
2015-02-01 18:41:35 ----D---- C:\WINDOWS\LastGood
2015-02-01 18:37:22 ----D---- C:\WINDOWS\pss
2015-02-01 18:31:55 ----D---- C:\WINDOWS\system32\Lang
2015-02-01 18:24:56 ----D---- C:\Documents and Settings\admin\Data aplikací\Skype
2015-02-01 18:24:19 ----D---- C:\Program Files\Common Files\Skype
2015-02-01 18:24:11 ----RD---- C:\Program Files\Skype
2015-02-01 18:21:13 ----D---- C:\Program Files\Common Files\Adobe
2015-02-01 18:21:13 ----D---- C:\Program Files\Adobe
2015-02-01 18:20:53 ----D---- C:\WINDOWS\system32\PreInstall
2015-02-01 18:20:52 ----N---- C:\WINDOWS\system32\spmsg.dll
2015-02-01 18:20:52 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2015-02-01 18:20:51 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2015-02-01 18:20:50 ----HD---- C:\WINDOWS\$hf_mig$
2015-02-01 18:18:11 ----D---- C:\Documents and Settings\admin\Data aplikací\AVAST Software
2015-02-01 18:17:59 ----D---- C:\WINDOWS\jumpshot.com
2015-02-01 18:17:04 ----A---- C:\WINDOWS\system32\drivers\aswVmm.sys
2015-02-01 18:17:04 ----A---- C:\WINDOWS\system32\drivers\aswTdi.sys
2015-02-01 18:17:04 ----A---- C:\WINDOWS\system32\drivers\aswsp.sys
2015-02-01 18:17:04 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2015-02-01 18:17:04 ----A---- C:\WINDOWS\system32\drivers\aswmonflt.sys
2015-02-01 18:17:04 ----A---- C:\WINDOWS\system32\drivers\aswHwid.sys
2015-02-01 18:17:03 ----A---- C:\WINDOWS\system32\drivers\aswsnx.sys
2015-02-01 18:17:03 ----A---- C:\WINDOWS\system32\drivers\aswRdr.sys
2015-02-01 18:17:01 ----A---- C:\WINDOWS\system32\aswBoot.exe
2015-02-01 18:16:57 ----A---- C:\WINDOWS\avastSS.scr
2015-02-01 18:16:35 ----A---- C:\WINDOWS\ODBC.INI
2015-02-01 18:16:23 ----A---- C:\WINDOWS\system32\mdimon.dll
2015-02-01 18:15:17 ----D---- C:\Documents and Settings\admin\Data aplikací\Mozilla
2015-02-01 18:14:48 ----D---- C:\Documents and Settings\All Users\Data aplikací\Mozilla
2015-02-01 18:14:47 ----D---- C:\Program Files\Mozilla Maintenance Service
2015-02-01 18:14:45 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2015-02-01 18:14:42 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2015-02-01 18:14:27 ----D---- C:\Program Files\Mozilla Firefox
2015-02-01 18:13:25 ----D---- C:\Program Files\AVAST Software
2015-02-01 18:13:24 ----D---- C:\Program Files\Common Files\DESIGNER
2015-02-01 18:13:02 ----D---- C:\WINDOWS\SHELLNEW
2015-02-01 18:13:00 ----D---- C:\Program Files\Microsoft Office
2015-02-01 18:12:14 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2015-02-01 18:06:48 ----A---- C:\WINDOWS\system32\ChCfg.exe
2015-02-01 18:06:47 ----A---- C:\WINDOWS\system32\drivers\splitter.sys
2015-02-01 18:06:46 ----A---- C:\WINDOWS\system32\drivers\wdmaud.sys
2015-02-01 18:06:44 ----A---- C:\WINDOWS\system32\drivers\DMusic.sys
2015-02-01 18:06:43 ----A---- C:\WINDOWS\system32\drivers\swmidi.sys
2015-02-01 18:06:42 ----A---- C:\WINDOWS\system32\drivers\aec.sys
2015-02-01 18:06:40 ----A---- C:\WINDOWS\system32\drivers\kmixer.sys
2015-02-01 18:06:39 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys
2015-02-01 18:06:37 ----A---- C:\WINDOWS\system32\drivers\sysaudio.sys
2015-02-01 18:06:35 ----A---- C:\WINDOWS\system32\drivers\MSKSSRV.sys
2015-02-01 18:06:34 ----A---- C:\WINDOWS\system32\drivers\MSPQM.sys
2015-02-01 18:06:32 ----A---- C:\WINDOWS\system32\drivers\MSPCLOCK.sys
2015-02-01 18:06:27 ----D---- C:\WINDOWS\system32\RTCOM
2015-02-01 18:06:23 ----A---- C:\WINDOWS\system32\ksuser.dll
2015-02-01 18:06:23 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2015-02-01 18:06:23 ----A---- C:\WINDOWS\system32\drivers\drmk.sys
2015-02-01 18:06:18 ----A---- C:\WINDOWS\SoundMan.exe
2015-02-01 18:06:18 ----A---- C:\WINDOWS\SkyTel.exe
2015-02-01 18:06:17 ----A---- C:\WINDOWS\RtlUpd.exe
2015-02-01 18:06:16 ----A---- C:\WINDOWS\system32\drivers\RtkHDAud.sys
2015-02-01 18:06:16 ----A---- C:\WINDOWS\RTLCPL.exe
2015-02-01 18:06:14 ----A---- C:\WINDOWS\RTHDCPL.exe
2015-02-01 18:06:14 ----A---- C:\WINDOWS\MicCal.exe
2015-02-01 18:06:13 ----A---- C:\WINDOWS\alcwzrd.exe
2015-02-01 18:06:13 ----A---- C:\WINDOWS\Alcmtr.exe
2015-02-01 18:06:12 ----HD---- C:\Program Files\InstallShield Installation Information
2015-02-01 18:06:12 ----D---- C:\Program Files\Realtek
2015-02-01 18:05:54 ----RHD---- C:\MSOCache
2015-02-01 18:05:35 ----A---- C:\WINDOWS\RtlExUpd.dll
2015-02-01 18:05:35 ----A---- C:\WINDOWS\HideWin.exe
2015-02-01 18:05:29 ----D---- C:\Program Files\Common Files\InstallShield
2015-02-01 18:03:23 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2015-02-01 18:03:08 ----N---- C:\WINDOWS\system32\nvuide.exe
2015-02-01 18:03:07 ----D---- C:\WINDOWS\system32\ReinstallBackups
2015-02-01 18:02:54 ----A---- C:\WINDOWS\system32\nvunrm.exe
2015-02-01 18:02:22 ----D---- C:\WINDOWS\nview
2015-02-01 18:02:22 ----A---- C:\WINDOWS\system32\nvudisp.exe
2015-02-01 18:02:05 ----A---- C:\WINDOWS\system32\NVUNINST.EXE
2015-02-01 18:02:03 ----D---- C:\Documents and Settings\admin\Data aplikací\InstallShield
2015-02-01 17:59:07 ----A---- C:\WINDOWS\system32\h323log.txt
2015-02-01 17:58:58 ----A---- C:\WINDOWS\iun6002.exe
2015-02-01 17:58:55 ----D---- C:\Program Files\Codec Pack - All In 1
2015-02-01 17:58:41 ----A---- C:\WINDOWS\Codec Pack - All In 1 Setup Log.txt
2015-02-01 17:58:04 ----A---- C:\WINDOWS\system32\drivers\audstub.sys
2015-02-01 17:57:49 ----A---- C:\WINDOWS\system32\hidserv.dll
2015-02-01 17:57:41 ----A---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2015-02-01 17:57:23 ----A---- C:\WINDOWS\system32\drivers\redbook.sys
2015-02-01 17:56:46 ----A---- C:\WINDOWS\system32\usbui.dll
2015-02-01 17:55:35 ----A---- C:\WINDOWS\imsins.BAK
2015-02-01 17:55:32 ----SHD---- C:\WINDOWS\Installer
2015-02-01 17:55:32 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-02-01 17:55:31 ----D---- C:\Program Files\Common Files\ODBC
2015-02-01 17:55:31 ----A---- C:\WINDOWS\ODBCINST.INI
2015-02-01 17:55:27 ----D---- C:\Program Files\Common Files\SpeechEngines
2015-02-01 17:55:26 ----RD---- C:\Program Files
2015-02-01 17:55:26 ----D---- C:\Program Files\Common Files\Microsoft Shared
2015-02-01 17:55:26 ----D---- C:\Program Files\Common Files
2015-02-01 17:55:23 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2015-02-01 17:55:23 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2015-02-01 17:55:23 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2015-02-01 17:55:21 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2015-02-01 17:55:21 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2015-02-01 17:55:21 ----RA---- C:\WINDOWS\system32\kbdur.dll
2015-02-01 17:55:21 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2015-02-01 17:55:21 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2015-02-01 17:55:21 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2015-02-01 17:55:21 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2015-02-01 17:55:21 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2015-02-01 17:55:20 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2015-02-01 17:55:20 ----RA---- C:\WINDOWS\system32\kbdru.dll
2015-02-01 17:55:20 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2015-02-01 17:55:20 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2015-02-01 17:55:18 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2015-02-01 17:55:18 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2015-02-01 17:55:18 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2015-02-01 17:55:18 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2015-02-01 17:55:18 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2015-02-01 17:55:18 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2015-02-01 17:55:18 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2015-02-01 17:55:17 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2015-02-01 17:55:17 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2015-02-01 17:55:17 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2015-02-01 17:55:17 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2015-02-01 17:55:16 ----RA---- C:\WINDOWS\system32\kbdest.dll
2015-02-01 17:55:13 ----A---- C:\WINDOWS\system32\kbdycl.dll
2015-02-01 17:55:13 ----A---- C:\WINDOWS\system32\kbdsl1.dll
2015-02-01 17:55:13 ----A---- C:\WINDOWS\system32\kbdsl.dll
2015-02-01 17:55:13 ----A---- C:\WINDOWS\system32\kbdro.dll
2015-02-01 17:55:13 ----A---- C:\WINDOWS\system32\kbdpl1.dll
2015-02-01 17:55:13 ----A---- C:\WINDOWS\system32\kbdpl.dll
2015-02-01 17:55:13 ----A---- C:\WINDOWS\system32\kbdhu1.dll
