log z RSIT
Logfile of random's system information tool 1.09 (written by random/random)
Run by Marek at 2012-07-21 09:09:51
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 40 GB (69%) free of 57 GB
Total RAM: 1023 MB (38% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:20:59, on 21.7.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16827)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\T-Mobile\Web'n'walk Manager\Manager.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\Program Files\T-Mobile\Web'n'walk Manager\ameisvc.exe
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\Documents and Settings\Marek\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\Marek.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://centrum.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll
R3 - URLSearchHook: BS Player Toolbar - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files\BS_Player\prxtbBS_0.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: BS Player - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files\BS_Player\prxtbBS_0.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: BS Player Toolbar - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files\BS_Player\prxtbBS_0.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [T-Mobile Communication Centre] "C:\Program Files\T-Mobile\Web'n'walk Manager\Manager.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: BTTray.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) -
http://download.eset.com/special/eos-be ... canner.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{068153AA-615C-44B3-8B8B-4310414B922C}: NameServer = 93.153.117.33 93.153.117.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{068153AA-615C-44B3-8B8B-4310414B922C}: NameServer = 93.153.117.33 93.153.117.1
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
O23 - Service: Web'n'walk Manager mobile equipment installation service (ameisvc) - Gemfor s.r.o. - C:\Program Files\T-Mobile\Web'n'walk Manager\ameisvc.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
--
End of file - 7338 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
C:\WINDOWS\tasks\WGASetup.job
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\Marek\Data aplikací\Mozilla\Firefox\Profiles\gxio8k1t.default
prefs.js - "browser.startup.homepage" - "
www.google.cz"
"
wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5CA3D70E-1895-11CF-8E15-001234567890}]
DriveLetterAccess - C:\WINDOWS\system32\dla\tfswshx.dll [2003-09-26 106548]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-05-10 819840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2011-02-01 1487240]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}]
BS Player Toolbar - C:\Program Files\BS_Player\prxtbBS_0.dll [2011-05-09 176936]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-05-10 819840]
{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - BS Player Toolbar - C:\Program Files\BS_Player\prxtbBS_0.dll [2011-05-09 176936]
{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2011-02-01 1487240]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ATIModeChange"=C:\WINDOWS\system32\Ati2mdxx.exe [2002-08-27 28672]
"ATIPTA"=C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [2003-04-24 327680]
"dla"=C:\WINDOWS\system32\dla\tfswctrl.exe [2003-09-26 114741]
"Cpqset"=C:\Program Files\HPQ\Default Settings\cpqset.exe [2003-07-17 184412]
"SunJavaUpdateSched"=C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe [2008-02-25 32881]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2011-05-10 3459712]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Malwarebytes Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2012-07-03 462920]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"T-Mobile Communication Centre"=C:\Program Files\T-Mobile\Web'n'walk Manager\Manager.exe [2011-06-30 1363984]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
BTTray.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\NavLogon]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=
:\WINDOWS\syste
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Hrajte naplno 2005\Racer\racer.exe"="C:\Hrajte naplno 2005\Racer\racer.exe:*:Disabled:racer"
"C:\Program Files\PANDORA.TV\PanService\PandoraService.exe"="C:\Program Files\PANDORA.TV\PanService\PandoraService.exe:*:Enabled:PandoraService"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=i263_32.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"MIDI1"=SYNCOR11.DLL
