Zdravím, také pěkný den
Děkuji, tady je log:
Logfile of random's system information tool 1.09 (written by random/random)
Run by Petr Zaoral at 2012-02-23 13:01:38
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 38 GB (38%) free of 100 GB
Total RAM: 2814 MB (65% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:02:09, on 23.2.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Users\Petr Zaoral\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Petr Zaoral\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\rundll32.exe
C:\Users\Petr Zaoral\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Petr Zaoral\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Petr Zaoral\Desktop\RSIT.exe
C:\Program Files\trend micro\Petr Zaoral.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) -
http://download.eset.com/special/eos/OnlineScanner.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Realtime Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
--
End of file - 5322 bytes
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1958330928-1976342004-1508828730-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1958330928-1976342004-1508828730-1000UA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-06-06 63912]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-10-18 42272]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-08-05 7703072]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-07-30 98304]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2011-09-23 258512]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-06-06 937920]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-06-06 937920]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe [2011-06-06 35736]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Petr Zaoral\AppData\Local\Google\Update\GoogleUpdate.exe [2011-08-01 136176]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mail]
moracisko@seznam.cz []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\maile]
petrzao@gmail.com []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SearchSettings]
C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SiteRanker]
C:\Program Files\SiteRanker\SiteRankTray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\smtp]
smtp.gmail.com []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite]
C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe /systray /nologon []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-06-09 254696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VirtualCloneDrive]
C:\Program Files\VirtualCloneDrive\VCDDaemon.exe /s []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableLockWorkstation"=0
"DisableChangePassword"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"HideFastUserSwitching"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoLogoff"=0
"NoClose"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"EnableShellExecuteHooks"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2012-02-23 10:26:48 ----D---- C:\Program Files\ESET
2012-02-23 07:48:23 ----D---- C:\Users\Petr Zaoral\AppData\Roaming\Malwarebytes
2012-02-23 07:48:18 ----D---- C:\ProgramData\Malwarebytes
2012-02-23 07:48:18 ----A---- C:\Windows\system32\drivers\mbam.sys
2012-02-23 07:48:17 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2012-02-23 07:25:47 ----A---- C:\Windows\system32\FNTCACHE.DAT
2012-02-22 21:34:37 ----A---- C:\log.txt
2012-02-22 20:24:05 ----D---- C:\rsit
2012-02-22 20:24:05 ----D---- C:\Program Files\trend micro
2012-02-20 17:54:03 ----D---- C:\Program Files\The KMPlayer
2012-02-20 16:14:52 ----A---- C:\Users\Petr Zaoral\AppData\Roaming\AutoGK.ini
