Preventivka
Napsal: 10 říj 2012 08:38
Dobrý den,
prosím o kontrolu logu.Děkuji
Logfile of random's system information tool 1.09 (written by random/random)
Run by dom at 2012-10-10 09:36:34
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 33 GB (50%) free of 66 GB
Total RAM: 2047 MB (51% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:37:09, on 10.10.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Comodo\Dragon\dragon_updater.exe
C:\Program Files\FarStone\RestoreIT 7\IBP\fsloader.exe
C:\Program Files\EaseUS\Todo Backup\bin\GuardAgent.exe
C:\Program Files\FarStone\RestoreIT 7\IBP\VBPTask.exe
C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe
C:\Program Files\Norton AntiVirus\Engine\20.1.1.2\ccSvcHst.exe
C:\Program Files\Norton Identity Safe\Engine\2013.1.0.4\ccSvcHst.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\WINDOWS\System32\svchost.exe
C:\Documents and Settings\Guest\Plocha\RSIT.exe
C:\Program Files\trend micro\dom.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton AntiVirus\Engine\20.1.1.2\IPS\IPSBHO.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Norton Identity Protection - {AB4C7833-A6EC-433f-B9FE-6B14B1A2F836} - C:\Program Files\Norton Identity Safe\Engine\2013.1.0.4\coIEPlg.dll
O3 - Toolbar: Norton Identity Safe Toolbar - {A13C2648-91D4-4bf3-BC6D-0079707C4389} - C:\Program Files\Norton Identity Safe\Engine\2013.1.0.4\coIEPlg.dll
O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h
O4 - HKLM\..\Run: [AntiLogger] "C:\Program Files\AntiLogger\AntiLogger.exe" /minimized
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [KeePass 2 PreLoad] "C:\Program Files\KeePass Password Safe 2\KeePass.exe" --preload
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-1935655697-796845957-839522115-501\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Guest')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windows ... 2688662828
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 7543763093
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\WINDOWS\system32\guard32.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Unknown owner - C:\Program Files\Comodo\Dragon\dragon_updater.exe
O23 - Service: DriveClone Network Client IBP - Unknown owner - C:\Program Files\FarStone\RestoreIT 7\IBP\fsloader.exe
O23 - Service: Guard Agent - CHENGDU YIWO Tech Development Co., Ltd - C:\Program Files\EaseUS\Todo Backup\bin\GuardAgent.exe
O23 - Service: iolo System Service (ioloSystemService) - iolo technologies, LLC - C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Norton AntiVirus (NAV) - Symantec Corporation - C:\Program Files\Norton AntiVirus\Engine\20.1.1.2\ccSvcHst.exe
O23 - Service: Norton Identity Safe (NCO) - Symantec Corporation - C:\Program Files\Norton Identity Safe\Engine\2013.1.0.4\ccSvcHst.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
--
End of file - 5846 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{5D0A7B1E-8E2A-4E42-9188-C1FF8316ED54}.job
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\dom\Data aplikací\Mozilla\Firefox\Profiles\bk4clgi3.default
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"{BBDA0591-3099-440a-AA10-41764D9DB4DB}"=C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.1.1.2\IPSFFPlgn\
"{F04D2D30-776C-4d02-8627-8E4385ECA58D}"=C:\Documents and Settings\All Users\Data aplikací\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2013.1.0.4\coFFPlgn\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.4.402.265 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_4_402_265.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.7.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\WINDOWS\system32\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@mozilla.zeniko.ch/SumatraPDF_Browser_Plugin]
"Description"=SumatraPDF Browser Plugin
"Path"=C:\Program Files\SumatraPDF\npPdfViewer.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Documents and Settings\dom\Data aplikací\Mozilla\Firefox\Profiles\bk4clgi3.default\extensions\
{7473b6bd-4691-4744-a82b-7854eb3d70b6}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Norton Vulnerability Protection - C:\Program Files\Norton AntiVirus\Engine\20.1.1.2\IPS\IPSBHO.DLL [2012-08-10 387040]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-09-11 449512]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AB4C7833-A6EC-433f-B9FE-6B14B1A2F836}]
Norton Identity Protection - C:\Program Files\Norton Identity Safe\Engine\2013.1.0.4\coIEPlg.dll [2012-08-30 497048]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{A13C2648-91D4-4bf3-BC6D-0079707C4389} - Norton Identity Safe Toolbar - C:\Program Files\Norton Identity Safe\Engine\2013.1.0.4\coIEPlg.dll [2012-08-30 497048]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cfp.exe [2012-03-11 6749512]
"AntiLogger"=C:\Program Files\AntiLogger\AntiLogger.exe [2012-09-07 12943344]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2012-08-30 15512424]
"KeePass 2 PreLoad"=C:\Program Files\KeePass Password Safe 2\KeePass.exe [2012-10-04 1912832]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2012-08-28 3671904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EaseUs Tray]
C:\Program Files\EaseUS\Todo Backup\bin\TrayNotify.exe [2012-03-15 744584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EaseUs Watch]
C:\Program Files\EaseUS\Todo Backup\bin\EuWatch.exe [2011-12-22 70792]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FlashPlayerUpdate]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iolo Startup]