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"msacm.g723"=g723.acm
"vidc.I263"=I263_32.drv
"VIDC.IV41"=ir41_32.dll
"vidc.iv50"=ir50_32.dll
======File associations======
.scr - open - "%1" /S "%3"
======List of files/folders created in the last 3 months======
2012-07-21 09:09:53 ----D---- C:\Program Files\trend micro
2012-07-21 09:09:51 ----D---- C:\rsit
2012-07-20 17:56:23 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2012-07-20 17:50:33 ----D---- C:\Documents and Settings\Marek\Data aplikací\Malwarebytes
2012-07-20 17:49:13 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2012-07-20 17:49:11 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2012-07-20 17:49:11 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2012-06-20 14:53:05 ----D---- C:\Documents and Settings\Marek\Data aplikací\Mozilla
2012-06-20 14:52:25 ----D---- C:\Documents and Settings\All Users\Data aplikací\Mozilla
2012-06-20 14:52:24 ----D---- C:\Program Files\Mozilla Maintenance Service
2012-06-20 14:52:13 ----D---- C:\Program Files\Mozilla Firefox
2012-06-20 10:06:07 ----A---- C:\WINDOWS\ModemLog_HUAWEI Mobile Connect - 3G Modem.txt
2012-06-20 10:00:15 ----D---- C:\Program Files\T-Mobile
2012-06-20 09:57:26 ----N---- C:\WINDOWS\system32\spmsgXP_2k3.dll
2012-06-20 09:57:09 ----HDC---- C:\WINDOWS\$NtUninstallWdf01007$
2012-06-20 09:55:01 ----A---- C:\WINDOWS\system32\wdfcoinstaller01007.dll
2012-06-20 09:55:01 ----A---- C:\WINDOWS\system32\drivers\WdfCoInstaller01007.dll
2012-06-20 09:55:01 ----A---- C:\WINDOWS\system32\drivers\usbccid.sys
2012-06-20 09:55:01 ----A---- C:\WINDOWS\system32\drivers\mod7700.sys
2012-06-20 09:55:01 ----A---- C:\WINDOWS\system32\drivers\ewusbnet.sys
2012-06-20 09:55:01 ----A---- C:\WINDOWS\system32\drivers\ewusbmdm.sys
2012-06-20 09:55:01 ----A---- C:\WINDOWS\system32\drivers\ewdcsc.sys
2012-06-20 09:55:01 ----A---- C:\WINDOWS\system32\drivers\ew_usbenumfilter.sys
2012-06-20 09:55:01 ----A---- C:\WINDOWS\system32\drivers\ew_juextctrl.sys
2012-06-20 09:55:01 ----A---- C:\WINDOWS\system32\drivers\ew_jucdcecm.sys
2012-06-20 09:55:01 ----A---- C:\WINDOWS\system32\drivers\ew_jucdcacm.sys
2012-06-20 09:55:01 ----A---- C:\WINDOWS\system32\drivers\ew_jubusenum.sys
2012-06-20 09:55:01 ----A---- C:\WINDOWS\system32\drivers\ew_hwusbdev.sys
2012-06-20 09:55:01 ----A---- C:\WINDOWS\system32\drivers\ew_hwupgrade.sys
2012-06-20 09:54:24 ----D---- C:\Program Files\Huawei
2012-06-19 10:52:09 ----A---- C:\WINDOWS\ModemLog_ZTE Proprietary USB Modem.txt
2012-06-19 10:50:51 ----A---- C:\WINDOWS\system32\drivers\usbccgp.sys
2012-06-19 10:50:37 ----A---- C:\WINDOWS\system32\drivers\ZTEusbser6k.sys
2012-06-19 10:50:37 ----A---- C:\WINDOWS\system32\drivers\ZTEusbnmea.sys
2012-06-19 10:50:37 ----A---- C:\WINDOWS\system32\drivers\ZTEusbmdm6k.sys
2012-06-19 10:50:37 ----A---- C:\WINDOWS\system32\drivers\massfilter.sys
2012-06-19 10:50:33 ----D---- C:\Program Files\ZTE
11595-12-29 18:40:13 ----RASH---- C:\boot.ini
11595-12-29 18:36:51 ----RSHDC---- C:\WINDOWS\system32\dllcache
11595-12-29 18:36:51 ----RSD---- C:\WINDOWS\Fonts
11595-12-29 18:36:51 ----RD---- C:\WINDOWS\Web
11595-12-29 18:36:51 ----HD---- C:\WINDOWS\inf
11595-12-29 18:36:51 ----D---- C:\WINDOWS\WinSxS
11595-12-29 18:36:51 ----D---- C:\WINDOWS\twain_32
11595-12-29 18:36:51 ----D---- C:\WINDOWS\Temp
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32\wins
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32\wbem
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32\usmt
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32\spool
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32\ShellExt
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32\Setup
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32\ras
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32\oobe
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32\npp
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32\mui
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32\inetsrv
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32\IME
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32\icsxml
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32\ias
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32\export
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32\drivers\etc
