Prosim kontrolu

[hoblik007]

Logfile of random's system information tool 1.08 (written by random/random)
Run by Golden at 2011-03-28 09:48:09
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 723 MB (7%) free of 10 GB
Total RAM: 512 MB (23% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:48:34, on 28.3.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Creative\Shared Files\CTAudSvc.exe
C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\oodag.exe
C:\WINDOWS\system32\svchost.exe
D:\install\Sledovani PC\Spy manager\SpyManager20.exe - To je moje
C:\Program Files\Alwil Software\Avast5\avastUI.exe
C:\WINDOWS\system32\CTHELPER.EXE
C:\Program Files\netmon\netmon.exe
C:\WINDOWS\system32\ctfmon.exe
D:\install\Alcohol 120\Medicina 2\Plugins\Helper\AlSrvN.exe
C:\Program Files\Common Files\VideoMate\ComproRemote.exe
C:\Program Files\Common Files\VideoMate\ComproSchedulerDTV.exe
C:\Program Files\Fomine Net Send GUI\NetSendGUI.exe
C:\WINDOWS\system32\taskmgr.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\cmd.exe
D:\install\totalcmd\TOTALCMD.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
D:\install\RSIT.exe
C:\Program Files\trend micro\Golden.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com?o=15187&l=dis
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common

Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [CmPCIaudio] RunDll32 CMICNFG3.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [SpyMng] D:\install\Sledovani PC\Spy manager\SpyManager20.exe autorun
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [netmon.exe] C:\Program Files\netmon\netmon.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [AlSrvN] D:\install\Alcohol 120\Medicina 2\Plugins\Helper\AlSrvN.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: ComproRemote.lnk = C:\Program Files\Common Files\VideoMate\ComproRemote.exe
O4 - Global Startup: ComproSchedulerDTV.lnk = C:\Program Files\Common Files\VideoMate\ComproSchedulerDTV.exe
O4 - Global Startup: Net Send GUI.lnk = C:\Program Files\Fomine Net Send GUI\NetSendGUI.exe
O8 - Extra context menu item: Download with ImTOO YouTube HD Video Converter - C:\Program Files\ImTOO\YouTube HD Video

Converter\upod_link.HTM
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file

missing)
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package 2) -

http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package 1) -

http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: ANIWZCSd Service (ANIWZCSdService) - Wireless Service - C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs

Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTAudSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common

Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Installer Service - Unknown owner - C:\Documents and Settings\All Users\Data

aplikací\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\{3FC42713-B6E7-49AA-A553-A224FE9828A8}\Installer\InstallerSe

rvice.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files\Alcohol Soft\Alcohol

120\StarWind\StarWindServiceAE.exe

--
End of file - 6421 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-790525478-746137067-1343024091-1003.job
C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-790525478-746137067-1343024091-1003.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-01-30 62376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-01-25 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-01-25 79648]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"CmPCIaudio"=RunDll32 CMICNFG3.cpl,CMICtrlWnd []
"SpyMng"=D:\install\Sledovani PC\Spy manager\SpyManager20.exe [2007-07-27 66560]
"avast5"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2011-01-13 3396624]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2006-10-22 7700480]
"CTHelper"=C:\WINDOWS\system32\CTHELPER.EXE [2010-03-18 19456]
"netmon.exe"=C:\Program Files\netmon\netmon.exe [2006-10-24 5279232]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"AlSrvN"=D:\install\Alcohol 120\Medicina 2\Plugins\Helper\AlSrvN.exe [2010-02-06 53760]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-11-15 932288]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe [2011-01-30 35736]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2010-08-20 33120]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ANIWZCS2Service]
C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe [2007-01-19 49152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CloneCDTray]
C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe [2009-01-30 57344]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\D-Link AirPlus XtremeG DWL-G520]
C:\Program Files\D-Link\AirPlus XtremeG DWL-G520\AirPlusCFG.exe [2007-06-21 1327104]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\JetVoice]
D:\JETVOICE\JETVOICE.EXE [2003-09-08 217612]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideoRepair]
C:\Program Files\Logitech\Video\ISStart.exe [2004-02-12 188416]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideoTray]
C:\Program Files\Logitech\Video\LogiTray.exe [2004-02-12 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn GUI]
C:\Program Files\LogMeIn\x86\LogMeInSystray.exe [2010-09-17 63048]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Nero DriveSpeed]
D:\install\DVDDRI~1\NERODR~1.EXE [2004-12-19 593920]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
C:\WINDOWS\system32\NvCpl.dll [2006-10-22 7700480]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
C:\WINDOWS\system32\NvMcTray.dll [2006-10-22 86016]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
nwiz.exe /install []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe -onlytray []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files\Skype\Phone\Skype.exe [2011-01-26 15026056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-02-18 248040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
C:\Program Files\Real\RealPlayer\update\realsched.exe -osboot []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po