C:\Program Files\iolo\Common\Lib\ioloLManager.exe [2012-10-03 939896]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KeePass 2 PreLoad]
C:\Program Files\KeePass Password Safe 2\KeePass.exe [2012-10-04 1912832]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
C:\WINDOWS\system32\NvCpl.dll [2012-08-30 15512424]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
NvMCTray.dll,NvTaskbarInit -login []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2012-08-30 1634112]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files\Skype\Phone\Skype.exe [2012-07-13 17418928]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAX]
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe [2005-09-07 716800]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
C:\Program Files\Analog Devices\Core\smax4pnp.exe [2005-05-20 925696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TB]
C:\Program Files\EaseUS\Todo Backup\bin\XSnapShotTip.exe [2011-12-22 243336]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WiFi Protector]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^dom^Nabídka Start^Programy^Po spuštění^_uninst_03095723.lnk]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^dom^Nabídka Start^Programy^Po spuštění^_uninst_46240950.lnk]
[]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\WINDOWS\system32\guard32.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ioloSystemService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ioloSystemService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Documents and Settings\Guest\Local Settings\Data aplikací\Programs\Opera\pluginwrapper\opera_plugin_wrapper.exe"="C:\Documents and Settings\Guest\Local Settings\Data aplikací\Programs\Opera\pluginwrapper\opera_plugin_wrapper.exe:*:Enabled:Opera Internet Browser - Plugin wrapper"
"C:\Documents and Settings\Guest\Local Settings\Data aplikací\Programs\Opera\opera.exe"="C:\Documents and Settings\Guest\Local Settings\Data aplikací\Programs\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"="C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe:*:Enabled:Daemonu.exe"
"C:\Program Files\EASEUS\Todo Backup\bin\Agent.exe"="C:\Program Files\EASEUS\Todo Backup\bin\Agent.exe:*:Enabled:Agent.exe"
"C:\Program Files\EASEUS\Todo Backup\bin\TbService.exe"="C:\Program Files\EASEUS\Todo Backup\bin\TbService.exe:*:Enabled:TbService.exe"
"C:\Program Files\EASEUS\Todo Backup\bin\TBConsoleUI.exe"="C:\Program Files\EASEUS\Todo Backup\bin\TBConsoleUI.exe:*:Enabled:Local TBConsoleUI.exe"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"midi"=wdmaud.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.l3acm"=C:\WINDOWS\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - open - NOTEPAD.EXE "%1"
.vbs - open - NOTEPAD.EXE "%1"
======List of files/folders created in the last 1 month======
2012-10-10 09:36:34 ----D---- C:\rsit
2012-10-10 08:36:50 ----D---- C:\WINDOWS\LastGood
2012-10-05 19:26:33 ----D---- C:\Documents and Settings\dom\Data aplikací\Auslogics
2012-10-05 19:26:25 ----D---- C:\Program Files\Auslogics
2012-10-05 17:37:04 ----D---- C:\Documents and Settings\All Users\Data aplikací\KONAMI
2012-10-05 11:09:41 ----D---- C:\WINDOWS\Sun
2012-10-03 06:58:56 ----D---- C:\Program Files\OO Software
2012-10-02 18:52:15 ----D---- C:\pdisk
2012-10-02 18:36:56 ----D---- C:\Program Files\Raxco
2012-10-02 14:47:30 ----D---- C:\Documents and Settings\All Users\Data aplikací\ConeXware
2012-10-02 14:47:08 ----D---- C:\Documents and Settings\All Users\Data aplikací\Caphyon
2012-10-02 14:46:58 ----D---- C:\Program Files\PatchBeam
2012-10-02 14:46:39 ----D---- C:\Program Files\PowerArchiver
2012-10-02 12:05:04 ----A---- C:\WINDOWS\system32\fbnative.exe
2012-10-02 08:16:44 ----D---- C:\toolbarImages
2012-10-02 08:06:49 ----D---- C:\temp
2012-10-02 08:05:24 ----A---- C:\WINDOWS\system32\nvopencl.dll
2012-10-02 08:05:24 ----A---- C:\WINDOWS\system32\nvdispgenco32.dll
2012-10-01 15:15:46 ----A---- C:\WINDOWS\system32\certsentry.dll
2012-09-23 15:00:07 ----SHD---- C:\Config.Msi
2012-09-19 20:57:35 ----A---- C:\WINDOWS\system32\drivers\PDFsFilter.sys
2012-09-19 20:43:38 ----D---- C:\iolo
2012-09-19 20:43:19 ----A---- C:\WINDOWS\system32\Incinerator32.dll
2012-09-19 20:43:18 ----A---- C:\WINDOWS\system32\smrgdf.exe
2012-09-19 20:43:18 ----A---- C:\WINDOWS\system32\offreg.dll
2012-09-19 20:43:18 ----A---- C:\WINDOWS\system32\iolobtdfg.exe
2012-09-19 20:43:17 ----D---- C:\Program Files\iolo
2012-09-19 20:41:35 ----D---- C:\Documents and Settings\dom\Data aplikací\iolo
2012-09-19 20:41:35 ----D---- C:\Documents and Settings\All Users\Data aplikací\iolo
2012-09-15 09:56:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\Installations
2012-09-15 09:43:33 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2012-09-15 09:41:23 ----N---- C:\WINDOWS\system32\spmsgXP_2k3.dll
2012-09-15 09:41:22 ----HDC---- C:\WINDOWS\$NtUninstallWdf01009$
2012-09-13 15:54:27 ----D---- C:\Program Files\trend micro
2012-09-12 15:12:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2736233$
2012-09-12 12:05:02 ----D---- C:\Documents and Settings\dom\Data aplikací\OpenOffice.org
2012-09-12 11:00:43 ----A---- C:\WINDOWS\system32\muweb.dll
2012-09-12 11:00:43 ----A---- C:\WINDOWS\system32\mucltui.dll
2012-09-11 20:36:24 ----D---- C:\WINDOWS\MATS
2012-09-11 20:36:23 ----D---- C:\Program Files\Microsoft Fix it Center
2012-09-11 18:12:51 ----A---- C:\WINDOWS\system32\drivers\55203247.sys
2012-09-11 16:38:07 ----A---- C:\WINDOWS\system32\drivers\dtsoftbus01.sys
