VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Prosím o preventivku

https://forum.viry.cz:443/viewtopic.php?t=129930

Stránka 1 z 1

Prosím o preventivku

Napsal: 28 dub 2013 18:11
od Warden75
Zdravím, poprosil bych o preventivku.Díky


DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 10.0.9200.16537 BrowserJavaVersion: 10.9.2
Run by Hans at 19:09:02 on 2013-04-28
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.2044.772 [GMT 2:00]
.
AV: ESET NOD32 Antivirus 4.2 *Enabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
SP: ESET NOD32 Antivirus 4.2 *Enabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_991d5ea79febb417\STacSV.exe
C:\Windows\system32\AUDIODG.EXE
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\CyberLink\CyberLink Live\CLSomaMonitorService.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\CyberLink\CyberLink Live\CLPushUpdateService.exe
C:\Program Files\CyberLink\CyberLink Live\CLSomaService.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\PnkBstrA.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTray.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_7_700_169.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_7_700_169.exe
C:\Program Files\Nero\Update\NASvc.exe
C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Program Files\The KMPlayer\KMPlayer.exe
C:\Windows\system32\taskmgr.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k WerSvcGroup
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.novinky.cz/
BHO: Podpora odkazu pro Adobe PDF Reader: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
uRun: [PC Suite Tray] "c:\program files\nokia\nokia pc suite 7\PCSuite.exe" -onlytray
uRun: [Zoner Photo Studio Autoupdate] c:\program files\zoner\photo studio 15\program32\ZPSTRAY.EXE
mRun: [egui] "c:\program files\eset\eset nod32 antivirus\egui.exe" /hide /waitservice
mRun: [NSU_agent] "c:\program files\nokia\nokia software updater\nsu3ui_agent.exe"
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\micros~3\office14\ONBttnIE.dll/105
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
TCP: NameServer = 94.74.192.252 94.74.192.244
TCP: Interfaces\{49975416-1421-4B68-B327-C442D5980BC4} : DHCPNameServer = 94.74.192.252 94.74.192.244
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\hans\appdata\roaming\mozilla\firefox\profiles\7nm9qbik.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.novinky.cz/
FF - plugin: c:\progra~1\common~1\nero\browse~1\npBrowserPlugin.dll
FF - plugin: c:\program files\adobe\reader 11.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\microsoft silverlight\5.1.20125.0\npctrlui.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npwachk.dll
FF - plugin: c:\users\hans\appdata\local\google\update\1.3.21.135\npGoogleUpdate3.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_7_700_169.dll
FF - plugin: c:\windows\system32\npDeployJava1.dll
FF - plugin: c:\windows\system32\npmproxy.dll
.
============= SERVICES / DRIVERS ===============
.
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [2013-3-6 242240]
R1 pctgntdi;pctgntdi;c:\windows\system32\drivers\pctgntdi.sys [2012-11-24 233136]
R2 CyberLink Live Monitor Service;CyberLink Live Monitor Service;c:\program files\cyberlink\cyberlink live\CLSomaMonitorService.exe [2008-4-25 171040]
R2 CyberLink Live Push Update Service;CyberLink Live Push Update Service;c:\program files\cyberlink\cyberlink live\CLPushUpdateService.exe [2008-4-25 113696]