spuštění^ComproSchedulerDTV.lnk]
C:\PROGRA~1\COMMON~1\VIDEOM~1\COMPRO~2.EXE [2010-08-09 389120]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Golden^Nabídka Start^Programy^Po

spuštění^CesarFTP.lnk]
C:\PROGRA~1\CesarFTP\CesarFTP.exe [2002-12-01 291328]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"UleadBurningHelper"=3
"sp_rssrv"=3
"JavaQuickStarterService"=2
"gusvc"=3
"gupdate"=2
"srservice"=2
"MSDTC"=3
"Dot3svc"=3
"clr_optimization_v2.0.50727_32"=3

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
ComproRemote.lnk - C:\Program Files\Common Files\VideoMate\ComproRemote.exe
ComproSchedulerDTV.lnk - C:\Program Files\Common Files\VideoMate\ComproSchedulerDTV.exe
Net Send GUI.lnk - C:\Program Files\Fomine Net Send GUI\NetSendGUI.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LMIinit]
C:\WINDOWS\system32\LMIinit.dll [2010-12-08 87424]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Google\Google Earth\client\googleearth.exe"="C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google

Earth"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe"="C:\Program Files\Spyware

Terminator\SpywareTerminatorUpdate.exe:*:Enabled:Spyware Terminator Update Support"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"
"C:\WINDOWS\system32\sessmgr.exe"="C:\WINDOWS\system32\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\CesarFTP\Server.exe"="C:\Program Files\CesarFTP\Server.exe:*:Enabled:Server"
"C:\Program Files\Miranda IM\miranda32.exe"="C:\Program Files\Miranda IM\miranda32.exe:*:Enabled:Miranda IM"
"C:\Program Files\Fomine Net Send GUI\NetSendGUI.exe"="C:\Program Files\Fomine Net Send GUI\NetSendGUI.exe:*:Enabled:Fomine NetSend GUI"
"C:\Program Files\JetAudio\jetChat.exe"="C:\Program Files\JetAudio\jetChat.exe:*:Enabled:jetChat - chatting for jetCast"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======List of files/folders created in the last 1 months======