2012-09-11 16:37:58 ----D---- C:\Program Files\DAEMON Tools Lite
2012-09-11 15:47:43 ----A---- C:\WINDOWS\system32\javaws.exe
2012-09-11 15:47:32 ----A---- C:\WINDOWS\system32\WindowsAccessBridge.dll
2012-09-11 15:47:32 ----A---- C:\WINDOWS\system32\javaw.exe
2012-09-11 15:47:32 ----A---- C:\WINDOWS\system32\java.exe
2012-09-11 15:23:26 ----D---- C:\WINDOWS\system32\drivers\NST
2012-09-11 15:23:24 ----D---- C:\Program Files\Norton Identity Safe
2012-09-11 15:00:21 ----A---- C:\WINDOWS\system32\S32EVNT1.DLL
2012-09-11 15:00:21 ----A---- C:\WINDOWS\system32\drivers\SYMEVENT.SYS
2012-09-11 15:00:20 ----D---- C:\Program Files\Symantec
2012-09-11 15:00:20 ----D---- C:\Program Files\Common Files\Symantec Shared
2012-09-11 14:59:22 ----D---- C:\WINDOWS\system32\drivers\NAV
2012-09-11 14:59:20 ----D---- C:\Program Files\Norton AntiVirus
2012-09-11 14:59:19 ----D---- C:\Program Files\Windows Sidebar
2012-09-11 14:57:15 ----D---- C:\Program Files\NortonInstaller
2012-09-11 14:57:15 ----D---- C:\Documents and Settings\All Users\Data aplikací\NortonInstaller
2012-09-11 14:54:16 ----D---- C:\Documents and Settings\All Users\Data aplikací\Norton
======List of files/folders modified in the last 1 month======
2012-10-10 09:36:29 ----D---- C:\WINDOWS\Prefetch
2012-10-10 08:37:16 ----HD---- C:\WINDOWS\inf
2012-10-10 08:37:00 ----HD---- C:\WINDOWS\$hf_mig$
2012-10-10 08:36:59 ----D---- C:\WINDOWS
2012-10-10 08:21:37 ----D---- C:\WINDOWS\Temp
2012-10-10 07:59:19 ----D---- C:\WINDOWS\system32\CatRoot2
2012-10-10 07:55:24 ----SHD---- C:\System Volume Information
2012-10-09 16:04:16 ----A---- C:\WINDOWS\SchedLgU.Txt
2012-10-07 20:12:42 ----D---- C:\WINDOWS\Minidump
2012-10-07 19:50:40 ----A---- C:\WINDOWS\WINCMD.INI
2012-10-07 19:49:53 ----D---- C:\WINDOWS\system32\drivers
2012-10-05 22:04:08 ----D---- C:\Documents and Settings\dom\Data aplikací\KeePass
2012-10-05 21:42:26 ----RSD---- C:\WINDOWS\assembly
2012-10-05 21:41:43 ----D---- C:\Program Files\KeePass Password Safe 2
2012-10-05 19:26:25 ----RD---- C:\Program Files
2012-10-05 17:41:58 ----SHD---- C:\WINDOWS\Installer
2012-10-05 17:23:04 ----D---- C:\Documents and Settings\dom\Data aplikací\uTorrent
2012-10-05 11:28:03 ----D---- C:\WINDOWS\system32
2012-10-05 11:11:05 ----D---- C:\Program Files\uTorrent
2012-10-05 09:51:47 ----D---- C:\FreeRapid-0.86u1
2012-10-03 06:42:11 ----D---- C:\Program Files\Common Files
2012-10-02 20:03:23 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2012-10-02 20:02:22 ----D---- C:\Program Files\SpywareBlaster
2012-10-02 18:38:40 ----D---- C:\WINDOWS\WinSxS
2012-10-02 12:25:17 ----A---- C:\WINDOWS\system32\sun_debug.txt
2012-10-02 12:25:16 ----A---- C:\WINDOWS\system32\sun_debug1.txt
2012-10-02 12:08:54 ----D---- C:\WINDOWS\system32\NtmsData
2012-10-02 12:08:09 ----D---- C:\WINDOWS\Registration
2012-10-02 12:07:06 ----SHD---- C:\BOOT
2012-10-02 12:06:09 ----D---- C:\Program Files\EASEUS
2012-10-02 09:18:45 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2012-10-02 09:15:09 ----D---- C:\Program Files\Microsoft Bootvis
2012-10-02 08:08:41 ----D---- C:\Program Files\NVIDIA Corporation
2012-10-02 08:06:36 ----D---- C:\WINDOWS\system32\ReinstallBackups
2012-10-02 08:06:16 ----RSHDC---- C:\WINDOWS\system32\dllcache
2012-10-02 07:59:07 ----D---- C:\Program Files\CCleaner
2012-10-02 03:02:24 ----D---- C:\Program Files\Internet Explorer
2012-10-01 15:15:29 ----D---- C:\Program Files\COMODO
2012-09-26 09:32:05 ----D---- C:\Documents and Settings\dom\Data aplikací\vlc
2012-09-23 15:01:51 ----D---- C:\Program Files\KONAMI
2012-09-23 14:58:37 ----D---- C:\Documents and Settings\dom\Data aplikací\DAEMON Tools Lite
2012-09-15 10:01:23 ----DC---- C:\WINDOWS\system32\DRVSTORE
2012-09-13 22:15:49 ----D---- C:\Documents and Settings\dom\Data aplikací\Gholam_Inc
2012-09-13 16:02:50 ----D---- C:\WINDOWS\Debug
2012-09-13 15:43:04 ----SD---- C:\WINDOWS\Downloaded Program Files
2012-09-12 15:12:16 ----D---- C:\Program Files\Common Files\Microsoft Shared
2012-09-12 15:09:39 ----A---- C:\WINDOWS\system32\MRT.exe
2012-09-11 20:46:59 ----D---- C:\WINDOWS\system32\CatRoot
2012-09-11 20:36:24 ----D---- C:\WINDOWS\AppPatch
2012-09-11 16:47:39 ----D---- C:\Program Files\Microsoft Silverlight
2012-09-11 15:47:20 ----A---- C:\WINDOWS\system32\npDeployJava1.dll
2012-09-11 15:47:20 ----A---- C:\WINDOWS\system32\deployJava1.dll
2012-09-11 15:44:35 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2012-09-11 08:38:51 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 03095723;03095723; C:\WINDOWS\system32\DRIVERS\03095723.sys [2012-08-13 133208]
R0 16769797;16769797; C:\WINDOWS\system32\DRIVERS\16769797.sys [2012-08-25 133208]
R0 46240950;46240950; C:\WINDOWS\system32\DRIVERS\46240950.sys [2012-08-08 133208]
R0 55203247;55203247; C:\WINDOWS\system32\DRIVERS\55203247.sys [2012-09-11 133208]
R0 60104414;60104414; C:\WINDOWS\system32\DRIVERS\60104414.sys [2012-08-25 133208]
R0 EUBAKUP;EUBAKUP; C:\WINDOWS\system32\drivers\eubakup.sys [2011-12-22 50312]
R0 EUBKMON;EUBKMON; C:\WINDOWS\system32\drivers\EUBKMON.sys [2012-02-08 40840]
R0 Inspect;COMODO Internet Security Firewall Driver; C:\WINDOWS\System32\DRIVERS\inspect.sys [2012-03-11 97760]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI Texas Instruments; C:\WINDOWS\System32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 SymDS;Symantec Data Store; C:\WINDOWS\system32\drivers\NAV\1401010.002\SYMDS.SYS [2012-07-27 368288]