2015-02-01 17:55:13 ----A---- C:\WINDOWS\system32\kbdhu.dll
2015-02-01 17:55:13 ----A---- C:\WINDOWS\system32\kbdcr.dll
2015-02-01 17:55:13 ----A---- C:\WINDOWS\system32\KBDAL.DLL
2015-02-01 17:55:11 ----A---- C:\WINDOWS\system32\spxcoins.dll
2015-02-01 17:55:11 ----A---- C:\WINDOWS\system32\irclass.dll
2015-02-01 17:55:11 ----A---- C:\WINDOWS\system32\dgsetup.dll
2015-02-01 17:55:11 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2015-02-01 17:55:10 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2015-02-01 17:55:08 ----N---- C:\WINDOWS\system32\CONFIG.TMP
2015-02-01 17:55:08 ----A---- C:\WINDOWS\TASKMAN.EXE
2015-02-01 17:55:08 ----A---- C:\WINDOWS\system32\drivers\irenum.sys
2015-02-01 17:55:08 ----A---- C:\WINDOWS\system32\batt.dll
2015-02-01 17:55:07 ----A---- C:\WINDOWS\NOTEPAD.EXE
2015-02-01 17:55:05 ----A---- C:\WINDOWS\system32\storprop.dll
2015-02-01 17:54:58 ----ASH---- C:\Documents and Settings\All Users\Data aplikací\desktop.ini
2015-02-01 17:53:47 ----RA---- C:\WINDOWS\SET25.tmp
2015-02-01 17:53:15 ----RA---- C:\WINDOWS\SET8.tmp
2015-02-01 17:53:12 ----RA---- C:\WINDOWS\SET4.tmp
2015-02-01 17:53:11 ----RA---- C:\WINDOWS\SET3.tmp
2015-02-01 17:53:05 ----D---- C:\WINDOWS\system32\CatRoot2
2015-02-01 17:53:05 ----D---- C:\WINDOWS\system32\CatRoot
2015-02-01 17:52:59 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2015-02-01 17:52:40 ----A---- C:\WINDOWS\setuplog.txt
2015-02-01 17:52:32 ----D---- C:\Documents and Settings
2015-02-01 17:52:31 ----SHD---- C:\System Volume Information
2015-02-01 17:52:30 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2015-02-01 17:51:01 ----SH---- C:\boot.ini
2015-02-01 17:44:33 ----RSHDC---- C:\WINDOWS\system32\dllcache
2015-02-01 17:44:33 ----RSD---- C:\WINDOWS\Fonts
2015-02-01 17:44:33 ----RD---- C:\WINDOWS\Web
2015-02-01 17:44:33 ----HD---- C:\WINDOWS\inf
2015-02-01 17:44:33 ----D---- C:\WINDOWS\WinSxS
2015-02-01 17:44:33 ----D---- C:\WINDOWS\twain_32
2015-02-01 17:44:33 ----D---- C:\WINDOWS\Temp
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\wins
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\wbem
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\usmt
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\spool
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\ShellExt
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\Setup
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\ras
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\oobe
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\npp
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\mui
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\inetsrv
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\IME
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\icsxml
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\ias
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\export
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\drivers\etc
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\drivers\disdn
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\drivers
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\dhcp
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\cs-cz
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\cs
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\config
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\3com_dmi
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\3076
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\2052
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\1054
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\1042
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\1041
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\1037
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\1033
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\1031
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\1029
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\1028
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\1025
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system
2015-02-01 17:44:33 ----D---- C:\WINDOWS\security
2015-02-01 17:44:33 ----D---- C:\WINDOWS\Resources
2015-02-01 17:44:33 ----D---- C:\WINDOWS\repair
2015-02-01 17:44:33 ----D---- C:\WINDOWS\Provisioning
2015-02-01 17:44:33 ----D---- C:\WINDOWS\pchealth
2015-02-01 17:44:33 ----D---- C:\WINDOWS\PeerNet
2015-02-01 17:44:33 ----D---- C:\WINDOWS\Network Diagnostic
2015-02-01 17:44:33 ----D---- C:\WINDOWS\mui
2015-02-01 17:44:33 ----D---- C:\WINDOWS\msapps
2015-02-01 17:44:33 ----D---- C:\WINDOWS\msagent
2015-02-01 17:44:33 ----D---- C:\WINDOWS\Media
2015-02-01 17:44:33 ----D---- C:\WINDOWS\L2Schemas
2015-02-01 17:44:33 ----D---- C:\WINDOWS\java
2015-02-01 17:44:33 ----D---- C:\WINDOWS\ime
2015-02-01 17:44:33 ----D---- C:\WINDOWS\Help
2015-02-01 17:44:33 ----D---- C:\WINDOWS\ehome
2015-02-01 17:44:33 ----D---- C:\WINDOWS\Driver Cache
2015-02-01 17:44:33 ----D---- C:\WINDOWS\Debug
2015-02-01 17:44:33 ----D---- C:\WINDOWS\Cursors
2015-02-01 17:44:33 ----D---- C:\WINDOWS\Connection Wizard
2015-02-01 17:44:33 ----D---- C:\WINDOWS\Config
2015-02-01 17:44:33 ----D---- C:\WINDOWS\AppPatch
2015-02-01 17:44:33 ----D---- C:\WINDOWS\addins
2015-02-01 17:44:33 ----D---- C:\WINDOWS
2015-02-01 17:44:33 ----ASH---- C:\pagefile.sys
2015-02-01 17:23:07 ----D---- C:\Documents and Settings\admin\Data aplikací\GHISLER
2015-02-01 17:12:25 ----D---- C:\Documents and Settings\admin\Data aplikací\Identities
2015-02-01 17:12:23 ----HD---- C:\Program Files\Uninstall Information
2015-02-01 17:12:05 ----ASH---- C:\Documents and Settings\admin\Data aplikací\desktop.ini
2015-02-01 17:12:04 ----SD---- C:\Documents and Settings\admin\Data aplikací\Microsoft
2015-02-01 17:10:58 ----D---- C:\WINDOWS\SoftwareDistribution
2015-02-01 17:10:56 ----SD---- C:\WINDOWS\system32\Microsoft
2015-02-01 17:10:56 ----D---- C:\WINDOWS\Prefetch
2015-02-01 17:10:56 ----A---- C:\WINDOWS\SchedLgU.Txt
2015-02-01 17:08:37 ----AS---- C:\WINDOWS\bootstat.dat
2015-02-01 17:05:30 ----D---- C:\WINDOWS\system32\xircom
2015-02-01 17:05:30 ----D---- C:\Program Files\xerox
2015-02-01 17:05:30 ----D---- C:\Program Files\microsoft frontpage
2015-02-01 17:05:03 ----RASH---- C:\MSDOS.SYS
2015-02-01 17:05:03 ----RASH---- C:\IO.SYS
2015-02-01 17:05:03 ----A---- C:\WINDOWS\control.ini
2015-02-01 17:05:03 ----A---- C:\CONFIG.SYS
2015-02-01 17:05:03 ----A---- C:\AUTOEXEC.BAT
2015-02-01 17:04:46 ----A---- C:\WINDOWS\OEWABLog.txt
2015-02-01 17:04:40 ----A---- C:\WINDOWS\system32\mapi32.dll
2015-02-01 17:03:38 ----RD---- C:\WINDOWS\Offline Web Pages
2015-02-01 17:03:37 ----SD---- C:\WINDOWS\Downloaded Program Files
2015-02-01 17:03:23 ----HD---- C:\Program Files\WindowsUpdate
2015-02-01 17:03:20 ----D---- C:\Program Files\Online Services
2015-02-01 17:03:01 ----D---- C:\WINDOWS\system32\DirectX
2015-02-01 17:02:55 ----A---- C:\WINDOWS\system32\atrace.dll
2015-02-01 17:02:53 ----A---- C:\WINDOWS\system32\desktop.ini
2015-02-01 17:02:53 ----A---- C:\WINDOWS\desktop.ini
2015-02-01 17:02:46 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2015-02-01 17:02:44 ----D---- C:\Program Files\Common Files\Services
2015-02-01 17:02:44 ----A---- C:\WINDOWS\system32\acctres.dll
2015-02-01 17:02:41 ----SD---- C:\WINDOWS\Tasks
2015-02-01 17:02:41 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2015-02-01 17:02:40 ----D---- C:\Program Files\Common Files\MSSoap
2015-02-01 17:02:36 ----D---- C:\WINDOWS\srchasst
2015-02-01 17:02:35 ----D---- C:\WINDOWS\system32\Macromed
2015-02-01 17:02:32 ----A---- C:\WINDOWS\system32\wuweb.dll
2015-02-01 17:02:32 ----A---- C:\WINDOWS\system32\wucltui.dll
2015-02-01 17:02:32 ----A---- C:\WINDOWS\system32\wuauserv.dll
2015-02-01 17:02:32 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2015-02-01 17:02:31 ----A---- C:\WINDOWS\system32\wups.dll
2015-02-01 17:02:31 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-02-01 17:02:31 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2015-02-01 17:02:31 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-02-01 17:02:31 ----A---- C:\WINDOWS\system32\wuapi.dll
2015-02-01 17:02:31 ----A---- C:\WINDOWS\system32\bitsprx4.dll
2015-02-01 17:02:31 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2015-02-01 17:02:30 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2015-02-01 17:02:30 ----A---- C:\WINDOWS\system32\qmgr.dll
2015-02-01 17:02:30 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2015-02-01 17:02:27 ----D---- C:\Program Files\Movie Maker