2011-03-28 09:48:11 ----D---- C:\Program Files\trend micro
2011-03-28 09:48:09 ----D---- C:\rsit
2011-03-27 13:07:02 ----SHD---- C:\Config.Msi
2011-03-25 01:22:31 ----D---- C:\zaloha record
2011-03-24 19:54:37 ----A---- C:\WINDOWS\system32\fmod.dll
2011-03-24 19:54:33 ----A---- C:\WINDOWS\system32\smartsubclass.dll
2011-03-24 19:54:27 ----A---- C:\WINDOWS\system32\zip32.dll
2011-03-24 19:54:27 ----A---- C:\WINDOWS\system32\unzip32.dll
2011-03-24 19:52:10 ----D---- C:\Program Files\Atmosphere Deluxe
2011-03-24 11:30:15 ----D---- C:\Documents and Settings\Golden\Data aplikací\SoundSpectrum
2011-03-24 11:27:35 ----D---- C:\Program Files\SoundSpectrum
2011-03-23 15:06:35 ----D---- C:\zastupci
2011-03-23 15:03:05 ----A---- C:\WINDOWS\clone.bat
2011-03-23 15:02:07 ----A---- C:\WINDOWS\cdo.bat
2011-03-23 15:02:07 ----A---- C:\WINDOWS\cdc.bat
2011-03-23 13:15:03 ----D---- C:\Scr
2011-03-23 12:42:28 ----A---- C:\WINDOWS\nircmd.exe
2011-03-23 03:15:28 ----D---- C:\Program Files\AD Stream Recorder
2011-03-23 02:15:19 ----D---- C:\Program Files\TFD Scope
2011-03-22 11:05:50 ----A---- C:\WINDOWS\plocha.bat
2011-03-22 10:58:30 ----A---- C:\WINDOWS\nircmdc.exe
2011-03-22 10:57:07 ----A---- C:\WINDOWS\cmdx.exe
2011-03-22 02:09:09 ----A---- C:\WINDOWS\system32\WNASPI2K.BAK
2011-03-22 02:09:08 ----A---- C:\WINDOWS\system32\drivers\ASPI2K.BAK
2011-03-22 02:08:05 ----D---- C:\adaptec
2011-03-22 02:06:06 ----D---- C:\Program Files\Traverso
2011-03-21 23:12:28 ----D---- C:\Program Files\Nokia
2011-03-21 16:23:17 ----D---- C:\Documents and Settings\Golden\Data aplikací\OpenOffice.org
2011-03-21 16:09:16 ----D---- C:\Program Files\OpenOffice.org 3
2011-03-21 15:21:21 ----A---- C:\WINDOWS\system32\BASSMOD.dll
2011-03-21 15:16:49 ----D---- C:\Documents and Settings\Golden\Data aplikací\ACD Systems
2011-03-21 15:09:49 ----D---- C:\Documents and Settings\All Users\Data aplikací\ACD Systems
2011-03-21 15:09:39 ----D---- C:\Program Files\ACD Systems
2011-03-21 15:09:38 ----D---- C:\Program Files\Common Files\ACD Systems
2011-03-21 15:08:49 ----A---- C:\WINDOWS\system32\drivers\pfc.sys
2011-03-21 15:06:04 ----D---- C:\WINDOWS\Downloaded Installations
2011-03-21 13:23:39 ----D---- C:\Program Files\Účtovník
2011-03-21 12:36:09 ----D---- C:\Program Files\Penezenka
2011-03-19 23:28:51 ----A---- C:\WINDOWS\system32\drivers\tscomm.sys
2011-03-19 23:26:24 ----D---- C:\Uninstall
2011-03-19 23:14:56 ----A---- C:\WINDOWS\system32\tamos_nt.dll
2011-03-19 08:05:28 ----A---- C:\WINDOWS\system32\NCTWMAFile2.dll
2011-03-19 08:05:26 ----A---- C:\WINDOWS\system32\NCTAudioVisualization2.dll
2011-03-19 08:05:25 ----A---- C:\WINDOWS\system32\NCTAudioTransform2.dll
2011-03-19 08:05:23 ----A---- C:\WINDOWS\system32\NCTAudioRecord2.dll
2011-03-19 08:05:19 ----A---- C:\WINDOWS\system32\NCTAudioPlayer2.dll
2011-03-19 08:05:17 ----A---- C:\WINDOWS\system32\NCTAudioInformation2.dll
2011-03-19 08:05:14 ----A---- C:\WINDOWS\system32\NCTAudioFile2.dll
2011-03-19 08:05:11 ----A---- C:\WINDOWS\system32\NCTAudioEditor2.dll
2011-03-19 08:05:10 ----A---- C:\WINDOWS\system32\NCTAudioDisplay2.dll
2011-03-19 08:05:08 ----A---- C:\WINDOWS\system32\NCTAudioDesign2.dll
2011-03-19 08:05:06 ----A---- C:\WINDOWS\system32\NCTAudioCDGrabber2.dll
2011-03-19 08:04:53 ----A---- C:\WINDOWS\system32\msvcr71d.dll
2011-03-19 08:04:53 ----A---- C:\WINDOWS\system32\msvcr70.dll
2011-03-19 08:04:47 ----D---- C:\Program Files\Magic Audio Editor Pro
2011-03-18 15:52:47 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2011-03-18 15:52:47 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2011-03-18 15:52:46 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2011-03-18 15:52:44 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2011-03-18 15:52:42 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2011-03-18 15:52:40 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2011-03-18 15:52:39 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2011-03-18 15:52:37 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2011-03-18 15:52:32 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2011-03-18 15:52:32 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2011-03-18 15:52:28 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2011-03-18 15:52:27 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2011-03-18 15:52:23 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2011-03-18 15:52:20 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2011-03-18 15:52:17 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2011-03-18 15:52:05 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2011-03-18 15:52:03 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2011-03-18 15:51:59 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2011-03-18 15:51:58 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2011-03-18 15:51:55 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2011-03-18 15:51:55 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2011-03-18 15:51:53 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2011-03-18 15:51:50 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2011-03-18 15:51:50 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2011-03-18 15:51:48 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2011-03-18 15:51:47 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2011-03-18 15:51:45 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2011-03-18 15:51:45 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2011-03-18 15:51:41 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2011-03-18 15:51:38 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2011-03-18 15:51:38 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2011-03-18 15:51:36 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2011-03-18 15:51:35 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2011-03-18 15:51:33 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2011-03-18 15:51:33 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2011-03-18 15:51:32 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2011-03-18 15:51:30 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2011-03-18 15:51:30 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2011-03-18 15:51:25 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2011-03-18 15:51:23 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2011-03-18 15:51:23 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2011-03-18 15:51:21 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2011-03-18 15:51:20 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2011-03-18 