R0 SymEFA;Symantec Extended File Attributes; C:\WINDOWS\system32\drivers\NAV\1401010.002\SYMEFA.SYS [2012-08-07 926880]
R0 VVBackd5;VVBackd5; C:\WINDOWS\system32\drivers\VVBackd5.sys [2011-08-04 141400]
R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2005-03-09 42496]
R1 AntiLog32;AntiLog32; \??\C:\WINDOWS\system32\drivers\AntiLog32.sys []
R1 BHDrvx86;BHDrvx86; \??\C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.1.1.2\Definitions\BASHDefs\20120928.001\BHDrvx86.sys []
R1 ccSet_NAV;Norton AntiVirus Settings Manager; C:\WINDOWS\system32\drivers\NAV\1401010.002\ccSetx86.sys [2012-08-07 134304]
R1 ccSet_NST;Norton Identity Safe Settings Manager; C:\WINDOWS\system32\drivers\NST\7DD01000.004\ccSetx86.sys [2012-08-07 134304]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [2012-03-11 494968]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\WINDOWS\System32\DRIVERS\cmdhlp.sys [2012-03-11 31704]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys [2012-09-11 242240]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys []
R1 EUDSKACS;EUDSKACS; \??\C:\WINDOWS\system32\drivers\eudskacs.sys []
R1 EUFDDISK;EUFDDISK; \??\C:\WINDOWS\system32\drivers\EuFdDisk.sys []
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\System32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL); C:\WINDOWS\system32\drivers\NAV\1401010.002\SRTSPX.SYS [2012-05-24 32888]
R1 SymIRON;Symantec Iron Driver; C:\WINDOWS\system32\drivers\NAV\1401010.002\Ironx86.SYS [2012-07-27 175264]
R1 SYMTDI;Symantec Network Dispatch Driver; C:\WINDOWS\System32\Drivers\NAV\1401010.002\SYMTDI.SYS [2012-07-22 394656]
R2 HCDisk;HCDisk; C:\WINDOWS\system32\drivers\HCDisk.sys [2011-01-05 56920]
R2 PDFsFilter;PDFsFilter; C:\WINDOWS\system32\DRIVERS\PDFsFilter.sys [2012-08-02 68464]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2005-10-05 141312]
R3 AEAudioService;AEAudio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2005-03-04 127872]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\System32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys []
R3 FARMNTIO;FARMNTIO; \??\c:\windows\system32\drivers\farmntio.sys []
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\System32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IDSxpx86;IDSxpx86; \??\C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.1.1.2\Definitions\IPSDefs\20121009.001\IDSxpx86.sys []
R3 ms_mpu401;Microsoft MPU-401 MIDI UART Driver; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-18 2944]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 NAVENG;NAVENG; \??\C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.1.1.2\Definitions\VirusDefs\20121009.025\NAVENG.SYS []
R3 NAVEX15;NAVEX15; \??\C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.1.1.2\Definitions\VirusDefs\20121009.025\NAVEX15.SYS []
R3 NIC1394;1394 Net Driver; C:\WINDOWS\System32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2012-08-30 12555680]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [2008-04-13 20992]
R3 SenFiltService;SenFilt Service; C:\WINDOWS\system32\drivers\Senfilt.sys [2005-08-11 393088]
R3 SRTSP;Symantec Real Time Storage Protection; C:\WINDOWS\System32\Drivers\NAV\1401010.002\SRTSP.SYS [2012-08-10 585888]
R3 SymEvent;SymEvent; \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS []
R3 tap0901;TAP-Win32 Adapter V9; C:\WINDOWS\system32\DRIVERS\tap0901.sys [2012-04-05 26624]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2005-03-30 230400]
S3 epmntdrv;epmntdrv; \??\C:\WINDOWS\system32\epmntdrv.sys []
S3 EuGdiDrv;EuGdiDrv; \??\C:\WINDOWS\system32\EuGdiDrv.sys []
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\DRIVERS\usbser.sys [2008-04-14 26112]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp.sys [2012-06-05 104792]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service; C:\WINDOWS\system32\DRIVERS\VBoxNetFlt.sys []
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2012-03-11 1983232]
R2 DragonUpdater;COMODO Dragon Update Service; C:\Program Files\Comodo\Dragon\dragon_updater.exe [2012-09-28 1853584]
R2 DriveClone Network Client IBP;DriveClone Network Client IBP; C:\Program Files\FarStone\RestoreIT 7\IBP\fsloader.exe [2009-08-18 126976]
R2 Guard Agent;Guard Agent; C:\Program Files\EaseUS\Todo Backup\bin\GuardAgent.exe [2011-12-22 23176]
R2 ioloSystemService;iolo System Service; C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe [2012-10-03 1028464]
R2 NAV;Norton AntiVirus; C:\Program Files\Norton AntiVirus\Engine\20.1.1.2\ccSvcHst.exe [2012-08-29 143928]
R2 NCO;Norton Identity Safe; C:\Program Files\Norton Identity Safe\Engine\2013.1.0.4\ccSvcHst.exe [2012-08-19 143928]
R2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\system32\nvsvc32.exe [2012-08-30 164200]
R2 Skype C2C Service;Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-08-13 3064000]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MatSvc;Microsoft Automated Troubleshooting Service; C:\Program Files\Microsoft Fix it Center\Matsvc.exe [2011-06-13 267568]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2012-07-14 113120]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-09-11 250568]
S4 EaseUS Agent;EaseUS Agent; C:\Program Files\EaseUS\Todo Backup\bin\Agent.exe [2011-12-22 61064]
S4 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2012-09-11 161768]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-08-30 1258856]
S4 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-07-13 160944]
S4 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
-----------------EOF-----------------