R2 CyberLink Live Service;CyberLink Live Service;c:\program files\cyberlink\cyberlink live\CLSomaService.exe [2008-4-25 322592]
R2 eamonm;eamonm;c:\windows\system32\drivers\eamonm.sys [2010-12-21 137144]
R2 ekrn;ESET Service;c:\program files\eset\eset nod32 antivirus\ekrn.exe [2011-1-12 810144]
R2 epfwwfpr;epfwwfpr;c:\windows\system32\drivers\epfwwfpr.sys [2010-12-21 95384]
R2 NAUpdate;Nero Update;c:\program files\nero\update\NASvc.exe [2012-7-13 769432]
R2 PCTAppEvent;PCTAppEvent Driver;c:\windows\system32\drivers\PCTAppEvent.sys [2012-11-24 88040]
R3 e1yexpress;Ovladač gigabitových síťových připojení Intel(R);c:\windows\system32\drivers\e1y6032.sys [2009-7-14 214016]
R3 pctNDIS;PC Tools Driver;c:\windows\system32\drivers\pctNdis.sys [2012-11-24 58816]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-11-9 160944]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888]
S3 PCTFW-PacketFilter;PCTools Firewall - Packet filter driver;c:\windows\system32\drivers\pctNdis-PacketFilter.sys [2012-11-24 70664]
S3 pctplfw;pctplfw;c:\windows\system32\drivers\pctplfw.sys [2012-11-24 115216]
S3 StorSvc;Služba úložiště;c:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 20992]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2012-11-15 52224]
S3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\wat\WatAdminSvc.exe [2012-11-15 1343400]
.
=============== Created Last 30 ================
.
2013-04-28 16:59:01 -------- d-----w- c:\program files\trend micro
2013-04-26 07:18:03 6906960 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{3ac1bafc-8dee-496d-8744-fc5ec3a43285}\mpengine.dll
2013-04-26 06:19:51 73728 ----a-r- c:\users\hans\appdata\roaming\microsoft\installer\{7130468a-f53f-4698-8c09-a339ea3b05e6}\NewShortcut47_74B9CE5DF1F4447F982DCA29A461B529.exe
2013-04-26 06:19:51 73728 ----a-r- c:\users\hans\appdata\roaming\microsoft\installer\{7130468a-f53f-4698-8c09-a339ea3b05e6}\NewShortcut46_74B9CE5DF1F4447F982DCA29A461B529.exe
2013-04-26 06:19:51 53248 ----a-r- c:\users\hans\appdata\roaming\microsoft\installer\{7130468a-f53f-4698-8c09-a339ea3b05e6}\ARPPRODUCTICON.exe
2013-04-26 06:19:51 49152 ----a-r- c:\users\hans\appdata\roaming\microsoft\installer\{7130468a-f53f-4698-8c09-a339ea3b05e6}\Uninstall_QA_OTI_H_FE5D756F71E147C4972AD6775344B40B.exe
2013-04-26 06:19:51 49152 ----a-r- c:\users\hans\appdata\roaming\microsoft\installer\{7130468a-f53f-4698-8c09-a339ea3b05e6}\NewShortcut2_1C7B7089989A424FB39D41A32581C775.exe
2013-04-26 06:19:51 -------- d-----w- c:\users\hans\appdata\local\Nokia
2013-04-26 05:38:56 -------- d-----w- c:\program files\common files\PCSuite
2013-04-26 05:38:55 -------- d-----w- c:\program files\common files\Nokia
2013-04-26 05:38:48 19072 ----a-w- c:\windows\system32\drivers\pccsmcfd.sys
2013-04-26 05:38:43 -------- d-----w- c:\program files\PC Connectivity Solution
2013-04-26 05:38:29 -------- d-----w- c:\program files\Nokia
2013-04-26 04:55:31 -------- d-----w- c:\users\hans\appdata\roaming\mp3DirectCut
2013-04-26 04:54:57 -------- d-----w- c:\program files\mp3DirectCut
2013-04-24 17:40:15 -------- d-----w- c:\program files\common files\Mobipocket Shared
2013-04-24 17:40:14 -------- d-----w- c:\program files\Mobipocket.com
2013-04-23 23:01:25 1211752 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-04-20 04:13:32 -------- d-----w- c:\program files\ESET
2013-04-13 18:31:15 -------- d-----w- c:\program files\The Adventure Company