2015-02-01 17:02:07 ----A---- C:\WINDOWS\system32\safrslv.dll
2015-02-01 17:02:07 ----A---- C:\WINDOWS\system32\safrdm.dll
2015-02-01 17:02:07 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2015-02-01 17:02:07 ----A---- C:\WINDOWS\system32\racpldlg.dll
2015-02-01 17:02:04 ----A---- C:\WINDOWS\system32\fltMc.exe
2015-02-01 17:02:04 ----A---- C:\WINDOWS\system32\fltlib.dll
2015-02-01 17:02:04 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2015-02-01 17:02:03 ----D---- C:\WINDOWS\system32\Restore
2015-02-01 17:02:03 ----A---- C:\WINDOWS\system32\srsvc.dll
2015-02-01 17:02:03 ----A---- C:\WINDOWS\system32\srrstr.dll
2015-02-01 17:02:03 ----A---- C:\WINDOWS\system32\srclient.dll
2015-02-01 17:02:03 ----A---- C:\WINDOWS\system32\drivers\sr.sys
2015-02-01 17:02:02 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2015-02-01 17:02:02 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2015-02-01 17:02:02 ----A---- C:\WINDOWS\system32\mnmdd.dll
2015-02-01 17:02:02 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2015-02-01 17:02:02 ----A---- C:\WINDOWS\system32\ils.dll
2015-02-01 17:02:01 ----A---- C:\WINDOWS\system32\msconf.dll
2015-02-01 17:01:59 ----D---- C:\Program Files\NetMeeting
2015-02-01 17:01:59 ----A---- C:\WINDOWS\system32\msoert2.dll
2015-02-01 17:01:58 ----A---- C:\WINDOWS\system32\msoeacct.dll
2015-02-01 17:01:57 ----A---- C:\WINDOWS\system32\inetres.dll
2015-02-01 17:01:57 ----A---- C:\WINDOWS\system32\inetcomm.dll
2015-02-01 17:01:55 ----D---- C:\Program Files\Outlook Express
2015-02-01 17:01:55 ----A---- C:\WINDOWS\system32\schedsvc.dll
2015-02-01 17:01:55 ----A---- C:\WINDOWS\system32\mstinit.exe
2015-02-01 17:01:55 ----A---- C:\WINDOWS\system32\mstask.dll
2015-02-01 17:01:54 ----A---- C:\WINDOWS\system32\isign32.dll
2015-02-01 17:01:54 ----A---- C:\WINDOWS\system32\inetcfg.dll
2015-02-01 17:01:54 ----A---- C:\WINDOWS\system32\icwphbk.dll
2015-02-01 17:01:54 ----A---- C:\WINDOWS\system32\icwdial.dll
2015-02-01 17:01:48 ----D---- C:\Program Files\Common Files\System
2015-02-01 17:01:47 ----D---- C:\Program Files\Internet Explorer
2015-02-01 17:01:16 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2015-02-01 17:01:08 ----D---- C:\Program Files\ComPlus Applications
2015-02-01 17:01:06 ----A---- C:\WINDOWS\vbaddin.ini
2015-02-01 17:01:06 ----A---- C:\WINDOWS\vb.ini
2015-02-01 17:01:01 ----D---- C:\WINDOWS\Registration
2015-02-01 17:00:53 ----D---- C:\Program Files\Windows Media Player
2015-02-01 17:00:47 ----D---- C:\Program Files\Messenger
2015-02-01 17:00:43 ----D---- C:\Program Files\MSN Gaming Zone
2015-02-01 17:00:43 ----A---- C:\WINDOWS\system32\write.exe
2015-02-01 17:00:33 ----A---- C:\WINDOWS\system32\sndvol32.exe
2015-02-01 17:00:33 ----A---- C:\WINDOWS\system32\hticons.dll
2015-02-01 17:00:32 ----A---- C:\WINDOWS\system32\winchat.exe
2015-02-01 17:00:32 ----A---- C:\WINDOWS\system32\avwav.dll
2015-02-01 17:00:32 ----A---- C:\WINDOWS\system32\avtapi.dll
2015-02-01 17:00:32 ----A---- C:\WINDOWS\system32\avmeter.dll
2015-02-01 17:00:24 ----A---- C:\WINDOWS\system32\charmap.exe
2015-02-01 17:00:24 ----A---- C:\WINDOWS\system32\getuname.dll
2015-02-01 17:00:24 ----A---- C:\WINDOWS\system32\calc.exe
2015-02-01 17:00:23 ----A---- C:\WINDOWS\system32\winmine.exe
2015-02-01 17:00:23 ----A---- C:\WINDOWS\system32\sol.exe
2015-02-01 17:00:23 ----A---- C:\WINDOWS\system32\mshearts.exe
2015-02-01 17:00:22 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2015-02-01 17:00:22 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2015-02-01 17:00:22 ----A---- C:\WINDOWS\system32\tslabels.ini
2015-02-01 17:00:22 ----A---- C:\WINDOWS\system32\tskill.exe
2015-02-01 17:00:22 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2015-02-01 17:00:22 ----A---- C:\WINDOWS\system32\tscon.exe
2015-02-01 17:00:22 ----A---- C:\WINDOWS\system32\shadow.exe
2015-02-01 17:00:22 ----A---- C:\WINDOWS\system32\reset.exe
2015-02-01 17:00:22 ----A---- C:\WINDOWS\system32\freecell.exe
2015-02-01 17:00:21 ----A---- C:\WINDOWS\system32\rwinsta.exe
2015-02-01 17:00:21 ----A---- C:\WINDOWS\system32\regini.exe
2015-02-01 17:00:21 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2015-02-01 17:00:21 ----A---- C:\WINDOWS\system32\qwinsta.exe
2015-02-01 17:00:21 ----A---- C:\WINDOWS\system32\qappsrv.exe
2015-02-01 17:00:21 ----A---- C:\WINDOWS\system32\msg.exe
2015-02-01 17:00:21 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2015-02-01 17:00:21 ----A---- C:\WINDOWS\system32\logoff.exe
2015-02-01 17:00:21 ----A---- C:\WINDOWS\system32\cdmodem.dll
2015-02-01 17:00:14 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2015-02-01 17:00:13 ----A---- C:\WINDOWS\system32\sndrec32.exe
2015-02-01 17:00:13 ----A---- C:\WINDOWS\system32\mplay32.exe
2015-02-01 17:00:13 ----A---- C:\WINDOWS\system32\hypertrm.dll
2015-02-01 17:00:13 ----A---- C:\WINDOWS\system32\accwiz.exe
2015-02-01 17:00:12 ----D---- C:\Program Files\Windows NT
2015-02-01 17:00:12 ----A---- C:\WINDOWS\system32\spider.exe
2015-02-01 17:00:12 ----A---- C:\WINDOWS\system32\mspaint.exe
2015-02-01 17:00:12 ----A---- C:\WINDOWS\system32\clipbrd.exe
2015-02-01 17:00:11 ----A---- C:\WINDOWS\system32\drivers\tdtcp.sys
2015-02-01 17:00:11 ----A---- C:\WINDOWS\system32\drivers\tdpipe.sys
2015-02-01 17:00:11 ----A---- C:\WINDOWS\system32\drivers\rdpwd.sys
2015-02-01 17:00:10 ----A---- C:\WINDOWS\system32\tsgqec.dll
2015-02-01 17:00:10 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2015-02-01 17:00:10 ----A---- C:\WINDOWS\system32\rhttpaa.dll
2015-02-01 17:00:10 ----A---- C:\WINDOWS\system32\aaclient.dll
2015-02-01 17:00:09 ----A---- C:\WINDOWS\system32\sessmgr.exe
2015-02-01 17:00:09 ----A---- C:\WINDOWS\system32\remotepg.dll
2015-02-01 17:00:09 ----A---- C:\WINDOWS\system32\rdshost.exe
2015-02-01 17:00:09 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2015-02-01 17:00:09 ----A---- C:\WINDOWS\system32\mstscax.dll
2015-02-01 17:00:09 ----A---- C:\WINDOWS\system32\mstsc.exe
2015-02-01 17:00:08 ----A---- C:\WINDOWS\system32\termsrv.dll
2015-02-01 17:00:08 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2015-02-01 17:00:08 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2015-02-01 17:00:08 ----A---- C:\WINDOWS\system32\rdpclip.exe
2015-02-01 17:00:08 ----A---- C:\WINDOWS\system32\rdchost.dll
2015-02-01 17:00:08 ----A---- C:\WINDOWS\system32\qprocess.exe
2015-02-01 17:00:08 ----A---- C:\WINDOWS\system32\icaapi.dll
2015-02-01 17:00:08 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2015-02-01 17:00:07 ----D---- C:\WINDOWS\system32\MsDtc
2015-02-01 17:00:07 ----A---- C:\WINDOWS\system32\mtxoci.dll
2015-02-01 17:00:07 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2015-02-01 17:00:07 ----A---- C:\WINDOWS\system32\msdtctm.dll
2015-02-01 17:00:07 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2015-02-01 17:00:06 ----A---- C:\WINDOWS\system32\xolehlp.dll
2015-02-01 17:00:06 ----A---- C:\WINDOWS\system32\msdtclog.dll
2015-02-01 17:00:06 ----A---- C:\WINDOWS\system32\msdtc.exe
2015-02-01 17:00:05 ----D---- C:\WINDOWS\system32\Com
2015-02-01 17:00:05 ----A---- C:\WINDOWS\system32\stclient.dll
2015-02-01 17:00:05 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2015-02-01 17:00:05 ----A---- C:\WINDOWS\system32\mtxex.dll
2015-02-01 17:00:05 ----A---- C:\WINDOWS\system32\mtxdm.dll
2015-02-01 17:00:05 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2015-02-01 17:00:05 ----A---- C:\WINDOWS\system32\comrepl.dll
2015-02-01 17:00:05 ----A---- C:\WINDOWS\system32\comaddin.dll
2015-02-01 17:00:05 ----A---- C:\WINDOWS\system32\colbact.dll
2015-02-01 17:00:04 ----A---- C:\WINDOWS\system32\clbcatex.dll
2015-02-01 17:00:04 ----A---- C:\WINDOWS\system32\catsrvut.dll
2015-02-01 17:00:04 ----A---- C:\WINDOWS\system32\catsrvps.dll
2015-02-01 17:00:04 ----A---- C:\WINDOWS\system32\catsrv.dll
2015-02-01 17:00:03 ----A---- C:\WINDOWS\system32\comuid.dll
2015-02-01 17:00:03 ----A---- C:\WINDOWS\system32\comsvcs.dll
2015-02-01 17:00:03 ----A---- C:\WINDOWS\system32\comsnap.dll
2015-02-01 17:00:03 ----A---- C:\WINDOWS\system32\clbcatq.dll
2015-02-01 16:59:57 ----A---- C:\WINDOWS\system32\servdeps.dll
2015-02-01 16:59:56 ----A---- C:\WINDOWS\system32\mmfutil.dll
2015-02-01 16:59:56 ----A---- C:\WINDOWS\system32\licwmi.dll
2015-02-01 16:59:56 ----A---- C:\WINDOWS\system32\cmprops.dll
2015-02-01 16:59:53 ----A---- C:\WINDOWS\system32\drivers\termdd.sys
2015-02-01 16:59:53 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys

======List of files/folders modified in the last 1 month======

2015-02-01 18:38:22 ----A---- C:\WINDOWS\win.ini
2015-02-01 18:38:22 ----A---- C:\WINDOWS\system.ini
2015-02-01 18:28:36 ----SHD---- C:\RECYCLER
2015-02-01 18:28:07 ----D---- C:\win
2015-02-01 17:04:26 ----ASH---- C:\WINDOWS\fonts\desktop.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-02-01 49944]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-02-01 206248]
R0 nvata;nvata; C:\WINDOWS\system32\DRIVERS\nvata.sys [2006-10-18 105472]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2015-02-01 55240]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-02-01 787800]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-02-01 423784]
R1 aswTdi;aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [2015-02-01 57928]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-02-01 24184]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-02-01 73480]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-03-01 4484608]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2007-08-02 12160]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2006-10-31 3964256]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-09-27 57856]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-09-27 19968]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-02-01 50344]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2006-10-31 155715]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-01-02 315488]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-01-23 114800]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]

-----------------EOF-----------------

#6 Příspěvek od **Rudy** » 01 úno 2015 19:47

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\WINDOWS\SET*.tmp

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.

jasanek · #7 Příspěvek od **jasanek** » 02 úno 2015 16:35

Logfile of random's system information tool 1.10 (written by random/random)
Run by admin at 2015-02-02 16:32:33
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 127 GB (83%) free of 153 GB
Total RAM: 895 MB (49% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:32:42, on 2.2.2015
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Documents and Settings\admin\Plocha\RSIT.exe
C:\Program Files\trend micro\admin.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 3664 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\avast! Emergency Update.job - C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe -c

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\xu3p3bvc.default

prefs.js - "browser.startup.homepage" - "http://seznam.cz"

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-02-26 16125440]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-02-01 5227112]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-01-23 31087200]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]
C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SkyTel]
C:\WINDOWS\SkyTel.EXE [2006-05-16 2879488]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox (C:\Program Files\Mozilla Firefox)"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======List of files/folders created in the last 1 month======