prosím o kontrolu logu.Děkuji
Logfile of random's system information tool 1.09 (written by random/random)
Run by dom at 2012-10-10 09:36:34
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 33 GB (50%) free of 66 GB
Total RAM: 2047 MB (51% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:37:09, on 10.10.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Comodo\Dragon\dragon_updater.exe
C:\Program Files\FarStone\RestoreIT 7\IBP\fsloader.exe
C:\Program Files\EaseUS\Todo Backup\bin\GuardAgent.exe
C:\Program Files\FarStone\RestoreIT 7\IBP\VBPTask.exe
C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe
C:\Program Files\Norton AntiVirus\Engine\20.1.1.2\ccSvcHst.exe
C:\Program Files\Norton Identity Safe\Engine\2013.1.0.4\ccSvcHst.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\WINDOWS\System32\svchost.exe
C:\Documents and Settings\Guest\Plocha\RSIT.exe
C:\Program Files\trend micro\dom.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton AntiVirus\Engine\20.1.1.2\IPS\IPSBHO.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Norton Identity Protection - {AB4C7833-A6EC-433f-B9FE-6B14B1A2F836} - C:\Program Files\Norton Identity Safe\Engine\2013.1.0.4\coIEPlg.dll
O3 - Toolbar: Norton Identity Safe Toolbar - {A13C2648-91D4-4bf3-BC6D-0079707C4389} - C:\Program Files\Norton Identity Safe\Engine\2013.1.0.4\coIEPlg.dll
O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h
O4 - HKLM\..\Run: [AntiLogger] "C:\Program Files\AntiLogger\AntiLogger.exe" /minimized
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [KeePass 2 PreLoad] "C:\Program Files\KeePass Password Safe 2\KeePass.exe" --preload
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-1935655697-796845957-839522115-501\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Guest')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windows ... 2688662828
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 7543763093
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\WINDOWS\system32\guard32.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Unknown owner - C:\Program Files\Comodo\Dragon\dragon_updater.exe
O23 - Service: DriveClone Network Client IBP - Unknown owner - C:\Program Files\FarStone\RestoreIT 7\IBP\fsloader.exe
O23 - Service: Guard Agent - CHENGDU YIWO Tech Development Co., Ltd - C:\Program Files\EaseUS\Todo Backup\bin\GuardAgent.exe
O23 - Service: iolo System Service (ioloSystemService) - iolo technologies, LLC - C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Norton AntiVirus (NAV) - Symantec Corporation - C:\Program Files\Norton AntiVirus\Engine\20.1.1.2\ccSvcHst.exe
O23 - Service: Norton Identity Safe (NCO) - Symantec Corporation - C:\Program Files\Norton Identity Safe\Engine\2013.1.0.4\ccSvcHst.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe
--
End of file - 5846 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{5D0A7B1E-8E2A-4E42-9188-C1FF8316ED54}.job
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\dom\Data aplikací\Mozilla\Firefox\Profiles\bk4clgi3.default
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"{BBDA0591-3099-440a-AA10-41764D9DB4DB}"=C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.1.1.2\IPSFFPlgn\
"{F04D2D30-776C-4d02-8627-8E4385ECA58D}"=C:\Documents and Settings\All Users\Data aplikací\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2013.1.0.4\coFFPlgn\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.4.402.265 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_4_402_265.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.7.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\WINDOWS\system32\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@mozilla.zeniko.ch/SumatraPDF_Browser_Plugin]
"Description"=SumatraPDF Browser Plugin
"Path"=C:\Program Files\SumatraPDF\npPdfViewer.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Documents and Settings\dom\Data aplikací\Mozilla\Firefox\Profiles\bk4clgi3.default\extensions\
{7473b6bd-4691-4744-a82b-7854eb3d70b6}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Norton Vulnerability Protection - C:\Program Files\Norton AntiVirus\Engine\20.1.1.2\IPS\IPSBHO.DLL [2012-08-10 387040]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-09-11 449512]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AB4C7833-A6EC-433f-B9FE-6B14B1A2F836}]
Norton Identity Protection - C:\Program Files\Norton Identity Safe\Engine\2013.1.0.4\coIEPlg.dll [2012-08-30 497048]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{A13C2648-91D4-4bf3-BC6D-0079707C4389} - Norton Identity Safe Toolbar - C:\Program Files\Norton Identity Safe\Engine\2013.1.0.4\coIEPlg.dll [2012-08-30 497048]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cfp.exe [2012-03-11 6749512]
"AntiLogger"=C:\Program Files\AntiLogger\AntiLogger.exe [2012-09-07 12943344]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2012-08-30 15512424]
"KeePass 2 PreLoad"=C:\Program Files\KeePass Password Safe 2\KeePass.exe [2012-10-04 1912832]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2012-08-28 3671904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EaseUs Tray]
C:\Program Files\EaseUS\Todo Backup\bin\TrayNotify.exe [2012-03-15 744584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EaseUs Watch]
C:\Program Files\EaseUS\Todo Backup\bin\EuWatch.exe [2011-12-22 70792]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FlashPlayerUpdate]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iolo Startup]