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32\drivers\disdn
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32\drivers
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32\dhcp
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32\config
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32\3com_dmi
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32\3076
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32\2052
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32\1054
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32\1042
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32\1041
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32\1037
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32\1033
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32\1031
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32\1029
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32\1028
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32\1025
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system32
11595-12-29 18:36:51 ----D---- C:\WINDOWS\system
11595-12-29 18:36:51 ----D---- C:\WINDOWS\security
11595-12-29 18:36:51 ----D---- C:\WINDOWS\Resources
11595-12-29 18:36:51 ----D---- C:\WINDOWS\repair
11595-12-29 18:36:51 ----D---- C:\WINDOWS\mui
11595-12-29 18:36:51 ----D---- C:\WINDOWS\msapps
11595-12-29 18:36:51 ----D---- C:\WINDOWS\msagent
11595-12-29 18:36:51 ----D---- C:\WINDOWS\Media
11595-12-29 18:36:51 ----D---- C:\WINDOWS\java
11595-12-29 18:36:51 ----D---- C:\WINDOWS\ime
11595-12-29 18:36:51 ----D---- C:\WINDOWS\Help
11595-12-29 18:36:51 ----D---- C:\WINDOWS\Driver Cache
11595-12-29 18:36:51 ----D---- C:\WINDOWS\Debug
11595-12-29 18:36:51 ----D---- C:\WINDOWS\Cursors
11595-12-29 18:36:51 ----D---- C:\WINDOWS\Connection Wizard
11595-12-29 18:36:51 ----D---- C:\WINDOWS\Config
11595-12-29 18:36:51 ----D---- C:\WINDOWS\AppPatch
11595-12-29 18:36:51 ----D---- C:\WINDOWS\addins
11595-12-29 18:36:51 ----D---- C:\WINDOWS
11595-12-29 18:36:51 ----ASH---- C:\pagefile.sys
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMPa044.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP9fd6.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP9afd.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP9994.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP96c3.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP95f1.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP956f.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP94e2.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP9352.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP932a.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP9320.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP92f8.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP9121.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP903b.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP9027.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP8f7c.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP8e3c.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP8dc4.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP8ce7.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP8c8d.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP8bed.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP8a71.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP8a70.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP8a48.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP89b2.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP8962.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP8912.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP885e.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP8836.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP880e.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP878b.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP871d.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP8691.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP8565.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP8438.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP838e.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP82d0.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP8294.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP8207.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP81e9.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP8117.