2015-02-02 16:31:27 ----A---- C:\WINDOWS\system32\wpa.bak
2015-02-02 16:26:24 ----D---- C:\_OTM
2015-02-02 16:18:55 ----D---- C:\Documents and Settings\All Users\Data aplikací\Windows Genuine Advantage
2015-02-01 20:00:30 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2015-02-01 20:00:06 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$
2015-02-01 19:53:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2868626$
2015-02-01 19:52:54 ----HDC---- C:\WINDOWS\$NtUninstallKB2922229$
2015-02-01 19:52:46 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2015-02-01 19:52:38 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2015-02-01 19:52:29 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2015-02-01 19:51:15 ----HDC---- C:\WINDOWS\$NtUninstallKB2467659$
2015-02-01 19:50:55 ----D---- C:\WINDOWS\ie8updates
2015-02-01 19:50:18 ----D---- C:\WINDOWS\WBEM
2015-02-01 19:49:25 ----HDC---- C:\WINDOWS\ie8
2015-02-01 19:44:52 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2015-02-01 19:44:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2015-02-01 19:44:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2712808$
2015-02-01 19:44:27 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2015-02-01 19:44:19 ----HDC---- C:\WINDOWS\$NtUninstallKB2479943$
2015-02-01 19:44:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2659262$
2015-02-01 19:44:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2564958$
2015-02-01 19:43:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2916036$
2015-02-01 19:43:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2934207$
2015-02-01 19:43:41 ----HDC---- C:\WINDOWS\$NtUninstallKB2478971$
2015-02-01 19:43:31 ----HDC---- C:\WINDOWS\$NtUninstallKB2544893-v2$
2015-02-01 19:43:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2834886$
2015-02-01 19:43:15 ----HDC---- C:\WINDOWS\$NtUninstallKB2536276-v2$
2015-02-01 19:42:59 ----HDC---- C:\WINDOWS\$NtUninstallKB2585542$
2015-02-01 19:42:51 ----HDC---- C:\WINDOWS\$NtUninstallKB2631813$
2015-02-01 19:42:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2015-02-01 19:42:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2691442$
2015-02-01 19:42:21 ----HDC---- C:\WINDOWS\$NtUninstallKB2900986$
2015-02-01 19:42:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$
2015-02-01 19:41:10 ----D---- C:\Program Files\NVIDIA Corporation
2015-02-01 19:40:27 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$
2015-02-01 19:40:21 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2015-02-01 19:40:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2847311$
2015-02-01 19:34:59 ----D---- C:\WINDOWS\system32\MRT
2015-02-01 19:34:30 ----A---- C:\WINDOWS\system32\MRT.exe
2015-02-01 19:33:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2015-02-01 19:33:53 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2015-02-01 19:33:45 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2015-02-01 19:33:37 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2015-02-01 19:33:29 ----HDC---- C:\WINDOWS\$NtUninstallKB2443105$
2015-02-01 19:33:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2655992$
2015-02-01 19:33:13 ----HDC---- C:\WINDOWS\$NtUninstallKB2802968$
2015-02-01 19:33:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2015-02-01 19:32:59 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2015-02-01 19:32:51 ----HDC---- C:\WINDOWS\$NtUninstallKB2481109$
2015-02-01 19:32:41 ----HDC---- C:\WINDOWS\$NtUninstallKB2898715$
2015-02-01 19:32:28 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2015-02-01 19:32:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2485663$
2015-02-01 19:32:09 ----HDC---- C:\WINDOWS\$NtUninstallKB2598479$
2015-02-01 19:32:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2929961$
2015-02-01 19:31:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2686509$
2015-02-01 19:31:44 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2015-02-01 19:31:37 ----HDC---- C:\WINDOWS\$NtUninstallKB2862335$
2015-02-01 19:31:25 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2015-02-01 19:31:14 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2015-02-01 19:31:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2909212$
2015-02-01 19:31:00 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2015-02-01 19:30:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2507938$
2015-02-01 19:30:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2780091$
2015-02-01 19:30:36 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2015-02-01 19:30:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2510581$
2015-02-01 19:30:20 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2015-02-01 19:30:09 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2015-02-01 19:29:59 ----HDC---- C:\WINDOWS\$NtUninstallKB2904266$
2015-02-01 19:29:52 ----HDC---- C:\WINDOWS\$NtUninstallKB2347290$
2015-02-01 19:29:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2876217$
2015-02-01 19:29:39 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2015-02-01 19:29:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2483185$
2015-02-01 19:29:14 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2015-02-01 19:29:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2930275$
2015-02-01 19:28:59 ----HDC---- C:\WINDOWS\$NtUninstallKB2864063$
2015-02-01 19:28:43 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2015-02-01 19:28:32 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2015-02-01 19:28:21 ----HDC---- C:\WINDOWS\$NtUninstallKB2719985$
2015-02-01 19:28:12 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2015-02-01 19:28:00 ----HDC---- C:\WINDOWS\$NtUninstallKB2936068$
2015-02-01 19:27:51 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2015-02-01 19:27:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2862152$
2015-02-01 19:27:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2592799$
2015-02-01 19:27:31 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2015-02-01 19:27:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2770660$
2015-02-01 19:27:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2535512$
2015-02-01 19:27:12 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2015-02-01 19:27:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2964358$
2015-02-01 19:26:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2850869$
2015-02-01 19:26:51 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2015-02-01 19:26:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2876331$
2015-02-01 19:26:37 ----HDC---- C:\WINDOWS\$NtUninstallKB2859537$
2015-02-01 19:26:29 ----HDC---- C:\WINDOWS\$NtUninstallKB2807986$
2015-02-01 19:26:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2570947$
2015-02-01 19:26:17 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2015-02-01 19:26:10 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2015-02-01 19:26:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2820917$
2015-02-01 19:26:00 ----HDC---- C:\WINDOWS\$NtUninstallKB2603381$
2015-02-01 19:25:52 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2015-02-01 19:25:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2893294$
2015-02-01 19:25:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2757638$
2015-02-01 19:25:31 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2015-02-01 19:25:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2419632$
2015-02-01 19:25:15 ----HDC---- C:\WINDOWS\$NtUninstallKB2508429$
2015-02-01 19:25:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2653956$
2015-02-01 19:25:03 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2015-02-01 19:24:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2749655$
2015-02-01 19:24:47 ----HDC---- C:\WINDOWS\$NtUninstallKB971029$
2015-02-01 19:24:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2506212$
2015-02-01 19:24:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2803821-v2_WM9$
2015-02-01 19:24:28 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2015-02-01 19:24:22 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2015-02-01 19:24:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2892075$
2015-02-01 19:24:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2698365$
2015-02-01 19:23:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2619339$
2015-02-01 19:23:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2705219-v2$
2015-02-01 19:23:44 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2015-02-01 19:23:37 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2015-02-01 19:23:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2727528$
2015-02-01 19:23:26 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2015-02-01 19:23:20 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2015-02-01 19:23:14 ----HDC---- C:\WINDOWS\$NtUninstallKB2723135-v2$
2015-02-01 19:23:08 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2015-02-01 19:23:02 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2015-02-01 19:22:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2862330$
2015-02-01 19:22:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2813345$
2015-02-01 19:22:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2509553$
2015-02-01 19:22:31 ----HDC---- C:\WINDOWS\$NtUninstallKB2676562$
2015-02-01 19:22:18 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$
2015-02-01 19:22:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2478960$
2015-02-01 19:22:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2393802$
2015-02-01 19:21:55 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2015-02-01 19:21:48 ----HDC---- C:\WINDOWS\$NtUninstallKB2620712$
2015-02-01 19:21:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2566454$
2015-02-01 19:21:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2661637$
2015-02-01 19:21:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2914368$
2015-02-01 19:21:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2584146$
2015-02-01 19:21:22 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2015-02-01 19:21:15 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2015-02-01 19:21:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2423089$
2015-02-01 19:03:57 ----N---- C:\WINDOWS\system32\drivers\bthport.sys
2015-02-01 18:47:23 ----N---- C:\WINDOWS\system32\xp_eos.exe
2015-02-01 18:42:28 ----SHD---- C:\Config.Msi
2015-02-01 18:41:39 ----D---- C:\Program Files\trend micro
2015-02-01 18:41:38 ----D---- C:\rsit
2015-02-01 18:37:22 ----D---- C:\WINDOWS\pss
2015-02-01 18:31:55 ----D---- C:\WINDOWS\system32\Lang
2015-02-01 18:28:13 ----N---- C:\WINDOWS\system32\iacenc.dll
2015-02-01 18:24:56 ----D---- C:\Documents and Settings\admin\Data aplikací\Skype
2015-02-01 18:24:19 ----D---- C:\Program Files\Common Files\Skype
2015-02-01 18:24:11 ----RD---- C:\Program Files\Skype
2015-02-01 18:21:13 ----D---- C:\Program Files\Common Files\Adobe
2015-02-01 18:21:13 ----D---- C:\Program Files\Adobe
2015-02-01 18:20:53 ----D---- C:\WINDOWS\system32\PreInstall
2015-02-01 18:20:52 ----N---- C:\WINDOWS\system32\spmsg.dll
2015-02-01 18:20:52 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2015-02-01 18:20:51 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2015-02-01 18:20:50 ----HD---- C:\WINDOWS\$hf_mig$
2015-02-01 18:18:11 ----D---- C:\Documents and Settings\admin\Data aplikací\AVAST Software
2015-02-01 18:17:59 ----D---- C:\WINDOWS\jumpshot.com
2015-02-01 18:17:04 ----A---- C:\WINDOWS\system32\drivers\aswVmm.sys
2015-02-01 18:17:04 ----A---- C:\WINDOWS\system32\drivers\aswTdi.sys
2015-02-01 18:17:04 ----A---- C:\WINDOWS\system32\drivers\aswsp.sys
2015-02-01 18:17:04 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2015-02-01 18:17:04 ----A---- C:\WINDOWS\system32\drivers\aswmonflt.sys
2015-02-01 18:17:04 ----A---- C:\WINDOWS\system32\drivers\aswHwid.sys
2015-02-01 18:17:03 ----A---- C:\WINDOWS\system32\drivers\aswsnx.sys