C:\Program Files\iolo\Common\Lib\ioloLManager.exe [2012-10-03 939896]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KeePass 2 PreLoad]
C:\Program Files\KeePass Password Safe 2\KeePass.exe [2012-10-04 1912832]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
C:\WINDOWS\system32\NvCpl.dll [2012-08-30 15512424]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
NvMCTray.dll,NvTaskbarInit -login []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2012-08-30 1634112]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files\Skype\Phone\Skype.exe [2012-07-13 17418928]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAX]
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe [2005-09-07 716800]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
C:\Program Files\Analog Devices\Core\smax4pnp.exe [2005-05-20 925696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TB]
C:\Program Files\EaseUS\Todo Backup\bin\XSnapShotTip.exe [2011-12-22 243336]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WiFi Protector]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^dom^Nabídka Start^Programy^Po spuštění^_uninst_03095723.lnk]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^dom^Nabídka Start^Programy^Po spuštění^_uninst_46240950.lnk]
[]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\WINDOWS\system32\guard32.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ioloSystemService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ioloSystemService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Documents and Settings\Guest\Local Settings\Data aplikací\Programs\Opera\pluginwrapper\opera_plugin_wrapper.exe"="C:\Documents and Settings\Guest\Local Settings\Data aplikací\Programs\Opera\pluginwrapper\opera_plugin_wrapper.exe:*:Enabled:Opera Internet Browser - Plugin wrapper"
"C:\Documents and Settings\Guest\Local Settings\Data aplikací\Programs\Opera\opera.exe"="C:\Documents and Settings\Guest\Local Settings\Data aplikací\Programs\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"="C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe:*:Enabled:Daemonu.exe"
"C:\Program Files\EASEUS\Todo Backup\bin\Agent.exe"="C:\Program Files\EASEUS\Todo Backup\bin\Agent.exe:*:Enabled:Agent.exe"
"C:\Program Files\EASEUS\Todo Backup\bin\TbService.exe"="C:\Program Files\EASEUS\Todo Backup\bin\TbService.exe:*:Enabled:TbService.exe"
"C:\Program Files\EASEUS\Todo Backup\bin\TBConsoleUI.exe"="C:\Program Files\EASEUS\Todo Backup\bin\TBConsoleUI.exe:*:Enabled:Local TBConsoleUI.exe"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"midi"=wdmaud.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.l3acm"=C:\WINDOWS\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - open - NOTEPAD.EXE "%1"
.vbs - open - NOTEPAD.EXE "%1"
======List of files/folders created in the last 1 month======
2012-10-10 09:36:34 ----D---- C:\rsit
2012-10-10 08:36:50 ----D---- C:\WINDOWS\LastGood
2012-10-05 19:26:33 ----D---- C:\Documents and Settings\dom\Data aplikací\Auslogics
2012-10-05 19:26:25 ----D---- C:\Program Files\Auslogics
2012-10-05 17:37:04 ----D---- C:\Documents and Settings\All Users\Data aplikací\KONAMI
2012-10-05 11:09:41 ----D---- C:\WINDOWS\Sun
2012-10-03 06:58:56 ----D---- C:\Program Files\OO Software
2012-10-02 18:52:15 ----D---- C:\pdisk
2012-10-02 18:36:56 ----D---- C:\Program Files\Raxco
2012-10-02 14:47:30 ----D---- C:\Documents and Settings\All Users\Data aplikací\ConeXware
2012-10-02 14:47:08 ----D---- C:\Documents and Settings\All Users\Data aplikací\Caphyon
2012-10-02 14:46:58 ----D---- C:\Program Files\PatchBeam
2012-10-02 14:46:39 ----D---- C:\Program Files\PowerArchiver
2012-10-02 12:05:04 ----A---- C:\WINDOWS\system32\fbnative.exe
2012-10-02 08:16:44 ----D---- C:\toolbarImages
2012-10-02 08:06:49 ----D---- C:\temp
2012-10-02 08:05:24 ----A---- C:\WINDOWS\system32\nvopencl.dll
2012-10-02 08:05:24 ----A---- C:\WINDOWS\system32\nvdispgenco32.dll
2012-10-01 15:15:46 ----A---- C:\WINDOWS\system32\certsentry.dll
2012-09-23 15:00:07 ----SHD---- C:\Config.Msi
2012-09-19 20:57:35 ----A---- C:\WINDOWS\system32\drivers\PDFsFilter.sys
2012-09-19 20:43:38 ----D---- C:\iolo
2012-09-19 20:43:19 ----A---- C:\WINDOWS\system32\Incinerator32.dll
2012-09-19 20:43:18 ----A---- C:\WINDOWS\system32\smrgdf.exe
2012-09-19 20:43:18 ----A---- C:\WINDOWS\system32\offreg.dll
2012-09-19 20:43:18 ----A---- C:\WINDOWS\system32\iolobtdfg.exe
2012-09-19 20:43:17 ----D---- C:\Program Files\iolo
2012-09-19 20:41:35 ----D---- C:\Documents and Settings\dom\Data aplikací\iolo
2012-09-19 20:41:35 ----D---- C:\Documents and Settings\All Users\Data aplikací\iolo
2012-09-15 09:56:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\Installations
2012-09-15 09:43:33 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2012-09-15 09:41:23 ----N---- C:\WINDOWS\system32\spmsgXP_2k3.dll
2012-09-15 09:41:22 ----HDC---- C:\WINDOWS\$NtUninstallWdf01009$
2012-09-13 15:54:27 ----D---- C:\Program Files\trend micro
2012-09-12 15:12:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2736233$
2012-09-12 12:05:02 ----D---- C:\Documents and Settings\dom\Data aplikací\OpenOffice.org
2012-09-12 11:00:43 ----A---- C:\WINDOWS\system32\muweb.dll
2012-09-12 11:00:43 ----A---- C:\WINDOWS\system32\mucltui.dll
2012-09-11 20:36:24 ----D---- C:\WINDOWS\MATS
2012-09-11 20:36:23 ----D---- C:\Program Files\Microsoft Fix it Center
2012-09-11 18:12:51 ----A---- C:\WINDOWS\system32\drivers\55203247.sys
2012-09-11 16:38:07 ----A---- C:\WINDOWS\system32\drivers\dtsoftbus01.sys
2012-09-11 16:37:58 ----D---- C:\Program Files\DAEMON Tools Lite
2012-09-11 15:47:43 ----A---- C:\WINDOWS\system32\javaws.exe
2012-09-11 15:47:32 ----A---- C:\WINDOWS\system32\WindowsAccessBridge.dll
2012-09-11 15:47:32 ----A---- C:\WINDOWS\system32\javaw.exe
2012-09-11 15:47:32 ----A---- C:\WINDOWS\system32\java.exe
2012-09-11 15:23:26 ----D---- C:\WINDOWS\system32\drivers\NST
2012-09-11 15:23:24 ----D---- C:\Program Files\Norton Identity Safe
2012-09-11 15:00:21 ----A---- C:\WINDOWS\system32\S32EVNT1.DLL
2012-09-11 15:00:21 ----A---- C:\WINDOWS\system32\drivers\SYMEVENT.SYS
2012-09-11 15:00:20 ----D---- C:\Program Files\Symantec
2012-09-11 15:00:20 ----D---- C:\Program Files\Common Files\Symantec Shared
2012-09-11 14:59:22 ----D---- C:\WINDOWS\system32\drivers\NAV
2012-09-11 14:59:20 ----D---- C:\Program Files\Norton AntiVirus
2012-09-11 14:59:19 ----D---- C:\Program Files\Windows Sidebar
2012-09-11 14:57:15 ----D---- C:\Program Files\NortonInstaller
2012-09-11 14:57:15 ----D---- C:\Documents and Settings\All Users\Data aplikací\NortonInstaller
2012-09-11 14:54:16 ----D---- C:\Documents and Settings\All Users\Data aplikací\Norton
======List of files/folders modified in the last 1 month======
2012-10-10 09:36:29 ----D---- C:\WINDOWS\Prefetch
2012-10-10 08:37:16 ----HD---- C:\WINDOWS\inf
2012-10-10 08:37:00 ----HD---- C:\WINDOWS\$hf_mig$
2012-10-10 08:36:59 ----D---- C:\WINDOWS
2012-10-10 08:21:37 ----D---- C:\WINDOWS\Temp
2012-10-10 07:59:19 ----D---- C:\WINDOWS\system32\CatRoot2
2012-10-10 07:55:24 ----SHD---- C:\System Volume Information
2012-10-09 16:04:16 ----A---- C:\WINDOWS\SchedLgU.Txt
2012-10-07 20:12:42 ----D---- C:\WINDOWS\Minidump
2012-10-07 19:50:40 ----A---- C:\WINDOWS\WINCMD.INI
2012-10-07 19:49:53 ----D---- C:\WINDOWS\system32\drivers
2012-10-05 22:04:08 ----D---- C:\Documents and Settings\dom\Data aplikací\KeePass
2012-10-05 21:42:26 ----RSD---- C:\WINDOWS\assembly
2012-10-05 21:41:43 ----D---- C:\Program Files\KeePass Password Safe 2
2012-10-05 19:26:25 ----RD---- C:\Program Files
2012-10-05 17:41:58 ----SHD---- C:\WINDOWS\Installer
2012-10-05 17:23:04 ----D---- C:\Documents and Settings\dom\Data aplikací\uTorrent
2012-10-05 11:28:03 ----D---- C:\WINDOWS\system32
2012-10-05 11:11:05 ----D---- C:\Program Files\uTorrent
2012-10-05 09:51:47 ----D---- C:\FreeRapid-0.86u1
2012-10-03 06:42:11 ----D---- C:\Program Files\Common Files
2012-10-02 20:03:23 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2012-10-02 20:02:22 ----D---- C:\Program Files\SpywareBlaster
2012-10-02 18:38:40 ----D---- C:\WINDOWS\WinSxS
2012-10-02 12:25:17 ----A---- C:\WINDOWS\system32\sun_debug.txt
2012-10-02 12:25:16 ----A---- C:\WINDOWS\system32\sun_debug1.txt
2012-10-02 12:08:54 ----D---- C:\WINDOWS\system32\NtmsData
2012-10-02 12:08:09 ----D---- C:\WINDOWS\Registration
2012-10-02 12:07:06 ----SHD---- C:\BOOT
2012-10-02 12:06:09 ----D---- C:\Program Files\EASEUS
2012-10-02 09:18:45 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2012-10-02 09:15:09 ----D---- C:\Program Files\Microsoft Bootvis
2012-10-02 08:08:41 ----D---- C:\Program Files\NVIDIA Corporation
2012-10-02 08:06:36 ----D---- C:\WINDOWS\system32\ReinstallBackups
2012-10-02 08:06:16 ----RSHDC---- C:\WINDOWS\system32\dllcache
2012-10-02 07:59:07 ----D---- C:\Program Files\CCleaner
2012-10-02 03:02:24 ----D---- C:\Program Files\Internet Explorer
2012-10-01 15:15:29 ----D---- C:\Program Files\COMODO
2012-09-26 09:32:05 ----D---- C:\Documents and Settings\dom\Data aplikací\vlc
2012-09-23 15:01:51 ----D---- C:\Program Files\KONAMI
2012-09-23 14:58:37 ----D---- C:\Documents and Settings\dom\Data aplikací\DAEMON Tools Lite
2012-09-15 10:01:23 ----DC---- C:\WINDOWS\system32\DRVSTORE
2012-09-13 22:15:49 ----D---- C:\Documents and Settings\dom\Data aplikací\Gholam_Inc
2012-09-13 16:02:50 ----D---- C:\WINDOWS\Debug
2012-09-13 15:43:04 ----SD---- C:\WINDOWS\Downloaded Program Files
2012-09-12 15:12:16 ----D---- C:\Program Files\Common Files\Microsoft Shared
2012-09-12 15:09:39 ----A---- C:\WINDOWS\system32\MRT.exe
2012-09-11 20:46:59 ----D---- C:\WINDOWS\system32\CatRoot
2012-09-11 20:36:24 ----D---- C:\WINDOWS\AppPatch
2012-09-11 16:47:39 ----D---- C:\Program Files\Microsoft Silverlight
2012-09-11 15:47:20 ----A---- C:\WINDOWS\system32\npDeployJava1.dll
2012-09-11 15:47:20 ----A---- C:\WINDOWS\system32\deployJava1.dll
2012-09-11 15:44:35 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2012-09-11 08:38:51 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 03095723;03095723; C:\WINDOWS\system32\DRIVERS\03095723.sys [2012-08-13 133208]
R0 16769797;16769797; C:\WINDOWS\system32\DRIVERS\16769797.sys [2012-08-25 133208]
R0 46240950;46240950; C:\WINDOWS\system32\DRIVERS\46240950.sys [2012-08-08 133208]
R0 55203247;55203247; C:\WINDOWS\system32\DRIVERS\55203247.sys [2012-09-11 133208]
R0 60104414;60104414; C:\WINDOWS\system32\DRIVERS\60104414.sys [2012-08-25 133208]
R0 EUBAKUP;EUBAKUP; C:\WINDOWS\system32\drivers\eubakup.sys [2011-12-22 50312]
R0 EUBKMON;EUBKMON; C:\WINDOWS\system32\drivers\EUBKMON.sys [2012-02-08 40840]
R0 Inspect;COMODO Internet Security Firewall Driver; C:\WINDOWS\System32\DRIVERS\inspect.sys [2012-03-11 97760]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI Texas Instruments; C:\WINDOWS\System32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 SymDS;Symantec Data Store; C:\WINDOWS\system32\drivers\NAV\1401010.002\SYMDS.SYS [2012-07-27 368288]
R0 SymEFA;Symantec Extended File Attributes; C:\WINDOWS\system32\drivers\NAV\1401010.002\SYMEFA.SYS [2012-08-07 926880]
R0 VVBackd5;VVBackd5; C:\WINDOWS\system32\drivers\VVBackd5.sys [2011-08-04 141400]
R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2005-03-09 42496]
R1 AntiLog32;AntiLog32; \??\C:\WINDOWS\system32\drivers\AntiLog32.sys []
R1 BHDrvx86;BHDrvx86; \??\C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.1.1.2\Definitions\BASHDefs\20120928.001\BHDrvx86.sys []
R1 ccSet_NAV;Norton AntiVirus Settings Manager; C:\WINDOWS\system32\drivers\NAV\1401010.002\ccSetx86.sys [2012-08-07 134304]
R1 ccSet_NST;Norton Identity Safe Settings Manager; C:\WINDOWS\system32\drivers\NST\7DD01000.004\ccSetx86.sys [2012-08-07 134304]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [2012-03-11 494968]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\WINDOWS\System32\DRIVERS\cmdhlp.sys [2012-03-11 31704]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys [2012-09-11 242240]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys []
R1 EUDSKACS;EUDSKACS; \??\C:\WINDOWS\system32\drivers\eudskacs.sys []
R1 EUFDDISK;EUFDDISK; \??\C:\WINDOWS\system32\drivers\EuFdDisk.sys []
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\System32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL); C:\WINDOWS\system32\drivers\NAV\1401010.002\SRTSPX.SYS [2012-05-24 32888]
R1 SymIRON;Symantec Iron Driver; C:\WINDOWS\system32\drivers\NAV\1401010.002\Ironx86.SYS [2012-07-27 175264]
R1 SYMTDI;Symantec Network Dispatch Driver; C:\WINDOWS\System32\Drivers\NAV\1401010.002\SYMTDI.SYS [2012-07-22 394656]
R2 HCDisk;HCDisk; C:\WINDOWS\system32\drivers\HCDisk.sys [2011-01-05 56920]
R2 PDFsFilter;PDFsFilter; C:\WINDOWS\system32\DRIVERS\PDFsFilter.sys [2012-08-02 68464]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2005-10-05 141312]
R3 AEAudioService;AEAudio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2005-03-04 127872]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\System32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys []
R3 FARMNTIO;FARMNTIO; \??\c:\windows\system32\drivers\farmntio.sys []
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\System32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IDSxpx86;IDSxpx86; \??\C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.1.1.2\Definitions\IPSDefs\20121009.001\IDSxpx86.sys []
R3 ms_mpu401;Microsoft MPU-401 MIDI UART Driver; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-18 2944]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 NAVENG;NAVENG; \??\C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.1.1.2\Definitions\VirusDefs\20121009.025\NAVENG.SYS []
R3 NAVEX15;NAVEX15; \??\C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.1.1.2\Definitions\VirusDefs\20121009.025\NAVEX15.SYS []
R3 NIC1394;1394 Net Driver; C:\WINDOWS\System32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2012-08-30 12555680]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [2008-04-13 20992]
R3 SenFiltService;SenFilt Service; C:\WINDOWS\system32\drivers\Senfilt.sys [2005-08-11 393088]
R3 SRTSP;Symantec Real Time Storage Protection; C:\WINDOWS\System32\Drivers\NAV\1401010.002\SRTSP.SYS [2012-08-10 585888]
R3 SymEvent;SymEvent; \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS []
R3 tap0901;TAP-Win32 Adapter V9; C:\WINDOWS\system32\DRIVERS\tap0901.sys [2012-04-05 26624]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2005-03-30 230400]
S3 epmntdrv;epmntdrv; \??\C:\WINDOWS\system32\epmntdrv.sys []
S3 EuGdiDrv;EuGdiDrv; \??\C:\WINDOWS\system32\EuGdiDrv.sys []
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\DRIVERS\usbser.sys [2008-04-14 26112]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp.sys [2012-06-05 104792]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service; C:\WINDOWS\system32\DRIVERS\VBoxNetFlt.sys []
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2012-03-11 1983232]
R2 DragonUpdater;COMODO Dragon Update Service; C:\Program Files\Comodo\Dragon\dragon_updater.exe [2012-09-28 1853584]
R2 DriveClone Network Client IBP;DriveClone Network Client IBP; C:\Program Files\FarStone\RestoreIT 7\IBP\fsloader.exe [2009-08-18 126976]
R2 Guard Agent;Guard Agent; C:\Program Files\EaseUS\Todo Backup\bin\GuardAgent.exe [2011-12-22 23176]
R2 ioloSystemService;iolo System Service; C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe [2012-10-03 1028464]
R2 NAV;Norton AntiVirus; C:\Program Files\Norton AntiVirus\Engine\20.1.1.2\ccSvcHst.exe [2012-08-29 143928]
R2 NCO;Norton Identity Safe; C:\Program Files\Norton Identity Safe\Engine\2013.1.0.4\ccSvcHst.exe [2012-08-19 143928]
R2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\system32\nvsvc32.exe [2012-08-30 164200]
R2 Skype C2C Service;Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-08-13 3064000]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MatSvc;Microsoft Automated Troubleshooting Service; C:\Program Files\Microsoft Fix it Center\Matsvc.exe [2011-06-13 267568]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2012-07-14 113120]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-09-11 250568]
S4 EaseUS Agent;EaseUS Agent; C:\Program Files\EaseUS\Todo Backup\bin\Agent.exe [2011-12-22 61064]
S4 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2012-09-11 161768]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-08-30 1258856]
S4 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-07-13 160944]
S4 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
-----------------EOF-----------------
Zase nekdy 