2013-04-13 18:31:03 155648 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\iuser.dll
2013-04-13 18:31:02 692224 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\iKernel.dll
2013-04-13 18:31:02 57344 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\ctor.dll
2013-04-13 18:31:02 5632 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\DotNetInstaller.exe
2013-04-13 18:31:02 237568 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\iscript.dll
2013-04-13 18:30:56 282756 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\setup.dll
2013-04-13 18:30:56 163972 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\iGdi.dll
2013-04-12 15:05:25 -------- d-----w- c:\users\hans\appdata\local\Nero_AG
2013-04-12 15:05:03 -------- d-----w- c:\users\hans\appdata\local\Nero
2013-04-10 04:54:53 2347008 ----a-w- c:\windows\system32\win32k.sys
2013-04-10 04:54:50 196328 ----a-w- c:\windows\system32\drivers\fvevol.sys
2013-04-10 04:54:44 3968856 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-04-10 04:54:44 3913560 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-04-10 04:54:42 69632 ----a-w- c:\windows\system32\smss.exe
2013-04-10 04:54:42 38912 ----a-w- c:\windows\system32\csrsrv.dll
2013-04-10 04:54:22 3217408 ----a-w- c:\windows\system32\mstscax.dll
2013-04-10 04:54:21 36864 ----a-w- c:\windows\system32\tsgqec.dll
2013-04-10 04:54:21 131584 ----a-w- c:\windows\system32\aaclient.dll
.
==================== Find3M ====================
.
2013-04-19 02:17:12 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-04-19 02:17:12 691592 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-03-15 05:46:27 8952608 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2013-03-15 05:46:27 892704 ----a-w- c:\windows\system32\nvdispgenco3231422.dll
2013-03-15 05:46:27 7959000 ----a-w- c:\windows\system32\nvcuda.dll
2013-03-15 05:46:27 6271872 ----a-w- c:\windows\system32\nvopencl.dll
2013-03-15 05:46:27 2728736 ----a-w- c:\windows\system32\nvcuvid.dll
2013-03-15 05:46:27 2539128 ----a-w- c:\windows\system32\nvapi.dll
2013-03-15 05:46:27 20542752 ----a-w- c:\windows\system32\nvoglv32.dll
2013-03-15 05:46:27 1995552 ----a-w- c:\windows\system32\nvcuvenc.dll
2013-03-15 05:46:27 17560352 ----a-w- c:\windows\system32\nvcompiler.dll
2013-03-15 05:46:27 15042928 ----a-w- c:\windows\system32\nvd3dum.dll
2013-03-15 05:46:27 13088000 ----a-w- c:\windows\system32\nvwgf2um.dll
2013-03-15 05:46:27 1012512 ----a-w- c:\windows\system32\nvdispco3231422.dll
2013-03-15 02:59:30 4119328 ----a-w- c:\windows\system32\nvcpl.dll
2013-03-15 02:59:30 3014432 ----a-w- c:\windows\system32\nvsvc.dll
2013-03-15 02:59:27 634144 ----a-w- c:\windows\system32\nvvsvc.exe
2013-03-15 02:59:27 2555168 ----a-w- c:\windows\system32\nvsvcr.dll
2013-03-15 02:59:26 62752 ----a-w- c:\windows\system32\nvshext.dll
2013-03-15 02:59:26 223008 ----a-w- c:\windows\system32\nvmctray.dll
2013-03-11 23:10:56 237088 ------w- c:\windows\system32\MpSigStub.exe
2013-03-06 10:31:13 242240 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2013-02-12 04:48:31 474112 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-02-12 04:48:26 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-02-12 03:32:45 15872 ----a-w- c:\windows\system32\drivers\usb8023.sys
2013-02-10 03:20:39 892704 ----a-w- c:\windows\system32\nvdispgenco3220162.dll
2013-02-10 03:20:39 1012512 ----a-w- c:\windows\system32\nvdispco3220294.dll
.
============= FINISH: 19:09:30,85 ===============