2012-02-20 13:27:18 ----D---- C:\Program Files\XviD
2012-02-20 13:27:08 ----D---- C:\Program Files\AviSynth 2.5
2012-02-20 13:26:15 ----D---- C:\Program Files\Gabest
2012-02-20 13:25:35 ----D---- C:\Program Files\AutoGK
2012-02-15 10:35:28 ----A---- C:\Windows\system32\mshtmled.dll
2012-02-15 10:35:28 ----A---- C:\Windows\system32\jscript.dll
2012-02-15 10:35:28 ----A---- C:\Windows\system32\iertutil.dll
2012-02-15 10:35:27 ----A---- C:\Windows\system32\wininet.dll
2012-02-15 10:35:27 ----A---- C:\Windows\system32\url.dll
2012-02-15 10:35:27 ----A---- C:\Windows\system32\jsproxy.dll
2012-02-15 10:35:27 ----A---- C:\Windows\system32\jscript9.dll
2012-02-15 10:35:26 ----A---- C:\Windows\system32\mshtml.dll
2012-02-15 10:35:26 ----A---- C:\Windows\system32\ieui.dll
2012-02-15 10:35:24 ----A---- C:\Windows\system32\urlmon.dll
2012-02-15 10:35:24 ----A---- C:\Windows\system32\ieframe.dll
2012-02-15 10:25:17 ----A---- C:\Windows\system32\msvcrt.dll
2012-02-15 10:25:13 ----A---- C:\Windows\system32\shell32.dll
2012-02-15 10:25:13 ----A---- C:\Windows\system32\ntshrui.dll
2012-02-15 10:25:11 ----A---- C:\Windows\system32\win32k.sys
2012-02-14 11:27:26 ----D---- C:\ProgramData\Microsoft Help
2012-02-09 21:22:01 ----A---- C:\Windows\system32\FreeOTFEHashWhirlpool.sys
2012-02-09 21:22:00 ----A---- C:\Windows\system32\FreeOTFEHashTiger.sys
2012-02-09 21:21:59 ----A---- C:\Windows\system32\FreeOTFEHashSHA.sys
2012-02-09 21:21:56 ----A---- C:\Windows\system32\FreeOTFEHashRIPEMD.sys
2012-02-09 21:21:55 ----A---- C:\Windows\system32\FreeOTFEHashMD.sys
2012-02-09 21:21:54 ----A---- C:\Windows\system32\FreeOTFECypherTwofish_ltc.sys
2012-02-09 21:21:52 ----A---- C:\Windows\system32\FreeOTFECypherSerpent_Gladman.sys
2012-02-09 21:21:51 ----A---- C:\Windows\system32\FreeOTFECypherRC6_ltc.sys
2012-02-09 21:21:49 ----A---- C:\Windows\system32\FreeOTFECypherMARS_Gladman.sys
2012-02-09 21:21:48 ----A---- C:\Windows\system32\FreeOTFECypherDES.sys
2012-02-09 21:21:47 ----A---- C:\Windows\system32\FreeOTFECypherCAST6_Gladman.sys
2012-02-09 21:21:46 ----A---- C:\Windows\system32\FreeOTFECypherCAST5.sys
2012-02-09 21:21:45 ----A---- C:\Windows\system32\FreeOTFECypherBlowfish.sys
2012-02-09 21:21:44 ----A---- C:\Windows\system32\FreeOTFECypherAES_ltc.sys
2012-02-09 21:21:42 ----A---- C:\Windows\system32\FreeOTFE.sys
2012-02-09 19:35:52 ----D---- C:\SafeHouse
2012-02-03 20:36:16 ----D---- C:\Users\Petr Zaoral\AppData\Roaming\Avira
2012-02-03 20:35:40 ----A---- C:\Windows\system32\drivers\ssmdrv.sys
2012-02-03 20:35:39 ----A---- C:\Windows\system32\drivers\avkmgr.sys
2012-02-03 20:35:39 ----A---- C:\Windows\system32\drivers\avipbb.sys
2012-02-03 20:35:39 ----A---- C:\Windows\system32\drivers\avgntflt.sys
2012-02-03 20:35:38 ----D---- C:\ProgramData\Avira
2012-02-03 20:35:38 ----D---- C:\Program Files\Avira
2012-02-03 19:09:40 ----D---- C:\Program Files\Secunia
2012-01-29 12:54:20 ----D---- C:\Users\Petr Zaoral\AppData\Roaming\avidemux
2012-01-24 17:16:27 ----A---- C:\Windows\system32\schannel.dll
2012-01-24 17:16:27 ----A---- C:\Windows\system32\lsasrv.dll
2012-01-24 17:16:27 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2012-01-24 17:16:27 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2012-01-24 17:16:27 ----A---- C:\Windows\system32\drivers\cng.sys
2012-01-24 17:16:26 ----A---- C:\Windows\system32\webio.dll
2012-01-24 17:16:26 ----A---- C:\Windows\system32\sspisrv.dll
2012-01-24 17:16:26 ----A---- C:\Windows\system32\sspicli.dll
2012-01-24 17:16:26 ----A---- C:\Windows\system32\secur32.dll
2012-01-24 17:16:26 ----A---- C:\Windows\system32\lsass.exe
======List of files/folders modified in the last 1 month======
