Kontrola logu - unrar.exe
Napsal: 22 črc 2011 10:29
Prosim o kontrolu logu, havet odinstalovala antivirak a do systray dala ikonu, ze tam antivirak je.
Logfile of random's system information tool 1.09 (written by random/random)
Run by Admin at 2011-07-22 11:22:04
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 133 GB (89%) free of 150 GB
Total RAM: 1023 MB (71% free)
HijackThis download failed
======Scheduled tasks folder======
C:\WINDOWS\tasks\User_Feed_Synchronization-{2EAE3FD2-F1FC-41C2-B588-59B4C436C782}.job
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\7gsq09jc.default
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "{20a82645-c095-46ed-80e3-08825760534b}:1.2.1, {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}:6.0.16, jqs@sun.com:1.0, toolbar@ask.com:3.11.3.15590, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.16"
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files\Mozilla Firefox\plugins\
npdeploytk.dll
NPOFFICE.DLL
C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\7gsq09jc.default\extensions\
{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}
{20a82645-c095-46ed-80e3-08825760534b}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-10-29 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-10-29 73728]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2011-04-21 281768]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ABUNINSTALLEX]
c:\documents and settings\all users\data aplikací\ab studio\ABUnInstallEx.exe [2007-07-03 263664]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnUpdater]
c:\Program Files\Ask.com\Updater\Updater.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\C-Media Mixer]
Mixer.exe /startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\conhost]
C:\Documents and Settings\Admin\Data aplikací\Microsoft\conhost.exe [2011-07-21 169984]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2007-10-18 455968]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe [2007-03-01 153136]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\systemup]
C:\WINDOWS\systemup.exe stand []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\wxpdrv]
C:\WINDOWS\services32.exe [2011-07-18 1170432]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\wxpdrivers]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\wxpdrivers]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLUA"=0
"EnableSecureUIAPaths"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"F:\Miranda IM KP v5.0.8.15b\miranda32.exe"="F:\Miranda IM KP v5.0.8.15b\miranda32.exe:*:Enabled:Miranda IM"
"D:\Miranda IM KP v5.0.8.5\miranda32.exe"="D:\Miranda IM KP v5.0.8.5\miranda32.exe:*:Disabled:Miranda IM"
"D:\Miranda IM KP v5.0.8.15b\miranda32.exe"="D:\Miranda IM KP v5.0.8.15b\miranda32.exe:*:Disabled:Miranda IM"
"D:\QIP Infium\infium.exe"="D:\QIP Infium\infium.exe:*:Disabled:QIP Infium"
"C:\Program Files\TeamViewer\Version6\TeamViewer.exe"="C:\Program Files\TeamViewer\Version6\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe"="C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"C:\TEMP\ir_ext_temp_0\AutoPlay\Docs\p.exe"="C:\TEMP\ir_ext_temp_0\AutoPlay\Docs\p.exe:*:Enabled:Google Earth"
"E:\Nero_8\Installation\SetupX.exe"="E:\Nero_8\Installation\SetupX.exe:*:Enabled:Nero ControlCenter"
"C:\Program Files\Nero\Nero8\Nero ShowTime\ShowTime.exe"="C:\Program Files\Nero\Nero8\Nero ShowTime\ShowTime.exe:*:Enabled:Nero ShowTime Essentials"
"D:\Miranda IM KP v5.0.9.16\miranda32.exe"="D:\Miranda IM KP v5.0.9.16\miranda32.exe:*:Disabled:Miranda IM"
"C:\Documents and Settings\Admin\Plocha\Flash-Player.exe"="C:\Documents and Settings\Admin\Plocha\Flash-Player.exe:*:Enabled:C:\Documents and Settings\Admin\Plocha\Flash-Player.exe"
"C:\WINDOWS\update.1\svchost.exe"="C:\WINDOWS\update.1\svchost.exe:*:Enabled:C:\WINDOWS\update.1\svchost.exe"
"C:\WINDOWS\services32.exe"="C:\WINDOWS\services32.exe:*:Enabled:C:\WINDOWS\services32.exe"
"C:\WINDOWS\update.tray-8-0\svchost.exe"="C:\WINDOWS\update.tray-8-0\svchost.exe:*:Enabled:C:\WINDOWS\update.tray-8-0\svchost.exe"
"C:\WINDOWS\update.tray-8-0-lnk\svchost.exe"="C:\WINDOWS\update.tray-8-0-lnk\svchost.exe:*:Enabled:C:\WINDOWS\update.tray-8-0-lnk\svchost.exe"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
======File associations======
.scr - open - "C:\WINDOWS\system32\NOTEPAD.EXE" "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2011-07-22 11:22:05 ----D---- C:\Program Files\trend micro
2011-07-22 11:22:04 ----D---- C:\rsit
2011-07-22 07:35:45 ----D---- C:\Program Files\Avira
2011-07-22 07:35:45 ----D---- C:\Documents and Settings\All Users\Data aplikací\Avira
2011-07-22 07:20:33 ----ASH---- C:\hiberfil.sys
2011-07-21 10:22:42 ----N---- C:\Documents and Settings\Admin\Data aplikací\dwmu.exe
2011-07-21 07:32:39 ----D---- C:\WINDOWS\system32\NtmsData
2011-07-20 14:14:54 ----D---- C:\WINDOWS\system32\appmgmt
2011-07-20 14:10:29 ----D---- C:\WINDOWS\pss
2011-07-20 13:21:07 ----A---- C:\WINDOWS\system32\hidserv.dll
2011-07-20 13:21:04 ----A---- C:\WINDOWS\system32\drivers\kbdhid.sys
2011-07-20 13:20:52 ----A---- C:\WINDOWS\system32\drivers\mouhid.sys
2011-07-20 13:20:48 ----A---- C:\WINDOWS\system32\drivers\usbccgp.sys
2011-07-20 13:20:32 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
2011-07-19 21:28:44 ----A---- C:\Documents and Settings\Admin\Data aplikací\dwm.exe
2011-07-19 17:51:06 ----D---- C:\Microsoft
2011-07-19 17:49:10 ----HD---- C:\WINDOWS\update.5.0
2011-07-19 17:35:17 ----HD---- C:\WINDOWS\update.2
2011-07-18 12:12:56 ----HD---- C:\WINDOWS\update.1
2011-07-18 12:12:54 ----HD---- C:\WINDOWS\update.tray-8-0-lnk
2011-07-18 12:12:54 ----HD---- C:\WINDOWS\update.tray-8-0
2011-07-18 11:42:37 ----A---- C:\WINDOWS\services32.exe
======List of files/folders modified in the last 1 month======
2011-07-22 11:22:07 ----D---- C:\WINDOWS\Prefetch
2011-07-22 11:22:05 ----RD---- C:\Program Files
2011-07-22 11:21:21 ----D---- C:\WINDOWS\Temp
2011-07-22 11:21:21 ----D---- C:\WINDOWS
2011-07-22 11:21:13 ----AC---- C:\WINDOWS\wincmd.ini
2011-07-22 11:10:48 ----D---- C:\TEMP
2011-07-22 11:01:25 ----D---- C:\WINDOWS\system32\CatRoot2
2011-07-22 10:57:46 ----N---- C:\WINDOWS\SchedLgU.Txt
2011-07-22 10:33:59 ----D---- C:\WINDOWS\Registration
2011-07-22 07:18:42 ----A---- C:\boot.ini
2011-07-21 10:23:06 ----SD---- C:\Documents and Settings\Admin\Data aplikací\Microsoft
2011-07-21 07:32:39 ----D---- C:\WINDOWS\system32
2011-07-21 07:32:38 ----D---- C:\WINDOWS\repair
2011-07-20 14:14:53 ----SHD---- C:\WINDOWS\Installer
2011-07-20 14:14:53 ----SHD---- C:\Config.Msi
2011-07-20 14:14:50 ----SD---- C:\WINDOWS\Tasks
2011-07-20 14:13:54 ----D---- C:\WINDOWS\Debug
2011-07-20 14:13:53 ----D---- C:\WINDOWS\Minidump
2011-07-20 14:12:17 ----D---- C:\Program Files\Microsoft Office
2011-07-20 13:21:14 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-07-20 13:21:04 ----D---- C:\WINDOWS\system32\drivers
2011-07-19 17:51:29 ----D---- C:\Program Files\Windows NT
2011-07-19 17:51:06 ----D---- C:\Program Files\Internet Explorer
2011-07-19 17:38:23 ----SHD---- C:\System Volume Information
2011-07-17 14:21:28 ----HD---- C:\WINDOWS\inf
2011-07-13 20:03:28 ----A---- C:\WINDOWS\system32\MRT.exe
2011-07-13 19:01:22 ----HD---- C:\WINDOWS\$hf_mig$
2011-07-11 17:59:45 ----A---- C:\WINDOWS\win.ini
2011-07-11 17:14:03 ----A---- C:\WINDOWS\NeroDigital.ini
2011-07-04 20:13:22 ----D---- C:\Documents and Settings\Admin\Data aplikací\vlc
2011-07-04 15:27:20 ----D---- C:\Documents and Settings\Admin\Data aplikací\Publish Providers
2011-06-24 17:03:07 ----D---- C:\Program Files\Mozilla Firefox
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 uagp35;Filtr Microsoft AGPv3.5; C:\WINDOWS\system32\DRIVERS\uagp35.sys [2008-04-14 44672]