Re: Prosím o preventivku

Napsal: 29 dub 2013 17:21
od Roli
Zdravím, ještě poprosím o log.txt z Rsit.

Re: Prosím o preventivku

Napsal: 29 dub 2013 17:33
od Warden75
Logfile of random's system information tool 1.09 (written by random/random)
Run by Hans at 2013-04-29 18:32:59
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 276 GB (69%) free of 400 GB
Total RAM: 2044 MB (59% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:33:04, on 29.4.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16537)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTray.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_7_700_169.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_7_700_169.exe
D:\Stáhnuté\RSIT.exe
C:\Program Files\trend micro\Hans.exe
C:\Windows\system32\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.novinky.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ˙ţ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [NSU_agent] "C:\Program Files\Nokia\Nokia Software Updater\nsu3ui_agent.exe"
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTRAY.EXE
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-1300762496-2828329149-1192743700-1003\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1300762496-2828329149-1192743700-1003\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~3\Office14\ONBttnIE.dll/105
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: CyberLink Live Monitor Service - CyberLink - C:\Program Files\CyberLink\CyberLink Live\CLSomaMonitorService.exe
O23 - Service: CyberLink Live Push Update Service - CyberLink - C:\Program Files\CyberLink\CyberLink Live\CLPushUpdateService.exe
O23 - Service: CyberLink Live Service - CyberLink Corp. - C:\Program Files\CyberLink\CyberLink Live\CLSomaService.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @C:\Program Files\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_991d5ea79febb417\STacSV.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe

--
End of file - 6570 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1300762496-2828329149-1192743700-1001Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1300762496-2828329149-1192743700-1001UA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Hans\AppData\Roaming\Mozilla\Firefox\Profiles\7nm9qbik.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.novinky.cz/"

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.7.700.169 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_169.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.9.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\system32\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Nero.com/KM]
"Description"=
"Path"=C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\plugins\
NPOFF12.DLL
nppdf32.dll
npwachk.dll

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Users\Hans\AppData\Roaming\Mozilla\Firefox\Profiles\7nm9qbik.default\extensions\
{1018e4d6-728f-4b20-ad56-37578a4de76b}

C:\Users\Hans\AppData\Roaming\Mozilla\Firefox\Profiles\7nm9qbik.default\searchplugins\
encyclopaedia-metallum-bands.xml
masearch.xml
vyhledvn-vide-ve-slub-youtube.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2012-09-23 72336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-11-15 449512]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-11-15 155384]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2011-01-12 2219184]
"NSU_agent"=C:\Program Files\Nokia\Nokia Software Updater\nsu3ui_agent.exe [2012-02-28 190768]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"PC Suite Tray"=C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2012-06-26 1516632]
"Zoner Photo Studio Autoupdate"=C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTRAY.EXE [2013-02-18 774168]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acronis Scheduler2 Service]
C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AcronisTimounterMonitor]
C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSGamerOSD]
C:\Program Files\ASUS\GamerOSD\GamerOSD.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLPushUpdate]
C:\Program Files\CyberLink\CyberLink Live\CLPushUpdate.exe [2008-04-25 60448]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
C:\Windows\system32\NvMcTray.dll [2013-03-15 223008]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SysTrayApp]
C:\Program Files\IDT\WDM\sttray.exe [2008-06-20 442433]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrueImageMonitor.exe]
C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Program Files\Winamp\winampa.exe [2012-06-28 74752]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate]
C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTRAY.EXE [2013-02-18 774168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codecp.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"msacm.l3codecp"=l3codecp.acm
"MSVideo8"=VfWWDM32.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.ac3acm"=ac3acm.acm