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP8095.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP8027.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP8009.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP7ec8.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP7e64.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP7d6a.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP7d24.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP7c3d.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP7bc5.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP7b39.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP7ae9.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP7a2a.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP79a8.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP789a.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP767d.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP75bf.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP751f.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP74c4.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP746a.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP73ac.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP7348.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP7244.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP710d.tmp
11595-12-29 18:36:51 ----A---- C:\WINDOWS\DUMP7013.tmp
======List of files/folders modified in the last 3 months======
2012-07-21 09:10:31 ----D---- C:\WINDOWS\Prefetch
2012-07-21 09:09:53 ----RD---- C:\Program Files
2012-07-20 16:50:59 ----A---- C:\PollSt.txt
2012-07-20 16:50:59 ----A---- C:\Pollog.txt
2012-07-20 16:47:26 ----A---- C:\WINDOWS\SchedLgU.Txt
2012-07-20 16:47:21 ----D---- C:\WINDOWS\system32\CatRoot2
2012-06-19 10:49:37 ----D---- C:\Program Files\BS_Player
2012-06-19 10:45:50 ----D---- C:\WINDOWS\system32\CatRoot
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 agp440;Filtr Intel sběrnice AGP; C:\WINDOWS\System32\DRIVERS\agp440.sys [2008-04-13 42368]
R0 BTKRNL;Bluetooth Protocol Stack; C:\WINDOWS\System32\drivers\btkrnl.sys [2003-09-12 1258138]
R0 drvmcdb;drvmcdb; C:\WINDOWS\system32\drivers\drvmcdb.sys [2003-10-29 84640]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI VIA; C:\WINDOWS\System32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINDOWS\System32\drivers\sfdrv01.sys [2005-08-10 50688]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\System32\drivers\sfhlp02.sys [2005-05-16 6656]
R0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); C:\WINDOWS\System32\drivers\sfsync02.sys [2005-08-10 19968]
R0 sfvfs02;StarForce Protection VFS Driver (version 2.x); C:\WINDOWS\System32\drivers\sfvfs02.sys [2005-09-29 66048]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2011-05-10 30808]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2011-05-10 25432]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2011-05-10 441176]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2011-05-10 307928]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2011-05-10 49240]
R1 Cdr4_xp;Cdr4_xp; C:\WINDOWS\system32\drivers\Cdr4_xp.sys [2003-07-17 66992]
R1 Cdralw2k;Cdralw2k; C:\WINDOWS\system32\drivers\Cdralw2k.sys [2003-07-17 24698]
R1 cdudf_xp;cdudf_xp; C:\WINDOWS\system32\drivers\cdudf_xp.sys [2003-07-18 259328]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\System32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 pwd_2k;pwd_2k; C:\WINDOWS\system32\drivers\pwd_2k.sys [2003-07-18 118409]
R1 sscdbhk5;sscdbhk5; C:\WINDOWS\system32\drivers\sscdbhk5.sys [2003-07-14 5621]
R1 ssrtln;ssrtln; C:\WINDOWS\system32\drivers\ssrtln.sys [2003-07-14 23219]
R1 UdfReadr_xp;UdfReadr_xp; C:\WINDOWS\system32\drivers\UdfReadr_xp.sys [2003-07-18 213120]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2011-05-10 19544]
R2 aswMon2;aswMon2; C:\WINDOWS\system32\drivers\aswMon2.sys [2011-05-10 102616]
R2 BTSERIAL;Bluetooth Serial Driver; \??\C:\WINDOWS\System32\drivers\btserial.sys []
R2 BTSLBCSP;Bluetooth Port Client Driver; \??\C:\WINDOWS\System32\drivers\btslbcsp.sys []
R2 cpqdfw;Diagnostics Driver; \??\C:\WINDOWS\System32\drivers\cpqdfw.sys []
R2 cq_mem;Diagnostics Memory Driver; \??\C:\WINDOWS\System32\drivers\cq_mem.sys []
R2 cqcpu;Diagnostics CPU Driver; \??\C:\WINDOWS\System32\drivers\cqcpu.sys []
R2 drvnddm;drvnddm; C:\WINDOWS\system32\drivers\drvnddm.sys [2003-06-20 40448]
R2 irda;Protokol IrDA; C:\WINDOWS\System32\DRIVERS\irda.sys [2008-04-13 88192]
R2 tfsnboio;tfsnboio; C:\WINDOWS\system32\dla\tfsnboio.sys [2003-09-26 25685]
R2 tfsncofs;tfsncofs; C:\WINDOWS\system32\dla\tfsncofs.sys [2003-09-26 34837]
R2 tfsndrct;tfsndrct; C:\WINDOWS\system32\dla\tfsndrct.sys [2003-09-26 4117]
R2 tfsndres;tfsndres; C:\WINDOWS\system32\dla\tfsndres.sys [2003-09-26 2233]
R2 tfsnifs;tfsnifs; C:\WINDOWS\system32\dla\tfsnifs.sys [2003-09-26 83572]
R2 tfsnopio;tfsnopio; C:\WINDOWS\system32\dla\tfsnopio.sys [2003-09-26 14229]
R2 tfsnpool;tfsnpool; C:\WINDOWS\system32\dla\tfsnpool.sys [2003-09-26 6357]
R2 tfsnudf;tfsnudf; C:\WINDOWS\system32\dla\tfsnudf.sys [2003-09-26 98164]
R2 tfsnudfa;tfsnudfa; C:\WINDOWS\system32\dla\tfsnudfa.sys [2003-09-26 100373]
R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2003-03-12 100224]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\WINDOWS\System32\DRIVERS\AGRSM.sys [2003-05-05 1170464]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\System32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 ati2mtag;ati2mtag; C:\WINDOWS\System32\DRIVERS\ati2mtag.sys [2003-04-23 624512]
R3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS\system32\DRIVERS\btport.sys [2003-09-12 30267]
R3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2003-09-12 146716]
R3 dvd_2K;dvd_2K; C:\WINDOWS\system32\drivers\dvd_2K.sys [2003-07-18 21993]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 huawei_cdcacm;huawei_cdcacm; C:\WINDOWS\system32\DRIVERS\ew_jucdcacm.sys [2011-02-25 90368]
R3 huawei_enumerator;huawei_enumerator; C:\WINDOWS\system32\DRIVERS\ew_jubusenum.sys [2011-01-30 73216]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys []
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\System32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\System32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 rtl8139;Realtek RTL8139/810x Family Fast Ethernet NIC NT Driver; C:\WINDOWS\System32\DRIVERS\R8139n51.SYS [2003-03-17 46976]
R3 SMCIRDA;SMC IrCC Miniport Device Driver; C:\WINDOWS\System32\DRIVERS\smcirda.sys [2001-10-24 35913]
R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2003-05-27 578304]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 w70n51;Intel(R) PRO/Wireless 7100 Adapter Driver; C:\WINDOWS\System32\DRIVERS\w70n51.sys [2003-11-04 2477952]
R3 WBSD;Winbond Secure Digital Storage (SD/MMC) Device Driver; C:\WINDOWS\System32\Drivers\WBSD.SYS [2003-03-20 26240]
R3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2003-09-12 52664]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\WINDOWS\system32\DRIVERS\ew_hwusbdev.sys [2010-07-27 102784]
S3 gv3;Ovladač procesoru Intel GV3; C:\WINDOWS\System32\DRIVERS\gv3.sys [2002-11-20 33408]
S3 massfilter;Mass Storage Filter Driver; C:\WINDOWS\system32\drivers\massfilter.sys [2010-02-22 9216]
S3 mmc_2K;mmc_2K; C:\WINDOWS\system32\drivers\mmc_2K.sys [2003-07-18 22745]
S3 SymEvent;SymEvent; \??\C:\Program Files\Symantec\SYMEVENT.SYS []
S3 ZTEusbmdm6k;ZTE Proprietary USB Driver; C:\WINDOWS\system32\DRIVERS\ZTEusbmdm6k.sys [2010-03-02 105856]
S3 ZTEusbnmea;ZTE NMEA Port; C:\WINDOWS\system32\DRIVERS\ZTEusbnmea.sys [2010-03-02 105856]
S3 ZTEusbser6k;ZTE Diagnostic Port; C:\WINDOWS\system32\DRIVERS\ZTEusbser6k.sys [2010-03-02 105856]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ameisvc;Web'n'walk Manager mobile equipment installation service; C:\Program Files\T-Mobile\Web'n'walk Manager\ameisvc.exe [2011-06-24 123120]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\System32\Ati2evxx.exe [2003-04-23 249943]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-05-10 42184]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2003-09-12 135168]
R2 Irmon;Sledování infračerveného přenosu; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-20 322120]
R2 SoundMAX Agent Service (default);SoundMAX Agent Service; C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [2002-09-20 45056]
R2 WMDM PMSP Service;WMDM PMSP Service; C:\WINDOWS\system32\MsPMSPSv.exe [2001-05-01 53248]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe [2004-07-15 32768]
S3 LiveUpdate;LiveUpdate; C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE [2006-08-25 2528960]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2012-07-07 113120]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
-----------------EOF-----------------