15:51:18 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2011-03-18 15:51:18 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2011-03-18 15:51:15 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2011-03-18 15:51:13 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2011-03-18 15:51:11 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2011-03-18 15:51:08 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2011-03-18 15:51:07 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2011-03-18 15:51:06 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2011-03-18 15:51:03 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2011-03-18 15:51:01 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2011-03-18 15:50:59 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2011-03-18 15:50:58 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2011-03-18 15:50:56 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2011-03-18 15:50:51 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2011-03-18 15:50:49 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2011-03-18 15:50:49 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2011-03-18 15:50:47 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2011-03-18 15:50:47 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2011-03-18 15:50:45 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2011-03-18 15:50:45 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2011-03-18 15:50:41 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2011-03-18 15:50:38 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2011-03-18 15:50:32 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2011-03-18 15:50:26 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2011-03-18 15:50:26 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2011-03-18 15:50:20 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2011-03-18 15:50:16 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2011-03-18 15:50:14 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2011-03-18 15:50:13 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2011-03-18 15:50:11 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2011-03-18 15:50:11 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2011-03-18 15:50:09 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2011-03-18 15:50:07 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2011-03-18 15:50:07 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2011-03-18 15:50:06 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2011-03-18 15:50:05 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2011-03-18 15:50:04 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2011-03-18 15:49:53 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2011-03-18 15:49:51 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2011-03-18 15:49:51 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2011-03-18 15:49:50 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2011-03-18 15:49:48 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2011-03-18 15:49:47 ----A---- C:\WINDOWS\system32\xinput9_1_0.dll
2011-03-18 15:49:46 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2011-03-18 15:49:45 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2011-03-18 15:49:37 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2011-03-18 15:46:54 ----HD---- C:\WINDOWS\msdownld.tmp
2011-03-18 15:46:28 ----D---- C:\WINDOWS\Logs
2011-03-18 14:02:16 ----D---- C:\Program Files\uTorrent
2011-03-18 14:01:47 ----D---- C:\Documents and Settings\Golden\Data aplikací\uTorrent
2011-03-18 13:27:44 ----D---- C:\Program Files\Common Files\Doblon
2011-03-18 13:08:59 ----D---- C:\Program Files\Doblon
2011-03-18 12:56:49 ----A---- C:\WINDOWS\system32\WNASPINT.DLL
2011-03-18 12:56:45 ----A---- C:\WINDOWS\system32\MFC71U.DLL
2011-03-18 12:56:44 ----D---- C:\Program Files\Dart Karaoke Studio CDG
2011-03-18 12:40:19 ----D---- C:\Program Files\KaraFun
2011-03-18 12:30:22 ----A---- C:\WINDOWS\iun6002.exe
2011-03-18 12:30:17 ----D---- C:\Program Files\Karaoke Anything!
2011-03-18 11:29:00 ----A---- C:\WINDOWS\system32\LIBMMD.DLL
2011-03-18 11:28:54 ----D---- C:\Program Files\VDJ5
2011-03-18 11:00:54 ----D---- C:\OtsLabs
2011-03-18 10:25:09 ----D---- C:\Documents and Settings\Golden\Data aplikací\Pioneer
2011-03-18 10:23:35 ----D---- C:\WINDOWS\system32\ipp20
2011-03-18 10:22:09 ----D---- C:\Program Files\Pioneer
2011-03-18 06:24:25 ----D---- C:\Documents and Settings\All Users\Data aplikací\ImTOO
2011-03-18 05:37:17 ----D---- C:\Documents and Settings\Golden\Data aplikací\ImTOO
2011-03-18 05:11:21 ----D---- C:\Documents and Settings\Golden\Data aplikací\ImTOO Software Studio
2011-03-18 05:10:18 ----D---- C:\Program Files\ImTOO
2011-03-18 03:14:07 ----A---- C:\WINDOWS\JFEXRMC.INI
2011-03-18 03:04:59 ----D---- C:\Documents and Settings\Golden\Data aplikací\COWON
2011-03-18 03:01:38 ----D---- C:\Program Files\Common Files\COWON
2011-03-18 03:01:34 ----D---- C:\Program Files\JetAudio
2011-03-17 22:12:40 ----D---- C:\Documents and Settings\All Users\Data aplikací\SlySoft
2011-03-17 22:11:54 ----D---- C:\Program Files\SlySoft
2011-03-17 22:03:41 ----D---- C:\Program Files\Elaborate Bytes
2011-03-14 00:12:04 ----D---- C:\Documents and Settings\All Users\Data aplikací\SecTaskMan
2011-03-14 00:11:46 ----D---- C:\Program Files\Security Task Manager
2011-03-11 16:25:04 ----D---- C:\Program Files\Free Create-Burn ISO Image
2011-03-08 19:34:24 ----D---- C:\Program Files\Fomine Net Send GUI
2011-03-07 04:08:13 ----N---- C:\WINDOWS\system32\ElbyCDIO.dll
2011-03-02 20:04:12 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2011-03-02 20:01:32 ----D---- C:\WINDOWS\system32\drivers\UMDF
2011-03-02 20:01:31 ----D---- C:\WINDOWS\system32\LogFiles
2011-03-02 20:01:20 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$
2011-03-02 19:38:12 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2011-03-02 19:37:31 ----N---- C:\WINDOWS\system32\spmsgXP_2k3.dll
2011-03-02 19:37:29 ----HDC---- C:\WINDOWS\$NtUninstallWdf01009$
2011-03-01 23:24:08 ----A---- C:\WINDOWS\system32\drivers\cmudax3.sys
2011-03-01 23:24:08 ----A---- C:\WINDOWS\system32\cmudax3.DLL
2011-03-01 23:24:07 ----D---- C:\Program Files\C-Media PCI Audio Device
2011-03-01 10:23:43 ----D---- C:\Documents and Settings\Golden\Data aplikací\Zoner
2011-03-01 01:39:09 ----A---- C:\WINDOWS\ODBC.INI
2011-03-01 01:35:29 ----D---- C:\Program Files\Common Files\DESIGNER
2011-03-01 01:33:39 ----D---- C:\Program Files\Microsoft.NET
2011-03-01 01:33:39 ----D---- C:\Program Files\Microsoft Office

======List of files/folders modified in the last 1 months======

2011-03-28 09:48:16 ----D---- C:\WINDOWS\Prefetch
2011-03-28 09:48:11 ----RD---- C:\Program Files
2011-03-28 09:43:48 ----A---- C:\WINDOWS\WINCMD.INI
2011-03-28 09:43:11 ----D---- C:\WINDOWS\Temp
2011-03-28 09:28:44 ----A---- C:\WINDOWS\system32\mswrcrt.dll
2011-03-28 09:26:30 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-03-28 09:26:28 ----D---- C:\WINDOWS\system32\CatRoot2
2011-03-28 09:26:20 ----A---- C:\WINDOWS\{00000000-00000000-0000000B-00001102-00000004-00511102}.BAK
2011-03-28 08:34:42 ----D---- C:\WINDOWS
2011-03-27 21:48:37 ----AD---- C:\WINDOWS\system32
2011-03-27 21:48:37 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-03-27 13:13:38 ----SH---- C:\boot.ini
2011-03-27 13:13:38 ----A---- C:\WINDOWS\win.ini
2011-03-27 13:13:38 ----A---- C:\WINDOWS\system.ini
2011-03-27 13:11:30 ----SHD---- C:\WINDOWS\Installer
2011-03-25 09:25:15 ----D---- C:\Program Files\Mozilla Firefox
2011-03-24 22:21:01 ----D---- C:\WINDOWS\Media
2011-03-24 13:48:07 ----D---- C:\WINDOWS\system32\oodag
2011-03-23 20:38:36 ----D---- C:\WINDOWS\pss
2011-03-23 02:19:58 ----D---- C:\Documents and Settings\All Users\Data aplikací\LogMeIn
2011-03-22 10:55:47 ----SD---- C:\WINDOWS\Tasks
2011-03-21 23:13:06 ----DC---- C:\WINDOWS\system32\DRVSTORE
2011-03-21 23:12:24 ----D---- C:\Documents and Settings\Golden\Data aplikací\Skype
2011-03-21 22:08:48 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2011-03-21 17:43:19 ----D---- C:\Documents and Settings\Golden\Data aplikací\skypePM
2011-03-21 16:15:55 ----RSD---- C:\WINDOWS\assembly
2011-03-21 16:11:59 ----RSD---- C:\WINDOWS\Fonts
2011-03-21 16:07:36 ----D---- C:\WINDOWS\WinSxS
2011-03-21 15:11:17 ----D---- C:\WINDOWS\system32\CatRoot
2011-03-21 14:27:28 ----D---- C:\Program Files\Common Files\Nokia
2011-03-21 14:17:29 ----D---- C:\Program Files\netmon
2011-03-21 14:13:38 ----D---- C:\Documents and Settings\Golden\Data aplikací\Real
2011-03-21 14:13:28 ----D---- C:\Documents and Settings\All Users\Data aplikací\Real
2011-03-19 22:01:37 ----D---- C:\WINDOWS\Help
2011-03-18 15:52:53 ----D---- C:\WINDOWS\system32\DirectX
2011-03-18 15:49:19 ----D---- C:\WINDOWS\Microsoft.NET
2011-03-18 10:20:56 ----D---- C:\Program Files\Common Files\InstallShield
2011-03-14 00:52:48 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2011-03-12 09:52:00 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2011-03-12 09:46:46 ----D---- C:\Program Files\PC Connectivity Solution
2011-03-12 09:28:57 ----D---- C:\_dosboxvirtualdisk
2011-03-11 16:22:39 ----D---- C:\Program Files\ISOpen
2011-03-09 11:19:54 ----A---- C:\WINDOWS\krslovnik.ini
2011-03-04 17:58:18 ----D---- C:\Documents and Settings\Golden\Data aplikací\Spyware Terminator
2011-03-02 20:01:46 ----A---- C:\WINDOWS\imsins.BAK
2011-03-02 19:38:36 ----D---- C:\Documents and Settings\Golden\Data aplikací\PC Suite
2011-03-02 19:38:22 ----D---- C:\Documents and Settings\Golden\Data aplikací\Nokia
2011-03-01 23:26:17 ----A---- C:\WINDOWS\Cmicnfg3.ini.cfl
2011-03-01 23:25:17 ----D---- C:\WINDOWS\system32\ReinstallBackups
2011-03-01 07:58:32 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-03-01 07:39:46 ----D---- C:\Program Files\KrSlovnik