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-04-28 18:59:01 ----D---- C:\rsit
2013-04-28 18:59:01 ----D---- C:\Program Files\trend micro
2013-04-26 07:39:39 ----D---- C:\Users\Hans\AppData\Roaming\PC Suite
2013-04-26 07:39:39 ----D---- C:\Users\Hans\AppData\Roaming\Nokia
2013-04-26 07:39:38 ----D---- C:\ProgramData\PC Suite
2013-04-26 07:38:56 ----D---- C:\Program Files\Common Files\PCSuite
2013-04-26 07:38:55 ----D---- C:\Program Files\Common Files\Nokia
2013-04-26 07:38:49 ----D---- C:\Program Files\DIFX
2013-04-26 07:38:48 ----A---- C:\Windows\system32\drivers\pccsmcfd.sys
2013-04-26 07:38:47 ----DC---- C:\Windows\system32\DRVSTORE
2013-04-26 07:38:43 ----D---- C:\Program Files\PC Connectivity Solution
2013-04-26 07:38:29 ----D---- C:\Program Files\Nokia
2013-04-26 07:37:16 ----D---- C:\ProgramData\Installations
2013-04-26 06:55:31 ----D---- C:\Users\Hans\AppData\Roaming\mp3DirectCut
2013-04-26 06:54:57 ----D---- C:\Program Files\mp3DirectCut
2013-04-24 19:40:15 ----D---- C:\Program Files\Common Files\Mobipocket Shared
2013-04-24 19:40:14 ----D---- C:\Program Files\Mobipocket.com
2013-04-24 01:01:25 ----A---- C:\Windows\system32\drivers\ntfs.sys
2013-04-20 06:13:32 ----D---- C:\ProgramData\ESET
2013-04-20 06:13:32 ----D---- C:\Program Files\ESET
2013-04-13 20:31:15 ----D---- C:\Program Files\The Adventure Company
2013-04-12 15:50:22 ----D---- C:\Program Files\Mozilla Firefox
2013-04-10 07:09:36 ----A---- C:\Windows\system32\wininet.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\wextract.exe
2013-04-10 07:09:36 ----A---- C:\Windows\system32\webcheck.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\vbscript.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\urlmon.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\url.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-04-10 07:09:36 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-04-10 07:09:36 ----A---- C:\Windows\system32\pngfilt.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\occache.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-04-10 07:09:36 ----A---- C:\Windows\system32\msrating.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\msls31.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\mshtmlmedia.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\mshtmler.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\mshtmled.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\mshtml.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\mshta.exe
2013-04-10 07:09:36 ----A---- C:\Windows\system32\msfeedssync.exe
2013-04-10 07:09:36 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\msfeeds.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\licmgr10.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\jsproxy.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\jscript9.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\jscript.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\inseng.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\imgutil.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\iexpress.exe
2013-04-10 07:09:36 ----A---- C:\Windows\system32\ieUnatt.exe
2013-04-10 07:09:36 ----A---- C:\Windows\system32\ieui.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\iesysprep.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\iesetup.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\iertutil.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\iernonce.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\iepeers.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\ieframe.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\iedkcs32.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\ieapfltr.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\ieapfltr.dat
2013-04-10 07:09:36 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\ie4uinit.exe
2013-04-10 07:09:36 ----A---- C:\Windows\system32\icardie.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\elshyph.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\dxtrans.dll
2013-04-10 07:09:36 ----A---- C:\Windows\system32\dxtmsft.dll
2013-04-10 06:54:53 ----A---- C:\Windows\system32\win32k.sys
2013-04-10 06:54:50 ----A---- C:\Windows\system32\drivers\fvevol.sys
2013-04-10 06:54:44 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-04-10 06:54:44 ----A---- C:\Windows\system32\ntkrnlpa.exe
2013-04-10 06:54:42 ----A---- C:\Windows\system32\smss.exe
2013-04-10 06:54:42 ----A---- C:\Windows\system32\csrsrv.dll
2013-04-10 06:54:22 ----A---- C:\Windows\system32\mstscax.dll
2013-04-10 06:54:21 ----A---- C:\Windows\system32\tsgqec.dll
2013-04-10 06:54:21 ----A---- C:\Windows\system32\aaclient.dll