R1 AmdK7;Ovladač procesoru AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2008-04-14 41600]
R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2011-06-17 137656]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-05-11 28520]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2011-06-17 61960]
R3 cmpci;C-Media PCI Audio Driver (WDM); C:\WINDOWS\system32\drivers\cmaudio.sys [2002-11-18 377358]
R3 EL90XBC;3Com EtherLink XL 90XB/C Adapter Driver; C:\WINDOWS\system32\DRIVERS\el90xbc5.sys [2001-08-17 66591]
R3 GETND5BV;VIA Velocity Family Gigabit Ethernet Adapter Driver; C:\WINDOWS\system32\DRIVERS\getnd5bv.sys [2008-11-05 46080]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2004-08-04 1897408]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S3 Dot4;Ovladač MS IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2008-04-14 206976]
S3 Dot4Print;Ovladač třídy tiskárny standardu IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4Prt.sys [2001-08-17 12928]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2001-10-24 23808]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2011-04-21 269480]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2011-04-21 136360]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-10-29 153376]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-10-18 79136]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2007-09-20 853288]
R2 srvbtcclient;srvbtcclient; C:\WINDOWS\update.5.0\svchost.exe [2011-07-19 340480]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2004-08-11 38912]
R2 wxpdrivers;wxpdrivers; C:\WINDOWS\update.1\svchost.exe [2011-07-18 1170432]
S3 AbSoftMgr4;AbSoftMgr4; C:\Program Files\Common Files\AB Studio Shared\AbSoftMgr4.exe [2010-05-18 630784]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2010-10-08 77944]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2007-11-15 382248]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Logfile of random's system information tool 1.09 (written by random/random)
Run by Admin at 2011-07-22 11:22:04
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 133 GB (89%) free of 150 GB
Total RAM: 1023 MB (71% free)
HijackThis download failed
======Scheduled tasks folder======
C:\WINDOWS\tasks\User_Feed_Synchronization-{2EAE3FD2-F1FC-41C2-B588-59B4C436C782}.job
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\7gsq09jc.default
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "{20a82645-c095-46ed-80e3-08825760534b}:1.2.1, {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}:6.0.16, jqs@sun.com:1.0, toolbar@ask.com:3.11.3.15590, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.16"
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files\Mozilla Firefox\plugins\
npdeploytk.dll
NPOFFICE.DLL
C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Documents and Settings\Admin\Data aplikací\Mozilla\Firefox\Profiles\7gsq09jc.default\extensions\
{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}
{20a82645-c095-46ed-80e3-08825760534b}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-10-29 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-10-29 73728]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2011-04-21 281768]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ABUNINSTALLEX]
c:\documents and settings\all users\data aplikací\ab studio\ABUnInstallEx.exe [2007-07-03 263664]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnUpdater]
c:\Program Files\Ask.com\Updater\Updater.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\C-Media Mixer]
Mixer.exe /startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\conhost]
C:\Documents and Settings\Admin\Data aplikací\Microsoft\conhost.exe [2011-07-21 169984]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2007-10-18 455968]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe [2007-03-01 153136]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\systemup]
C:\WINDOWS\systemup.exe stand []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\wxpdrv]
C:\WINDOWS\services32.exe [2011-07-18 1170432]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\wxpdrivers]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\wxpdrivers]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLUA"=0
"EnableSecureUIAPaths"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"F:\Miranda IM KP v5.0.8.15b\miranda32.exe"="F:\Miranda IM KP v5.0.8.15b\miranda32.exe:*:Enabled:Miranda IM"
"D:\Miranda IM KP v5.0.8.5\miranda32.exe"="D:\Miranda IM KP v5.0.8.5\miranda32.exe:*:Disabled:Miranda IM"
"D:\Miranda IM KP v5.0.8.15b\miranda32.exe"="D:\Miranda IM KP v5.0.8.15b\miranda32.exe:*:Disabled:Miranda IM"
"D:\QIP Infium\infium.exe"="D:\QIP Infium\infium.exe:*:Disabled:QIP Infium"
"C:\Program Files\TeamViewer\Version6\TeamViewer.exe"="C:\Program Files\TeamViewer\Version6\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe"="C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"C:\TEMP\ir_ext_temp_0\AutoPlay\Docs\p.exe"="C:\TEMP\ir_ext_temp_0\AutoPlay\Docs\p.exe:*:Enabled:Google Earth"
"E:\Nero_8\Installation\SetupX.exe"="E:\Nero_8\Installation\SetupX.exe:*:Enabled:Nero ControlCenter"
"C:\Program Files\Nero\Nero8\Nero ShowTime\ShowTime.exe"="C:\Program Files\Nero\Nero8\Nero ShowTime\ShowTime.exe:*:Enabled:Nero ShowTime Essentials"
"D:\Miranda IM KP v5.0.9.16\miranda32.exe"="D:\Miranda IM KP v5.0.9.16\miranda32.exe:*:Disabled:Miranda IM"
"C:\Documents and Settings\Admin\Plocha\Flash-Player.exe"="C:\Documents and Settings\Admin\Plocha\Flash-Player.exe:*:Enabled:C:\Documents and Settings\Admin\Plocha\Flash-Player.exe"
"C:\WINDOWS\update.1\svchost.exe"="C:\WINDOWS\update.1\svchost.exe:*:Enabled:C:\WINDOWS\update.1\svchost.exe"
"C:\WINDOWS\services32.exe"="C:\WINDOWS\services32.exe:*:Enabled:C:\WINDOWS\services32.exe"
"C:\WINDOWS\update.tray-8-0\svchost.exe"="C:\WINDOWS\update.tray-8-0\svchost.exe:*:Enabled:C:\WINDOWS\update.tray-8-0\svchost.exe"
"C:\WINDOWS\update.tray-8-0-lnk\svchost.exe"="C:\WINDOWS\update.tray-8-0-lnk\svchost.exe:*:Enabled:C:\WINDOWS\update.tray-8-0-lnk\svchost.exe"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
======File associations======
.scr - open - "C:\WINDOWS\system32\NOTEPAD.EXE" "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2011-07-22 11:22:05 ----D---- C:\Program Files\trend micro
2011-07-22 11:22:04 ----D---- C:\rsit
2011-07-22 07:35:45 ----D---- C:\Program Files\Avira
2011-07-22 07:35:45 ----D---- C:\Documents and Settings\All Users\Data aplikací\Avira
2011-07-22 07:20:33 ----ASH---- C:\hiberfil.sys
2011-07-21 10:22:42 ----N---- C:\Documents and Settings\Admin\Data aplikací\dwmu.exe
2011-07-21 07:32:39 ----D---- C:\WINDOWS\system32\NtmsData
2011-07-20 14:14:54 ----D---- C:\WINDOWS\system32\appmgmt
2011-07-20 14:10:29 ----D---- C:\WINDOWS\pss
2011-07-20 13:21:07 ----A---- C:\WINDOWS\system32\hidserv.dll
2011-07-20 13:21:04 ----A---- C:\WINDOWS\system32\drivers\kbdhid.sys
2011-07-20 13:20:52 ----A---- C:\WINDOWS\system32\drivers\mouhid.sys
2011-07-20 13:20:48 ----A---- C:\WINDOWS\system32\drivers\usbccgp.sys
2011-07-20 13:20:32 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
2011-07-19 21:28:44 ----A---- C:\Documents and Settings\Admin\Data aplikací\dwm.exe
2011-07-19 17:51:06 ----D---- C:\Microsoft
2011-07-19 17:49:10 ----HD---- C:\WINDOWS\update.5.0
2011-07-19 17:35:17 ----HD---- C:\WINDOWS\update.2
2011-07-18 12:12:56 ----HD---- C:\WINDOWS\update.1
2011-07-18 12:12:54 ----HD---- C:\WINDOWS\update.tray-8-0-lnk
2011-07-18 12:12:54 ----HD---- C:\WINDOWS\update.tray-8-0
2011-07-18 11:42:37 ----A---- C:\WINDOWS\services32.exe
======List of files/folders modified in the last 1 month======
2011-07-22 11:22:07 ----D---- C:\WINDOWS\Prefetch
2011-07-22 11:22:05 ----RD---- C:\Program Files
2011-07-22 11:21:21 ----D---- C:\WINDOWS\Temp
2011-07-22 11:21:21 ----D---- C:\WINDOWS
2011-07-22 11:21:13 ----AC---- C:\WINDOWS\wincmd.ini
2011-07-22 11:10:48 ----D---- C:\TEMP
2011-07-22 11:01:25 ----D---- C:\WINDOWS\system32\CatRoot2
2011-07-22 10:57:46 ----N---- C:\WINDOWS\SchedLgU.Txt
2011-07-22 10:33:59 ----D---- C:\WINDOWS\Registration
2011-07-22 07:18:42 ----A---- C:\boot.ini
2011-07-21 10:23:06 ----SD---- C:\Documents and Settings\Admin\Data aplikací\Microsoft
2011-07-21 07:32:39 ----D---- C:\WINDOWS\system32
2011-07-21 07:32:38 ----D---- C:\WINDOWS\repair
2011-07-20 14:14:53 ----SHD---- C:\WINDOWS\Installer
2011-07-20 14:14:53 ----SHD---- C:\Config.Msi
2011-07-20 14:14:50 ----SD---- C:\WINDOWS\Tasks
2011-07-20 14:13:54 ----D---- C:\WINDOWS\Debug
2011-07-20 14:13:53 ----D---- C:\WINDOWS\Minidump
2011-07-20 14:12:17 ----D---- C:\Program Files\Microsoft Office
2011-07-20 13:21:14 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-07-20 13:21:04 ----D---- C:\WINDOWS\system32\drivers
2011-07-19 17:51:29 ----D---- C:\Program Files\Windows NT
2011-07-19 17:51:06 ----D---- C:\Program Files\Internet Explorer
2011-07-19 17:38:23 ----SHD---- C:\System Volume Information
2011-07-17 14:21:28 ----HD---- C:\WINDOWS\inf
2011-07-13 20:03:28 ----A---- C:\WINDOWS\system32\MRT.exe
2011-07-13 19:01:22 ----HD---- C:\WINDOWS\$hf_mig$
2011-07-11 17:59:45 ----A---- C:\WINDOWS\win.ini
2011-07-11 17:14:03 ----A---- C:\WINDOWS\NeroDigital.ini
2011-07-04 20:13:22 ----D---- C:\Documents and Settings\Admin\Data aplikací\vlc
2011-07-04 15:27:20 ----D---- C:\Documents and Settings\Admin\Data aplikací\Publish Providers
2011-06-24 17:03:07 ----D---- C:\Program Files\Mozilla Firefox
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 uagp35;Filtr Microsoft AGPv3.5; C:\WINDOWS\system32\DRIVERS\uagp35.sys [2008-04-14 44672]
R1 AmdK7;Ovladač procesoru AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2008-04-14 41600]
R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2011-06-17 137656]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-05-11 28520]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2011-06-17 61960]
R3 cmpci;C-Media PCI Audio Driver (WDM); C:\WINDOWS\system32\drivers\cmaudio.sys [2002-11-18 377358]
R3 EL90XBC;3Com EtherLink XL 90XB/C Adapter Driver; C:\WINDOWS\system32\DRIVERS\el90xbc5.sys [2001-08-17 66591]
R3 GETND5BV;VIA Velocity Family Gigabit Ethernet Adapter Driver; C:\WINDOWS\system32\DRIVERS\getnd5bv.sys [2008-11-05 46080]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2004-08-04 1897408]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S3 Dot4;Ovladač MS IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2008-04-14 206976]
S3 Dot4Print;Ovladač třídy tiskárny standardu IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4Prt.sys [2001-08-17 12928]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2001-10-24 23808]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2011-04-21 269480]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2011-04-21 136360]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-10-29 153376]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-10-18 79136]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2007-09-20 853288]
R2 srvbtcclient;srvbtcclient; C:\WINDOWS\update.5.0\svchost.exe [2011-07-19 340480]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2004-08-11 38912]
R2 wxpdrivers;wxpdrivers; C:\WINDOWS\update.1\svchost.exe [2011-07-18 1170432]
S3 AbSoftMgr4;AbSoftMgr4; C:\Program Files\Common Files\AB Studio Shared\AbSoftMgr4.exe [2010-05-18 630784]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2010-10-08 77944]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2007-11-15 382248]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Jste dalsi z tech, co naleteli a chytli tu novou havet co lita po FaceBooku