2015-02-01 18:17:03 ----A---- C:\WINDOWS\system32\drivers\aswRdr.sys
2015-02-01 18:17:01 ----A---- C:\WINDOWS\system32\aswBoot.exe
2015-02-01 18:16:57 ----A---- C:\WINDOWS\avastSS.scr
2015-02-01 18:16:35 ----A---- C:\WINDOWS\ODBC.INI
2015-02-01 18:16:23 ----A---- C:\WINDOWS\system32\mdimon.dll
2015-02-01 18:15:17 ----D---- C:\Documents and Settings\admin\Data aplikací\Mozilla
2015-02-01 18:14:48 ----D---- C:\Documents and Settings\All Users\Data aplikací\Mozilla
2015-02-01 18:14:47 ----D---- C:\Program Files\Mozilla Maintenance Service
2015-02-01 18:14:45 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2015-02-01 18:14:42 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2015-02-01 18:14:27 ----D---- C:\Program Files\Mozilla Firefox
2015-02-01 18:13:25 ----D---- C:\Program Files\AVAST Software
2015-02-01 18:13:24 ----D---- C:\Program Files\Common Files\DESIGNER
2015-02-01 18:13:02 ----D---- C:\WINDOWS\SHELLNEW
2015-02-01 18:13:00 ----D---- C:\Program Files\Microsoft Office
2015-02-01 18:12:14 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2015-02-01 18:06:48 ----A---- C:\WINDOWS\system32\ChCfg.exe
2015-02-01 18:06:47 ----A---- C:\WINDOWS\system32\drivers\splitter.sys
2015-02-01 18:06:46 ----A---- C:\WINDOWS\system32\drivers\wdmaud.sys
2015-02-01 18:06:44 ----A---- C:\WINDOWS\system32\drivers\DMusic.sys
2015-02-01 18:06:43 ----A---- C:\WINDOWS\system32\drivers\swmidi.sys
2015-02-01 18:06:42 ----A---- C:\WINDOWS\system32\drivers\aec.sys
2015-02-01 18:06:40 ----A---- C:\WINDOWS\system32\drivers\kmixer.sys
2015-02-01 18:06:39 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys
2015-02-01 18:06:37 ----A---- C:\WINDOWS\system32\drivers\sysaudio.sys
2015-02-01 18:06:35 ----A---- C:\WINDOWS\system32\drivers\MSKSSRV.sys
2015-02-01 18:06:34 ----A---- C:\WINDOWS\system32\drivers\MSPQM.sys
2015-02-01 18:06:32 ----A---- C:\WINDOWS\system32\drivers\MSPCLOCK.sys
2015-02-01 18:06:27 ----D---- C:\WINDOWS\system32\RTCOM
2015-02-01 18:06:23 ----A---- C:\WINDOWS\system32\ksuser.dll
2015-02-01 18:06:23 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2015-02-01 18:06:23 ----A---- C:\WINDOWS\system32\drivers\drmk.sys
2015-02-01 18:06:18 ----A---- C:\WINDOWS\SoundMan.exe
2015-02-01 18:06:18 ----A---- C:\WINDOWS\SkyTel.exe
2015-02-01 18:06:17 ----A---- C:\WINDOWS\RtlUpd.exe
2015-02-01 18:06:16 ----A---- C:\WINDOWS\system32\drivers\RtkHDAud.sys
2015-02-01 18:06:16 ----A---- C:\WINDOWS\RTLCPL.exe
2015-02-01 18:06:14 ----A---- C:\WINDOWS\RTHDCPL.exe
2015-02-01 18:06:14 ----A---- C:\WINDOWS\MicCal.exe
2015-02-01 18:06:13 ----A---- C:\WINDOWS\alcwzrd.exe
2015-02-01 18:06:13 ----A---- C:\WINDOWS\Alcmtr.exe
2015-02-01 18:06:12 ----HD---- C:\Program Files\InstallShield Installation Information
2015-02-01 18:06:12 ----D---- C:\Program Files\Realtek
2015-02-01 18:05:54 ----RHD---- C:\MSOCache
2015-02-01 18:05:35 ----A---- C:\WINDOWS\RtlExUpd.dll
2015-02-01 18:05:35 ----A---- C:\WINDOWS\HideWin.exe
2015-02-01 18:05:29 ----D---- C:\Program Files\Common Files\InstallShield
2015-02-01 18:03:23 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2015-02-01 18:03:08 ----N---- C:\WINDOWS\system32\nvuide.exe
2015-02-01 18:03:07 ----D---- C:\WINDOWS\system32\ReinstallBackups
2015-02-01 18:02:54 ----A---- C:\WINDOWS\system32\nvunrm.exe
2015-02-01 18:02:22 ----D---- C:\WINDOWS\nview
2015-02-01 18:02:22 ----A---- C:\WINDOWS\system32\nvudisp.exe
2015-02-01 18:02:05 ----A---- C:\WINDOWS\system32\NVUNINST.EXE
2015-02-01 18:02:03 ----D---- C:\Documents and Settings\admin\Data aplikací\InstallShield
2015-02-01 17:59:07 ----A---- C:\WINDOWS\system32\h323log.txt
2015-02-01 17:58:58 ----A---- C:\WINDOWS\iun6002.exe
2015-02-01 17:58:55 ----D---- C:\Program Files\Codec Pack - All In 1
2015-02-01 17:58:41 ----A---- C:\WINDOWS\Codec Pack - All In 1 Setup Log.txt
2015-02-01 17:58:04 ----A---- C:\WINDOWS\system32\drivers\audstub.sys
2015-02-01 17:57:49 ----A---- C:\WINDOWS\system32\hidserv.dll
2015-02-01 17:57:41 ----A---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2015-02-01 17:57:23 ----A---- C:\WINDOWS\system32\drivers\redbook.sys
2015-02-01 17:56:46 ----A---- C:\WINDOWS\system32\usbui.dll
2015-02-01 17:55:35 ----A---- C:\WINDOWS\imsins.BAK
2015-02-01 17:55:32 ----SHD---- C:\WINDOWS\Installer
2015-02-01 17:55:32 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-02-01 17:55:31 ----D---- C:\Program Files\Common Files\ODBC
2015-02-01 17:55:31 ----A---- C:\WINDOWS\ODBCINST.INI
2015-02-01 17:55:27 ----D---- C:\Program Files\Common Files\SpeechEngines
2015-02-01 17:55:26 ----RD---- C:\Program Files
2015-02-01 17:55:26 ----D---- C:\Program Files\Common Files\Microsoft Shared
2015-02-01 17:55:26 ----D---- C:\Program Files\Common Files
2015-02-01 17:55:23 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2015-02-01 17:55:23 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2015-02-01 17:55:23 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2015-02-01 17:55:21 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2015-02-01 17:55:21 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2015-02-01 17:55:21 ----RA---- C:\WINDOWS\system32\kbdur.dll
2015-02-01 17:55:21 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2015-02-01 17:55:21 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2015-02-01 17:55:21 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2015-02-01 17:55:21 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2015-02-01 17:55:21 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2015-02-01 17:55:20 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2015-02-01 17:55:20 ----RA---- C:\WINDOWS\system32\kbdru.dll
2015-02-01 17:55:20 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2015-02-01 17:55:20 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2015-02-01 17:55:18 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2015-02-01 17:55:18 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2015-02-01 17:55:18 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2015-02-01 17:55:18 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2015-02-01 17:55:18 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2015-02-01 17:55:18 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2015-02-01 17:55:18 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2015-02-01 17:55:17 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2015-02-01 17:55:17 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2015-02-01 17:55:17 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2015-02-01 17:55:17 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2015-02-01 17:55:16 ----RA---- C:\WINDOWS\system32\kbdest.dll
2015-02-01 17:55:13 ----A---- C:\WINDOWS\system32\kbdycl.dll
2015-02-01 17:55:13 ----A---- C:\WINDOWS\system32\kbdsl1.dll
2015-02-01 17:55:13 ----A---- C:\WINDOWS\system32\kbdsl.dll
2015-02-01 17:55:13 ----A---- C:\WINDOWS\system32\kbdro.dll
2015-02-01 17:55:13 ----A---- C:\WINDOWS\system32\kbdpl1.dll
2015-02-01 17:55:13 ----A---- C:\WINDOWS\system32\kbdpl.dll
2015-02-01 17:55:13 ----A---- C:\WINDOWS\system32\kbdhu1.dll
2015-02-01 17:55:13 ----A---- C:\WINDOWS\system32\kbdhu.dll
2015-02-01 17:55:13 ----A---- C:\WINDOWS\system32\kbdcr.dll
2015-02-01 17:55:13 ----A---- C:\WINDOWS\system32\KBDAL.DLL
2015-02-01 17:55:11 ----A---- C:\WINDOWS\system32\spxcoins.dll
2015-02-01 17:55:11 ----A---- C:\WINDOWS\system32\irclass.dll
2015-02-01 17:55:11 ----A---- C:\WINDOWS\system32\dgsetup.dll
2015-02-01 17:55:11 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2015-02-01 17:55:10 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2015-02-01 17:55:08 ----A---- C:\WINDOWS\TASKMAN.EXE
2015-02-01 17:55:08 ----A---- C:\WINDOWS\system32\drivers\irenum.sys
2015-02-01 17:55:08 ----A---- C:\WINDOWS\system32\batt.dll
2015-02-01 17:55:07 ----A---- C:\WINDOWS\NOTEPAD.EXE
2015-02-01 17:55:05 ----A---- C:\WINDOWS\system32\storprop.dll
2015-02-01 17:54:58 ----ASH---- C:\Documents and Settings\All Users\Data aplikací\desktop.ini
2015-02-01 17:53:05 ----D---- C:\WINDOWS\system32\CatRoot2
2015-02-01 17:53:05 ----D---- C:\WINDOWS\system32\CatRoot
2015-02-01 17:52:59 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2015-02-01 17:52:40 ----A---- C:\WINDOWS\setuplog.txt
2015-02-01 17:52:32 ----D---- C:\Documents and Settings
2015-02-01 17:52:31 ----SHD---- C:\System Volume Information
2015-02-01 17:52:30 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2015-02-01 17:51:01 ----SH---- C:\boot.ini
2015-02-01 17:44:33 ----RSHDC---- C:\WINDOWS\system32\dllcache
2015-02-01 17:44:33 ----RSD---- C:\WINDOWS\Fonts
2015-02-01 17:44:33 ----RD---- C:\WINDOWS\Web
2015-02-01 17:44:33 ----HD---- C:\WINDOWS\inf
2015-02-01 17:44:33 ----D---- C:\WINDOWS\WinSxS
2015-02-01 17:44:33 ----D---- C:\WINDOWS\twain_32
2015-02-01 17:44:33 ----D---- C:\WINDOWS\Temp
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\wins
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\wbem
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\usmt
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\spool
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\ShellExt
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\Setup
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\ras
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\oobe
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\npp
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\mui
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\inetsrv
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\IME
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\icsxml
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\ias
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\export
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\drivers\etc
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\drivers\disdn
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\drivers
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\dhcp
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\cs-cz
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\cs
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\config
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\3com_dmi
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\3076
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\2052
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\1054
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\1042
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\1041
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\1037
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\1033
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\1031
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\1029
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\1028
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32\1025
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system32
2015-02-01 17:44:33 ----D---- C:\WINDOWS\system
2015-02-01 17:44:33 ----D---- C:\WINDOWS\security
2015-02-01 17:44:33 ----D---- C:\WINDOWS\Resources
2015-02-01 17:44:33 ----D---- C:\WINDOWS\repair
2015-02-01 17:44:33 ----D---- C:\WINDOWS\Provisioning
2015-02-01 17:44:33 ----D---- C:\WINDOWS\pchealth
2015-02-01 17:44:33 ----D---- C:\WINDOWS\PeerNet
2015-02-01 17:44:33 ----D---- C:\WINDOWS\Network Diagnostic
2015-02-01 17:44:33 ----D---- C:\WINDOWS\mui
2015-02-01 17:44:33 ----D---- C:\WINDOWS\msapps
2015-02-01 17:44:33 ----D---- C:\WINDOWS\msagent
2015-02-01 17:44:33 ----D---- C:\WINDOWS\Media
2015-02-01 17:44:33 ----D---- C:\WINDOWS\L2Schemas
2015-02-01 17:44:33 ----D---- C:\WINDOWS\java
2015-02-01 17:44:33 ----D---- C:\WINDOWS\ime
2015-02-01 17:44:33 ----D---- C:\WINDOWS\Help
2015-02-01 17:44:33 ----D---- C:\WINDOWS\ehome
2015-02-01 17:44:33 ----D---- C:\WINDOWS\Driver Cache
2015-02-01 17:44:33 ----D---- C:\WINDOWS\Debug
2015-02-01 17:44:33 ----D---- C:\WINDOWS\Cursors
2015-02-01 17:44:33 ----D---- C:\WINDOWS\Connection Wizard
2015-02-01 17:44:33 ----D---- C:\WINDOWS\Config
2015-02-01 17:44:33 ----D---- C:\WINDOWS\AppPatch
2015-02-01 17:44:33 ----D---- C:\WINDOWS\addins
2015-02-01 17:44:33 ----D---- C:\WINDOWS
2015-02-01 17:44:33 ----ASH---- C:\pagefile.sys
2015-02-01 17:23:07 ----D---- C:\Documents and Settings\admin\Data aplikací\GHISLER
2015-02-01 17:12:25 ----D---- C:\Documents and Settings\admin\Data aplikací\Identities
2015-02-01 17:12:23 ----HD---- C:\Program Files\Uninstall Information
2015-02-01 17:12:05 ----ASH---- C:\Documents and Settings\admin\Data aplikací\desktop.ini
2015-02-01 17:12:04 ----SD---- C:\Documents and Settings\admin\Data aplikací\Microsoft
2015-02-01 17:10:58 ----D---- C:\WINDOWS\SoftwareDistribution
2015-02-01 17:10:56 ----SD---- C:\WINDOWS\system32\Microsoft
2015-02-01 17:10:56 ----D---- C:\WINDOWS\Prefetch
2015-02-01 17:10:56 ----A---- C:\WINDOWS\SchedLgU.Txt
2015-02-01 17:08:37 ----AS---- C:\WINDOWS\bootstat.dat
2015-02-01 17:05:30 ----D---- C:\WINDOWS\system32\xircom
2015-02-01 17:05:30 ----D---- C:\Program Files\xerox
2015-02-01 17:05:30 ----D---- C:\Program Files\microsoft frontpage
2015-02-01 17:05:03 ----RASH---- C:\MSDOS.SYS
2015-02-01 17:05:03 ----RASH---- C:\IO.SYS
2015-02-01 17:05:03 ----A---- C:\WINDOWS\control.ini
2015-02-01 17:05:03 ----A---- C:\CONFIG.SYS
2015-02-01 17:05:03 ----A---- C:\AUTOEXEC.BAT
2015-02-01 17:04:46 ----A---- C:\WINDOWS\OEWABLog.txt
2015-02-01 17:04:40 ----A---- C:\WINDOWS\system32\mapi32.dll
2015-02-01 17:03:38 ----RD---- C:\WINDOWS\Offline Web Pages
2015-02-01 17:03:37 ----SD---- C:\WINDOWS\Downloaded Program Files
2015-02-01 17:03:23 ----HD---- C:\Program Files\WindowsUpdate
2015-02-01 17:03:20 ----D---- C:\Program Files\Online Services
2015-02-01 17:03:01 ----D---- C:\WINDOWS\system32\DirectX
2015-02-01 17:02:55 ----A---- C:\WINDOWS\system32\atrace.dll
2015-02-01 17:02:53 ----A---- C:\WINDOWS\system32\desktop.ini
2015-02-01 17:02:53 ----A---- C:\WINDOWS\desktop.ini
2015-02-01 17:02:46 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2015-02-01 17:02:44 ----D---- C:\Program Files\Common Files\Services
2015-02-01 17:02:44 ----A---- C:\WINDOWS\system32\acctres.dll
2015-02-01 17:02:41 ----SD---- C:\WINDOWS\Tasks
2015-02-01 17:02:41 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2015-02-01 17:02:40 ----D---- C:\Program Files\Common Files\MSSoap
2015-02-01 17:02:36 ----D---- C:\WINDOWS\srchasst
2015-02-01 17:02:35 ----D---- C:\WINDOWS\system32\Macromed
2015-02-01 17:02:32 ----A---- C:\WINDOWS\system32\wuweb.dll
2015-02-01 17:02:32 ----A---- C:\WINDOWS\system32\wucltui.dll
2015-02-01 17:02:32 ----A---- C:\WINDOWS\system32\wuauserv.dll
2015-02-01 17:02:32 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2015-02-01 17:02:31 ----A---- C:\WINDOWS\system32\wups.dll
2015-02-01 17:02:31 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-02-01 17:02:31 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2015-02-01 17:02:31 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-02-01 17:02:31 ----A---- C:\WINDOWS\system32\wuapi.dll
2015-02-01 17:02:31 ----A---- C:\WINDOWS\system32\bitsprx4.dll
2015-02-01 17:02:31 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2015-02-01 17:02:30 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2015-02-01 17:02:30 ----A---- C:\WINDOWS\system32\qmgr.dll
2015-02-01 17:02:30 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2015-02-01 17:02:27 ----D---- C:\Program Files\Movie Maker
2015-02-01 17:02:07 ----A---- C:\WINDOWS\system32\safrslv.dll
2015-02-01 17:02:07 ----A---- C:\WINDOWS\system32\safrdm.dll
2015-02-01 17:02:07 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2015-02-01 17:02:07 ----A---- C:\WINDOWS\system32\racpldlg.dll
2015-02-01 17:02:04 ----A---- C:\WINDOWS\system32\fltMc.exe
2015-02-01 17:02:04 ----A---- C:\WINDOWS\system32\fltlib.dll
2015-02-01 17:02:04 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2015-02-01 17:02:03 ----D---- C:\WINDOWS\system32\Restore
2015-02-01 17:02:03 ----A---- C:\WINDOWS\system32\srsvc.dll
2015-02-01 17:02:03 ----A---- C:\WINDOWS\system32\srrstr.dll
2015-02-01 17:02:03 ----A---- C:\WINDOWS\system32\srclient.dll
2015-02-01 17:02:03 ----A---- C:\WINDOWS\system32\drivers\sr.sys
2015-02-01 17:02:02 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2015-02-01 17:02:02 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2015-02-01 17:02:02 ----A---- C:\WINDOWS\system32\mnmdd.dll
2015-02-01 17:02:02 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2015-02-01 17:02:02 ----A---- C:\WINDOWS\system32\ils.dll
2015-02-01 17:02:01 ----A---- C:\WINDOWS\system32\msconf.dll
2015-02-01 17:01:59 ----D---- C:\Program Files\NetMeeting
2015-02-01 17:01:59 ----A---- C:\WINDOWS\system32\msoert2.dll
2015-02-01 17:01:58 ----A---- C:\WINDOWS\system32\msoeacct.dll
2015-02-01 17:01:57 ----A---- C:\WINDOWS\system32\inetres.dll
2015-02-01 17:01:57 ----A---- C:\WINDOWS\system32\inetcomm.dll
2015-02-01 17:01:55 ----D---- C:\Program Files\Outlook Express
2015-02-01 17:01:55 ----A---- C:\WINDOWS\system32\schedsvc.dll
2015-02-01 17:01:55 ----A---- C:\WINDOWS\system32\mstinit.exe
2015-02-01 17:01:55 ----A---- C:\WINDOWS\system32\mstask.dll
2015-02-01 17:01:54 ----A---- C:\WINDOWS\system32\isign32.dll
2015-02-01 17:01:54 ----A---- C:\WINDOWS\system32\inetcfg.dll
2015-02-01 17:01:54 ----A---- C:\WINDOWS\system32\icwphbk.dll
2015-02-01 17:01:54 ----A---- C:\WINDOWS\system32\icwdial.dll
2015-02-01 17:01:48 ----D---- C:\Program Files\Common Files\System
2015-02-01 17:01:47 ----D---- C:\Program Files\Internet Explorer
2015-02-01 17:01:16 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2015-02-01 17:01:08 ----D---- C:\Program Files\ComPlus Applications
2015-02-01 17:01:06 ----A---- C:\WINDOWS\vbaddin.ini
2015-02-01 17:01:06 ----A---- C:\WINDOWS\vb.ini
2015-02-01 17:01:01 ----D---- C:\WINDOWS\Registration
2015-02-01 17:00:53 ----D---- C:\Program Files\Windows Media Player
2015-02-01 17:00:47 ----D---- C:\Program Files\Messenger
2015-02-01 17:00:43 ----D---- C:\Program Files\MSN Gaming Zone
2015-02-01 17:00:43 ----A---- C:\WINDOWS\system32\write.exe
2015-02-01 17:00:33 ----A---- C:\WINDOWS\system32\sndvol32.exe
2015-02-01 17:00:33 ----A---- C:\WINDOWS\system32\hticons.dll
2015-02-01 17:00:32 ----A---- C:\WINDOWS\system32\winchat.exe
2015-02-01 17:00:32 ----A---- C:\WINDOWS\system32\avwav.dll
2015-02-01 17:00:32 ----A---- C:\WINDOWS\system32\avtapi.dll
2015-02-01 17:00:32 ----A---- C:\WINDOWS\system32\avmeter.dll
2015-02-01 17:00:24 ----A---- C:\WINDOWS\system32\charmap.exe
2015-02-01 17:00:24 ----A---- C:\WINDOWS\system32\getuname.dll
2015-02-01 17:00:24 ----A---- C:\WINDOWS\system32\calc.exe
2015-02-01 17:00:23 ----A---- C:\WINDOWS\system32\winmine.exe
2015-02-01 17:00:23 ----A---- C:\WINDOWS\system32\sol.exe
2015-02-01 17:00:23 ----A---- C:\WINDOWS\system32\mshearts.exe
2015-02-01 17:00:22 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2015-02-01 17:00:22 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2015-02-01 17:00:22 ----A---- C:\WINDOWS\system32\tslabels.ini
2015-02-01 17:00:22 ----A---- C:\WINDOWS\system32\tskill.exe
2015-02-01 17:00:22 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2015-02-01 17:00:22 ----A---- C:\WINDOWS\system32\tscon.exe
2015-02-01 17:00:22 ----A---- C:\WINDOWS\system32\shadow.exe
2015-02-01 17:00:22 ----A---- C:\WINDOWS\system32\reset.exe
2015-02-01 17:00:22 ----A---- C:\WINDOWS\system32\freecell.exe
2015-02-01 17:00:21 ----A---- C:\WINDOWS\system32\rwinsta.exe
2015-02-01 17:00:21 ----A---- C:\WINDOWS\system32\regini.exe
2015-02-01 17:00:21 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2015-02-01 17:00:21 ----A---- C:\WINDOWS\system32\qwinsta.exe
2015-02-01 17:00:21 ----A---- C:\WINDOWS\system32\qappsrv.exe
2015-02-01 17:00:21 ----A---- C:\WINDOWS\system32\msg.exe
2015-02-01 17:00:21 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2015-02-01 17:00:21 ----A---- C:\WINDOWS\system32\logoff.exe
2015-02-01 17:00:21 ----A---- C:\WINDOWS\system32\cdmodem.dll
2015-02-01 17:00:14 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2015-02-01 17:00:13 ----A---- C:\WINDOWS\system32\sndrec32.exe
2015-02-01 17:00:13 ----A---- C:\WINDOWS\system32\mplay32.exe
2015-02-01 17:00:13 ----A---- C:\WINDOWS\system32\hypertrm.dll
2015-02-01 17:00:13 ----A---- C:\WINDOWS\system32\accwiz.exe
2015-02-01 17:00:12 ----D---- C:\Program Files\Windows NT
2015-02-01 17:00:12 ----A---- C:\WINDOWS\system32\spider.exe
2015-02-01 17:00:12 ----A---- C:\WINDOWS\system32\mspaint.exe
2015-02-01 17:00:12 ----A---- C:\WINDOWS\system32\clipbrd.exe
2015-02-01 17:00:11 ----A---- C:\WINDOWS\system32\drivers\tdtcp.sys
2015-02-01 17:00:11 ----A---- C:\WINDOWS\system32\drivers\tdpipe.sys
2015-02-01 17:00:11 ----A---- C:\WINDOWS\system32\drivers\rdpwd.sys
2015-02-01 17:00:10 ----A---- C:\WINDOWS\system32\tsgqec.dll
2015-02-01 17:00:10 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2015-02-01 17:00:10 ----A---- C:\WINDOWS\system32\rhttpaa.dll
2015-02-01 17:00:10 ----A---- C:\WINDOWS\system32\aaclient.dll
2015-02-01 17:00:09 ----A---- C:\WINDOWS\system32\sessmgr.exe
2015-02-01 17:00:09 ----A---- C:\WINDOWS\system32\remotepg.dll
2015-02-01 17:00:09 ----A---- C:\WINDOWS\system32\rdshost.exe
2015-02-01 17:00:09 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2015-02-01 17:00:09 ----A---- C:\WINDOWS\system32\mstscax.dll
2015-02-01 17:00:09 ----A---- C:\WINDOWS\system32\mstsc.exe
2015-02-01 17:00:08 ----A---- C:\WINDOWS\system32\termsrv.dll
2015-02-01 17:00:08 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2015-02-01 17:00:08 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2015-02-01 17:00:08 ----A---- C:\WINDOWS\system32\rdpclip.exe
2015-02-01 17:00:08 ----A---- C:\WINDOWS\system32\rdchost.dll
2015-02-01 17:00:08 ----A---- C:\WINDOWS\system32\qprocess.exe
2015-02-01 17:00:08 ----A---- C:\WINDOWS\system32\icaapi.dll
2015-02-01 17:00:08 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2015-02-01 17:00:07 ----D---- C:\WINDOWS\system32\MsDtc
2015-02-01 17:00:07 ----A---- C:\WINDOWS\system32\mtxoci.dll
2015-02-01 17:00:07 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2015-02-01 17:00:07 ----A---- C:\WINDOWS\system32\msdtctm.dll
2015-02-01 17:00:07 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2015-02-01 17:00:06 ----A---- C:\WINDOWS\system32\xolehlp.dll
2015-02-01 17:00:06 ----A---- C:\WINDOWS\system32\msdtclog.dll
2015-02-01 17:00:06 ----A---- C:\WINDOWS\system32\msdtc.exe
2015-02-01 17:00:05 ----D---- C:\WINDOWS\system32\Com
2015-02-01 17:00:05 ----A---- C:\WINDOWS\system32\stclient.dll
2015-02-01 17:00:05 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2015-02-01 17:00:05 ----A---- C:\WINDOWS\system32\mtxex.dll
2015-02-01 17:00:05 ----A---- C:\WINDOWS\system32\mtxdm.dll
2015-02-01 17:00:05 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2015-02-01 17:00:05 ----A---- C:\WINDOWS\system32\comrepl.dll
2015-02-01 17:00:05 ----A---- C:\WINDOWS\system32\comaddin.dll
2015-02-01 17:00:05 ----A---- C:\WINDOWS\system32\colbact.dll
2015-02-01 17:00:04 ----A---- C:\WINDOWS\system32\clbcatex.dll
2015-02-01 17:00:04 ----A---- C:\WINDOWS\system32\catsrvut.dll
2015-02-01 17:00:04 ----A---- C:\WINDOWS\system32\catsrvps.dll
2015-02-01 17:00:04 ----A---- C:\WINDOWS\system32\catsrv.dll
2015-02-01 17:00:03 ----A---- C:\WINDOWS\system32\comuid.dll
2015-02-01 17:00:03 ----A---- C:\WINDOWS\system32\comsvcs.dll
2015-02-01 17:00:03 ----A---- C:\WINDOWS\system32\comsnap.dll
2015-02-01 17:00:03 ----A---- C:\WINDOWS\system32\clbcatq.dll
2015-02-01 16:59:57 ----A---- C:\WINDOWS\system32\servdeps.dll
2015-02-01 16:59:56 ----A---- C:\WINDOWS\system32\mmfutil.dll
2015-02-01 16:59:56 ----A---- C:\WINDOWS\system32\licwmi.dll
2015-02-01 16:59:56 ----A---- C:\WINDOWS\system32\cmprops.dll
2015-02-01 16:59:53 ----A---- C:\WINDOWS\system32\drivers\termdd.sys
2015-02-01 16:59:53 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys

======List of files/folders modified in the last 1 month======

2015-02-01 18:38:22 ----A---- C:\WINDOWS\win.ini
2015-02-01 18:38:22 ----A---- C:\WINDOWS\system.ini
2015-02-01 18:28:36 ----SHD---- C:\RECYCLER
2015-02-01 18:28:07 ----D---- C:\win
2015-02-01 17:04:26 ----ASH---- C:\WINDOWS\fonts\desktop.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-02-01 49944]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-02-01 206248]
R0 nvata;nvata; C:\WINDOWS\system32\DRIVERS\nvata.sys [2006-10-18 105472]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2015-02-01 55240]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-02-01 787800]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-02-01 423784]
R1 aswTdi;aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [2015-02-01 57928]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-02-01 24184]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-02-01 73480]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-03-01 4484608]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2007-08-02 12160]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2013-02-08 12648960]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-09-27 57856]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-09-27 19968]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-02-01 50344]
S2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2006-10-31 155715]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-01-02 315488]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-01-23 114800]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]

-----------------EOF-----------------

#8 Příspěvek od **Rudy** » 02 úno 2015 17:30

Dvouklikem na soubor C:\Program Files\trend micro\admin.exe spusťte HijackThis. Klikněte na "Do a system scan only" a v otevřeném okně vlevo ve čtverečcích zaškrtněte:

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

Klikněte na >FixChecked<. Pak znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.

jasanek · #9 Příspěvek od **jasanek** » 02 úno 2015 17:49

Hotovo.

#10 Příspěvek od **Rudy** » 02 úno 2015 17:50

Nastala nějaká změna?

jasanek · #11 Příspěvek od **jasanek** » 02 úno 2015 18:00

Jak jsem zmiňoval, v neděli jsem musel přeinstalovat windows. A od přeinstalace se zatím ten problém neobjevil. Ale měl jsem strach jestli to někde nespí a třeba po týdnu to zase nevyskočí. Takže počítač v tuto chvílí funguje bez zjevných problémů.

#12 Příspěvek od **Rudy** » 02 úno 2015 19:13

Tak to jsem rád.

jasanek · #13 Příspěvek od **jasanek** » 10 úno 2015 13:57

Omlouvám se, že odpovídám až teď. Stále vše ok. Takže bych nejen za sebe, ale i sousedku chtěl velice moc poděkovat.
Takže veliké díky.

#14 Příspěvek od **Rudy** » 10 úno 2015 17:43

Rádo se stalo!

VIRY.CZ

seznam one-time-password

seznam one-time-password

Re: seznam one-time-password

Re: seznam one-time-password

Re: seznam one-time-password

Re: seznam one-time-password

Re: seznam one-time-password

Re: seznam one-time-password

Re: seznam one-time-password

Re: seznam one-time-password

Re: seznam one-time-password

Re: seznam one-time-password

Re: seznam one-time-password

Re: seznam one-time-password

Re: seznam one-time-password