======List of files/folders modified in the last 1 month======

2013-04-29 18:33:01 ----D---- C:\Windows\Temp
2013-04-29 18:32:18 ----D---- C:\Windows\Prefetch
2013-04-29 17:46:23 ----D---- C:\Windows\system32\config
2013-04-29 17:41:42 ----D---- C:\Windows\System32
2013-04-29 17:41:42 ----D---- C:\Windows\inf
2013-04-29 17:41:42 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-04-28 18:59:01 ----RD---- C:\Program Files
2013-04-28 18:58:06 ----D---- C:\Windows
2013-04-28 18:29:23 ----D---- C:\Windows\system32\drivers
2013-04-28 18:10:53 ----D---- C:\Users\Hans\AppData\Roaming\Winamp
2013-04-28 16:24:30 ----D---- C:\Users\Hans\AppData\Roaming\uTorrent
2013-04-28 14:17:37 ----D---- C:\Program Files\uTorrent
2013-04-26 10:19:40 ----SHD---- C:\Windows\Installer
2013-04-26 10:19:40 ----D---- C:\Config.Msi
2013-04-26 10:19:35 ----D---- C:\Windows\winsxs
2013-04-26 10:19:25 ----SHD---- C:\System Volume Information
2013-04-26 10:13:43 ----D---- C:\Windows\ModemLogs
2013-04-26 08:20:03 ----D---- C:\Program Files\MSXML 4.0
2013-04-26 08:19:51 ----SD---- C:\Users\Hans\AppData\Roaming\Microsoft
2013-04-26 07:39:38 ----HD---- C:\ProgramData
2013-04-26 07:39:13 ----D---- C:\Windows\system32\catroot
2013-04-26 07:39:12 ----D---- C:\Windows\system32\DriverStore
2013-04-26 07:38:56 ----D---- C:\Program Files\Common Files
2013-04-25 05:24:47 ----D---- C:\Windows\system32\NDF
2013-04-25 05:18:38 ----SD---- C:\ProgramData\Microsoft
2013-04-25 05:15:33 ----D---- C:\Windows\SoftwareDistribution
2013-04-24 19:24:53 ----D---- C:\Program Files\Calibre2
2013-04-24 17:36:48 ----D---- C:\Windows\system32\catroot2
2013-04-19 04:17:31 ----D---- C:\ProgramData\Adobe
2013-04-19 04:17:12 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2013-04-15 00:32:27 ----D---- C:\Users\Hans\AppData\Roaming\Media Player Classic
2013-04-14 04:37:53 ----D---- C:\Program Files\Mozilla Maintenance Service
2013-04-13 21:41:01 ----D---- C:\Users\Hans\AppData\Roaming\DAEMON Tools Lite
2013-04-13 20:31:14 ----HD---- C:\Program Files\InstallShield Installation Information
2013-04-10 18:59:25 ----D---- C:\Windows\rescache
2013-04-10 07:24:29 ----D---- C:\Windows\Panther
2013-04-10 07:24:29 ----D---- C:\Windows\Logs
2013-04-10 07:24:29 ----D---- C:\Windows\debug
2013-04-10 07:12:12 ----D---- C:\Windows\system32\cs-CZ
2013-04-10 07:12:12 ----D---- C:\Program Files\Internet Explorer
2013-04-10 07:12:11 ----D---- C:\Windows\system32\migration
2013-04-10 07:12:11 ----D---- C:\Windows\system32\en-US
2013-04-10 07:12:11 ----D---- C:\Windows\PolicyDefinitions
2013-04-10 06:58:40 ----D---- C:\ProgramData\Microsoft Help
2013-04-10 06:56:34 ----A---- C:\Windows\system32\MRT.exe
2013-04-01 10:57:49 ----D---- C:\Users\Hans\AppData\Roaming\vlc