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 agp440;Filtr Intel sběrnice AGP; C:\WINDOWS\system32\DRIVERS\agp440.sys [2008-04-14 42368]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2008-08-20 44944]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2011-02-17 436792]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2011-01-13 29392]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2011-01-13 23632]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2011-01-13 294608]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2011-01-13 47440]
R1 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2010-12-17 31088]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
R1 SpyMng;SpyMng; \??\C:\WINDOWS\system32\Drivers\SpyMng.sys []
R2 0VsNdis08;VitalAgent Network Driver 8.1; \??\C:\PROGRA~1\VITALS~1\Net.Medic\Program\VsNdis08.sys []
R2 ANIO;ANIO Service; \??\C:\WINDOWS\system32\ANIO.SYS []
R2 Aspi32;Aspi32; C:\WINDOWS\System32\drivers\aspi32.sys [2002-07-17 16877]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2011-01-13 17744]
R2 aswMon2;aswMon2; C:\WINDOWS\system32\drivers\aswMon2.sys [2011-01-13 100176]
R2 LMIInfo;LogMeIn Kernel Information Provider; \??\C:\Program Files\LogMeIn\x86\RaInfo.sys []
R2 LMIRfsDriver;LogMeIn Remote File System Driver; \??\C:\WINDOWS\system32\drivers\LMIRfsDriver.sys []
R3 A3AB;D-Link AirPro 802.11a/b Wireless Adapter Service(A3AB); C:\WINDOWS\system32\DRIVERS\A3AB.sys [2006-10-16 472832]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 COMMONFX.SYS;COMMONFX.SYS; C:\WINDOWS\System32\drivers\COMMONFX.SYS [2010-03-18 99416]
R3 ComproHID;VideoMate Root Enumerated Hid Device; C:\WINDOWS\system32\DRIVERS\ComproHID.sys [2007-10-01 7040]
R3 ctac32k;Creative AC3 Software Decoder; C:\WINDOWS\system32\drivers\ctac32k.sys [2010-03-18 511064]
R3 ctaud2k;Creative Audio Driver (WDM); C:\WINDOWS\system32\drivers\ctaud2k.sys [2010-03-18 528472]
R3 CTAUDFX.SYS;CTAUDFX.SYS; C:\WINDOWS\System32\drivers\CTAUDFX.SYS [2010-03-18 555096]
R3 ctprxy2k;Creative Proxy Driver; C:\WINDOWS\system32\drivers\ctprxy2k.sys [2010-03-18 14424]
R3 CTSBLFX.SYS;CTSBLFX.SYS; C:\WINDOWS\System32\drivers\CTSBLFX.SYS [2010-03-18 566360]
R3 ctsfm2k;Creative SoundFont Management Device Driver; C:\WINDOWS\system32\drivers\ctsfm2k.sys [2010-03-18 157272]
R3 ElbyCDFL;ElbyCDFL; C:\WINDOWS\System32\Drivers\ElbyCDFL.sys [2007-02-16 34760]
R3 emupia;E-mu Plug-in Architecture Driver; C:\WINDOWS\system32\drivers\emupia2k.sys [2010-03-18 92760]
R3 ha10kx2k;Creative Hardware Abstract Layer Driver; C:\WINDOWS\system32\drivers\ha10kx2k.sys [2010-03-18 798808]
R3 lmimirr;lmimirr; C:\WINDOWS\system32\DRIVERS\lmimirr.sys [2010-09-17 10144]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2006-10-22 3994624]
R3 ossrv;Creative OS Services Driver; C:\WINDOWS\system32\drivers\ctoss2k.sys [2010-03-18 127576]
R3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2011-02-06 47360]
R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2011-03-21 10368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys

[2008-04-14 20608]
R3 VMHybrid;VMHybrid service; C:\WINDOWS\system32\DRIVERS\VMHybrid.sys [2008-11-12 1060352]
S3 0VsComm12;VitalAgent Serial Port Driver 12.4; \??\C:\PROGRA~1\VITALS~1\Net.Medic\Program\VsComm12.sys []
S3 a13fg2pb;a13fg2pb; C:\WINDOWS\system32\drivers\a13fg2pb.sys []
S3 AR5211;[CommView] Atheros Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\ar5211.sys [2007-04-13 496768]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 cmuda3;C-Media PCI Audio Interface; C:\WINDOWS\system32\drivers\cmudax3.sys [2009-03-18 1512960]
S3 COMMONFX;COMMONFX; C:\WINDOWS\system32\drivers\COMMONFX.SYS [2010-03-18 99416]
S3 CTAUDFX;CTAUDFX; C:\WINDOWS\system32\drivers\CTAUDFX.SYS [2010-03-18 555096]
S3 ctdvda2k;Creative DVD-Audio Device Driver; C:\WINDOWS\system32\drivers\ctdvda2k.sys [2010-03-18 347144]
S3 CTERFXFX.SYS;CTERFXFX.SYS; C:\WINDOWS\System32\drivers\CTERFXFX.SYS [2010-03-18 100952]
S3 CTERFXFX;CTERFXFX; C:\WINDOWS\system32\drivers\CTERFXFX.SYS [2010-03-18 100952]
S3 CTSBLFX;CTSBLFX; C:\WINDOWS\system32\drivers\CTSBLFX.SYS [2010-03-18 566360]
S3 hap16v2k;Creative P16V HAL Driver; C:\WINDOWS\system32\drivers\hap16v2k.sys [2010-03-18 162904]
S3 hap17v2k;Creative P17V HAL Driver; C:\WINDOWS\system32\drivers\hap17v2k.sys [2010-03-18 189528]
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 MPE;Filtr MPE BDA; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-14 15232]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 nm;Ovladač programu Sledování sítě; C:\WINDOWS\system32\DRIVERS\NMnt.sys [2008-04-14 40320]
S3 NtApm;Ovladač rozhraní služby NT Apm/Legacy; C:\WINDOWS\system32\DRIVERS\NtApm.sys [2001-10-24 9472]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 pepifilter;Volume Adapter; C:\WINDOWS\system32\DRIVERS\lv302af.sys [2004-01-21 5915]
S3 PID_08A0;Labtec WebCam Pro(PID_08A0); C:\WINDOWS\system32\DRIVERS\LV302AV.SYS [2004-01-21 271360]
S3 RTL8023xp;Realtek 10/100/1000 PCI NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys [2009-03-25 130432]
S3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2008-04-14 20992]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2010-07-30 8192]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-14 60032]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-14 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2010-07-30 8192]
S3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 LMIRfsClientNP;LMIRfsClientNP; C:\WINDOWS\system32\drivers\LMIRfsClientNP.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ANIWZCSdService;ANIWZCSd Service; C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe [2007-01-19 49152]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-01-13 40384]
R2 CTAudSvcService;Creative Audio Service; C:\Program Files\Creative\Shared Files\CTAudSvc.exe [2010-02-12 286720]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe [2010-12-08 374152]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2006-10-22 159810]
R2 O&O Defrag;O&O Defrag; C:\WINDOWS\system32\oodag.exe [2005-05-11 225280]
S2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service; C:\Program Files\Common Files\Creative Labs

Shared\Service\CTAELicensing.exe [2011-02-25 79360]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 Installer Service;Installer Service; C:\Documents and Settings\All Users\Data

aplikací\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\{3FC42713-B6E7-49AA-A553-A224FE9828A8}\Installer\InstallerSe

rvice.exe []
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-12-08 628736]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86;

C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe /svc []
S4 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe []
S4 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe -service -config C:\Program

Files\Java\jre6\lib\deploy\jqs\jqs.conf []
S4 LMIMaint;LogMeIn Maintenance Service; C:\Program Files\LogMeIn\x86\RaMaint.exe [2010-12-08 136584]
S4 LogMeIn;LogMeIn; C:\Program Files\LogMeIn\x86\LogMeIn.exe [2010-11-08 390528]
S4 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files\Spyware Terminator\sp_rsser.exe [2011-01-27 496128]

-----------------EOF-----------------

[Roli]

Zdravím, tohle fixni v HJT :

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com?o=15187&l=dis
O4 - HKCU\..\Run: [AlSrvN] D:\install\Alcohol 120\Medicina 2\Plugins\Helper\AlSrvN.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)

HJT najdeš zde :

C:\Program Files\trend micro\Golden.exe

Fix znamená že spustíš HJT

v okně které se ti otevře klikneš na Do a system scan only

v dalším okně najdeš řádky které jsem ti vypsal,

vedle nich je čtvereček do kterého uděláš zatržítko,

pak klikneš na Fix checked které je vlevo dole,

program se ti zeptá zda opravdu ANO s tím samozřejmě souhlasíš a je hotovo.


Pak použij Mbam z mého podpisu a dej mi sem z něj log, předem nic nemazat !!!

[hoblik007]

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com?o=15187&l=dis
O4 - HKCU\..\Run: [AlSrvN] D:\install\Alcohol 120\Medicina 2\Plugins\Helper\AlSrvN.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)

C:\WINDOWS\system32\CTFMON.EXE - Prosim o vysvetleni... Proc je ve slozce windows a to neni netmon?

Log...

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Verze databßze: 6190

Windows 5.1.2600 Service Pack 3
Internet Explorer 6.0.2900.5512

28.3.2011 11:26:42
mbam-log-2011-03-28 (11-26-34).txt

Typ kontroly: Rychlř test
TestovanÚ objekty: 161017
Uplynulř Ŕas: 14 minut, 33 sekund

InfikovanÚ procesy v pamýti: 0
InfikovanÚ moduly v pamýti: 0
InfikovanÚ klÝŔe v registru: 0
InfikovanÚ hodnoty v registru: 0
InfikovanÚ datovÚ polo×ky v registru: 0
InfikovanÚ slo×ky: 0
InfikovanÚ soubory: 1

InfikovanÚ procesy v pamýti:
(ÄßdnÚ ÜkodlivÚ polo×ky nebyly zjiÜtýny)

InfikovanÚ moduly v pamýti:
(ÄßdnÚ ÜkodlivÚ polo×ky nebyly zjiÜtýny)

InfikovanÚ klÝŔe v registru:
(ÄßdnÚ ÜkodlivÚ polo×ky nebyly zjiÜtýny)

InfikovanÚ hodnoty v registru:
(ÄßdnÚ ÜkodlivÚ polo×ky nebyly zjiÜtýny)

InfikovanÚ datovÚ polo×ky v registru:
(ÄßdnÚ ÜkodlivÚ polo×ky nebyly zjiÜtýny)

InfikovanÚ slo×ky:
(ÄßdnÚ ÜkodlivÚ polo×ky nebyly zjiÜtýny)

InfikovanÚ soubory:
c:\a.txt (Worm.Traces) -> No action taken.




.
.
.
Cerv i z nulovou velikosti?

Diky.

[Roli]

CTFMON.EXE je správně tam kde je a jedná se zjednodušeně řečeno o češtinu používanou v systému.

To co našel Mbam je předpokládám opravdu jen texťák ?

[hoblik007]

Je.Tzv docasny...Jinak diky.

[Roli]

Není zač.