2012-02-23 13:01:40 ----D---- C:\Windows\Temp
2012-02-23 12:02:50 ----D---- C:\Windows\system32\config
2012-02-23 10:58:54 ----D---- C:\Windows
2012-02-23 10:26:49 ----D---- C:\Windows\inf
2012-02-23 10:26:49 ----D---- C:\Windows\Downloaded Program Files
2012-02-23 10:26:48 ----RD---- C:\Program Files
2012-02-23 08:20:41 ----D---- C:\Windows\system32\drivers
2012-02-23 08:20:41 ----D---- C:\Windows\PCHEALTH
2012-02-23 07:48:26 ----D---- C:\Windows\Prefetch
2012-02-23 07:48:18 ----HD---- C:\ProgramData
2012-02-23 07:34:01 ----D---- C:\Windows\system32\LogFiles
2012-02-23 07:25:47 ----D---- C:\Windows\System32
2012-02-22 14:11:02 ----SHD---- C:\System Volume Information
2012-02-22 12:55:58 ----D---- C:\Windows\system32\catroot2
2012-02-21 08:16:34 ----SHD---- C:\Windows\Installer
2012-02-21 08:16:28 ----SHD---- C:\Config.Msi
2012-02-21 08:16:24 ----D---- C:\Windows\system32\Tasks
2012-02-20 11:43:21 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-02-19 13:33:13 ----D---- C:\Users\Petr Zaoral\AppData\Roaming\MyPhoneExplorer
2012-02-17 19:35:03 ----D---- C:\Windows\Microsoft.NET
2012-02-17 19:35:02 ----RSD---- C:\Windows\assembly
2012-02-16 16:20:25 ----D---- C:\Windows\SoftwareDistribution
2012-02-16 16:19:14 ----D---- C:\Windows\debug
2012-02-16 16:18:47 ----D---- C:\Program Files\CCleaner
2012-02-16 16:16:48 ----D---- C:\Program Files\Microsoft Silverlight
2012-02-16 16:05:25 ----D---- C:\Windows\winsxs
2012-02-16 15:55:07 ----SD---- C:\ProgramData\Microsoft
2012-02-16 15:55:07 ----D---- C:\Program Files\Microsoft.NET
2012-02-16 15:55:07 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2012-02-16 15:55:07 ----D---- C:\Program Files\Common Files\microsoft shared
2012-02-16 15:55:02 ----RSD---- C:\Windows\Fonts
2012-02-16 15:54:57 ----D---- C:\Program Files\Common Files
2012-02-16 15:53:13 ----D---- C:\Windows\ShellNew
2012-02-15 10:49:10 ----D---- C:\Windows\system32\migration
2012-02-15 10:49:10 ----D---- C:\Program Files\Internet Explorer
2012-02-15 10:39:58 ----A---- C:\Windows\system32\MRT.exe
2012-02-15 10:35:44 ----D---- C:\Windows\system32\catroot
2012-02-14 11:40:37 ----SD---- C:\Users\Petr Zaoral\AppData\Roaming\Microsoft
2012-02-03 20:31:33 ----D---- C:\ProgramData\Norton
2012-02-03 20:31:05 ----D---- C:\Windows\system32\DriverStore
2012-02-03 20:28:31 ----HD---- C:\Program Files\InstallShield Installation Information
2012-02-03 20:25:55 ----D---- C:\Program Files\AXIS Communications
2012-02-03 19:18:20 ----D---- C:\Program Files\Common Files\Adobe
2012-02-03 19:18:19 ----D---- C:\ProgramData\Adobe
2012-02-03 19:15:15 ----D---- C:\Program Files\Mozilla Thunderbird
2012-01-29 05:10:42 ----N---- C:\Windows\system32\MpSigStub.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-04 14392]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2012-02-16 137416]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2011-09-15 36000]
R1 FreeOTFE;FreeOTFE; \??\C:\Windows\System32\FreeOTFE.sys [2010-02-08 31856]
R1 FreeOTFECypherAES_ltc;FreeOTFECypherAES_ltc; \??\C:\Windows\System32\FreeOTFECypherAES_ltc.sys [2010-02-08 47216]
R1 FreeOTFECypherBlowfish;FreeOTFECypherBlowfish; \??\C:\Windows\System32\FreeOTFECypherBlowfish.sys [2010-02-08 25200]
R1 FreeOTFECypherCAST5;FreeOTFECypherCAST5; \??\C:\Windows\System32\FreeOTFECypherCAST5.sys [2010-02-08 31088]
R1 FreeOTFECypherCAST6_Gladman;FreeOTFECypherCAST6_Gladman; \??\C:\Windows\System32\FreeOTFECypherCAST6_Gladman.sys [2010-02-08 29808]
R1 FreeOTFECypherDES;FreeOTFECypherDES; \??\C:\Windows\System32\FreeOTFECypherDES.sys [2010-02-08 56816]
R1 FreeOTFECypherMARS_Gladman;FreeOTFECypherMARS_Gladman; \??\C:\Windows\System32\FreeOTFECypherMARS_Gladman.sys [2010-02-08 26480]
R1 FreeOTFECypherRC6_ltc;FreeOTFECypherRC6_ltc; \??\C:\Windows\System32\FreeOTFECypherRC6_ltc.sys [2010-02-08 26096]
R1 FreeOTFECypherSerpent_Gladman;FreeOTFECypherSerpent_Gladman; \??\C:\Windows\System32\FreeOTFECypherSerpent_Gladman.sys [2010-02-08 29168]
R1 FreeOTFECypherTwofish_ltc;FreeOTFECypherTwofish_ltc; \??\C:\Windows\System32\FreeOTFECypherTwofish_ltc.sys [2010-02-08 31856]
R1 FreeOTFEHashMD;FreeOTFEHashMD; \??\C:\Windows\System32\FreeOTFEHashMD.sys [2010-02-08 16880]
R1 FreeOTFEHashRIPEMD;FreeOTFEHashRIPEMD; \??\C:\Windows\System32\FreeOTFEHashRIPEMD.sys [2010-02-08 32624]
R1 FreeOTFEHashSHA;FreeOTFEHashSHA; \??\C:\Windows\System32\FreeOTFEHashSHA.sys [2010-02-08 26224]
R1 FreeOTFEHashTiger;FreeOTFEHashTiger; \??\C:\Windows\System32\FreeOTFEHashTiger.sys [2010-02-08 22128]
R1 FreeOTFEHashWhirlpool;FreeOTFEHashWhirlpool; \??\C:\Windows\System32\FreeOTFEHashWhirlpool.sys [2010-02-08 30704]
R1 SafDskNT;SafeHouse; \??\C:\Windows\system32\drivers\SAFDSKNT.SYS [2009-03-05 77824]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2011-07-22 12880]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [2011-07-12 67664]
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\Windows\system32\drivers\sp_rsdrv2.sys [2011-11-27 142592]
R1 ssmdrv;ssmdrv; C:\Windows\system32\DRIVERS\ssmdrv.sys [2010-06-17 28520]
R2 AODDriver4.01;AODDriver4.01; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [2011-06-24 39424]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2011-09-15 74640]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-07-30 5073920]
R3 CamSuiteVAC;CamSuite Virtual Audio; C:\Windows\system32\DRIVERS\CamSuiteVAC.sys [2008-09-20 37560]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-08-05 2745760]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2009-03-01 139776]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2009-04-03 27320]
S1 MpKsl2c5cc055;MpKsl2c5cc055; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{5AA2A71B-0A8B-46DA-A501-8F8494103C84}\MpKsl2c5cc055.sys []
S1 MpKsl2f49928f;MpKsl2f49928f; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{89D26063-8CB7-4EA4-A5B5-5D61B13E0AB8}\MpKsl2f49928f.sys []
S1 MpKsl423b2f8c;MpKsl423b2f8c; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CE130C5F-1B9F-4C68-851F-417542167E68}\MpKsl423b2f8c.sys []
S1 MpKsl4b9e6d2e;MpKsl4b9e6d2e; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{01FBD140-A5D7-4839-98C9-0FFBFE5FE0ED}\MpKsl4b9e6d2e.sys []
S1 MpKsl5b8f9e00;MpKsl5b8f9e00; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{042E0AE0-2F47-4EED-843D-F73A11FD0EA8}\MpKsl5b8f9e00.sys []
S1 MpKsl5bfa847e;MpKsl5bfa847e; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{433085BD-D844-412A-B98D-0A03D9B954F4}\MpKsl5bfa847e.sys []
S1 MpKsl7d927895;MpKsl7d927895; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{5D2A7658-7F8B-4360-8D40-07F5E0510E02}\MpKsl7d927895.sys []
S1 MpKsl9cdf6bc4;MpKsl9cdf6bc4; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{43FE9D2F-19C3-4A58-877B-782440075141}\MpKsl9cdf6bc4.sys []
S1 MpKsla5a34f7d;MpKsla5a34f7d; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{08A46CDB-264C-4262-99FA-CF122B0849F6}\MpKsla5a34f7d.sys []
S1 MpKslbf031197;MpKslbf031197; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{48CFA5C5-8C7B-4B51-A2D1-F1A4C20E4CB7}\MpKslbf031197.sys []
S1 MpKslc54ace78;MpKslc54ace78; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{10E97E4D-6E52-4840-A5EF-BE673292FE17}\MpKslc54ace78.sys []
S1 MpKslcd3c4f18;MpKslcd3c4f18; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{04EF0BB7-035E-4EC2-9FB0-FCE4B52D16CE}\MpKslcd3c4f18.sys []
S1 MpKsld3a37e16;MpKsld3a37e16; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{99589997-D96E-4797-A4E7-19C89E22FBCC}\MpKsld3a37e16.sys []
S1 MpKsle6feba36;MpKsle6feba36; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E89A9FE2-1C47-4CF3-A7C6-A43D2F7AD75E}\MpKsle6feba36.sys []
S1 MpKslf77403f0;MpKslf77403f0; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{604041B5-B813-401B-881D-A0B33D0E751C}\MpKslf77403f0.sys []
S1 MpKslfd439ceb;MpKslfd439ceb; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A69E7D98-8790-4CAD-9735-4367BD697258}\MpKslfd439ceb.sys []
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 amdiox86;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox86.sys []
S3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-07-30 5073920]
S3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-10-26 264192]
S3 AODDriver4.0;AODDriver4.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [2011-06-24 39424]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 39272]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys []
S3 k750bus;Sony Ericsson 750 driver (WDM); C:\Windows\system32\DRIVERS\k750bus.sys [2005-02-11 55216]
S3 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2010-06-25 35088]
S3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2010-09-03 47360]
S3 s0017bus;Sony Ericsson Device 0017 driver (WDM); C:\Windows\system32\DRIVERS\s0017bus.sys [2008-10-21 86824]
S3 s0017mdfl;Sony Ericsson Device 0017 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s0017mdfl.sys [2008-10-21 15016]
S3 s0017mdm;Sony Ericsson Device 0017 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s0017mdm.sys [2008-10-21 114600]
S3 s0017mgmt;Sony Ericsson Device 0017 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s0017mgmt.sys [2008-10-21 108328]
S3 s0017nd5;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (NDIS); C:\Windows\system32\DRIVERS\s0017nd5.sys [2008-10-21 26024]
S3 s0017obex;Sony Ericsson Device 0017 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s0017obex.sys [2008-10-21 104616]
S3 s0017unic;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (WDM); C:\Windows\system32\DRIVERS\s0017unic.sys [2008-10-21 109736]
S3 s115bus;Sony Ericsson Device 115 driver (WDM); C:\Windows\system32\DRIVERS\s115bus.sys [2007-04-23 83208]
S3 s115mdfl;Sony Ericsson Device 115 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s115mdfl.sys [2007-04-23 15112]
S3 s115mdm;Sony Ericsson Device 115 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s115mdm.sys [2007-04-23 108680]
S3 s115mgmt;Sony Ericsson Device 115 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s115mgmt.sys [2007-04-23 100488]
S3 s115obex;Sony Ericsson Device 115 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s115obex.sys [2007-04-23 98568]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2011-01-15 30208]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-07-29 172032]
R2 AntiVirService;Avira Realtime Protection; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2011-09-23 110032]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2011-09-23 86224]
R2 ezSharedSvc;Easybits Services for Windows; C:\Windows\System32\ezSharedSvcHost.exe [2010-04-23 514232]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 1710464]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-07-08 1343400]
S4 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [2011-08-12 116608]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-12-04 136176]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-12-04 136176]
-----------------EOF-----------------
Dejte prosim log z RSIT 