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 timounter;Acronis True Image Backup Archive Explorer; C:\Windows\system32\DRIVERS\timntr.sys [2012-11-15 442048]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-03-06 242240]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2010-12-21 115008]
R1 EIO_XP;EIO_XP; \??\C:\Windows\system32\drivers\EIO_XP.sys [2006-06-14 12288]
R1 pctgntdi;pctgntdi; \??\C:\Windows\System32\drivers\pctgntdi.sys [2010-01-07 233136]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2010-12-21 137144]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2010-12-21 95384]
R2 PCTAppEvent;PCTAppEvent Driver; \??\C:\Windows\system32\drivers\PCTAppEvent.sys [2009-11-23 88040]
R2 tifsfilter;Acronis True Image FS Filter; C:\Windows\system32\DRIVERS\tifsfilt.sys [2012-11-15 43424]
R3 e1yexpress;Ovladač gigabitových síťových připojení Intel(R); C:\Windows\system32\DRIVERS\e1y6032.sys [2009-07-14 214016]
R3 pctNDIS;PC Tools Driver; C:\Windows\system32\DRIVERS\pctNdis.sys [2010-01-07 58816]
R3 STHDA;IDT High Definition Audio CODEC; C:\Windows\system32\DRIVERS\stwrt.sys [2008-06-20 380928]
S0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2012-12-17 685816]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 asusgsb;ASUS Virtual Video Capture Device Driver; C:\Windows\system32\drivers\asusgsb.sys [2008-09-08 15232]
S3 atkdisplf;ASUS Kernel Mode Enhanced Driver; C:\Windows\system32\drivers\ATKDispLowFilter.sys [2008-09-08 30976]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys [2012-01-09 18176]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbo.sys [2012-01-09 23168]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2012-06-11 19072]
S3 PCTFW-PacketFilter;PCTools Firewall - Packet filter driver; \??\C:\Windows\system32\drivers\pctNdis-PacketFilter.sys [2010-01-12 70664]
S3 pctplfw;pctplfw; \??\C:\Windows\System32\drivers\pctplfw.sys [2010-01-13 115216]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2012-01-09 8192]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2010-11-20 27648]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2012-01-09 8192]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-12-18 65192]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 CyberLink Live Monitor Service;CyberLink Live Monitor Service; C:\Program Files\CyberLink\CyberLink Live\CLSomaMonitorService.exe [2008-04-25 171040]
R2 CyberLink Live Push Update Service;CyberLink Live Push Update Service; C:\Program Files\CyberLink\CyberLink Live\CLPushUpdateService.exe [2008-04-25 113696]
R2 CyberLink Live Service;CyberLink Live Service; C:\Program Files\CyberLink\CyberLink Live\CLSomaService.exe [2008-04-25 322592]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2011-01-12 810144]
R2 NAUpdate;@C:\Program Files\Nero\Update\NASvc.exe,-200; C:\Program Files\Nero\Update\NASvc.exe [2012-07-13 769432]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-03-15 634144]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-03-15 1266464]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2012-12-17 76888]
R2 STacSV;Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_991d5ea79febb417\STacSV.exe [2008-06-20 221239]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2012-06-11 724376]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-11-09 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-04-19 256904]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2011-01-12 33584]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-04-12 115608]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2012-12-22 541760]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-11-15 1343400]

-----------------EOF-----------------

Re: Prosím o preventivku

Napsal: 29 dub 2013 17:42
od Roli
Bezva, vše v pořádku :)

Re: Prosím o preventivku

Napsal: 29 dub 2013 17:54
od Warden75
ok,díky moc....Když člověk lítá po prasáckých stránkách, tak nikdy neví... :D :D

Re: Prosím o preventivku

Napsal: 29 dub 2013 21:06
od Roli
Warden75 píše:Když člověk lítá po prasáckých stránkách, tak nikdy neví... :D :D
Jen blbni.
Warden75 píše:... ,díky moc....
Není zač a :closed:
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz